From owner-freebsd-net@FreeBSD.ORG  Tue Mar 30 19:54:49 2010
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id B4985106564A
	for <freebsd-net@freebsd.org>; Tue, 30 Mar 2010 19:54:49 +0000 (UTC)
	(envelope-from spawk@acm.poly.edu)
Received: from acm.poly.edu (acm.poly.edu [128.238.9.200])
	by mx1.freebsd.org (Postfix) with ESMTP id 53BF58FC17
	for <freebsd-net@freebsd.org>; Tue, 30 Mar 2010 19:54:48 +0000 (UTC)
Received: (qmail 75476 invoked from network); 30 Mar 2010 19:54:48 -0000
Received: from unknown (HELO ?10.0.0.170?) (spawk@128.238.64.31)
	by acm.poly.edu with AES256-SHA encrypted SMTP;
	30 Mar 2010 19:54:48 -0000
Message-ID: <4BB256D8.5080106@acm.poly.edu>
Date: Tue, 30 Mar 2010 15:54:00 -0400
From: Boris Kochergin <spawk@acm.poly.edu>
User-Agent: Thunderbird 2.0.0.24 (X11/20100330)
MIME-Version: 1.0
To: "J. English" <j_english@kawasaki-tn.com>
References: <005801cad03c$5f5128d0$1df37a70$@kawasaki-tn.com>
In-Reply-To: <005801cad03c$5f5128d0$1df37a70$@kawasaki-tn.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-net@freebsd.org
Subject: Re: Workaround for mpd5 and 8.0 broken proxy arp?
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Mar 2010 19:54:49 -0000

J. English wrote:
> Hello All,
>
> I've recently set up a FreeBSD 8.0 VPN server with mpd5 for people to
> connect remotely.  However, looking at my mpd.log shows that I'm having
> problems with proxy-arp:
> 	[B-1] IFACE: No interface to proxy arp on for 192.168.1.185
>
> In googling for solutions, I came across others who have posted to this list
> who have had similar problems.  It also looks like a problem report has been
> submitted for proxy arp being broken in 8.0 RELENG.
>
> My options are 1) to wait until proxy arp is fixed (don't know how long that
> will take), or 2) go back and implement my VPN using 7.2 (would require a
> lot of effort).  I was wondering if anyone else could suggest other
> alternatives that would allow my external clients to access my intranet
> without proxy arp.
>   
How about a userspace implementation of proxy ARP, like the one in the 
choparp/pkg-descr port?

-Boris