From owner-freebsd-net@FreeBSD.ORG  Fri Dec 26 14:41:15 2014
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 1B90FC4B
 for <freebsd-net@freebsd.org>; Fri, 26 Dec 2014 14:41:15 +0000 (UTC)
Received: from mail-wg0-x233.google.com (mail-wg0-x233.google.com
 [IPv6:2a00:1450:400c:c00::233])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id A34A5263E
 for <freebsd-net@freebsd.org>; Fri, 26 Dec 2014 14:41:14 +0000 (UTC)
Received: by mail-wg0-f51.google.com with SMTP id x12so14554333wgg.10
 for <freebsd-net@freebsd.org>; Fri, 26 Dec 2014 06:41:12 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:date:message-id:subject:from:to:content-type;
 bh=aJe493adxIEt6hCdFE1YiMXQwxcQKXpJkXPvxPtZoUU=;
 b=Nbnvs38gAfZEt60ksXhC1cK2oXAXR6IweZv+4C51JZFQUTdXx/sC5nUa7g3CFZNo4T
 nMgg83coMMt06CG0/reMT8bZRe0SMnOaApIlloSeTojn/bYWpcHB3CZIiuM3vDlH0z4g
 BNi+pcOFSgxSV8gwY47CCO//6k5bM33KzlbmfHqj5ieuzxv4VRHfJuPUWi8D2ApbmBg1
 kKXiW9e2xxmesnqisBf6JyCe6XbcL3Tbzikyz41crKAiSH5qYh9ooyFgzEZMgPBvKdvw
 3rp7luDKS6ZREpO8Dy6lHKxd4nRzVcggAgbAEh5gDKiVL6ggcRfhNrso5S6Wl9EkfAE7
 a6zw==
MIME-Version: 1.0
X-Received: by 10.180.76.144 with SMTP id k16mr68646995wiw.3.1419604872876;
 Fri, 26 Dec 2014 06:41:12 -0800 (PST)
Received: by 10.27.177.218 with HTTP; Fri, 26 Dec 2014 06:41:12 -0800 (PST)
Date: Fri, 26 Dec 2014 15:41:12 +0100
Message-ID: <CA+P_MZHi1hMGq8qbOvpYSMLk4Usr4CAXjR1PdKRt7dE_vMJ7UQ@mail.gmail.com>
Subject: setfib and RSTs
From: Nikolay Denev <ndenev@gmail.com>
To: "freebsd-net@freebsd.org" <freebsd-net@freebsd.org>
Content-Type: text/plain; charset=UTF-8
X-Content-Filtered-By: Mailman/MimeDel 2.1.18-1
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net/>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Dec 2014 14:41:15 -0000

Hi,

I have a process (bittorrent client) running in a non-default fib and using
a VPN for default gateway:

from /etc/rc.local :

    /usr/sbin/setfib 1 route add $vpn_provider 10.0.0.1
    /usr/sbin/setfib 1 /usr/local/sbin/openvpn --config
/usr/local/etc/openvpn/provider.ovpn
    /usr/sbin/setfib 1 /usr/sbin/service transmission onestart

Then openvpn installs default gateway in fib 1 to point to the tun(4)
interface.

Stil, I'm seeing RST packets from the bittorrent client process to be sent
not via the tunnel, but to the default gateway of the lan which seems
wrong. As if when the kernel generates the RST it does not take into
account the FIB of the socket?

Any ideas?