You can use tagged and untagged VLANs on one physical port and SNAT(-ing) VLANs
sub-interfaces.
As i know - this works well.
--
Yours sincerely,
Denis Lotarev
___
vpp-dev mailing list
vpp-dev@lists.fd.io
https://lists.fd.io/mailman/listinfo/vpp-dev
I want to know what this IPv4 Option field affects the end user? Are there any
protocols or user programs that stop working without this?
We, as a communication operator, need to know this issue, because we want to
use VPP as high-loaded NAT instead of iptables.
Thanks!
--
Yours sincerely,
Denis
Hi, VPP crew!
As i know we can use VPP as traffic shaper (or not?).
E.g. I need to restrict in/out speed to subscriber with private address
192.168.2.10 to 5mbps (local if GigabitEthernet0/5/0, external if
GigabitEthernet0/6/0).
How we can do it?
Thanks!
--
Yours sincerely,
Denis Lotarev_
Hi, Ole!PPTP connection working well via Hairpin NAT 1:1.Thanks!
--
Yours sincerely,
Denis Lotarev
On Tuesday, June 20, 2017, 5:07:48 PM GMT+5, Ole Troan
wrote:
Denis,
Matus found the issue with hairpinning. Merged fix in
https://gerrit.fd.io/r/#/c/7200/
Please let me know if that also fix
Hi, Oleg!
Today we had issue with one more subscriber under iptables NAT on linux
4.4.35-1-lts. More than one subscriber cannot connecting to any PPTP servers.
We must to loaded two modules nf_nat_pptp and nf_conntrack_pptp. After this
subscribers connect to their servers successfully.
FIY, Linu
Thank you!
Waiting 2507 master rev and then testing fix.
Wow, you are added new feature in plan. Amazing :)
OFC, i send results after testing 2507 revision.
--
Yours sincerely,
Denis Lotarev
On Tuesday, June 20, 2017, 5:07:48 PM GMT+5, Ole Troan
wrote:
Deni
Ole, so sorry, we are explored network problem in our infrastructure due
testing with parallel connection to PPTP server B and PPTP server C.
So 2nd scheme works well :) Sorry for my mismatch.But hairpining not working in
3rd scheme. I dumped traffic from Machine A, when Machine B trying to
conn
Im dumped traffic from second destination PPTP server, when Machine A connected
to Machine C in 2nd scheme.
So, Machine A with public IP 2.2.2.2 and destination PPTP server (Machine C)
with public IP 5.5.5.5:
IP (tos 0x0, ttl 61, id 15901, offset 0, flags [DF], proto TCP (6), length 60)
2.2.2
Hi, Ole!Today we are testing this patch by following schemes:
1st scheme:
Machine A (inside VPP with 1:1 static mapping) running PPTP _server_.Machine B
(outside VPP with 1:1 iptables static mapping) running PPTP client. This scheme
works well.
2st scheme:Machine A (inside VPP with 1:1 static m
blockquote, div.yahoo_quoted { margin-left: 0 !important; border-left:1px
#715FFA solid !important; padding-left:1ex !important; background-color:white
!important; } Yes, im already saw it in jenkins, try to test this
tomorrow.Thanks, vpp crew! :)
Отправлено из Yahoo Почты на iPhone
Пользов
blockquote, div.yahoo_quoted { margin-left: 0 !important; border-left:1px
#715FFA solid !important; padding-left:1ex !important; background-color:white
!important; } Hi, Ole!Yeah, we are testing SNAT 1:1 static mapping without port
forwarding. Only local and external addressing in configuration
Hi, VPP Devs!
Im begin to compile VPP from sources git from gerrit.
cd vpp/build-root
[build-root]# ./bootstrap.sh
[build-root]# make V=0 PLATFORM=vpp TAG=vpp install-rpm
make: *** No rule to make target `install-rpm'. Stop.
But install-deb working, how to fix it?
Thanks!
--
Yours sincerely,
D
Hi, Ole!Today we are testing SNAT plugin and PPTP connection by public ip and
this is not working.Both machines have a static mapping, we are testing pptp by
snat hairpin.Even if one machine (in outside VPP netwrok) can trying to connect
to machine in inside VPP network (with static mapping by p
> I guess I need to read up on PPTP (sigh).
> Does the protocol work through a 1:1 NAT today?
We need a little time to check this inside VPP network (install any pptp server
inside VPP network and connect via public IPs inside VPP network between server
and client). Or if you are talking about cu
Hi, Ole.
We are trying to test SIP to asterisk (which outside VPP network) port 5060 UDP
and its work normaly via SNAT plugin (static and dynamic nat working well).Also
we are trying to test SIP to yate (minimal sip server) inside VPP network with
SNAT hairpin and its work correctly too. And als
Hi!
> Certainly cool if you could find a use for VPP this way.
Yes, we will be glad to use VPP as hight perfomance NAT server in our
infrastructure, if this will work stability :)
Nowaday we are using six servers with double 10G NIC with 12 cpu cores
every.This works on simple SNAT iptables modul
And so for a "joke", we would like to replace six servers with double 10G NICs
running on Linux Iptables by VPP (dpdk) solution, because linux netfilter is so
old, and deprecated (but this supported ALG).
--
Yours sincerely,
Denis Lotarev
On Tuesday, June 13, 2017, 6:23:14 PM GMT+5, wrote:
D
Im agree with you as the end user, that this protocols are insecure and
deprecated, but so on the other hand, as service provider we are should
transmit all client traffic to another point :)Service provider shouldnt tell
the client what protocols to use or not use.And if ISP have about 1 cl
Hi! Im working on Internet service provider, and ALG require for clients which
connected to their offices via pptp, sip, etc.But current SNAT plugin in master
(build #2482) doesnt support pptp proto inside (maybe sip also).
--
Yours sincerely,
Denis Lotarev_
Im sorry im forget to add vpp version and host system.vpp 17.04 and vpp master
17.07, CentOS 7.3 x86_64
--
Yours sincerely,
Denis Lotarev
- Forwarded Message -From: Denis Lotarev To:
"vpp-dev@lists.fd.io" Sent: Tuesday, May 30, 2017, 5:00:49
PM GMT+5Subject: SNAT problem between user
Hi!
We are testing VPP SNAT plugin, simple SNAT working wheel, but:
In this example:
Client A cannot ping and connect to client B by IP address 2.2.2.3. Client A
can access to internet.
Client B cannot ping and connect to client A by IP address 2.2.2.2. Client B
can access to internet.
Another c
So sorry for my formatting...
"Machine A" 1.1.2.10/24 with default route 1.1.2.1
"VPP host" (linux machine) 1.1.1.10/24 with static route 1.1.2.0/24 via 1.1.1.1
On VPP side GigabitEthernet2/0/0 with ip 1.1.2.1/24 looking to Machine "A",
tap-0 with ip 1.1.1.1/24 looking to "VPP host", and Gigabi
Hi all!
I have a problem when SNAT enable on VPP side.
"Machine A" 1.1.2.10/24 with default route 10.2.1.1"VPP host" (linux machine)
1.1.1.10/24 with static route 1.1.2.0/24 via 1.1.1.1On VPP side
GigabitEthernet2/0/0 with ip 1.1.2.1/24 looking to Machine "A", tap-0 with ip
1.1.1.1/24 looking to
Hello! Im configure VLAN tag interface via next commands:
#machine "A"
create sub-interfaces GigabitEthernet2/0/1 188 dot1q 188 <--- here im creating
vlan subinterface with vlanid 188 in tagged mode
set int state GigabitEthernet2/0/1 up <--- here im setting up parrent interface
set int state G
24 matches
Mail list logo
