From owner-freebsd-questions Fri Mar 31 8:16:24 2000 Delivered-To: freebsd-questions@freebsd.org Received: from omnix.net (omnix.net [195.154.168.66]) by hub.freebsd.org (Postfix) with SMTP id 9243F37BA1A for ; Fri, 31 Mar 2000 08:16:21 -0800 (PST) (envelope-from didier@omnix.net) Received: (qmail 25915 invoked by uid 200); 31 Mar 2000 16:16:19 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 31 Mar 2000 16:16:19 -0000 Date: Fri, 31 Mar 2000 16:16:18 +0000 (GMT) From: Didier Derny To: Mike Tancsa Cc: questions@freebsd.org Subject: Re: ipsec, gif tunneling etc... In-Reply-To: <4.2.2.20000320072603.0378a7c8@mail.sentex.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi, sorry, it tooks me some time to answer, but now I found why if the default route goes inside the tunnel and ipip packets generated by gif are unable to find a way outside the system (other than the default route) it loops on itself. It is probably possible to produce the same effect with a series of misconfigured tunnels. by using two different protocols ip4 in ip6 or ip6 in ip4 you can't get this loop effect. -- Didier Derny didier@omnix.net On Mon, 20 Mar 2000, Mike Tancsa wrote: > At 08:31 AM 3/20/2000 +0000, Didier Derny wrote: > > >it's possible to use gifconfig to build a tunnel between two machine > >but it's not recommended with ipv4 > > Excellent, thanks for the example! BTW, why is it not recommended to use > gif interfaces as a tunnel for IPv4 ? > > ---Mike > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message