From owner-freebsd-virtualization@FreeBSD.ORG  Thu Oct  8 17:01:26 2009
Return-Path: <owner-freebsd-virtualization@FreeBSD.ORG>
Delivered-To: freebsd-virtualization@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 4149C1065692
	for <freebsd-virtualization@freebsd.org>;
	Thu,  8 Oct 2009 17:01:26 +0000 (UTC)
	(envelope-from julian@elischer.org)
Received: from outC.internet-mail-service.net (outc.internet-mail-service.net
	[216.240.47.226])
	by mx1.freebsd.org (Postfix) with ESMTP id 22B1E8FC08
	for <freebsd-virtualization@freebsd.org>;
	Thu,  8 Oct 2009 17:01:26 +0000 (UTC)
Received: from idiom.com (mx0.idiom.com [216.240.32.160])
	by out.internet-mail-service.net (Postfix) with ESMTP id DCD359E3DF;
	Thu,  8 Oct 2009 10:01:25 -0700 (PDT)
X-Client-Authorized: MaGic Cook1e
X-Client-Authorized: MaGic Cook1e
X-Client-Authorized: MaGic Cook1e
Received: from julian-mac.elischer.org (home.elischer.org [216.240.48.38])
	by idiom.com (Postfix) with ESMTP id 92FE22D6028;
	Thu,  8 Oct 2009 10:01:25 -0700 (PDT)
Message-ID: <4ACE1AE8.60409@elischer.org>
Date: Thu, 08 Oct 2009 10:01:28 -0700
From: Julian Elischer <julian@elischer.org>
User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812)
MIME-Version: 1.0
To: "Ahrenholz, Jeffrey M" <jeffrey.m.ahrenholz@boeing.com>
References: <20091007002615.M76095@alentogroup.org>	<4ACBF0ED.2070905@elisch	er.org>	<20091007043721.M28730@alentogroup.org>	<4ACC2536.9030701@elischer.	org>	<4ACCE73A.5000502@elischer.org>	<20091007222310.M23322@alentogroup.org	>	<4ACD1A29.4070207@elischer.org><20091007234005.M40001@alentogroup.org>
	<4ACD3091.9000709@elischer.org>
	<FD98F9C3CBABA74E89B5D4B5DE0263B9250B79AE39@XCH-NW-12V.nw.nos.boeing.com>
In-Reply-To: <FD98F9C3CBABA74E89B5D4B5DE0263B9250B79AE39@XCH-NW-12V.nw.nos.boeing.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: "freebsd-virtualization@freebsd.org" <freebsd-virtualization@freebsd.org>
Subject: Re: can't find routing entry for network routes
X-BeenThere: freebsd-virtualization@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Discussion of various virtualization techniques FreeBSD supports."
	<freebsd-virtualization.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization>,
	<mailto:freebsd-virtualization-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-virtualization>
List-Post: <mailto:freebsd-virtualization@freebsd.org>
List-Help: <mailto:freebsd-virtualization-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization>,
	<mailto:freebsd-virtualization-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Oct 2009 17:01:26 -0000

Ahrenholz, Jeffrey M wrote:
>>> Will netgraph let you create a gif or other tunneling 
>> socket and plug 
>>> it in directly to the graph? Would the alternative be piping a 
>>> userland tunneling socket and ng_socket?
>> there is an ng_gif node but I've never used it.
>>
>> look in /usr/src/sys/netgraph to see what exists. They are 
>> supposed to all have man pages.
>>
>> I like mpd for tunneling..
>> it is a higher level user of netgraph.
> 
> Another good one is ng_ksocket(4), which you can use to directly connect the netgraph systems of two different kernels across the network. It behaves like a bare-bones tunnel where the netgraph data is sent directly over UDP or TCP.
> 
> -Jeff


in fact mpd knows how to use ksockets to do just that when it usws tcp 
or udp as a transport mechanism for it's ppp stream.

I have also used ksockets directly and used ipsec to encrypt the outer 
layer..