From owner-freebsd-net@FreeBSD.ORG  Fri Oct 25 16:56:18 2013
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id E1E5A92B
 for <freebsd-net@freebsd.org>; Fri, 25 Oct 2013 16:56:17 +0000 (UTC)
 (envelope-from julian@freebsd.org)
Received: from vps1.elischer.org (vps1.elischer.org [204.109.63.16])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id A6A6A2379
 for <freebsd-net@freebsd.org>; Fri, 25 Oct 2013 16:56:17 +0000 (UTC)
Received: from Julian-MBP3.local (ppp121-45-246-96.lns20.per2.internode.on.net
 [121.45.246.96]) (authenticated bits=0)
 by vps1.elischer.org (8.14.7/8.14.7) with ESMTP id r9PGuCHU004908
 (version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO);
 Fri, 25 Oct 2013 09:56:15 -0700 (PDT)
 (envelope-from julian@freebsd.org)
Message-ID: <526AA2A7.4010904@freebsd.org>
Date: Sat, 26 Oct 2013 00:56:07 +0800
From: Julian Elischer <julian@freebsd.org>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8;
 rv:24.0) Gecko/20100101 Thunderbird/24.0.1
MIME-Version: 1.0
To: MrStalker <mrstalker@simvol7.ru>, freebsd-net@freebsd.org
Subject: Re: How delete the interface route in FreeBSD 9.2 (MPD5)?
References: <63600.37.147.154.147.1382647335.squirrel@37.147.154.147>
 <526A18FC.6030402@rdtc.ru> <526A894E.1070305@simvol7.ru>
In-Reply-To: <526A894E.1070305@simvol7.ru>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Oct 2013 16:56:18 -0000

On 10/25/13 11:07 PM, MrStalker wrote:
>
> 25.10.2013 11:08, Eugene Grosbein пишет:
>> On 25.10.2013 03:42, MrStalker wrote:
>>> Hello!
>>> For my internet provider (L2TP VPN connection) is required a route 
>>> to the VPN server via local gate.
>>> I'm using MPD5.
>>> But, MPD5 creates route to the VPN server via its same interface...
>>>
>>> root@Eviko:/home/mrstalker # netstat -nrf inet
>>> Routing tables
>>>
>>> Internet:
>>> Destination        Gateway            Flags    Refs      Use Netif 
>>> Expire
>>> default            85.21.230.206      UGS         0 8    ng0
>>> 85.21.230.206      link#7             UH          0 8    ng0
>>>
>>> What will not work...
>>>
>>> However earlier, it was possible delete this route and then create 
>>> right route.
>>> root@Test2:/home/mrstalker # route delete 85.21.230.206
>>> delete host 85.21.230.206
>>> root@Test2:/home/mrstalker # route add 85.21.230.206 10.165.32.1
>>> add host 85.21.230.206: gateway 10.165.32.1
>>>
>>> When i trying FreeBSD 9.2, this is no longer working...
>>> Thread about it at the 
>>> forumhttp://forums.freebsd.org/showthread.php?t=42547
>>> Later I found source of problem:
>>> http://svnweb.freebsd.org/base?view=revision&revision=248895
>>>
>>> Now I can't delete the interface route (ng0). What does impossible 
>>> work with the  internet provider.
>>>
>>> How? How now resolve this problem?
>>> I need to add route to the vpn server via local gate...
>>>
>>> Please help me resolve this trouble. Since the release of FreeBSD 
>>> 9.2 I trying to find a solution.
>> You have to create your static route to vpn server before mpd5 starts.
>> Use /etc/rc.conf:
>>
>> static_routes="vpn"
>> route_vpn="85.21.230.206 10.165.32.1"
>>
>> Eugene Grosbein
> Unfortunately failed...
>
> root@Eviko:/home/mrstalker # netstat -nrf inet|grep 85.21.230.206
> 85.21.230.206      10.165.32.1        UGHS        0        0 re0
> root@Eviko:/home/mrstalker # service mpd5 start
> Starting mpd5.
> root@Eviko:/home/mrstalker # netstat -nrf inet|grep 85.21.230.206
> 85.21.230.206      link#7             UH          0        4 ng0
>
> Route via ng0 overwrites the static route.
then you have set it up wrong.
you need a specific static route to the far end that does not go 
through tunnel.

the only other possibilty is to have mpd use a separate fib..
e.g.

setfib 3 route add (destination route)
setfib 3 mpd (args)
then you can allow the default route etc to go through the tunnel
as the tunnel iteself will use a different routing table.


> _______________________________________________
> freebsd-net@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
>
>