Date: Wed, 01 Feb 2012 09:15:15 -0500 From: "Eric W. Bates" <ericx@ericx.net> To: Hajimu UMEMOTO <ume@freebsd.org> Cc: freebsd-net@freebsd.org Subject: Re: allowing gif thru ipfw Message-ID: <4F2948F3.1060408@ericx.net> In-Reply-To: <yge1uqft0md.wl%ume@mahoroba.org> References: <4F28C168.9010206@ericx.net> <yge1uqft0md.wl%ume@mahoroba.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2/1/2012 3:32 AM, Hajimu UMEMOTO wrote:
> Hi,
> ericx> Am I even correct in assuming that my gif packets are being blocked?
>
> Are you trying to pass an IPv6 over IPv4 tunnel? If so,
>
> $fwcmd add 00140 allow ip4 from $he_tun to me proto ipv6
> $fwcmd add 00141 allow ip4 from me to $he_tun proto ipv6
>
> should work for you.
Yes, I'm trying to tunnel in ipv6 from HE.
Really? I'm allowing ipv6 packets on the gif0 interface; but not on the
lan interface simply because I assumed that like IPSec the encapsulated
packets would not be seen as ipv6 on the ethernet interface?
> Sincerely,
>
> --
> Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan
> ume@mahoroba.org ume@{,jp.}FreeBSD.org
> http://www.imasy.org/~ume/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4F2948F3.1060408>