From owner-freebsd-pf@FreeBSD.ORG  Tue Jan 25 18:44:42 2005
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5B1A016A4CE
	for <freebsd-pf@freebsd.org>; Tue, 25 Jan 2005 18:44:42 +0000 (GMT)
Received: from smtp.freemail.gr (smtp.freemail.gr [213.239.180.35])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B1BDB43D2F
	for <freebsd-pf@freebsd.org>; Tue, 25 Jan 2005 18:44:41 +0000 (GMT)
	(envelope-from dionch@freemail.gr)
Received: by smtp.freemail.gr (Postfix, from userid 101)
	id B2781BC103; Tue, 25 Jan 2005 20:44:40 +0200 (EET)
Received: from R3B (vdp3061.ath03.dsl.hol.gr [62.38.162.62])by
	smtp.freemail.gr (Postfix) with ESMTP id BB1CABC04A;Tue, 25 Jan 2005 20:44:38
	+0200 (EET)
Message-ID: <005101c5030d$b98beb20$0100000a@R3B>
From: "Chris Dionissopoulos" <dionch@freemail.gr>
To: "Stephane Raimbault" <segr@hotmail.com>, <freebsd-pf@freebsd.org>
References: <BAY24-F2071EB45E84817EF0AA2FCC860@phx.gbl>
Date: Tue, 25 Jan 2005 20:43:09 +0200
MIME-Version: 1.0
Content-Type: text/plain;format=flowed;charset="iso-8859-7";
	reply-type=response
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
Subject: Re: route-to rule.
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: Chris Dionissopoulos <dionch@freemail.gr>
List-Id: Technical discussion and general questions about packet filter (pf)
	<freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Jan 2005 18:44:42 -0000

Hi,

For vpn problem:
Is routing already set in both sides?

pf-box:
route add 10.0.0.0/26 <tun0_other_peer_IP>

Other vpn end:
route add 10.0.1.0/24 <tun0_pf_box_IP>


For DNS problem:
You have to decide which gateway pf-box will use
as default for own connections (default gateway is missing).
route add default <gw1> |<gw2> maybe solves it.

Chris.



----- Original Message ----- 
From: "Stephane Raimbault" <segr@hotmail.com>
To: <dionch@freemail.gr>; <freebsd-pf@freebsd.org>
Sent: Tuesday, January 25, 2005 8:17 PM
Subject: Re: route-to rule.


> Well this is odd.. I gave this a try... and the tun interface wasn't able 
> to pass traffic between the 2 lan's
>
> 10.0.0.0/26 is the remote lan, and 10.1.0.0/24 is the local lan.
>
> and dns stopped working for the local lan... I have a caching dns server 
> configured on the pf box, and even that couldn't resolve anything despite 
> still having good network connections to the 2 wan's
>
> Any idea what's missing?
>
> Thanks,
> sTephane.
>


____________________________________________________________________
http://www.freemail.gr - δωρεάν υπηρεσία ηλεκτρονικού ταχυδρομείου.
http://www.freemail.gr - free email service for the Greek-speaking.