Date: Fri, 18 Jul 2008 00:05:28 -0400 From: "Chris Buechler" <cbuechler@gmail.com> To: "Ansar Mohammed" <ansarm@gmail.com> Cc: freebsd-pf@freebsd.org Subject: Re: GRE Limitation Message-ID: <d64aa1760807172105n29c9cb67k757d3ea38b3a5958@mail.gmail.com> In-Reply-To: <048f01c8e889$160fffd0$422fff70$@com> References: <047001c8e87d$8078b710$816a2530$@com> <d64aa1760807172036u7f41fc7ctcc8563dd75372211@mail.gmail.com> <048f01c8e889$160fffd0$422fff70$@com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Jul 17, 2008 at 11:48 PM, Ansar Mohammed <ansarm@gmail.com> wrote: > Is this like "a known bug" that's being fixed or is this "by design" and we > have to deal with it? > It's not a bug. If you search the OpenBSD list archives you'll find plenty of discussion on it. There are proxies that are supposed to work around this, like Frickin PPTP. It's not highly regarded by the OpenBSD community apparently (not sure why, saw that in passing in their list archives at one point), and it doesn't work right on FreeBSD (if any OS?). There may be other proxy alternatives, I'm not aware of any that work. Ermal Luci, a pfSense and FreeBSD committer, has been working on improved state tracking for GRE that would eliminate this limitation. Not sure of the status other than it's not done. If/when it's finished it'll be in pfSense development releases first, maybe integrated into the BSDs later or possibly not. Chris
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?d64aa1760807172105n29c9cb67k757d3ea38b3a5958>