Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 22 Sep 2004 23:51:09 +0000
From:      "Mikhail P." <miha@ghuug.org>
To:        freebsd-net@freebsd.org
Cc:        Edwin Groothuis <edwin@mavetju.org>
Subject:   Re: question on tunnels (VPN)
Message-ID:  <200409222351.09475.miha@ghuug.org>
In-Reply-To: <20040922231830.GA1234@k7.mavetju>
References:  <200409221617.59860.miha@ghuug.org> <20040922231830.GA1234@k7.mavetju>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Wednesday 22 September 2004 23:18, Edwin Groothuis wrote:
> I have the same situation here and the solution was to let the ADSL
> router forward all unknown traffic to my router. How to do that is
> router specific, but it can be done.
>
> Then, with the tunnels:
>
> central# ifconfig gif1 inet
> gif1: flags=3D8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
> =9A =9A =9A =9A tunnel inet 218.185.88.66 --> 203.111.122.8
> =9A=9A=9A=9A=9A=9A=9A=9Ainet 10.10.12.1 --> 10.10.12.2 netmask 0xffffffff
>
> remote# ifconfig gif1 inet
> gif1: flags=3D8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
> =9A =9A =9A =9A tunnel inet 192.168.1.1 --> 218.185.88.66
> =9A=9A=9A=9A=9A=9A=9A=9Ainet 10.10.12.2 --> 10.10.12.1 netmask 0xffffff00
>
> 203.111.122.8 is my ADSL routers address.
> 192.168.1.1 is my computers RFC1918 address.
>
> Two static routes, one on each machine, and it works.
>


Thanks for pointer! I will check this with DSL router I have.
There, however, might be another problem - my DSL router could be also NAT'=
ed=20
(and most likely it is), so it draws us the following picture:

(LAN) <-NAT-> (FreeBSD) <-NAT-> DSL Router <- ??? -> ISP/Internet

Basically I'm unsure whether "???" is a normal, direct connection to intern=
et=20
via ISP, or it is also NAT'ed.
I'm most sure that it is NAT, because I've been getting one IP (e.g. my pub=
lic=20
IP on the net as I appear) for ~1 month (e.g. it never changed, although=20
there is DHCP of course).

Well, hell knows how many further NATs I have there - at least I know about=
=20
two already.

I guess time to visit ISP..

> Edwin

regards,
M.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200409222351.09475.miha>