From owner-freebsd-net@FreeBSD.ORG Thu Nov 6 06:05:40 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1ADC916A4CE for ; Thu, 6 Nov 2003 06:05:40 -0800 (PST) Received: from mizar.origin-it.net (mizar.origin-it.net [194.8.96.234]) by mx1.FreeBSD.org (Postfix) with ESMTP id 62B324400D for ; Thu, 6 Nov 2003 06:05:38 -0800 (PST) (envelope-from helge.oldach@atosorigin.com) Received: from matar.hbg.de.int.atosorigin.com (dehsfw3e.origin-it.net [194.8.96.68])hA6E5aUQ031575 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 6 Nov 2003 15:05:36 +0100 (CET) (envelope-from helge.oldach@atosorigin.com) Received: from galaxy.hbg.de.ao-srv.com (galaxy.hbg.de.ao-srv.com [161.89.20.4])ESMTP id hA6E5Z35030873; Thu, 6 Nov 2003 15:05:35 +0100 (CET) (envelope-from helge.oldach@atosorigin.com) Received: (from hmo@localhost) by galaxy.hbg.de.ao-srv.com (8.9.3p2/8.9.3/hmo30mar03) id PAA15335; Thu, 6 Nov 2003 15:05:34 +0100 (MET) Message-Id: <200311061405.PAA15335@galaxy.hbg.de.ao-srv.com> In-Reply-To: <167116793500.20031106031202@blue.calx.nl> from Walter Hop at "Nov 6, 2003 3:12: 2 am" To: freebsd@walter.transip.nl (Walter Hop) Date: Thu, 6 Nov 2003 15:05:34 +0100 (MET) From: Helge Oldach X-Address: Atos Origin GmbH, Friesenstraße 13, D-20097 Hamburg, Germany X-Phone: +49 40 7886 7464, Fax: +49 40 7886 9464, Mobile: +49 160 4782517 MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit cc: freebsd-net@freebsd.org Subject: Re: Connect two LANs over an IPv4 tunnel? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 06 Nov 2003 14:05:40 -0000 Walter Hop: >I would like to connect two networks (home and work), so that I can set >up my home workstations in the same subnet as the work LAN. Out of this >/24, I would like to use a /29 at home. > >(attempt 2) > >The gif tunnel worked and the boxes can ping eachother over it, so I >assigned private addresses to the gif endpoints. Then I tried adding some >home IP aliases to the work box's ethernet interface and using forwarding >and "route delete/add" in the hope that packets would be routed to the >gateway in private-space across gif1. You do not need IP aliases (I presume you mean static ARP entries), but just need to get the routes right. Proxy ARP will do the rest for you: sysctl net.link.ether.inter.proxyall=1 Be sure that you have IP forwarding enabled on both boxes, otherwise it will definitely not work. Helge