From aa80fd55a12f144b7a32b64a56e5c10805cb2d0a Mon Sep 17 00:00:00 2001 From: Ben Pfaff Date: Tue, 28 Jul 2009 15:44:58 -0700 Subject: [PATCH] xenserver: Enable ARP filtering to work around xhad bug. This works around a bug in xhad, which binds to a particular Ethernet device, which in turn causes ICMP port unreachable messages if packets are received are on the wrong interface, which in turn can happen if we send out ARP replies on every interface (as Linux does by default) instead of just on the interface that has the IP address being ARPed for, which this sysctl setting in turn works around. Justin Pettit did most of the work tracking down the origin of this bug. Bug #1378. --- xenserver/vswitch-xen.spec | 15 +++++++++++++++ 1 file changed, 15 insertions(+) diff --git a/xenserver/vswitch-xen.spec b/xenserver/vswitch-xen.spec index d95d6163..e24f8936 100644 --- a/xenserver/vswitch-xen.spec +++ b/xenserver/vswitch-xen.spec @@ -167,6 +167,21 @@ fi %post source /etc/xensource-inventory +if grep -F net.ipv4.conf.all.arp_filter /etc/sysctl.conf >/dev/null 2>&1; then :; else + cat >>/etc/sysctl.conf <