From owner-freebsd-questions@FreeBSD.ORG Wed Mar 17 15:09:45 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 17AB116A4CE for ; Wed, 17 Mar 2004 15:09:45 -0800 (PST) Received: from cloudburst.umist.ac.uk (cloudburst.umist.ac.uk [130.88.119.66]) by mx1.FreeBSD.org (Postfix) with ESMTP id F023443D2F for ; Wed, 17 Mar 2004 15:09:42 -0800 (PST) (envelope-from lewiz@black.fajita.org) Received: from lh014.halls.umist.ac.uk ([130.88.163.14] helo=mail.fajita.org) by cloudburst.umist.ac.uk with esmtp (Exim 4.24) id 1B3kAQ-0001N8-24 for questions@freebsd.org; Wed, 17 Mar 2004 23:09:42 +0000 Received: from black.fajita.org (black.fajita.org [192.168.0.13]) by mail.fajita.org (Postfix) with SMTP id 3532E4BF60 for ; Wed, 17 Mar 2004 23:09:06 +0000 (GMT) Received: (nullmailer pid 2057 invoked by uid 4001); Wed, 17 Mar 2004 23:09:31 -0000 Date: Wed, 17 Mar 2004 23:09:31 +0000 From: Lewis Thompson To: FreeBSD-questions Message-ID: <20040317230931.GA2028@lewiz.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="IJpNTDwzlM2Ie8A6" Content-Disposition: inline X-GPG-Fingerprint: 90A4 939E 3847 A3E4 8103 2A48 22DA B428 542F ED3F X-GPG-Info: http://www.lewiz.org/~lewiz/pgpkey / horowitz.surfnet.nl User-Agent: Mutt/1.5.6i X-MailScanner-Information: Please contact the ISP for more information X-MailScanner: Found to be clean X-MailScanner-From: lewiz@black.fajita.org Subject: gif tunnel problem. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 17 Mar 2004 23:09:45 -0000 --IJpNTDwzlM2Ie8A6 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi, This is the first time I've looked at gif tunnels and I'm only trying to do something simple (by that I mean no IPsec, etc.) Diagrams are always useful for this, so here goes: (int) (ext) (ext) (int) xl0 192.168.0.1 xl1 a.b.c.d -> 'net -> sis0 w.x.y.z rl0 192.168.1.1 192.168.0.x/24 192.168.1.x/24 That's a pretty poor diagram, sorry. Basically HostA has is the default router for 192.168.0.0/24 with in 192.168.0.1 and external ip a.b.c.d. HostB is the same for 192.168.1.0/24 with external ip w.x.y.z. I want to set up an unencrypted tunnel between the two subnets using gif. So far on HostA I have: ifconfig gif0 create ifconfig gif0 tunnel a.b.c.d w.x.y.z ifconfig gif0 192.168.0.1 192.168.1.1 and on HostB: ifconfig gif0 create ifconfig gif0 tunnel w.x.y.z a.b.c.d ifconfig gif0 192.168.1.1 192.168.0.1 I got these from the IPsec chapter in the handbook. It states at this point I should be able to ping 192.168.1.1 from HostA. This does not work. I see the echo in gif0 (using tcpdump) but it never seems to exit the gif tunnel and hit xl1. The same is true for HostB. netstat -rn on HostA shows: 192.168.1.1 192.168.0.1 UH 0 3183 gif0 with an equivalent entry on HostB. What am I doing wrong? I've tried to follow the chapter as best I can but it has been little help. Anybody able to point out the error in my ways? Thanks a lot, -lewiz. P.S. Sorry if this is a duplicate -- it's been a few hours since I originally posted it and I haven't received it yet... must be my MTA ;) --=20 I was so much older then, I'm younger than that now. --Bob Dylan, 1964. ------------------------------------------------------------------------ -| msn:purple@lewiz.net | jabber:lewiz@jabber.org | url:www.lewiz.org |- --IJpNTDwzlM2Ie8A6 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD4DBQFAWNqrItq0KFQv7T8RAjfZAJj8W/iEISAjNvlRkbQKgLXMTPxyAJ9130i3 /FmAL4y61ESM2QMC7Fy5fA== =gaIL -----END PGP SIGNATURE----- --IJpNTDwzlM2Ie8A6--