From owner-freebsd-net@FreeBSD.ORG  Wed Nov 12 20:57:46 2008
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 8A0F01065672
	for <freebsd-net@freebsd.org>; Wed, 12 Nov 2008 20:57:46 +0000 (UTC)
	(envelope-from sclark46@earthlink.net)
Received: from elasmtp-masked.atl.sa.earthlink.net
	(elasmtp-masked.atl.sa.earthlink.net [209.86.89.68])
	by mx1.freebsd.org (Postfix) with ESMTP id 3C6978FC12
	for <freebsd-net@freebsd.org>; Wed, 12 Nov 2008 20:57:45 +0000 (UTC)
	(envelope-from sclark46@earthlink.net)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=dk20050327; d=earthlink.net;
	b=g99XYPf35+mvkOgA7soFmsryy80fc5TLrdFe8bN8Uc02ERynJRA//UP5pcDUZcm3;
	h=Received:Message-ID:Date:From:Reply-To:User-Agent:MIME-Version:To:CC:Subject:References:In-Reply-To:Content-Type:Content-Transfer-Encoding:X-ELNK-Trace:X-Originating-IP;
Received: from [208.118.36.229] (helo=joker.seclark.com)
	by elasmtp-masked.atl.sa.earthlink.net with esmtpsa
	(TLSv1:AES256-SHA:256) (Exim 4.67)
	(envelope-from <sclark46@earthlink.net>)
	id 1L0MmU-0008Ex-TU; Wed, 12 Nov 2008 15:57:42 -0500
Message-ID: <491B4345.80106@earthlink.net>
Date: Wed, 12 Nov 2008 15:57:41 -0500
From: Stephen Clark <sclark46@earthlink.net>
User-Agent: Thunderbird 2.0.0.16 (X11/20080723)
MIME-Version: 1.0
To: Julian Elischer <julian@elischer.org>
References: <491B2703.4080707@earthlink.net> <491B31F7.30200@elischer.org>
In-Reply-To: <491B31F7.30200@elischer.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-ELNK-Trace: a437fbc6971e80f61aa676d7e74259b7b3291a7d08dfec7992430d40651525e94b78ffce2a5c7506350badd9bab72f9c350badd9bab72f9c350badd9bab72f9c
X-Originating-IP: 208.118.36.229
Cc: freebsd-net@freebsd.org
Subject: Re: FreeBSD 6.3 gre and traceroute
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: sclark46@earthlink.net
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Nov 2008 20:57:46 -0000

Julian Elischer wrote:
> Stephen Clark wrote:
>> Hi,
>>
>> When I run traceroute thru a gre it doesn't seem to decrement the
>> ttl, so I get * * * for that hop. Can this be fixed?
>>
>> Thanks,
>> Steve
> 
> you will need to define the setup and question better.
> 
> TTL is controlled by the IP stack which is unaware of which interface
> it came in on and doesn't care which interface it goes out on. That 
> includes GRE interfaces.. Is it freebsd at both ends?
> 
> 
> BTW * * * would come from an EXTRA decrement
> _______________________________________________
> freebsd-net@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
> 

FreeBSD workstation 10.0.129.1<-->10.0.128.1 Freebsd FW "A" with gre over ipsec 
tunnel<---->FreeBSD FW "B" with gre over ipsec tunnel 192.168.3.1<--->
192.168.3.86 linux workstation

$ sudo traceroute 192.168.3.86
traceroute to 192.168.3.86 (192.168.3.86), 64 hops max, 40 byte packets
  1  HQFirewallRS.com (10.0.128.1)  0.575 ms  0.423 ms  0.173 ms
  2  * * *
  3  192.168.3.86 (192.168.3.86)  47.972 ms  45.174 ms  49.968 ms

No response from the FreeBSD "B" box.

When I do a tcpdump on "B" of the gre interface I see UDP packets
with a TTL of 1 but no ICMP repsonse packets being sent back.

If I do the traceroute from the linux workstation 192.168.3.86 I get
similar results - I don't see a response from the FreeBSD "A" box.

Regards,
Steve
-- 

"They that give up essential liberty to obtain temporary safety,
deserve neither liberty nor safety."  (Ben Franklin)

"The course of history shows that as a government grows, liberty
decreases."  (Thomas Jefferson)