From owner-freebsd-questions@FreeBSD.ORG Wed May 28 14:17:59 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B4235106568A for ; Wed, 28 May 2008 14:17:59 +0000 (UTC) (envelope-from itmngr@cooperationireland.org) Received: from smtp3.irishbroadband.ie (smtp3.irishbroadband.ie [62.231.32.16]) by mx1.freebsd.org (Postfix) with ESMTP id 61FCF8FC1B for ; Wed, 28 May 2008 14:17:59 +0000 (UTC) (envelope-from itmngr@cooperationireland.org) Received: from [62.231.53.178] (helo=mail.cooperationireland.org) by smtp3.irishbroadband.ie with esmtps (TLSv1:AES256-SHA:256) (Exim 4.67 (FreeBSD)) (envelope-from ) id 1K1LlG-000J15-GG for freebsd-questions@freebsd.org; Wed, 28 May 2008 14:32:14 +0100 Received: from [199.107.1.116] ([87.192.228.253]) (authenticated bits=0) by mail.cooperationireland.org (8.14.2/8.13.6) with ESMTP id m4SDmiWD012359 for ; Wed, 28 May 2008 14:48:46 +0100 (IST) (envelope-from itmngr@cooperationireland.org) Message-Id: From: Michael Doyle To: FreeBSD Mailing List Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v919.2) Date: Wed, 28 May 2008 14:51:13 +0100 X-Mailer: Apple Mail (2.919.2) X-Virus-Scanned: ClamAV 0.91.1/7254/Tue May 27 11:10:59 2008 on mail.cooperationireland.org X-Virus-Status: Clean X-Spam-Status: No, score=-102.5 required=5.0 tests=AWL,BAYES_00,RDNS_NONE, USER_IN_WHITELIST autolearn=no version=3.2.4 X-Spam-Checker-Version: SpamAssassin 3.2.4 (2008-01-01) on mail.cooperationireland.org X-Scan-Signature: 3155d5088c1405296cf286ff761a0124 Subject: Need help with multicast routing over VPN X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 28 May 2008 14:17:59 -0000 My organisation has successfully used FreeBSD to set up a VPN between three sites. Now, in order to facilitate a phone system using VOIP between two of those sites, I have attempted to enable multi-cast routing between those sites. I looked at the mrouted manual, and attempted to configure it properly insofar as I understood it. I also re-compiled the kernels of the firewalls to enable multicast routing. I have not succeeded in getting the phone systems to see eachothers' multicast packets, and after several attempts, all I have done is to crash the firewalls, and annoy my staff members. If someone has done this sort of thing before, I would be prepared to send my config files to them for review (/etc/rc.conf, /etc/ipsec.conf, /etc/mrouted.conf, /usr/ local/etc/racoon/racoon.conf and /etc/rc.firewall are the files I think are of interest). Both systems are running FreeBSD 6.3-stable as of friday of last week. Mike