BIND_TO DEVICE and the loopback interface
Dotan Shavit
dotan at shavitos.com
Fri Jul 3 12:04:35 IDT 2009
On Friday 03 July 2009, Gilad Ben-Yossef wrote:
> You have a network server application (it's a SIP UA but that doesn't
> matter much) that is bound to an IP on the media network interface. Because
> the media and management networks might be completely different, you use
> the BIND_TO_DEVICE socket option om the server sockets so that the kernel
> will only route traffic for that socket via that device.
This is the source of your (friend's) problem...
What's wrong with regular routing rules ?
Why should the code bind the socket to a specific device?
Assuming the answer is "security"... you need this only for the management
server, not the media one.
#
More information about the Linux-il
mailing list