On 09.01.19 20:05, Luiz Otavio O Souza wrote:
soekris 5501 8-current Jan 15 13:08 GMT, post arp changes
FreeBSD soek0.psg.com 8.0-CURRENT FreeBSD 8.0-CURRENT #4: Thu Jan 15
14:15:24 UTC 2009 r...@soek0.psg.com:/usr/obj/usr/src/sys/SOEK0 i386
Jan 18 00:00:04 soek0 kernel: arp_proxy: ignoring request from
192.168.0.10 via vr2, expecting bridge0
Jan 18 00:02:10 soek0 kernel: arp_proxy: ignoring request from
192.168.0.10 via vr2, expecting bridge0
Jan 18 00:02:23 soek0 kernel: arp_proxy: ignoring request from
192.168.0.10 via vr2, expecting bridge0
Jan 18 00:08:06 soek0 kernel: arp_proxy: ignoring request from
192.168.0.12 via wlan0, expecting bridge0
Jan 18 00:08:10 soek0 kernel: arp_proxy: ignoring request from
192.168.0.10 via vr2, expecting bridge0
Jan 18 00:12:22 soek0 kernel: arp_proxy: ignoring request from
192.168.0.30 via wlan0, expecting bridge0
Jan 18 00:14:10 soek0 kernel: arp_proxy: ignoring request from
192.168.0.10 via vr2, expecting bridge0
Jan 18 00:19:26 soek0 kernel: arp_proxy: ignoring request from
192.168.0.10 via vr2, expecting bridge0
Jan 18 00:19:39 soek0 kernel: arp_proxy: ignoring request from
192.168.0.28 via vr3, expecting bridge0
Jan 18 00:20:10 soek0 kernel: arp_proxy: ignoring request from
192.168.0.10 via vr2, expecting bridge0
Jan 18 00:23:13 soek0 kernel: arp_proxy: ignoring request from
192.168.0.10 via vr2, expecting bridge0
.----------------.
| |
| b --wlan0|
| r | 192.168.0.0/24
ext iij | i --- vr1| LAN hosts,
PPP/NAT ---|vr0--- d | DHCP Clients
WAN | g --- vr2| pptp 200-209
| e | ,..
| 0 --- vr3|
| |
`----------------'
wlans_ath0=wlan0
create_args_wlan0="wlanmode hostap channel 11 ssid rgnet-aden wep
wepkey yourekidding weptxkey 1 media autoselect mode 11g up"
cloned_interfaces=bridge0
ifconfig_bridge0="192.168.0.1 addm vr1 addm vr2 addm vr3 addm wlan0
addm wlan1 up"
ifconfig_vr1=up
ifconfig_vr2=up
ifconfig_vr3=up
gateway_enable=YES
pptpd_enable=YES
arpproxy_all=YES
Why are you using arpproxy with bridge ? the bridge shoudn't do it ?
blindly following poptop instructions i found somewhere. should i nuke
it?
randy
Yeah, this is not need in an environment like yours.
You need the proxy arp only for pptp connections (vpns). this will make the
peer address looks like it is on your local network.
As long as i know, the proxy arp for ppp(8) is broken, but you can use this
as a workaround for this. This bug is on my todo list...
Create these two scripts:
# cat /usr/local/sbin/vpn_on.sh
#!/bin/sh
/usr/sbin/arp -s "${1}" 00:15:17:1c:91:a8 pub
# cat /usr/local/sbin/vpn_off.sh
#!/bin/sh
/usr/sbin/arp -d "${1}"
And set these two files:
# cat /etc/ppp/ppp.linkup
pptp:
!bg /usr/local/sbin/vpn_on.sh HISADDR
# cat /etc/ppp/ppp.linkdown
pptp:
!bg /usr/local/sbin/vpn_off.sh HISADDR
Set the correct label on ppp.linkup and ppp.linkdown files and the bridge0
mac address on vpn_on. the 00:15:17:1c:91:a8 is my internal nic.
Anyway put the enable proxy on /etc/ppp.conf (it is not working now, but i
expect to see this working soon).
Luiz
ps: redirecting to freebsd-net@ as this has nothing to do with current.
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
