On Wednesday, April 30, 2003, at 11:35 PM, Greg Hewitt-Long wrote:
2. how to remove this routeIIRC: /sbin/route del -host ip.ad.re.ss reject I haven't used it for a while but I think this is for a /24 /sbin/route del -net ip.ad.re.0 netmask 255.255.255.0 rejectwon't that add a reject statement - ie, don't route to or from that domain?I thought the del was to delete that route. http://list.cobalt.com/pipermail/cobalt-users/2002-September/078302.htmlYour command yielded the same:[root rc.d]# /sbin/route del -net 216.87.216.0 netmask 255.255.255.0 rejectSIOCDELRT: No such process [root rc.d]# /sbin/route | grep 216216.87.216.0 * 255.255.255.0 U 0 0 0 eth0[root rc.d]#
I had to deal with something like this yesterday. I had a helpful friend portscanning me to help with firewall setup and had forgotten to have portsentry ignore his IP, so the route got dropped. A google search revealed that (a) indeed, "man route" is fairly opaque in terms of getting rid of lines like this, and (b) it helps a LOT if you know what command created that route, because what eventually gets rid of it is the identical command, but s/add/del/ (as Dan suggested above.) I suppose you can't tell how the route was added? I was fortunate enough to have the line in the portsentry logs.
I would suggest figuring out (with "man route") how to create such a line in the routing table - then s/add/del/ and try it. You're on the right track, you just need the details.
pjm