From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail2.tohojo.dk (mail2.tohojo.dk [IPv6:2a01:4f8:200:3141::101]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by huchra.bufferbloat.net (Postfix) with ESMTPS id 9281D21F24D for ; Thu, 10 Apr 2014 07:33:01 -0700 (PDT) X-Virus-Scanned: amavisd-new at example.com Received: by alrua-kau.localdomain (Postfix, from userid 1000) id 00DF1B3838; Thu, 10 Apr 2014 16:32:52 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=toke.dk; s=201310; t=1397140373; bh=BC3IfGhBfPC6hp6amkvmvtfavebRwtVtoBpGxeaBlc4=; h=From:To:Cc:Subject:References:Date:In-Reply-To; b=bgjWZ7S3QFZz1qASyOFUG6dxSeAtzlAhuZKfpn90jkrBj0GUrBv3AJMKfmplbDmG9 /hCcO+qv3YVspVgpW9bCwF0upHwaI6fOTbLuVZ0fZS00g7enZkwQsklZi+PnGcyfu7 i5cdIu1Ywg3iMuGx35PrK6Y4wBJnDH5t2fXtx8/s= From: =?utf-8?Q?Toke_H=C3=B8iland-J=C3=B8rgensen?= To: Robert Bradley References: <85984.1397137700@turing-police.cc.vt.edu> <5346A561.30901@gmail.com> Date: Thu, 10 Apr 2014 16:32:50 +0200 In-Reply-To: <5346A561.30901@gmail.com> (Robert Bradley's message of "Thu, 10 Apr 2014 15:06:25 +0100") Message-ID: <87sipll0fh.fsf@toke.dk> Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha256; protocol="application/pgp-signature" Cc: cerowrt-devel@lists.bufferbloat.net Subject: Re: [Cerowrt-devel] cerowrt-3.10.36-4 released X-BeenThere: cerowrt-devel@lists.bufferbloat.net X-Mailman-Version: 2.1.13 Precedence: list List-Id: Development issues regarding the cerowrt test router project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2014 14:33:02 -0000 --=-=-= Content-Type: text/plain Robert Bradley writes: > - I had to add my cable modem configuration address to the BCP38 > exception list (192.168.100.1). This gets used for nothing except > configuration and checking the modem logs so this is understandable. I > also end up adding a static route anyway since if Internet breaks, I > need a route to the modem... If you add a 'scope link' route on the wan interface, the BCP38 code *should* pick this up automatically and add an exception. Would be cool if you could test this :) > - dnsmasq's default of dnssec-check-unsigned broke my DNS, since my > ISP servers do not support DNSSEC. In that case, everything winds up > as failing. That's an interesting failure mode. FWIW you can point it at 8.8.8.8/8.8.4.4 instead if you want dnssec verification :) -Toke --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iQEcBAEBCAAGBQJTRquSAAoJEENeEGz1+utPR9UH+gP8TO+SLUwIn+BfblypZhWW Hwq10Bjw5a0/TDA7t9b5Sb1cWD1Oz5qWPj6GCX1EArf99Mlah7c6W9mZ6yKkkTpv 9kbJlQMraiDU8Ial1WcTnvwOnmKWE+wOWv2BqezLL1stiTtN2xXTGeQCEARnFojc MZcV+vxD/YwoEm9i0v2dHL/U1Gy5I07PP33eeS3YkjQyFF5XqLCS1LL1lqwmXqvD U9uep3Pak4sraCiu3voznp4BE9pfuLB+RAfoOXpr/LIlhkBhFzfVSOdM281r6CrV e/0l8W9r7lhabzjlf1YQVvHuVVvmh3o3uS/JZVFY+INhbaqsLE0rJBqw3a3LN38= =v73V -----END PGP SIGNATURE----- --=-=-=--