Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 17 May 2001 22:42:28 -0400 (EDT)
From:      Jim Durham <durham@w2xo.pgh.pa.us>
To:        Dave Rideout <drideout@cssnow.com>
Cc:        FreeBSD Questions <freebsd-questions@FreeBSD.ORG>
Subject:   Re: VPN and MPD
Message-ID:  <Pine.BSF.4.21.0105172237340.12780-100000@shazam.int>
In-Reply-To: <NEBBKBOMILGEKHIBFECLEECHCMAA.drideout@cssnow.com>
next in thread | previous in thread | raw e-mail | index | archive | help 


On Thu, 17 May 2001, Dave Rideout wrote:

> Hello:
> 
> I am using MPD for my VPN at home with cable modem and doing NAT, so its all
> my machines default gateway, but when I do this at work this is what
> happens, I can ping myself and the freebsd box, but I cant ping anyone else
> on the network.  Here is my routing table
> 
> Internet:
> Destination        Gateway            Flags     Refs     Use     Netif
> Expire
> default            192.168.1.1        UGSc        3        9     fxp0
> localhost          localhost          UH          0        0      lo0
> 192.168.1          link#1             UC          0        0     fxp0 =>
> 192.168.1.210      192.168.1.1        UH          0        4      ng0
> 192.168.1.210      0:a0:c9:6c:cd:10   UHLS2       0        0     fxp0
> 
> Internet6:
> Destination        Gateway            Flags      Netif Expire
> ::1                ::1                UH          lo0
> fe80::%fxp0        link#1             UC         fxp0
> fe80::%lo0         fe80::1%lo0        Uc          lo0
> fe80::%ng0         link#11            UC          ng0
> fe80::2a0:c9ff:fe6 ::1                UH          lo0
> ff01::             ::1                U           lo0
> ff02::%fxp0        link#1             UC         fxp0
> ff02::%lo0         fe80::1%lo0        UC          lo0
> ff02::%ng0         link#11            UC          ng0
> 
> Here is my mpd.conf file
> pptp:
>         new -i ng0 pptp pptp
>         set iface disable on-demand
>         set iface enable proxy-arp
>         set iface idle 1800
>         set bundle disable multilink
>         set link yes acfcomp protocomp
>         set link no pap chap
>         set link enable chap
>         set link keep-alive 10 60
>         set ipcp yes vjcomp
>         set ipcp ranges 192.168.1.1/32 192.168.1.220/32
>         set ipcp dns 216.111.65.217
> #
> # The five lines below enable Microsoft Point-to-Point encryption
> # (MPPE) using the ng_mppc(8) netgraph node type.
> #
>         set bundle enable compression
>         set ccp yes mppc
>         set ccp yes mpp-e40
> 

I believe you will find that proxy arp does not work with mpd.
You will need to have one of the machines on your LAN do
a proxy arp, saying that the MPD address is reachable via the
mac address of the machine running mpd. Othewise, the other
machines on the LAN don't know how to reply to the pings.

-Jim



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0105172237340.12780-100000>