Date: Wed, 01 Feb 2012 21:23:39 +0700 From: Eugene Grosbein <eugen@grosbein.pp.ru> To: "Eric W. Bates" <ericx@ericx.net> Cc: freebsd-net@FreeBSD.org, Doug Barton <dougb@FreeBSD.org> Subject: Re: allowing gif thru ipfw Message-ID: <4F294AEB.3060405@grosbein.pp.ru> In-Reply-To: <4F294839.6060803@ericx.net> References: <4F28C168.9010206@ericx.net> <4F28E1C7.4060209@grosbein.pp.ru> <4F28F284.7070301@FreeBSD.org> <4F294839.6060803@ericx.net>
next in thread | previous in thread | raw e-mail | index | archive | help
01.02.2012 21:12, Eric W. Bates пишет: > On 2/1/2012 3:06 AM, Doug Barton wrote: >> If it's a hurricane electric tunnel don't you want protocol 41? > > Well, it's a straight up gif. Right this second I'm trying to suss out > which protocol gif's use. If it's documented, I can't find it. The > closest bit I can find on the man page is: > > The behavior of gif is mainly based on RFC2893 IPv6-over-IPv4 configured > tunnel. > > I tried to read the pertinent parts of the RFC, but it doesn't really > discuss "type" or "protocol". It does talk about some header size issues. > > Since ipfw is obviously blocking something and I can't get a handle on > it with tcpdump, I'm groping for an understanding of the shape of the > gif packets. Have you tried "tcpdump -i em_vlan5 -nnvvs0 host $he_tun and not tcp and not udp and not icmp" ? I do not use IPv6 over IPv4 tunnels and not sure. Perhaps, that is IPIP protocol (number 94 decimal)? Eugene Grosbein
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4F294AEB.3060405>