On 6/23/10, Randall Stewart wrote:
> Then I would strongly suggest you go fix the manual page for ntohl/
> ntohs and
> point people to the be64toh() functions... then people would NOT be
> ignorant.
>
> The problem is there is NO clue in the system...
Already done, at least in 7.2. But it refers
a host sees these kinds of messages
Jun 7 00:20:41 r2 kernel: IPv4 address: "98.128.0.1" is not on the network
Jun 7 03:38:00 r2 kernel: IPv4 address: "98.128.0.2" is not on the network
Jun 7 04:32:08 r2 kernel: IPv4 address: "98.128.0.1" is not on the network
Jun 7 06:55:12 r2 kernel: IPv4 ad
Hi
I was wondering if someon knew if FreeBSD supports the creation of
anycast addresses and groups.
Thanks,
Paul
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-ne
On 6/22/2010 3:55 PM, r...@dzie-ciuch.pl wrote:
I managed to do an IP in IP tunnel with IPsec encryption between a
FreeBSD and a cisco router running 12.1(mumble) several years ago.
It is a desirable option if you want to use routing (e.g. ospf). You
can't route an IPSec tunnel (actually, is th
On Jun 23, 2010, at 12:41 PM, Julian Elischer wrote:
On 6/23/10 10:12 AM, Luigi Rizzo wrote:
On Wed, Jun 23, 2010 at 09:50:26AM -0700, Randall Stewart wrote:
...
strong objection!
We should instead use names with exact sizes (16,32,64).
So please tell me why you object so strongly? We have
On 6/23/10 10:12 AM, Luigi Rizzo wrote:
On Wed, Jun 23, 2010 at 09:50:26AM -0700, Randall Stewart wrote:
...
strong objection!
We should instead use names with exact sizes (16,32,64).
So please tell me why you object so strongly? We have the 16/32/64 bit
names which
are nice but are not expect
On Wed, Jun 23, 2010 at 09:50:26AM -0700, Randall Stewart wrote:
...
> >>strong objection!
> >>We should instead use names with exact sizes (16,32,64).
>
> So please tell me why you object so strongly? We have the 16/32/64 bit
> names which
> are nice but are not expected so folks seem to not us
Bruce:
Comments (and questions in-line)... (you too Luigi)
On Jun 23, 2010, at 6:33 AM, Bruce Evans wrote:
On Wed, 23 Jun 2010, Luigi Rizzo wrote:
On Tue, Jun 22, 2010 at 05:46:02PM -0400, Randall Stewart wrote:
Hi all:
I have had some fun in my day job playing with exchanging 64bit
numb
On Wed, 23 Jun 2010, Luigi Rizzo wrote:
On Tue, Jun 22, 2010 at 05:46:02PM -0400, Randall Stewart wrote:
Hi all:
I have had some fun in my day job playing with exchanging 64bit
numbers. Unfortunately
there is no ntohll() OR htonll() which would be the logical thing (for
us old farts) to use.
But its working!!
Ralf
On Wed, 23 Jun 2010 13:34:52 +0200, Maciej Suszko
wrote:
> wrote:
>>
>> Hmmm,
>>
>> Maybe I do some error using gateway 10.20.0.1?
>> Maybe I have to set something in route to network 10.10.1.x go
>> throught gif0 interface?
>
> First of all, find out what the other
Thanks guys it's working.
I couldn't ping 10.10.1.90 (external network) but they could ping me.
I got another question: How to set another tunnel to me host like:
10.20.0.1 (my gif0) --> 78.x.x.x (my bce1) <---> 78.y.y.y <--> 10.20.1.1
I copy 2 lines (with changing ip's) so now i got 4 lines
wrote:
>
> Hmmm,
>
> Maybe I do some error using gateway 10.20.0.1?
> Maybe I have to set something in route to network 10.10.1.x go
> throught gif0 interface?
First of all, find out what the other side configuration is. My
configuration was only proposal.
--
regards, Maciej Suszko.
_
Hmmm,
Maybe I do some error using gateway 10.20.0.1?
Maybe I have to set something in route to network 10.10.1.x go throught
gif0 interface?
Ralf
On Wed, 23 Jun 2010 10:58:31 +0200, VANHULLEBUS Yvan
wrote:
> On Wed, Jun 23, 2010 at 10:52:19AM +0200, r...@dzie-ciuch.pl wrote:
> []
>> When
On Wed, Jun 23, 2010 at 10:52:19AM +0200, r...@dzie-ciuch.pl wrote:
[]
> When on one console i type tcpdump -i gif0 I don't receive any values!
> So I thing I should set route do it right?
>
> Can you tell me how to do it?
>
> netstat -rn print something like this:
> DestinationGatewa
>
> Looks like, but if you still can't ping, you still have an issue
> somewhere :-)
>
> First, check that you now have ESP packets going out from your IPsec
> gate when you try to ping.
>
>
> Then, usual issues at that step are:
>
> - something on the way blocks ESP packets. Solution may be
On Wed, Jun 23, 2010 at 10:37:18AM +0200, r...@dzie-ciuch.pl wrote:
[...]
> > Do you also have later some logs like:
> > : INFO : IPsec-SA established: ESP/Tunnel
> >
>
> Yes I got:
>
> 2010-06-23 10:18:06: DEBUG: pfkey UPDATE succeeded: ESP/Tunnel
> 95.x.x.x[0]->78.x.x.x[0] spi=224712000(0xd6
On Wed, 23 Jun 2010 10:32:29 +0200, VANHULLEBUS Yvan
wrote:
> On Wed, Jun 23, 2010 at 10:28:48AM +0200, r...@dzie-ciuch.pl wrote:
>> Ok I found that my psk.txt has got wrong permissions
>
> Yes, we'll have to set up a more explicit error message when psk file
> has wrong permissions.
Ok. I
On Wed, Jun 23, 2010 at 10:28:48AM +0200, r...@dzie-ciuch.pl wrote:
> Ok I found that my psk.txt has got wrong permissions
Yes, we'll have to set up a more explicit error message when psk file
has wrong permissions.
> Now I can get SAD keys!
>
> ISAKMP-SA established 78.x.x.x[500]-95.x.x.x[
Ok I found that my psk.txt has got wrong permissions
Now I can get SAD keys!
ISAKMP-SA established 78.x.x.x[500]-95.x.x.x[500]
spi:8a8881ee5182cbfb:53dab6ad5a65629d
But one thing - why can't I ping 10.10.1.90?
Regards
Ralf
On Wed, 23 Jun 2010 10:05:55 +0200, VANHULLEBUS Yvan
wrote:
> On Wed
On Wed, Jun 23, 2010 at 09:53:56AM +0200, r...@dzie-ciuch.pl wrote:
>
> Hi,
Hi.
> I set everything like you wrote and I can send and receice packets but
> still I can't ping to host 10.10.1.90,
> and when I type #setkey -D there is no SAD entry
>
> What could it be?
>
> This is part of racoon
Hi all,
I just tried to block multicast and broadcast packets on a transparent
bridge with pf by filtering on one of the physical interfaces like this:
table persist {10.117.255.255/32}
netbios = "netbios-ns, netbios-dgm, netbios-ssn, mdns, ipp"
block quick on $ext_if proto ipv6
block quick on $
Hi,
I set everything like you wrote and I can send and receice packets but
still I can't ping to host 10.10.1.90,
and when I type #setkey -D there is no SAD entry
What could it be?
This is part of racoon log:
Jun 23 09:43:57 czesio racoon: DEBUG: ===
Jun 23 09:43:57 czesio racoon: DEBUG: comp
Hi.
On Tue, Jun 22, 2010 at 07:08:19PM +0200, Maciej Suszko wrote:
[]
> Set up a gif tunnel in rc.conf:
>
> cloned_interfaces="gif0"
> ifconfig_gif0="tunnel 78.x.x.x 95.x.x.x"
> ifconfig_gif0_alias0="10.20.0.1 netmask 255.255.255.255 10.10.1.90"
>
> 10.20.0.1 is your internal end of the tunn
wrote:
> I forgot send last time - on the other side is cisco router ...
Perhaps vpnc would be easier to set up than raccoon?
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail t
24 matches
Mail list logo
