From owner-freebsd-questions Fri Feb 21 1:51:58 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C9EBA37B401 for ; Fri, 21 Feb 2003 01:51:56 -0800 (PST) Received: from famine.e-raist.com (famine.e-raist.com [65.100.40.90]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1BD9343F3F for ; Fri, 21 Feb 2003 01:51:56 -0800 (PST) (envelope-from aburke@nullplusone.com) Received: from thebe (evrtwa1-ar10-4-40-153-150.evrtwa1.dsl-verizon.net [4.40.153.150]) (authenticated bits=0) by famine.e-raist.com (8.12.2/8.12.2) with ESMTP id h1L9plau067429; Fri, 21 Feb 2003 01:51:50 -0800 (PST) From: "Aaron Burke" To: "FreeBSD-Questions@freebsd.org" , "Krassimir Slavchev" Subject: RE: gif tunnels? Date: Fri, 21 Feb 2003 01:51:39 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal In-Reply-To: <3E55E182.CF53BDCA@bulinfo.net> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of > Krassimir Slavchev > Sent: Friday, February 21, 2003 12:21 AM > To: questions@FreeBSD.ORG > Subject: gif tunnels? > > > Hello All, > > I have: > > Private Net 1 Firewall 1 Firewall 2 Private Net 2 > --------------- ------------ ------------ --------------- > | 10.1.0.0/24 |----| FBSD 4.7 |--//--| FBSD 4.7 |----| 10.2.0.0/24 | > --------------- ------------ ------------ --------------- > |______tunnel______| > > I want to configure tunnel between "Private Net 1" and "Private Net 2" > and > can not get tunnel to work when Public IP of "Firewall 1" and "Firewall > 2" are > from same subnet. If public IPs of my firewalls are from different > subnets all works fine. > > On "Firewall 1" I do: > # ifconfig gif0 create > # gifconfig gif0 x.y.z.1 x.y.z.2 > # ifconfig gif0 inet 10.255.255.1 10.255.255.2 netmask 255.255.255.252 > # route add -net 10.2.0.0/24 10.255.255.2 > > On "Firewall 2" I do: > # ifconfig gif0 create > # gifconfig gif0 x.y.z.2 x.y.z.1 > # ifconfig gif0 inet 10.255.255.2 10.255.255.1 netmask 255.255.255.252 > # route add -net 10.1.0.0/24 10.255.255.1 > > Is there any way to get this to work? You may want to check out http://www.nullplusone.com/vpn .It describes a slightly different situation. Here there is a link from the 192.168.0.0/24 to 10.1.1.0/24. > > Thanks in advance Hope this site is some help To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message