forked from DanielAdolfsson/ndppd
-
Notifications
You must be signed in to change notification settings - Fork 0
/
ndppd.conf.5
117 lines (116 loc) · 3.19 KB
/
ndppd.conf.5
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
.\" Process this file with
.\" groff -man -Tascii ndppd.conf.5
.\"
.TH NDPPD\&.CONF 5 "9/18/2011" "NDP Proxy Daemon Manual" "NDP Proxy Daemon Manual"
.SH NAME
ndppd.conf \- configuration file for ndppd
.SH DESCRIPTION
The syntax is as follows:
.PP
.EX
proxy eth0 {
rule 1234:5678::/96 {
}
}
.EE
.PP
The configuration file must contain one or more
.B proxy
sections, and each of these section must contain one or more
.B rule
sections.
.PP
The
.B ndppd
daemon listens on the interface specified as an argument to the
.B proxy
section. Once a
.B Neighbor Solicitation
message arrives, it will try to match the target address against
the address specified as the argument of the
.B rule
section.
.SH OPTIONS
.IP "proxy <interface>"
Adds a proxy and binds it to the specified
.IR interface .
See below for information about
.BR "proxy options" .
.SH PROXY OPTIONS
.IP "rule <address>"
Adds a rule with the specified
.I address
to the proxy. It may be a an IP such as 1234::1 or a subnet such
as 1111::/96. See below for information about
.BR "rule options" .
.IP "ttl <value>"
Controls how long
.B ndppd
will cache an entry. This is in milliseconds, and the default value
is 30000 (30 seconds).
.IP "autowire <yes|no>"
Controls whether
.B ndppd
will automatically create host entries in the routing tables when
.B ndppd receives Neighbor Advertisements on a listening interface.
The default value is no.
.IP "promiscuous <yes|no>"
Controls whether
.B ndppd
will put the proxy listening interface into promiscuous mode and
hence will react to inbound and outbound NDP commands. This is
required for machines behind the gateway to talk to each other in
more complex topology scenarios.
The the default value is no.
.IP "timeout <value>"
Controls how long
.B ndppd
will wait for a Neighbor Advertisement message after forwarding
a Neighbor Solicitation message according to the rule. This is
in milliseconds, and the default value is 500 (.5 second).
.IP "router <yes|no>"
Controls if
.B ndppd
should send the
.I router
bit when sending Neighbor Advertisement messages. The default
value here is
.BR yes .
.SH RULE OPTIONS
Specify a method here. See below.
.SH METHOD
One of the following options must be specified in the
.B rule
section. All of these are mutually exclusive options, and cannot
be combined.
.IP "iface <interface>"
Specify which
.I interface
the Neighbor Solicitation message will be sent out through.
.IP "auto"
.B (NEW)
If this option is specified
.B ndppd
will attempt to detect which interface to use in order to forward
Neighbor Solicitation Messages, by reading the routing table
.BR /proc/net/ipv6_route .
.IP "static"
.B (NEW)
This option tells
.B ndppd
that it should immediately respond to a Neighbor Solicitation Message
without querying an internal interface.
Note that it's recommended that you use this option sparingly, and with
as high prefix length as possible. This is to make sure upstream routers
are not polluted with spurious neighbor entries.
If no rule option has been specified, it will default to
.B static
in order to be compatible with
.BR 0.2.1 .
This will, however, produce a warning, and most likely not work in
future versions of
.BR ndppd .
.SH AUTHOR
Daniel Adolfsson <daniel@priv.nu>
.SH "SEE ALSO"
.BR ndppd(1)