Re: routing question

2005-09-02 Thread . 
[ Charset ISO-8859-1 unsupported, converting... ]
> ifconfig xl1 xxx.xxx.xxx.63/27
> sysctl net.link.ether.inet.proxyall=1
> 
> And use xxx.xxx.xxx.32/27 in internal net for the customers
> with default gateway xxx.xxx.xxx.63.
> 
> Swap masks if you want more then /27 for customers:
> 
> nic 1: xl0, xxx.xxx.xxx.2/30
> nic 2: xl1, xxx.xxx.xxx.63/27
> 
> and net.link.ether.inet.proxyall=1
> 
> I can't subnet. the public static addresses are arbitrary, and there are 
> also other servers which I have no control of. that's why I'm trying to use 
> static routes with /32's. can it be done that way?
Sorry, may be my English is bad, but I do not untestand.

Are all that servers with public static addresses
in xxx.xxx.xxx.0/26 ?
If yes, then second method works.

Try to guess.
You had net without router, directly connected to ISP?
And try to put router into working environment?

Then second method works exluding xxx.xxx.xxx.3

___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: dhclient and ADSL modem trouble...

2005-09-02 Thread Marcin Jessa 
On Thu, 01 Sep 2005 11:31:20 +
"Digital Brain" <[EMAIL PROTECTED]> wrote:

> Hi Chris,
> 
> >Linux and freebsd you re trying,  running on same hardware (nic) ?
> >I'm saying that cause some ISPs lock their  "IP-offering"
> >with each client's hardware address (which is defined at first use).
> 
> Linux is on my laptop (and works ok), while freebsd is on another machine.
> I had thought of that and so I tried the following:
>1. while I had a connection from the laptop with an assigned ip, I pulled 
> out
>the cable and connected it to the freebsd machine.
>2. I changed the IP to the one assigned on the laptop (ed0 interface)
>3. I added the gateway via /sbin/route and modified /etc/resolv.conf.
> 
>--> Now, this works ok, so I know the ISP is not locking the session 
> based
>  on the MAC address (since I didn't spoof that on FreeBSD).
> 
> So, the problem remains: dhcp doesn't work from the freebsd machine...
> 

Those are two different things.
MAC address can be blocked for new DHCP offer but firewall does not need to 
block MAC addresses that do not exist in the DHCP lease.
The firewall may be blocking an IP which is not existing in the DHCP lease and 
in your case it's propably there.
Check the lease time for your client.
Also try to assign an IP to your PC that's not the same one as the one handed 
you out by DHCP server and see if you can still ping outside.
Try to upgrade to 6.0 and see if the new DHCP client works.

Cheers
Marcin
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

poptop problem ...

2005-09-02 Thread Mircea Popescu 
Hi!
 I followed the instructions listed at
http://linux-bsd-central.com/index.php/content/view/8/
 and I've adapted 
the configuration files to my situation. Also, the firewall is totally down, 
every port is accessible (this is verified).
 I get the following error message in /var/log/messages:
 GRE: read(fd=8,buffer=804d520,len=8196) from PTY failed: status = 0 error = 
No error
CTRL: PTY read or GRE write failed (pty,gre)=(8,6)
 On the windows side, when I try to establish a connection I get "Verifying 
name and password ..." after which the following error message is displayed: 

 "ERROR 619: a connection to the remote computer cannot be established, so 
the port used for connection was closed."
 Can anyone help?
 thx
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Compressing/decompressing traffic & cache & unchanged ip

2005-09-02 Thread Oleksandr Samoylyk 
Hello World!

I've a "strange" idea. Here I've outlined the plan:



Compress traffic   Uncompress traffic   Compress traffic
   here  & cache   here
  ___  _  ___
  |  | || |  |
--|  Router  | |  Our   | |  Router  |--
--| in city1 |>| ROUTER |<| in city2 |--
  |__| || |__|
  |
  |
  |
  |   |   |   |   |
 Our clients



So, let me describe the situation. We have our central router and 
several router in different places. Unfortunately, we haven't got a good 
connection to them. Our physical "link" to them is quite "narrow". 
Nevertheless, our "external" routers are good connected to the "world" 
(they have megabit uplinks). We can't at the moment got a better 
connection between them and our central router :(.
The ultimate aim is to speed up bandwidth for our clients by means of 
software :)
We had been using a transparent cache-server (Squid) for some time, but 
it has the problem (as all proxies have). It changes ips of clients.
I'd a sort of brain-wave :) and thought out the following:
- On those routers we compress traffic (how?)
- On our main router we decompress it and cache it (how?)
- Moreover, it should be done transparently and without substitution of ip for 
client. So client even don't "feel" that he/she is behind proxy or so...  So 
everywhere should be ip of user not Squid one. (how?)
- In addition to that it would be good to do this with HTTP and FTP as well...

I've heard about Layer 7 switches that IMHO can do this things...
I'd like to realize something like that on Unix.

I'll appreciate any help.

Thanks!

-- 
  Oleksandr Samoylyk
  OVS-RIPE

___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Compressing/decompressing traffic & cache & unchanged ip

2005-09-02 Thread John-Mark Gurney 
Oleksandr Samoylyk wrote this message on Fri, Sep 02, 2005 at 23:02 +0300:
> I've a "strange" idea. Here I've outlined the plan:
> 
> 
> 
> Compress traffic   Uncompress traffic   Compress traffic
>here  & cache   here
>   ___  _  ___
>   |  | || |  |
> --|  Router  | |  Our   | |  Router  |--
> --| in city1 |>| ROUTER |<| in city2 |--
>   |__| || |__|
>   |
>   |
>   |
>   |   |   |   |   |
>  Our clients
> 
> 
> 
> So, let me describe the situation. We have our central router and 
> several router in different places. Unfortunately, we haven't got a good 
> connection to them. Our physical "link" to them is quite "narrow". 
> Nevertheless, our "external" routers are good connected to the "world" 
> (they have megabit uplinks). We can't at the moment got a better 
> connection between them and our central router :(.
> The ultimate aim is to speed up bandwidth for our clients by means of 
> software :)
> We had been using a transparent cache-server (Squid) for some time, but 
> it has the problem (as all proxies have). It changes ips of clients.
> I'd a sort of brain-wave :) and thought out the following:
> - On those routers we compress traffic (how?)
> - On our main router we decompress it and cache it (how?)
> - Moreover, it should be done transparently and without substitution of ip 
> for client. So client even don't "feel" that he/she is behind proxy or so...  
> So everywhere should be ip of user not Squid one. (how?)
> - In addition to that it would be good to do this with HTTP and FTP as well...

ipsec has a layer that will do packet compression...   look at
-C calgo parameter to setkey(8), one of which is deflate..

-- 
  John-Mark Gurney  Voice: +1 415 225 5579

 "All that I will do, has been done, All that I have, has not."
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Compressing/decompressing traffic & cache & unchanged ip

2005-09-02 Thread Marcin Jessa 
Hi Oleksandr.

Maybe SCPS is something for you. It's originally designed for satellite links 
with latency problems.
I gathered some info about it. I suggest you to start reading 
http://www.yazzy.org/docs/SCPS/SCPS_GATEWAY_v1.2.1.doc
It was originally designed for FreeBSD and compiles cleanly on FreeBSD 6.x and 
7.x (CURRENT) with a few simple patches I made, which I can provide.

Cheers,
Marcin.



On Fri, 2 Sep 2005 23:02:45 +0300
Oleksandr Samoylyk <[EMAIL PROTECTED]> wrote:

> Hello World!
> 
> I've a "strange" idea. Here I've outlined the plan:
> 
> 
> 
> Compress traffic   Uncompress traffic   Compress traffic
>here  & cache   here
>   ___  _  ___
>   |  | || |  |
> --|  Router  | |  Our   | |  Router  |--
> --| in city1 |>| ROUTER |<| in city2 |--
>   |__| || |__|
>   |
>   |
>   |
>   |   |   |   |   |
>  Our clients
> 
> 
> 
> So, let me describe the situation. We have our central router and 
> several router in different places. Unfortunately, we haven't got a good 
> connection to them. Our physical "link" to them is quite "narrow". 
> Nevertheless, our "external" routers are good connected to the "world" 
> (they have megabit uplinks). We can't at the moment got a better 
> connection between them and our central router :(.
> The ultimate aim is to speed up bandwidth for our clients by means of 
> software :)
> We had been using a transparent cache-server (Squid) for some time, but 
> it has the problem (as all proxies have). It changes ips of clients.
> I'd a sort of brain-wave :) and thought out the following:
> - On those routers we compress traffic (how?)
> - On our main router we decompress it and cache it (how?)
> - Moreover, it should be done transparently and without substitution of ip 
> for client. So client even don't "feel" that he/she is behind proxy or so...  
> So everywhere should be ip of user not Squid one. (how?)
> - In addition to that it would be good to do this with HTTP and FTP as well...
> 
> I've heard about Layer 7 switches that IMHO can do this things...
> I'd like to realize something like that on Unix.
> 
> I'll appreciate any help.
> 
> Thanks!
> 
> -- 
>   Oleksandr Samoylyk
>   OVS-RIPE
> 
> ___
> freebsd-net@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"