From owner-freebsd-net@freebsd.org Mon Apr 23 16:12:19 2018 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 99053FA5B20 for ; Mon, 23 Apr 2018 16:12:19 +0000 (UTC) (envelope-from johnllyon@gmail.com) Received: from mail-wr0-x233.google.com (mail-wr0-x233.google.com [IPv6:2a00:1450:400c:c0c::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 0D3C482789 for ; Mon, 23 Apr 2018 16:12:19 +0000 (UTC) (envelope-from johnllyon@gmail.com) Received: by mail-wr0-x233.google.com with SMTP id u18-v6so15594772wrg.3 for ; Mon, 23 Apr 2018 09:12:19 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=TD3ky5A0d5u1eREGZpk12pNGIVsDVlyI9UyahQ5C5/c=; b=Cli0Tr81tpB5E3au1Wow0OE3MHs9NBC9YK5YWpnz04OipiICKUmHu7F5WiIkdX6C98 duvWa/3NtF2f0JN3TBzqWk9jWWL70PE5CD2G73ZHrQ/4wqyfyipPK77vDW6gLjkOKEZ5 4sNYQAeQYffs6SLbipVd/HlPSlSKvEEl0UiC5YonJ1R5cLHU+IM2WHw7G0RULYzwXNAd KQBGnzfXe9KVQYZ2FVPlPS/v7oLKRA/bEtnhu7nohnpWUZQuwdtgTnhJqZaLnJ4fRJXi y/ptGt37VlhkZPfryl+4xPKlqFaSermwVgHvGLSRoQQStolXKXtQPVxSiMDu4hNuoLqz zycQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=TD3ky5A0d5u1eREGZpk12pNGIVsDVlyI9UyahQ5C5/c=; b=KcDeMoGoctD59w/MY+eAoujFvtp7hlrjSI3IWzEFysMY76CIq4hVgPPlTQwluR0Msc 2oUWOln+eWcGyn0Lbrs3fXAMnZyhnX/7HzG/Fz0Khgc3BtnMWGOm5Fp/j4OQB0Gxk1Xe JngGeuhMUzL8vBZObj4YZVJ045pLDWKGEgSd/IjZ29HKRJGdQ1l0YgkS0bA4HvYFYtPe 3KmLJg1QVoAGpW+3OSuXdYm3heZ1RYIDcBU420DKLHHh2HoSKffAZy8v4n2aI2SyRV6h ZMZI2xO24d4Cb0cEqZFjy+A9BT+syg7RARy9umO0dH6Ov5NISb5B42qec48THPziy9pz VBhA== X-Gm-Message-State: ALQs6tCzZ9wFMNiLIuew1Mp5QGbZi/E69xwpnB3yrKU3K4TnCB3zQudV 8d3z5txG4eT0IeaLUrH2ELIObURkzVkFByRLt0+qvA== X-Google-Smtp-Source: AIpwx48tRYvxu7cBswL5W3ZEiBE+wcmi+pUfCTtXx4KcquE/JuQjRMBnzU3+u/b30Gr9ByjZVxS/ha3quBEyG/1wjgE= X-Received: by 10.80.145.221 with SMTP id h29mr29147853eda.3.1524499937943; Mon, 23 Apr 2018 09:12:17 -0700 (PDT) MIME-Version: 1.0 Received: by 10.80.206.81 with HTTP; Mon, 23 Apr 2018 09:11:57 -0700 (PDT) In-Reply-To: <1524372774786-0.post@n6.nabble.com> References: <2e0525c8-2251-a5f5-45d1-fe44ebe318f7@freebsd.org> <4fee4ea6-9b35-afba-6d5d-24ecca3e28c6@freebsd.org> <3b8d46da-75e3-79f2-379c-b27a88e80733@freebsd.org> <47C0E33A-E815-4860-A25C-F29BBB8D6787@gmail.com> <1524372774786-0.post@n6.nabble.com> From: John Lyon Date: Mon, 23 Apr 2018 12:11:57 -0400 Message-ID: Subject: Re: Need Netgraph Help [fixed] To: GPz1100a Cc: freebsd-net@freebsd.org Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.25 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Apr 2018 16:12:19 -0000 If you found that thread, you found my answer. :-) I'm one of the posters on that particular PFSense thread. In short summary, I have a theory that should work but I haven't tested it yet due to a lack of opportunity. The netgraph code that forwards the EAP-OL traffic works. The problem is handling the fact that ATT tags all traffic as VLAN ID 0, which FreeBSD's vlan interface does not support. I filed a bug report on the matter, but was told "use Netgraph". Basically, you either have to add/remove the vlan 0 tag since you can't create a virtual interface on vlan 0 like you can in Linux. -------------------------------- John L. Lyon PGP Key Available At: https://www.dropbox.com/s/skmedtscs0tgex7/02150BFE.asc On Sun, Apr 22, 2018 at 12:52 AM, GPz1100a wrote: > @John > > Did you ever get this fully figured out? I'm trying to do what I think is > the same thing with my fiber internet connection - eliminate the need to > use > the isp provided gateway (or at least reduce its function). I'm running > *opnsense*. This thread > https://forum.pfsense.org/index.php?topic=111043.msg793292#msg793292 is > what > led me here. > > Three nics correspond to the following > > em0 - ONT (WAN) > xl0 - 3com pci - isp provided residential gateway (RG) > ue0 - usb nic - LAN > > Using Julian's code from Jan 06, 2018; 1:39pm, > > ngctl mkpeer em0: etf lower downstream > ngctl name em0:lower waneapfilter > ngctl connect waneapfilter: em0: nomatch upper > > ngctl mkpeer xl0: etf lower downstream > ngctl name xl0:lower laneapfilter > ngctl connect laneapfilter: xl0: nomatch upper > > * ngctl connect waneapfilter laneapfilter eapout eapout* > > ngctl msg waneapfilter: 'setfilter { matchhook="eapout" > ethertype=0x888e }' > ngctl msg laneapfilter: 'setfilter { matchhook="eapout" > ethertype=0x888e }' > > When I get to the command in bold it comes back with this error: > > root@OPNsense:~ # ngctl connect waneapfilter laneapfilter eapout > eapout > ngctl: send msg: No such file or directory > > I'm not sure how to proceed from here. > > Thanks for any help you (or others) can offer. > > --J > > > > > -- > Sent from: http://freebsd.1045724.x6.nabble.com/freebsd-net-f4005075.html > _______________________________________________ > freebsd-net@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" >