setsr - interact with the source route selection mechanism.SYNOPSIS
setsr [ifn [ip mask main | aux] | delete]DESCRIPTION
When invoked with only the ifn argument, setsr prints the current Source Route settings for that interface. If no argument is specified, the settings for all Internet interfaces are printed.
Argument ifn can be an Internet interface number, or one of the special interface constants p (Primary interface), a (Auxiliary interface), w (Windows best interface) or ifn (Current interface).
Argument ip is the IP address of a computer to be permitted to use the specified interface. If several computers are to be allowed, a mask can be specified, thus allowing all computers on such a pseudo subnet to communicate via the interface.
The final argument allows an auxiliary gateway to be used on the specified interface (if such a gateway exists). NAT32 currently supports two gateways (the main gateway and an aux gateway) per Internet interface.
Argument delete removes the details for the specified interface from the current configuration.
% setsr 1 192.168.10.0 255.255.255.0 aux
IFN IP: 192.168.10.0 Mask: 255.255.255.0 Subnet: 192.168.10.0 Gateway: 192.168.178.254
In the above example, the command specifies that all Internet traffic from machines on the private 192.168.10.0 subnet is to be forwarded via the auxiliary gateway on Interface 1. The new settings are then printed. They show that Internet traffic from any 192.168.10.0 private machine will be forwarded via the gateway 192.168.178.254, which happens to be the auxiliary gateway for Interface 1 in this particular case. All Internet traffic from other private machines (and from the Windows TCP/IP stack itself) will be forwarded over Interface 1 via the main gateway, 192.168.178.1 in this particular case.
If several Internet interfaces exist, a setsr command can be issued for each such interface. Note that the Source Routing mechanism overrides the Interface Selection mechanism if enabled.
The term Source Routing is widely used to denote an IP Routing option which allows a list of Nexthop Addresses (gateways) to be specified in the IP Header of a datagram. However, because that list is limited to a maximum of 9 entries (because the IP HLEN field is only a 4-bit quantity), and because of security implications (all packets could be forced to pass through an illicit gateway), Source Routing as described in RFC791 is usually disabled in most IP Routers.
In NAT32, the term Source Routing is used to denote route selection based on both the IP destination and the IP source address of a packet.
The NAT32 Source Routing mechanism can be used in two ways:
- If multiple Internet interfaces are available, Source Routing can route all Internet traffic from one or more selected private networks via a specific interface.
- If multiple gateways exist on an Internet interface, Source Routing can route all Internet traffic from one or more selected private networks via a specified gateway on that interface.
netcfg, OpenVPN, sethtx, setis