FreeBSD Mail Archives

Date:      Sun, 17 Feb 2002 13:12:09 -0800
From:      "Lars Eggert" <larse@ISI.EDU>
To:        "'Justin Hawkins'" <justin@hawkins.dropbear.id.au>, <freebsd-net@freebsd.org>
Subject:   RE: mpd-netgraph as VPN client to Cisco 2500
Message-ID:  <000d01c1b7f7$c3383390$b27ba8c0@keg>
In-Reply-To: <20020217094933.D9233-100000@tardis.everard.bogus>


[-- Attachment #1 --]
Hi,

this doesn't look like the same bug described in the link you posted.
The other bug caused negotiation to completely fail, while it succeeds
in your case. 

Looks like there's something else wring. What does your ifconfig look
like after the link is up?

Lars
-- 
Lars Eggert <larse@isi.edu>               Information Sciences Institute
http://www.isi.edu/larse/              University of Southern California

> -----Original Message-----
> From: owner-freebsd-net@FreeBSD.ORG 
> [mailto:owner-freebsd-net@FreeBSD.ORG] On Behalf Of Justin Hawkins
> Sent: Saturday, February 16, 2002 3:35 PM
> To: freebsd-net@freebsd.org
> Subject: mpd-netgraph as VPN client to Cisco 2500
> 
> 
> 
> Hi folks,
> 
> I'm trying to setup a VPN connection to my work's staff 
> network. I think I'm running into the problem described here:
> 
> http://www.geocrawler.com/mail/msg.php3?msg_id=7311422&list=165
> 
> IE: The physical IP address of the cisco device is the same 
> as the tunnel endpoint address, and packets get encapsulated 
> recursively.
> 
> Here's what my routing table and interface look like after I 
> bring the link up:
> 
> Routing tables:
> 
> Internet:
> Destination        Gateway            Flags    Refs      Use  
> Netif Expire
> default            xxx.xxx.xxx.xxx    UGSc       27     1545    ed1
> 127.0.0.1          127.0.0.1          UH         13     7493    lo0
> [snip]
> yyy.yyy.yyy.30      yyy.yyy.yyy.228     UH          2       11    ng0
> 
> ifconfig:
> 
> ng0: 
> flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> mtu 1500
>         inet6 fe80::500:dead:beef:1234%ng0 prefixlen 64 scopeid 0x9
>         inet yyy.yyy.yyy.228 --> yyy.yyy.yyy.30 netmask 0xffffffff
> 
> Where yyy.yyy.yyy is my staff network class C, .30 is the VPN 
> server (Cisco 2511), .228 is the negotiated client address 
> for my FreeBSD box.
> 
> When I try to ping I get:
> 
> tardis:~ > ping yyy.yyy.yyy.30
> PING yyy.yyy.yyy.30 (yyy.yyy.yyy.30): 56 data bytes
> ping: sendto: Resource deadlock avoided
> ping: sendto: Resource deadlock avoided
> ping: sendto: No buffer space available
> ping: sendto: No buffer space available
> 
> During the opening of the connection with mpd-netgraph, I see this:
> 
> [vpn] IPCP: rec'd Configure Request #50 link 0 (Req-Sent)  
> IPADDR yyy.yyy.yyy.30
>    Same as PPTP IP; would cause routing loop
>    NAKing with yyy.yyy.yyy.30
> 
> which is referenced in the geocrawler link above.
> 
> Is the tunnel endpoint having the same IP as the physical 
> interface completely unsupported?
> 
> Could I possibly solve this by use of an ethernet alias on the 2511?
> 
> Can provide more of the debug output from mpd while bringing 
> up the link if necessary.
> 
> Thanks!
> 
> 	- Justin
> 
> -- 
> justin@hawkins.dropbear.id.au  |    "Don't sweat it --
> http://hawkins.dropbear.id.au  |  it's only 1's and 0's"
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-net" in the body of the message
> 

[-- Attachment #2 --]
0�	*�H��
��0�10	+0�	*�H��
��	0��0���G0
	*�H��
0��10	UZA10UWestern Cape10U	Cape Town10
U
Thawte10UCertificate Services1(0&UPersonal Freemail RSA 2000.8.300
010824164000Z
020824164000Z0T10
UEggert1
0U*Lars10ULars Eggert10	*�H��
	
larse@isi.edu0��0
	*�H��
��0���������|\Pw��� �v����~��~�F�Do�o�ӦA��\-��	� ���Cˀ�4�.��)&��{�肋���,z�(ܷر��߈��T7�_'t�xGH^tt/ҹB8��%�t<#�ֲN��V0T0*+e!000L2uMyffBNUbNJJcdZ2s0U0�
larse@isi.edu0U�00
	*�H��
����a�JP���M�Ւ�]cѭC+��kS��+wZ�1���gY"�,Y���T�41�
�j����6:~�℩��D���������~�Kؚ�l���=�u(Վ��M?cF��7@����}��T��0�)0���0
	*�H��
0��10	UZA10UWestern Cape10U	Cape Town10U
Thawte Consulting1(0&UCertification Services Division1$0"UThawte Personal Freemail CA1+0)	*�H��
	personal-freemail@thawte.com0
000830000000Z
020829235959Z0��10	UZA10UWestern Cape10U	Cape Town10
U
Thawte10UCertificate Services1(0&UPersonal Freemail RSA 2000.8.300��0
	*�H��
��0�����32�c�	%E>�nx'g��ڈ���D)�c5*mp<�ܮ��to0�3��4q��m���O�e�
�K���a����U�5��u�'��r���װ�����|CBPQ��<�9��T������If-	��k�i�N0L0)U"0 �010UPrivateLabel1-2970U�0�0U0
	*�H��
��so&e��4KYb��D�I��
���
j&*b���ctm��S�K���8��P�:l4��撜n�#�	��K�r�g�Po.X���PW�����Ո�����9[9}4���%Mj���Ñ/���<R���bH0�-0���0
	*�H��
0��10	UZA10UWestern Cape10U	Cape Town10U
Thawte Consulting1(0&UCertification Services Division1$0"UThawte Personal Freemail CA1+0)	*�H��
	personal-freemail@thawte.com0
960101000000Z
201231235959Z0��10	UZA10UWestern Cape10U	Cape Town10U
Thawte Consulting1(0&UCertification Services Division1$0"UThawte Personal Freemail CA1+0)	*�H��
	personal-freemail@thawte.com0��0
	*�H��
��0�����i�԰�d[q�G�Q��r���^}-
�{߅%u(t:B,c'��{K�~���ݹΖd�nD�|��Mq@8���x����^���^v���]nz|�KU)��&�j�8$j�Ǳڣ���y��Z���00U�0�0
	*�H��
����~N����gb*��M`�o�`Xa�&�R5\�0��J��bB#���d��G)ߝ�^�l`q\���y��nG�
(�������|���_#&	��s��C��%��/�����u��Q�k����w��1�Z0�V0��0��10	UZA10UWestern Cape10U	Cape Town10
U
Thawte10UCertificate Services1(0&UPersonal Freemail RSA 2000.8.30�G0	+��0	*�H��
	1	*�H��
0	*�H��
	1
020217211209Z0#	*�H��
	1�E�Q������	&�\�X`0X	*�H��
	1K0I0
*�H��
0*�H��
�0+0
*�H��
(0+0
*�H��
0��	+�71��0��0��10	UZA10UWestern Cape10U	Cape Town10
U
Thawte10UCertificate Services1(0&UPersonal Freemail RSA 2000.8.30�G0��*�H��
	1�����0��10	UZA10UWestern Cape10U	Cape Town10
U
Thawte10UCertificate Services1(0&UPersonal Freemail RSA 2000.8.30�G0
	*�H��
��Ha�=�V�uݱx��_c&�x�VK�-�����g-�����q�N���U��崻d�A���xܤP��&�1����kۭ=H�)�m|�s��]@H�0C�X��*Ν[��˰;�n�J&|�I����=�

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000d01c1b7f7$c3383390$b27ba8c0>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation