From owner-freebsd-hackers Tue Feb 10 04:37:05 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA18874 for hackers-outgoing; Tue, 10 Feb 1998 04:37:05 -0800 (PST) (envelope-from owner-freebsd-hackers@FreeBSD.ORG) Received: from relay.ucb.crimea.ua (relay.ucb.crimea.ua [194.93.177.113]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA18811 for ; Tue, 10 Feb 1998 04:36:35 -0800 (PST) (envelope-from ru@relay.ucb.crimea.ua) Received: (from ru@localhost) by relay.ucb.crimea.ua (8.8.8/8.8.8) id OAA08546; Tue, 10 Feb 1998 14:33:11 +0200 (EET) (envelope-from ru) From: Ruslan Ermilov Message-Id: <199802101233.OAA08546@relay.ucb.crimea.ua> Subject: Re: IP tunnels ? once again probably In-Reply-To: <199802100834.CAA07013@bmccane.maxbaud.net> from "Wm Brian McCane" at "Feb 10, 98 02:34:30 am" To: root@bmccane.maxbaud.net (Wm Brian McCane) Date: Tue, 10 Feb 1998 14:33:10 +0200 (EET) Cc: brian@Awfulhak.org, ulf@Alameda.net, hackers@FreeBSD.ORG X-My-Interests: Unix,Oracle,Networking X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi, guys! If you want, take a look at http://www.ucb.crimea.ua/~ru/FreeBSD/iptunnel This program uses divert sockets and tunnels IP thru UDP. You can tunnel a whole network, a single host, and it can be done based on any firewall rule (e.g. on any combination of src/dst hosts). I've written this program to build a distributed Intranet network in our organization. We have four departments, each attached to some ISP, and we use only four real IP addresses to communicate with each other. And we use one logical intranet network. In the meantime, I'm planning to implement a crypto-feature. Let me know if you have a questions about how it works. Your feedback would be appreciated too. At the moment of writing there are 94 fetches of my program since Dec 13, 1997. Please use subject: IPTUNNEL if you have a questions about this program. Once Wm Brian McCane wrote: > > [.....] > > > So far, so good, everything works fine. Now I need to connect the offsite > > > hosts via an ip tunnel to the main location. The offsite has to start > > > the tunnel, as it has a dynamic address on the public. I tried several > > > things with ppp, iptunnel (2 different ones) and ssh, but all are not stable > > > nor user friendly. > > > > The latest ppp (-current, -stable and http://www.FreeBSD.org/~brian) > > has a full working example of a tunnel setup in the PPP OVER TCP > > section of the man page. There's also an example in ppp.conf.sample. > > > > > Has anyone come up with something simular ? Any pointers ? > > > > > > Ulf. > > > > > > --------------------------------------------------------------------- > > > Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 > > > Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 > > > > -- > > Brian , , > > > > Don't _EVER_ lose your sense of humour.... > > > > > Okay, > > I have a program I developed to implement an VPN for a customer. It > uses the tunnel drivers, and all you do is call it with the IP:port on the > host machine you wish to connect to. Each person's machine(s) would need to > be setup with a specific range of IP addresses on their end (I setup 2 zones > 192.168.1.* and 192.168.4.* which then routed to each other). This solution > as I already mentioned, will route entire LANs if you need them to: All you > need do is setup tun0, add a route to the other network via the tunnel, and > fire up the program. > > voila, > brian > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe hackers" in the body of the message > Regards, -- Ruslan A. Ermilov System Administrator ru@ucb.crimea.ua United Commercial Bank +380-652-247647 Simferopol, Crimea 2426679 ICQ Network, UIN To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe hackers" in the body of the message