Date: Thu, 10 Sep 2020 18:54:00 +0200 From: Abelenda Diego <diego.abelenda@gmail.com> To: kaycee gb <kisscoolandthegangbang@hotmail.fr> Cc: freebsd-net@freebsd.org Subject: Re: IP "routing" issue Message-ID: <20200910185400.593a8ce2@debian> In-Reply-To: <VE1PR03MB5629FC5FAB3212A0987F7F4CA0260@VE1PR03MB5629.eurprd03.prod.outlook.com> References: <20200909164254.5e7e3891@debian> <VE1PR03MB5629FC5FAB3212A0987F7F4CA0260@VE1PR03MB5629.eurprd03.prod.outlook.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] Hello, Thank you for pointing route "-iface" however I can't seem to manage what I want. When I use: "route add -host $IP_NOT_IN_SUBNET -iface bce0" I get "netstat -rn" to say someting like: Internet: Destination Gateway Flags Netif Expire default $UPSTREAM_GW UGS bce0 10.0.0.1 link#7 UHS lo0 $IP_NO_IN_SUBNET $MAC_ADDRESS_OF_BCE0 UHS bce0 Which seem somehow appropriate, so I try to ping $IP_NOT_IN_SUBNET and I get: root@opnsense2:~ # ping $IP_NOT_IN_SUBNET PING $IP_NOT_IN_SUBNET ($IP_NOT_IN_SUBNET): 56 data bytes 36 bytes from $UPSTREAM_GW: Redirect Host(New addr: $PUBLIC_IP_OF_BCE0). Which doesn't seem appropriate at all wrt the routing table... Did I use "route add" wrong? Also I want to keep the setup simple, going through private IPs on the public VLAN of the datacenter might get me in trouble with them, and using other VLANs for that will be a pain. Best regards, Diego Abelenda On Wed, 9 Sep 2020 17:35:45 +0200 kaycee gb <kisscoolandthegangbang@hotmail.fr> wrote: > Le Wed, 9 Sep 2020 16:42:54 +0200, > Abelenda Diego <diego.abelenda@gmail.com> a écrit : > > > Hello, > > > > I've got a FreeBSD installation in a DataCenter that provided me with a > > single address IPv4 with an upstream gateway (cidr is fine the upstream > > gateway works everything is nice and running). I use this machine for > > Masquerading an private infrastructure. > > > > Now I need other machines with public IPv4 and when I requested the > > additional IPv4 to the DataCenter, they gave me a bunch of /32 addresses > > saying that my previous IPv4 MUST be configured as next-hop on their side. > > From my understanding in FreeBSD the route command is unable to perform this > > kind of configuration where you tell that the IPv4 /32 is available without > > next-hop (no via) on a specific link. I know the linux "ip route add $IP dev > > $LINK" configures this, but I cannot seem to map this knowledge to FreeBSD. > > > > Is it possible to perform this very special setup with any command on > > FreeBSD? If yes what is that command? > > > > Best regards, > > Diego Abelenda > > Hi, > > Do the other machines have a private address ? Is it a problem if they have > one ? > If it is possible, you can route via this private address on your FreeBSD > installation to the new one and assign a public/32 to the last. > > Alternatively to doing routing like above, if you have a firewall enabled on > the first machine, you can do address forwarding between the first and the > new one. > > And last, maybe with something like -iface from "route" you can achieve what > you want. > > K. > _______________________________________________ > freebsd-net@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEhLBEGh6nN5+aat9KomT4UAfkGfgFAl9aWigACgkQomT4UAfk GfhHjxAAgGjAFo1KmLydR2NllqZOikChu0bG/2T7dCgg7s1Qfw2ndTVWDkGOY/Kg kfajr4pZj7LIq2Or7Z2vmkjK1dAZLdgsoXP8p9yEFhtGkhGoLw4qRsL9YJ1UQDpR GdjKtbDqq0xgLfKzHFnAOF2Iv7hfAhi2Rzgmtxkp4OQDmiAmFp+B/j/B5ndgaf1u xf1i1HfmAGZRVZebt1WLChRdpQHERW2EwIOflQ4XOnDg1wxsVknd0kTobwMCkTpX Q6SIBxk/qXIPouUS8GprHRdGJeuJYO92GCNk1Nrlztrw1v+p4+JbkCHzPQ7lleVn 1lb6z3zxrSND/jOMtL6Xg1mIIywFTcGiHbojSlPfH+UJM4IZgopXRe7HvBGlC+HR GM5IpW7vwhd8b6jAUGZid581Z/n5n+Ni6dTXLpvgpB4XiiD52lO+he3zUVPGBZes TJCrnKEUSyeTG8a2ilBQXkCDTFpFKOteu13zAOdw2o4lQw2cj9mYeZUCycnnNJlo To61v66qpu39G4AfH09zMikI9FhQ5flJqFGOtXgBv+9gdlQ2LrYTwiGG8U2kycz7 eT52I7lyqbSSK0UMr1wWdU4bZKgUyrWKAyin4vcmE25m38Uypoda0L8a9lLEXadg a5liQGA2RUsIAg03SujF0V3I8ibI4vohn3LAZ0hSP5q3MqaPgwI= =dYqQ -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20200910185400.593a8ce2>