Date: Thu, 9 Jun 2005 17:24:07 +0930 From: Greg 'groggy' Lehey <grog@FreeBSD.org> To: Gianmarco Giovannelli <gmarco@masternet.it>, Jeremie Le Hen <jeremie@le-hen.org> Cc: FreeBSD-net@freebsd.org Subject: Re: Problems with gif tunnels Message-ID: <20050609075407.GE87456@wantadilla.lemis.com> In-Reply-To: <20050609074439.GT41050@obiwan.tataz.chchile.org> <6.2.1.2.2.20050609080446.05c897d0@83.149.160.120> References: <20050607094848.GB16223@stack.nl> <20050607231218.GD64194@wantadilla.lemis.com> <20050608084946.GI41050@obiwan.tataz.chchile.org> <20050608095703.GM64194@wantadilla.lemis.com> <20050608195837.Q65103@Neo-Vortex.net> <20050608104053.GK41050@obiwan.tataz.chchile.org> <20050608233136.GX64194@wantadilla.lemis.com> <20050608234559.GS41050@obiwan.tataz.chchile.org> <20050609001004.GB64194@wantadilla.lemis.com> <6.2.1.2.2.20050609080446.05c897d0@83.149.160.120>
next in thread | previous in thread | raw e-mail | index | archive | help
--k3qmt+ucFURmlhDS Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Thursday, 9 June 2005 at 8:13:54 +0200, Gianmarco Giovannelli wrote: > At 02.10 09/06/2005, Greg 'groggy' Lehey wrote: >> On Thursday, 9 June 2005 at 1:46:00 +0200, Jeremie Le Hen wrote: >>> Greg, >>> >>>> My understanding is that GRE is to IP as PPP is to SLIP: it allows >>>> multiple protocols to be encapsulated. I've done some tracing with >>>> Ethereal, and the only difference is a four-byte header in front of >>>> the payload for GRE; in an IP tunnel, it's simply missing. I've >>>> written this up in my diary >>>> (http://www.lemis.com/grog/diary-jun2005.html#8), along with the >>>> traces. >>> >>> yes it's usually a simple four-byte header when doing a simple tunnel. >>> But from what I have read [1] and according to what Giorgos said, >>> it seems it can be a lot more longer, depending on the value of the >>> five first bits of the GRE header. >> >> Ah, that seems reasonable. > > Hi Greg, I have follow with interest this thread because I had a similar > problem sometimes ago and we din't succeded in resolve it as I like ... > > I had to connect a couple of a nets with a freebsd box and a linux box > (not managed by me). They insist to use the ipip tunnel (p:4) What does p:4 mean? > and I think I should use the nos-tun interface we had in the base > system to let things works ourside. But it didn't do the job so we > had to switch on an ipsec tunnel (esp only) which works quite well > except a few things... Like performance? > Now I see I could simply use the gif interface (which I wrongly > suppose did only GRE tunnel :-) Indeed. It doesn't. > to connect to an ipip linux tunnel. Is this right ? Certainly you can do an IP tunnel with the gif interface. > And the nos-tun utility is so a basic replacement of the gif > interface ? I've also been told by people who have done it that nos-tun also works, though it looks a bit kludgy to me, so I haven't tried it. On Thursday, 9 June 2005 at 9:44:39 +0200, Jeremie Le Hen wrote: > > Given the simplicity of gif(4) IP-encapsulated packets, I wonder how > Linux guys could have implemented something else in their IPIP > module :-). Indeed. I'd guess that they got their terminology mixed up, and that they really meant a GRE tunnel. I have spent a *lot* of time scratching my head about this in the last couple of days. The documentation is anything but clear, but it does seem that Linux people prefer GRE. > I never set up such a tunnel between Linux and FreeBSD myself, but > from what I read [1], it seems to work well. > > Please, would you keep us informed whether this setup works for you > or not, it would be certainly worthwhile for the archives. Agreed. Greg -- The virus contained in this message was not detected. Finger grog@FreeBSD.org for PGP public key. See complete headers for address and phone numbers. --k3qmt+ucFURmlhDS Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (FreeBSD) iD8DBQFCp/WfIubykFB6QiMRAh4uAJ4zqz2A6qMJ7+snZz5Ktz0d+SDOsACdGivA GWlwr00l+6DCCY/YEzoJ2YQ= =EX9h -----END PGP SIGNATURE----- --k3qmt+ucFURmlhDS--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050609075407.GE87456>