From owner-freebsd-net Fri Jan 4 19:45:12 2002 Delivered-To: freebsd-net@freebsd.org Received: from InterJet.dellroad.org (adsl-63-194-81-26.dsl.snfc21.pacbell.net [63.194.81.26]) by hub.freebsd.org (Postfix) with ESMTP id 8A86E37B41D for ; Fri, 4 Jan 2002 19:45:08 -0800 (PST) Received: from arch20m.dellroad.org (arch20m.dellroad.org [10.1.1.20]) by InterJet.dellroad.org (8.9.1a/8.9.1) with ESMTP id TAA64335; Fri, 4 Jan 2002 19:35:15 -0800 (PST) Received: (from archie@localhost) by arch20m.dellroad.org (8.11.6/8.11.6) id g053ZFo26297; Fri, 4 Jan 2002 19:35:15 -0800 (PST) (envelope-from archie) From: Archie Cobbs Message-Id: <200201050335.g053ZFo26297@arch20m.dellroad.org> Subject: Re: netgraph kernel panic In-Reply-To: <20020104085712.GA88991@cairo.zsat.net> "from Scott Lamb at Jan 4, 2002 02:57:12 am" To: Scott Lamb Date: Fri, 4 Jan 2002 19:35:15 -0800 (PST) Cc: Archie Cobbs , freebsd-net@freebsd.org X-Mailer: ELM [version 2.4ME+ PL88 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Scott Lamb writes: > Looks like I have a slightly different situation than you're describing. > I'm not specifying a "set ipcp ranges" anywhere. The peer chooses an > inside address that's different from but within the same /24 as its > outside address. I'm trying to run everything within two /16s over the > VPN (which include those addresses). So I guess I'm getting the same > routing loop but in a slightly more complicated way. Yes.. the problem happens when the route to the outside IP address goes over the PPTP tunnel.. you get an "infinite encapsulation loop". > Taking out my "set iface route" lines in mpd.conf made it no longer > crash and I can talk to just the VPN host. So I tried next a "route add > vpnhost mygw" before starting the VPN. It worked. So that's definitely > the problem. It would be nice if there were a slicker way of doing this > (mpd automatically adding that route if this situation occurs?), > especially since I'm on DHCP. And it does make me nervous that mpd can > make the kernel crash at all. But I can at least work around this now. You are right, kernel crashing is always bogus no matter how it happens. Mpd adding a host route for the remote IP is a good idea, I didn't think of that. I'll try to add something to that effect when time permits. Really there are two things to fix: mpd as you describe, and ng_ksocket, which is where the crash originates. -Archie __________________________________________________________________________ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message