Subject: Re: Kill socket for certain routes
To: Steven M. Bellovin <>
From: Bill Studenmund <>
List: tech-net
Date: 12/11/2006 13:22:05
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Dec 08, 2006 at 06:06:08PM -0500, Steven M. Bellovin wrote:
> On Fri, 8 Dec 2006 22:17:48 +0000 (UTC)
> (Christos Zoulas) wrote:
> > In article <>,
> > Perry E. Metzger <> wrote:
> > >
> > >This would be a very nice general capability, though
> > >"socketdrop" (one might want to drop UDP sockets bound to the
> > >vanished address etc.) might be a more general capability.
> >=20
> > The UDP bound problem probably needs fixing in the daemons because
> > some of them might not be prepared to deal with this kind of failure.
> >=20
> How about returning the same error that an ICMP ICMP_UNREACH_PORT
> returns?  (It's a particular case of Destination Unreachable).

If I understand things right, the problem is that we have a server=20
listening on bound sockets. Are servers used to getting ICMP_UNREACH_PORT=
on the bound socket? On a send, yes, they should understand that! But I=20
didn't think many of them would be expecting an error once bind()=20

To be honest, I think TCP daemons still have this problem. If the daemon=20
is configured to bind to specific addresses, it has to know when they=20
change. Then it can redo the binding process.

Take care,


Content-Type: application/pgp-signature
Content-Disposition: inline

Version: GnuPG v1.4.3 (NetBSD)