Date: Mon, 19 Jan 2009 09:43:45 -0200 From: "Luiz Otavio O Souza" <lists.br@gmail.com> To: "Randy Bush" <randy@psg.com>, <freebsd-net@freebsd.org> Subject: Re: arp_proxy: ignoring request Message-ID: <57035D79EA5741B58D56B9C514B934EA@adnote989> References: <4973F9AE.8080209@psg.com> <6B3AC73E801141BFB11EE7CA33E74D94@adnote989> <49745F92.90806@psg.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> On 09.01.19 20:05, Luiz Otavio O Souza wrote:
>>> soekris 5501 8-current Jan 15 13:08 GMT, post arp changes
>>>
>>> FreeBSD soek0.psg.com 8.0-CURRENT FreeBSD 8.0-CURRENT #4: Thu Jan 15
>>> 14:15:24 UTC 2009 root@soek0.psg.com:/usr/obj/usr/src/sys/SOEK0 i386
>>>
>>> Jan 18 00:00:04 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:02:10 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:02:23 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:08:06 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.12 via wlan0, expecting bridge0
>>> Jan 18 00:08:10 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:12:22 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.30 via wlan0, expecting bridge0
>>> Jan 18 00:14:10 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:19:26 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:19:39 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.28 via vr3, expecting bridge0
>>> Jan 18 00:20:10 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:23:13 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>>
>>> .----------------.
>>> | |
>>> | b --wlan0|
>>> | r | 192.168.0.0/24
>>> ext iij | i --- vr1| LAN hosts,
>>> PPP/NAT ---|vr0--- d | DHCP Clients
>>> WAN | g --- vr2| pptp 200-209
>>> | e | ,..
>>> | 0 --- vr3|
>>> | |
>>> `----------------'
>>>
>>> wlans_ath0=wlan0
>>> create_args_wlan0="wlanmode hostap channel 11 ssid rgnet-aden wep
>>> wepkey yourekidding weptxkey 1 media autoselect mode 11g up"
>>> cloned_interfaces=bridge0
>>> ifconfig_bridge0="192.168.0.1 addm vr1 addm vr2 addm vr3 addm wlan0
>>> addm wlan1 up"
>>> ifconfig_vr1=up
>>> ifconfig_vr2=up
>>> ifconfig_vr3=up
>>> gateway_enable=YES
>>> pptpd_enable=YES
>>> arpproxy_all=YES
>>
>> Why are you using arpproxy with bridge ? the bridge shoudn't do it ?
>
> blindly following poptop instructions i found somewhere. should i nuke
> it?
>
> randy
Yeah, this is not need in an environment like yours.
You need the proxy arp only for pptp connections (vpns). this will make the
peer address looks like it is on your local network.
As long as i know, the proxy arp for ppp(8) is broken, but you can use this
as a workaround for this. This bug is on my todo list...
Create these two scripts:
# cat /usr/local/sbin/vpn_on.sh
#!/bin/sh
/usr/sbin/arp -s "${1}" 00:15:17:1c:91:a8 pub
# cat /usr/local/sbin/vpn_off.sh
#!/bin/sh
/usr/sbin/arp -d "${1}"
And set these two files:
# cat /etc/ppp/ppp.linkup
pptp:
!bg /usr/local/sbin/vpn_on.sh HISADDR
# cat /etc/ppp/ppp.linkdown
pptp:
!bg /usr/local/sbin/vpn_off.sh HISADDR
Set the correct label on ppp.linkup and ppp.linkdown files and the bridge0
mac address on vpn_on. the 00:15:17:1c:91:a8 is my internal nic.
Anyway put the enable proxy on /etc/ppp.conf (it is not working now, but i
expect to see this working soon).
Luiz
ps: redirecting to freebsd-net@ as this has nothing to do with current.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?57035D79EA5741B58D56B9C514B934EA>