Skip to content

Instantly share code, notes, and snippets.

@paigeadelethompson

paigeadelethompson/1. ifconfig state

Last active April 21, 2025 05:24
Show Gist options
  • Save paigeadelethompson/bc9bf44ad0d78ee74bd22febfe333b8a to your computer and use it in GitHub Desktop.
Save paigeadelethompson/bc9bf44ad0d78ee74bd22febfe333b8a to your computer and use it in GitHub Desktop.
Download ZIP
Raw
1. ifconfig state
❯ sudo ifconfig
ix0: flags=8802<BROADCAST,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=4e53fbb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,TSO4,TSO6,LRO,WOL_UCAST,WOL_MCAST,WOL_MAGIC,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6,HWSTATS,MEXTPG>
ether 98:b7:85:1e:de:4d
media: Ethernet autoselect
status: no carrier
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
ix1: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=4e53fbb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,TSO4,TSO6,LRO,WOL_UCAST,WOL_MCAST,WOL_MAGIC,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6,HWSTATS,MEXTPG>
ether 98:b7:85:1e:de:4e
inet 192.168.1.128 netmask 0xffffff00 broadcast 192.168.1.255
media: Ethernet autoselect (10Gbase-SR <full-duplex,rxpause,txpause>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
igb0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=a520b9<RXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,WOL_MAGIC,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,HWSTATS>
ether 3c:ec:ef:56:eb:5c
inet 198.18.2.1 netmask 0xfffffe00 broadcast 198.18.3.255
fib: 8
media: Ethernet autoselect
status: no carrier
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
igb1: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=a520b9<RXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,WOL_MAGIC,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,HWSTATS>
ether 3c:ec:ef:56:eb:5d
inet 192.168.65.129 netmask 0xffffff80 broadcast 192.168.65.255
fib: 10
media: Ethernet autoselect
status: no carrier
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
lo0: flags=1008049<UP,LOOPBACK,RUNNING,MULTICAST,LOWER_UP> metric 0 mtu 16384
options=680003<RXCSUM,TXCSUM,LINKSTATE,RXCSUM_IPV6,TXCSUM_IPV6>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
groups: lo
nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
bridge0: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=0
ether 58:9c:fc:10:9b:00
inet 198.18.0.1 netmask 0xfffffe00 broadcast 198.18.1.255
inet 169.254.169.254 netmask 0xffff0000 broadcast 169.254.255.255
id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200
root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
member: tap2 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 17 priority 128 path cost 2000000
member: tap1 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 16 priority 128 path cost 2000000
member: tap0 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 15 priority 128 path cost 2000000
member: igb0 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 3 priority 128 path cost 2000000
groups: bridge
fib: 8
nd6 options=9<PERFORMNUD,IFDISABLED>
bridge1: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=0
ether 58:9c:fc:10:ff:d3
inet 192.168.64.129 netmask 0xffffff80 broadcast 192.168.64.255
inet 169.254.169.254 netmask 0xffff0000 broadcast 169.254.255.255
id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200
root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
member: tap3 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 18 priority 128 path cost 2000000
member: igb1 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 4 priority 128 path cost 2000000
groups: bridge
fib: 10
nd6 options=9<PERFORMNUD,IFDISABLED>
bridge2: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=0
ether 58:9c:fc:10:ff:8f
inet 192.0.2.1 netmask 0xfffffffc broadcast 192.0.2.3
inet 169.254.169.254 netmask 0xffff0000 broadcast 169.254.255.255
id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200
root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
member: tap4 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 19 priority 128 path cost 2000000
groups: bridge
fib: 12
nd6 options=9<PERFORMNUD,IFDISABLED>
epair0a: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=8<VLAN_MTU>
ether 02:03:9c:08:61:0a
inet 192.0.0.0 netmask 0xfffffffe broadcast 255.255.255.255
groups: epair
media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
epair0b: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=8<VLAN_MTU>
ether 02:03:9c:08:61:0b
inet 192.0.0.1 netmask 0xfffffffe broadcast 255.255.255.255
groups: epair
fib: 8
media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
epair1a: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=8<VLAN_MTU>
ether 02:5c:fd:97:c4:0a
inet 192.0.0.2 netmask 0xfffffffe broadcast 255.255.255.255
groups: epair
media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
epair1b: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=8<VLAN_MTU>
ether 02:5c:fd:97:c4:0b
inet 192.0.0.3 netmask 0xfffffffe broadcast 255.255.255.255
groups: epair
fib: 10
media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
epair2a: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=8<VLAN_MTU>
ether 02:77:1d:62:03:0a
inet 192.0.0.4 netmask 0xfffffffe broadcast 255.255.255.255
groups: epair
media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
epair2b: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=8<VLAN_MTU>
ether 02:77:1d:62:03:0b
inet 192.0.0.5 netmask 0xfffffffe broadcast 255.255.255.255
groups: epair
fib: 12
media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
tap0: flags=1008943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
description: vmnet/SWARM1/0/bridge0
options=80000<LINKSTATE>
ether 58:9c:fc:00:1d:5d
groups: tap vm-port
fib: 8
media: Ethernet 1000baseT <full-duplex>
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
Opened by PID 3770
tap1: flags=1008943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
description: vmnet/SWARM2/0/bridge0
options=80000<LINKSTATE>
ether 58:9c:fc:10:ed:68
groups: tap vm-port
fib: 8
media: Ethernet 1000baseT <full-duplex>
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
Opened by PID 3528
tap2: flags=1008943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
description: vmnet/SWARM3/0/bridge0
options=80000<LINKSTATE>
ether 58:9c:fc:10:ff:9e
groups: tap vm-port
fib: 8
media: Ethernet 1000baseT <full-duplex>
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
Opened by PID 3286
tap3: flags=1008943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
description: vmnet/HOME1/0/bridge1
options=80000<LINKSTATE>
ether 58:9c:fc:10:d0:63
groups: tap vm-port
fib: 10
media: Ethernet 1000baseT <full-duplex>
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
Opened by PID 4012
tap4: flags=1008943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
description: vmnet/TAILSCALE1/0/bridge1
options=80000<LINKSTATE>
ether 58:9c:fc:10:ff:9e
groups: tap vm-port
fib: 12
media: Ethernet 1000baseT <full-duplex>
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
Opened by PID 3046
Raw
2. routing tables
❯ netstat -r -F 8
Routing tables (fib: 8)
Internet:
Destination Gateway Flags Netif Expire
default 192.0.0.0 UGS epair0b
localhost link#5 UHS lo0
169.254.0.0/16 link#6 U bridge0
169.254.169.254 link#5 UHS lo0
192.0.0.0/31 link#10 U epair0b
192.0.0.1 link#5 UHS lo0
192.168.0.0/16 link#5 URS lo0
198.18.0.0/23 link#6 U bridge0
198.18.0.1 link#5 UHS lo0
198.18.2.0/23 link#3 U igb0
198.18.2.1 link#5 UHS lo0
Internet6:
Destination Gateway Flags Netif Expire
::/96 link#5 URS lo0
localhost link#5 UHS lo0
::ffff:0.0.0.0/96 link#5 URS lo0
fe80::%lo0/10 link#5 URS lo0
ff02::/16 link#5 URS lo0
---
❯ netstat -r -F 10
Routing tables (fib: 10)
Internet:
Destination Gateway Flags Netif Expire
default 192.0.0.2 UGS epair1b
localhost link#5 UHS lo0
169.254.0.0/16 link#7 U bridge1
169.254.169.254 link#5 UHS lo0
192.0.0.2/31 link#12 U epair1b
192.0.0.3 link#5 UHS lo0
192.168.64.128/25 link#7 U bridge1
192.168.64.129 link#5 UHS lo0
192.168.65.128/25 link#4 U igb1
192.168.65.129 link#5 UHS lo0
198.18.0.0/15 link#5 URS lo0
Internet6:
Destination Gateway Flags Netif Expire
::/96 link#5 URS lo0
localhost link#5 UHS lo0
::ffff:0.0.0.0/96 link#5 URS lo0
fe80::%lo0/10 link#5 URS lo0
ff02::/16 link#5 URS lo0
----
❯ netstat -r -F 12
Routing tables (fib: 12)
Internet:
Destination Gateway Flags Netif Expire
default 192.0.0.4 UGS epair2b
100.64.0.0/10 192.0.2.2 UGS bridge2
localhost link#5 UHS lo0
169.254.0.0/16 link#8 U bridge2
169.254.169.254 link#5 UHS lo0
192.0.0.4/31 link#14 U epair2b
192.0.0.5 link#5 UHS lo0
192.0.2.0/30 link#8 U bridge2
192.0.2.1 link#5 UHS lo0
192.168.0.0/20 link#5 URS lo0
Internet6:
Destination Gateway Flags Netif Expire
::/96 link#5 URS lo0
localhost link#5 UHS lo0
::ffff:0.0.0.0/96 link#5 URS lo0
fe80::%lo0/10 link#5 URS lo0
ff02::/16 link#5 URS lo0
---
Raw
3. main routing table
❯ netstat -r
Routing tables
Internet:
Destination Gateway Flags Netif Expire
default unifi.localdomain UGS ix1
100.64.0.0/10 192.0.0.5 UGS epair2a
localhost link#5 UH lo0
169.254.0.0/16 link#5 URS lo0
192.0.0.0 link#5 UHS lo0
192.0.0.0/31 link#9 U epair0a
192.0.0.0/24 link#5 URS lo0
192.0.0.2 link#5 UHS lo0
192.0.0.2/31 link#11 U epair1a
192.0.0.4 link#5 UHS lo0
192.0.0.4/31 link#13 U epair2a
192.0.2.0/30 192.0.0.5 UGS epair2a
192.168.1.0/24 link#2 U ix1
192.168.1.128 link#5 UHS lo0
192.168.64.0/24 192.0.0.3 UGS epair1a
198.18.0.0/23 192.0.0.1 UGS epair0a
Internet6:
Destination Gateway Flags Netif Expire
::/96 link#5 URS lo0
localhost link#5 UHS lo0
::ffff:0.0.0.0/96 link#5 URS lo0
fe80::%lo0/10 link#5 URS lo0
fe80::%lo0/64 link#5 U lo0
fe80::1%lo0 link#5 UHS lo0
ff02::/16 link#5 URS lo0
Raw
4. works for IPv4
❯ ifconfig epair0a
epair0a: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=8<VLAN_MTU>
ether 02:03:9c:08:61:0a
inet 192.0.0.0 netmask 0xfffffffe broadcast 255.255.255.255
groups: epair
media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
❯ ping 192.0.0.1
PING 192.0.0.1 (192.0.0.1): 56 data bytes
64 bytes from 192.0.0.1: icmp_seq=0 ttl=64 time=0.158 ms
^C
--- 192.0.0.1 ping statistics ---
1 packets transmitted, 1 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 0.158/0.158/0.158/0.000 ms
❯ ifconfig epair0b
epair0b: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=8<VLAN_MTU>
ether 02:03:9c:08:61:0b
inet 192.0.0.1 netmask 0xfffffffe broadcast 255.255.255.255
groups: epair
fib: 8
media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
❯ setfib -F 8 ping 192.0.0.0
PING 192.0.0.0 (192.0.0.0): 56 data bytes
64 bytes from 192.0.0.0: icmp_seq=0 ttl=64 time=0.089 ms
64 bytes from 192.0.0.0: icmp_seq=1 ttl=64 time=0.115 ms
^C
--- 192.0.0.0 ping statistics ---
2 packets transmitted, 2 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 0.089/0.102/0.115/0.013 ms
Raw
5. rc.conf
chronyd_enable=YES
dnsmasq_enable=YES
sshd_enable=YES
hostname=stelleri.netcrave.network
powerd_enable=YES
moused_nondefault_enable=NO
dumpdev=NO
zfs_enable=YES
gateway_enable=YES
#ipv6_gateway_enable=YES
lldpd_enable=YES
linux_enable=YES
pf_enable=YES
nfs_server_enable=YES
nfsv4_server_enable=YES
nfsuserd_enable=YES
rpcbind_enable=YES
mountd_enable=YES
mountd_flags=-r
vm_enable=YES
vm_dir=zfs:storage/vm
# LAN
ifconfig_ix1="inet 192.168.1.128/24 fib 0"
#ifconfig_ix1_ipv6="inet6 fcff:fff0::/64 fib 0"
# Docker swarm
ifconfig_igb0="inet 198.18.2.1/23 fib 8"
#ifconfig_igb0_ipv6="inet6 fcff:8::/64 fib 8"
# Home servers
ifconfig_igb1="inet 192.168.65.129/25 fib 10"
#ifconfig_igb1_ipv6="inet6 fcff:12::/64 fib 10"
# Docker swarm servers VGW
ifconfig_epair0a="192.0.0.0/31 fib 0 up"
#ifconfig_epair0a_ipv6="inet6 fcff:ffff:8::a/64 fib 0 up"
ifconfig_epair0b="192.0.0.1/31 fib 8 up"
#ifconfig_epair0b_ipv6="inet6 fcff:ffff:8::b/64 fib 8 up"
# Home servers VGW
ifconfig_epair1a="192.0.0.2/31 fib 0 up"
#ifconfig_epair1a_ipv6="inet6 fcff:ffff:10::a/64 fib 0 up"
ifconfig_epair1b="192.0.0.3/31 fib 10 up"
#ifconfig_epair1b_ipv6="inet6 fcff:ffff:10::b/64 fib 10 up"
# Tailscale VGW
ifconfig_epair2a="192.0.0.4/31 fib 0 up"
#ifconfig_epair2a_ipv6="inet6 fcff:ffff:12::a/64 fib 0 up"
ifconfig_epair2b="192.0.0.5/31 fib 12 up"
#ifconfig_epair2b_ipv6="inet6 fcff:ffff:12::b/64 fib 12 up"
# VM interfaces (FIB assignment)
ifconfig_tap0="fib 8 up" # SWARM1
ifconfig_tap1="fib 8 up" # SWARM2
ifconfig_tap2="fib 8 up" # SWARM3
ifconfig_tap3="fib 10 up" # HOME1
ifconfig_tap4="fib 12 up" # TAILSCALE1
# Docker swarm virtual switch
ifconfig_bridge0="198.18.0.1/23 fib 8 up"
#ifconfig_bridge0_ipv6="inet6 fcff:8::1/64 fib 8 up"
ifconfig_bridge0_aliases="inet 169.254.169.254/16 alias addm igb0 addm tap0 addm tap1 addm tap2"
# Home servers virtual switch
ifconfig_bridge1="192.168.64.129/25 fib 10 up"
#ifconfig_bridge1_ipv6="inet6 fcff:10::1/64 fib 10 up"
ifconfig_bridge1_aliases="inet 169.254.169.254/16 alias addm igb1 addm tap3"
# Tailscale virtual switch
ifconfig_bridge2="192.0.2.1/30 fib 12 up"
#ifconfig_bridge2_ipv6="inet6 fcff:12::1/64 fib 12 up"
ifconfig_bridge2_aliases="inet 169.254.169.254/16 alias addm tap4"
# This must list all interface variables for interfaces that don't exist yet
cloned_interfaces="bridge0 bridge1 bridge2 epair0 epair1 epair2 \
tap0 tap1 tap2 tap3 tap4"
# Core routes (FIB 0)
route_fib0_swarm="-fib 0 -net 198.18.0.0/23 192.0.0.1" # 198.18.0.0 - 198.18.1.255
#ipv6_route_fib0_swarm="-fib 0 -6 fcff:8::/48 fcff:ffff:8::b"
route_fib0_home="-fib 0 -net 192.168.64.128/24 192.0.0.3" # My 192.168.64.0/20 (2nd /25 of 1st /24 of /20)
#ipv6_route_fib0_home="-fib 0 -6 fcff:10::/48 fcff:ffff:10::b"
route_fib0_ts="-fib 0 -net 192.0.2.0/30 192.0.0.5" # Tailcale VRF
#ipv6_route_fib0_ts="-fib 0 -6 fcff:12::/48 fcff:ffff:12::b"
route_fib0_egr_ts="-fib 0 -net 100.64.0.0/10 192.0.0.5" # Tailscale uses 100.64.0.0/10
#ipv6_route_fib0_egr_ts="-fib 0 -6 fd7a:115c::/32 fcff:ffff:12::b"
# Default egress (For all FIBs)
route_fib0_default="-fib 0 default 192.168.1.1"
route_fib8_default="-fib 8 default 192.0.0.0"
#ipv6_route_fib8_default="-fib 8 -6 fcff::/7 fcff:ffff:8::a"
route_fib10_default="-fib 10 default 192.0.0.2"
#ipv6_route_fib10_default="-fib 10 -6 fcff::/7 fcff:ffff:10::a"
route_fib12_default="-fib 12 default 192.0.0.4"
#ipv6_route_fib12_default="-fib 12 -6 fcff::/7 fcff:ffff:12::a"
# Egress to Tailscale (FIB 12)
route_fib12_egr_ts="-fib 12 -net 100.64.0.0/10 192.0.2.2"
#ipv6_route_fib12_egr_ts="-fib 12 -6 fd7a:115c::/32 fcff:12::192:0:2:2"
# Null routes (All FIBs)
route_fib8_null_fib0="-fib 8 -net 192.168.0.0/16 -reject" # Swarm to UDM & Home (and anything else)
#ipv6_route_fib8_null_fib0="-fib 8 -6 fcff::/48 -reject"
route_fib10_null_fib8="-fib 10 -net 198.18.0.0/15 -reject" # Home servers to Swarm
#ipv6_route_fib10_null_fib8="-fib 10 -6 fcff:8::/48 -reject"
route_fib12_null_fib0="-fib 12 -net 192.168.0.0/20 -reject" # 192.168.0.0/20 UDM Networks(LAN/WiFi/etc)
#ipv6_route_fib12_null_fib0="-fib 12 -6 fcff::/48 -reject"
route_fib0_null_vgw="-fib 0 -net 192.0.0.0/24 -reject" # Prevent forwarding for VGW addresses
#ipv6_route_fib0_null_vgw="-fib 0 -6 fcff:ffff::/32 -reject"
route_fib0_null_ll="-fib 0 -net 169.254.0.0/16 -reject" # Prevent forwarding for link-local
# This must list all route variables
static_routes="fib0_swarm fib0_home fib0_ts fib0_egr_ts fib0_default fib8_default \
fib10_default fib12_default fib12_egr_ts fib8_null_fib0 \
fib0_null_vgw fib0_null_ll fib10_null_fib8 fib12_null_fib0"
# ipv6_static_routes="fib0_swarm fib0_home fib0_ts fib0_egr_ts fib8_default \
# fib10_default fib12_default fib12_egr_ts fib8_null_fib0 \
# fib0_null_vgw fib10_null_fib8 fib12_null_fib0"
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment