RE: source address based routing

2002-06-27 Thread Julian Elischer
wrote: > inline.. > > > -Original Message- > > From: Julian Elischer [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, June 26, 2002 9:40 PM > > To: Lars Eggert > > Cc: Matt Impett; '[EMAIL PROTECTED]'; > > '[EMAIL PROTECTED]' &

RE: source address based routing

2002-06-27 Thread Julian Elischer
On Thu, 27 Jun 2002, Matt Impett wrote: > It would be nice if I could create two ng_ksockets, one bound to a divert > port, and the other bound to inet/raw/ip, so that packets diverted to the > divert port would get passed to the inet/raw/ip hook and go out the IP > stack. Is this possible???

RE: source address based routing

2002-06-27 Thread Matt Impett
Randall Stewart wrote: > Matt: > > Curiosity drives me to ask the question... > > Where is the Foreign agent (FA)? > > In most mobile IP scenarios I have been familar with (granted a > limited set.. and I have a tiny idea of how it should work > that may be dated) the mobile has a FA. The FA

Re: source address based routing

2002-06-27 Thread Randall Stewart
Matt Impett wrote: > > inline.. > > > -Original Message- > > From: Julian Elischer [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, June 26, 2002 9:40 PM > > To: Lars Eggert > > Cc: Matt Impett; '[EMAIL PROTECTED]'; > > '[EMA

RE: source address based routing

2002-06-27 Thread Matt Impett
inline.. > -Original Message- > From: Julian Elischer [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, June 26, 2002 9:40 PM > To: Lars Eggert > Cc: Matt Impett; '[EMAIL PROTECTED]'; > '[EMAIL PROTECTED]' > Subject: Re: source address based routing

Re: source address based routing

2002-06-26 Thread Julian Elischer
On Wed, 26 Jun 2002, Lars Eggert wrote: > Matt Impett wrote: > > gladly.. I am trying to implement reverse tunneling for mobile-IP. The > > basic idea is that packets must be reverse tunneled to different IP > > addresses depending on the source address of the packet. The reason the > > tunne

Re: source address based routing

2002-06-26 Thread Julian Elischer
This should almost be an FAQ... use ipfw and the FIREWALL_FORWARD option (ipfw fwd) to over-ride next hop routing decisions.. On Wed, 26 Jun 2002, Matt Impett wrote: > Hello, > > I was wondering if it is possible to do pure source address based routing > under FreeBSD. What I really want t

Re: source address based routing

2002-06-26 Thread Lars Eggert
Matt Impett wrote: > gladly.. I am trying to implement reverse tunneling for mobile-IP. The > basic idea is that packets must be reverse tunneled to different IP > addresses depending on the source address of the packet. The reason the > tunnel does not have an IP address associated with it is t

Re: source address based routing

2002-06-26 Thread Lars Eggert
Matt Impett wrote: > I have looked at the firewall rather exetensively, but I don't know that it > can do what I want. Maybe you should describe what you want in a little more detail then :-) > From what I can tell, the firewall fwd functionality allows you to redirect > a packet to a different

Re: source address based routing

2002-06-26 Thread Lars Eggert
Matt Impett wrote: > I was wondering if it is possible to do pure source address based routing > under FreeBSD. What I really want to do is route packets from particular > source addresses to tunnels (gif devices) regardless of what the packet's > destination address is. Firewall forwarding will

Re: source address based routing

2002-06-26 Thread Lars Eggert
Matt Impett wrote: > Ok.. Modifying the ipfw stuff is where I ended up after looking at this for > a while. I have thought about adding something like the following: > > ipfw add fwd-intf GIF-DEVICE all from SOURCE to any > > The only problem I have seen with this (besides needing to modify the

Re: source address based routing

2002-06-26 Thread Baldur Gislason
That's simple, FreeBSD can do policy based routing with ipfw. you need to compile a kernel with: options IPFIREWALL options IPFIREWALL_FORWARD myself I prefer to have these too but they're not absolutely necessary: options IPFIREWALL_VERBOSE options IPFIREWALL_VERB

Re: source address based routing

2002-06-26 Thread Andre Oppermann
Matt Impett wrote: > > Hello, > > I was wondering if it is possible to do pure source address based routing > under FreeBSD. What I really want to do is route packets from particular > source addresses to tunnels (gif devices) regardless of what the packet's > destination address is. Not yet t

RE: source address based routing

2002-06-26 Thread Matt Impett
Sent: Wednesday, June 26, 2002 5:31 PM > To: Matt Impett > Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]' > Subject: Re: source address based routing > > > Matt Impett wrote: > > gladly.. I am trying to implement reverse tunneling for > mobile-IP. T

RE: source address based routing

2002-06-26 Thread Matt Impett
Impett > Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]' > Subject: Re: source address based routing > > > Matt Impett wrote: > > I was wondering if it is possible to do pure source address > based routing > > under FreeBSD. What I really want to

RE: source address based routing

2002-06-26 Thread Matt Impett
inline.. > -Original Message- > From: Lars Eggert [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, June 26, 2002 5:10 PM > To: Matt Impett > Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]' > Subject: Re: source address based routing > > > Matt