On Thu, 29 Dec 2005 09:50:47 +0300, "Alexey Popov" <[EMAIL PROTECTED]>
said:
> If we would also have NAT-T support, FreeBSD would be the best choice
> of VPN concentrator.
Yeah, what is the story with that anyway? Is anyone working on it? Is
there hope?
--ckg
--
Clark
blem once
allows me to a) do it better and b) solve more problems.
Labyrinthine solutions are inherently insecure.
--ckg
--
Clark Gaylord
Blacksburg, VA USA
[EMAIL PROTECTED]
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listin
ink state (if you have GRE keepalives), etc, to function correctly, and
I think it is easier to see what is going on than the "transparent"
IPsec tunnel approach. Haven't done it with FreeBSD, though.
--ckg
--
Clark Gaylord
Blacksburg, VA USA
[EMAIL PROTECTED]
__
Jon wrote:
I offten discover what such "/* XXX */ " annotate in source code of freebsd. what mean
is "XXX"?
These are "equivocation marks". They are placeholders for "I'm not sure
I want to do this and want an easy way to find it again so I can undo
it." Usually the intention is to co
Marian Durkovic wrote:
seems that in today's networking environment the original traceroute
concept utilising high UDP ports no longer works - since those ports
are now typically blocked by firewalls.
However, when traceroute is performed using ICMP protocol, the results
are much better.
Th
Gleb Smirnoff wrote:
Dumping to SQL is a bad idea. I have tried it, too :)
Certainly dumping to MySQL is typically wretched ... to a real database
much less so.
--ckg
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-n
Barney Wolff wrote:
On Sat, Sep 04, 2004 at 01:28:28PM -0400, vxp wrote:
in other words, what would you guys say be a _proper_ bsd-style thing to
do, if this were to be done?
Nothing. If you want to pollute your kernel with nonsense of this
sort, go right ahead, but leave mine alone. Adding frill
Eugene Grosbein wrote:
Is it possible to saturate 100Mbit ethernet using FreeBSD 4.9-STABLE,
Pentium-133 & Intel 430VX-based motherboard (PCI-33),
Intel 82559 Pro/100 Ethernet (fxp) ?
I tried to use sendfile(2) on /dev/zero but that does not work.
Then I created 8Tb holey file and used sendfile()
Luigi Rizzo wrote:
I can think of two ways to enable the user to configure the
client port, one is to add a command-line flag to bootpd, the
other one is to infer the client port number from the server
port number, which is what the attached patch does.
Would people be comfortable with modifying bo
yes, it is called a dynamic routing protocol.
--ckg
hilman firmansyah wrote:
Is there any method for fail over routing ( not dymanic routing protocols )
.
1 Corporate office connetcted via wireless fast link and adsl low speed.
IF the wireless down , the routing move to low speed adsl.
And when
When in doubt, do it in binary:
0 =
64 = 0100
128 = 1000
192 = 1100
As a /26 (taking as given the 24 x's not shown for the other three octets):
xxyy - y's are the host
xx doesn't have the same value from 64-191
As a /25:
xyy - y's
On Wed, May 29, 2002 at 12:16:50PM -0700, Paul Traina wrote:
>
> > Bwah... It lacks things like transparent-nexthop and transparent-as
> > which is quite useful in Route Servers and such.
>
> We don't add features to code unless people are willing to pay for them and
> use them.
which is why we
In various performance tests we have found proto=tcp to be uniformly
a Good Thing. I'd vote for that to be default in general, but
perhaps there is an AMD-specific reason for UDP; I can't imagine
what that would be, though.
--ckg
On Fri, Aug 31, 2001 at 01:03:46PM -0700, John Polstra wrote:
> I
On Fri, Jun 29, 2001 at 11:18:31AM -0500, Alfred Perlstein wrote:
> * Clark Gaylord <[EMAIL PROTECTED]> [010629 06:59] wrote:
> > I notice the man page points out that this prevents the use of
> > ipfilter, etc. The first packet(s?) do get forwarded by the usual
> > p
On Wed, Jun 27, 2001 at 10:39:20PM -0600, Wes Peters wrote:
> Ruslan Ermilov wrote:
> > On Mon, Jun 25, 2001 at 06:47:41PM -0400, Deepak Jain wrote:
> > > ...
> > > What does the fastforwarding option do that the normal forwarding option
> > > doesn't?
> > >
> > See inet(4).
>
> The description t
- Forwarded message from Harkirat Singh <[EMAIL PROTECTED]> -
> I want to measure UDP thruput of lossy channel, is there any tool
> which tests it? I looked at some of the tools but these do not take care
> of loss, I mean no retransmisson, just measure raw thruput of UDP (TTCP
> is one of
On Fri, May 18, 2001 at 06:06:55AM +0100, vishwanath pargaonkar wrote:
> why is ifindex used for an interface.i know it is said
> itz for unique identification of device.Can we not do
> that using interfac name ?what is significance of
> ifindex for an interface. itz just a number associated
> wit
authentication
completed. Let me know if this sounds consistent with your situation.
Clark Gaylord
Blacksburg, VA
[EMAIL PROTECTED]
- Original Message -
From: George Fedorenko <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, 21 February, 2001 06:26
Subject: user PPP HD
On Thu, Feb 08, 2001 at 03:32:03PM -0500, Andrea Venturoli wrote:
> So I issued an ifconfig and saw that the card was set to media autoselect (NONE).
> I tried with
>
> ifconfig rl1 inet 10.0.0.6 netmask 255.0.0.0 media 10baseT/UTP mediaopt
>half-duplex
>
> but it would not accept th
On Thu, Dec 14, 2000 at 11:05:52PM -0800, Luigi Rizzo wrote:
> > The problem with the "just let it be a router" approach is that I
> > want all traffic from B to go to A and C, not just that which is
> > actually intended for said net (yes all can be considered nets).
>
> the thing is, i do not s
Hello Luigi --
Thank you for your response. Btw, I've been reading over the
bridge code ... many thanks for this valuable resource!
The problem with the "just let it be a router" approach is that I
want all traffic from B to go to A and C, not just that which is
actually intended for said net (
I am interested in creating a pathological lab network with the
following forwarding rules:
- three networks (A,B,C)
- packets from A or C are forwarded to B
- packets from B are forward to both A and C
I was thinking of using BRIDGE+ipfw to create this by hacking
bridge.c so that all dsts are
22 matches
Mail list logo
