From owner-freebsd-net@FreeBSD.ORG Tue Mar 30 19:55:42 2010 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6A9E31065670 for ; Tue, 30 Mar 2010 19:55:42 +0000 (UTC) (envelope-from spawk@acm.poly.edu) Received: from acm.poly.edu (acm.poly.edu [128.238.9.200]) by mx1.freebsd.org (Postfix) with ESMTP id 8995F8FC25 for ; Tue, 30 Mar 2010 19:55:41 +0000 (UTC) Received: (qmail 75623 invoked from network); 30 Mar 2010 19:55:41 -0000 Received: from unknown (HELO ?10.0.0.170?) (spawk@128.238.64.31) by acm.poly.edu with AES256-SHA encrypted SMTP; 30 Mar 2010 19:55:41 -0000 Message-ID: <4BB2570E.6040402@acm.poly.edu> Date: Tue, 30 Mar 2010 15:54:54 -0400 From: Boris Kochergin User-Agent: Thunderbird 2.0.0.24 (X11/20100330) MIME-Version: 1.0 To: "J. English" References: <005801cad03c$5f5128d0$1df37a70$@kawasaki-tn.com> <4BB256D8.5080106@acm.poly.edu> In-Reply-To: <4BB256D8.5080106@acm.poly.edu> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: Workaround for mpd5 and 8.0 broken proxy arp? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Mar 2010 19:55:42 -0000 Boris Kochergin wrote: > J. English wrote: >> Hello All, >> >> I've recently set up a FreeBSD 8.0 VPN server with mpd5 for people to >> connect remotely. However, looking at my mpd.log shows that I'm having >> problems with proxy-arp: >> [B-1] IFACE: No interface to proxy arp on for 192.168.1.185 >> >> In googling for solutions, I came across others who have posted to >> this list >> who have had similar problems. It also looks like a problem report >> has been >> submitted for proxy arp being broken in 8.0 RELENG. >> >> My options are 1) to wait until proxy arp is fixed (don't know how >> long that >> will take), or 2) go back and implement my VPN using 7.2 (would >> require a >> lot of effort). I was wondering if anyone else could suggest other >> alternatives that would allow my external clients to access my intranet >> without proxy arp. >> > How about a userspace implementation of proxy ARP, like the one in the > choparp/pkg-descr port? > > -Boris > Oops. I meant the net-mgmt/choparp port. -Boris