From owner-freebsd-net Sun Oct 22 8: 6:27 2000 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id 1A04F37B479 for ; Sun, 22 Oct 2000 08:06:25 -0700 (PDT) Received: from localhost ([3ffe:501:100f:13ff::e]) by shuttle.wide.toshiba.co.jp (8.9.1+3.1W/8.9.1) with ESMTP id XAA11927; Sun, 22 Oct 2000 23:51:16 +0900 (JST) Date: Sun, 22 Oct 2000 23:12:51 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: "Gallagher, Mick" Cc: freebsd-net@FreeBSD.ORG Subject: Re: GIF IPv6 tunnelling support In-Reply-To: In your message of "Thu, 19 Oct 2000 14:50:09 +0100" <76C92FBBFB58D411AE760090271ED41866E01A@RSYS002A> References: <76C92FBBFB58D411AE760090271ED41866E01A@RSYS002A> User-Agent: Wanderlust/2.3.0 (Roam) Emacs/20.7 Mule/4.0 (HANANOEN) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.13.7 - "Awazu") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 22 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >>>>> On Thu, 19 Oct 2000 14:50:09 +0100, >>>>> "Gallagher, Mick" said: > The GIF man page suggests that the GIF tunnelling behaviour is based on RFC1933, which outlines transition mechanisms for IPv6 (basically v6 in v4 tunnelling). > So far as v6-in-v6 and v4-in-v6 tunnelling is concerned, does GIF implement RFC2473 (Generic Packet Tunnelling in IPv6)? RFC2473 contains many things, and some of them (e.g. Tunnel Encapsulation Limit option) are not implemented in the GIF stuff. Which part did you particularly mean? > Also, does the GIF driver perform packet encapsulation itself, or does it pass inner packets through the stack for encapsulation in the outer packet? > (I'm wondering about v6 extension headers in the outer packet). The gif output routine(s) basically encapsulates the whole outer packet by itself. But it does not attach any IPv6 extension headers. JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Oct 22 9:17: 9 2000 Delivered-To: freebsd-net@freebsd.org Received: from ICSI.Berkeley.EDU (fruitcake.ICSI.Berkeley.EDU [192.150.186.11]) by hub.freebsd.org (Postfix) with ESMTP id 6AEB537B657 for ; Sun, 22 Oct 2000 09:17:07 -0700 (PDT) Received: from fondue.ICSI.Berkeley.EDU (fondue.ICSI.Berkeley.EDU [192.150.186.19]) by ICSI.Berkeley.EDU (8.9.0/8.9.0) with ESMTP id JAA11940; Sun, 22 Oct 2000 09:17:06 -0700 (PDT) Received: from localhost (rizzo@localhost) by fondue.ICSI.Berkeley.EDU (8.8.2/1.8) with ESMTP id JAA02598; Sun, 22 Oct 2000 09:17:06 -0700 (PDT) X-Authentication-Warning: fondue.ICSI.Berkeley.EDU: rizzo owned process doing -bs Date: Sun, 22 Oct 2000 09:17:06 -0700 (PDT) From: Luigi Rizzo To: Rudy Cc: freebsd-net@FreeBSD.ORG Subject: Re: '/kernel: Too many dynamic rules, sorry In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > I got '/kernel: Too many dynamic rules, sorry' for the first time. > To got rid of keep-state on my port 80 and the problem went away. whether or not this is a solution depends on your requirements of course... though maybe it is not that useful to use keep-state with a web server where you basically want to have this accessible from the outside. > [2] Does primeness matter with net.inet.ip.fw.dyn_buckets? in the case of dynamic rules, a prime will not give you any advantage. the hash table is just a set of hash_size lists, and they are typically pretty full (the total number of entries is configurable but by default way larger than the number of hash slots). cheers luigi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Oct 22 15:41:17 2000 Delivered-To: freebsd-net@freebsd.org Received: from dragon.nuxi.com (trang.nuxi.com [209.152.133.57]) by hub.freebsd.org (Postfix) with ESMTP id 7985737B4C5; Sun, 22 Oct 2000 15:41:14 -0700 (PDT) Received: (from obrien@localhost) by dragon.nuxi.com (8.9.3/8.9.1) id PAA04808; Sun, 22 Oct 2000 15:39:58 -0700 (PDT) (envelope-from obrien) Date: Sun, 22 Oct 2000 15:39:57 -0700 From: "David O'Brien" To: Jordan Hubbard Cc: freebsd-current@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: new rc.network6 and rc.firewall6 Message-ID: <20001022153957.A4742@dragon.nuxi.com> Reply-To: freebsd-current@FreeBSD.ORG References: <81966.972151537@winston.osd.bsdi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <81966.972151537@winston.osd.bsdi.com>; from jkh@winston.osd.bsdi.com on Sat, Oct 21, 2000 at 11:05:37AM -0700 X-Operating-System: FreeBSD 5.0-CURRENT Organization: The NUXI BSD group X-Pgp-Rsa-Fingerprint: B7 4D 3E E9 11 39 5F A3 90 76 5D 69 58 D9 98 7A X-Pgp-Rsa-Keyid: 1024/34F9F9D5 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, Oct 21, 2000 at 11:05:37AM -0700, Jordan Hubbard wrote: > > I wish to update rc.network6 and introduce rc.firewall6. > > Hmmmm. I must confess that I see /etc as getting rather cluttered > these days. Is there no way to perhaps collapse some of the most > related functionality into single files and start passing arguments > or something? Just a comment.. At BSDcon Luke M showed me what the NetBSD 1.5 rc files look like. They've moved them all to /etc/rc.d/ and made them very granular (as SVR4, but w/o leading numbers in the filenames). The NetBSD implementation also solved all the issues people have brought up in the past -- dependacies, etc... We should just move to using their rc code. -- -- David (obrien@FreeBSD.org) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Oct 22 19: 9:17 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.ruhr.de (unknown [212.23.134.2]) by hub.freebsd.org (Postfix) with SMTP id 8D6EC37B479 for ; Sun, 22 Oct 2000 19:09:14 -0700 (PDT) Received: (qmail 2618 invoked by alias); 21 Oct 2000 14:15:07 -0000 MBOX-Line: From ue@nathan.ruhr.de Sat Oct 21 16:05:42 2000 Received: (from ue@localhost) by nathan.ruhr.de (8.11.0/8.11.0) id e9LE5gl07917 for freebsd-net@freebsd.org; Sat, 21 Oct 2000 16:05:42 +0200 (CEST) (envelope-from ue) Date: Sat, 21 Oct 2000 16:05:42 +0200 From: Udo Erdelhoff To: freebsd-net@freebsd.org Subject: mpd, the Windows VPN Client and subnets Message-ID: <20001021160542.A7418@nathan.ruhr.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, short version of my question: Is it possible to pass a subnet mask and/or a broadcast address to a client during the negotiation? Longer version of the question: I'm having lots of fun with this setup. Company LAN <--> FreeBSD 4.1.1, MPD <--> Internet <--> Win98 VPN Client 172.16.188.0/22 172.16.191.212 192.168.1.1 [The IP adresses have been changed to protect the innocent. The real setup uses routable addresses] The Windows box can connect to the outside interface of the FreeBSD box and establishes a pptp connection. During the negotiation, the client requests to use an IP address from the 172.16.188.0/22 network. The server agrees to this and everything seems to be just fine. Except logging in to the NT domain and browsing. The problem is the subnet mask used by the Windows box. It uses the IP address 172.16.191.204, the address belongs to a Class B network, ergo: Subnet mask is 255.255.0.0, broadcast address is 172.16.255.255. By default, Windows uses broadcasts to find the domain controllers and browse masters. The FreeBSD box uses the correct subnet mask on its internal interface and drops all the broadcasts to 172.16.255.255. The windows box can't locate its servers, game over. The obvious solution is to istop using windows. Unfortunately, TPTB do not accect this solution. I can't define the subnet mask in the DUN entry, I can't change the default value in the network control panel because some of these clients need several different VPN links. I'll have to transmit the correct subnet mask and broadcast address during the link negotiation. Is it possible to do this with mpd? /s/Udo -- "Just say NO to network abuse. No mercy, no quarter, no survivors, no regret, no remorse." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Oct 22 20:31:57 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.ruhr.de (unknown [212.23.134.2]) by hub.freebsd.org (Postfix) with SMTP id 4145C37B479 for ; Sun, 22 Oct 2000 20:31:55 -0700 (PDT) Received: (qmail 14779 invoked by alias); 21 Oct 2000 07:11:08 -0000 MBOX-Line: From ue@nathan.ruhr.de Sat Oct 21 09:04:35 2000 Received: (from ue@localhost) by nathan.ruhr.de (8.11.0/8.11.0) id e9L74ZJ06947; Sat, 21 Oct 2000 09:04:35 +0200 (CEST) (envelope-from ue) Date: Sat, 21 Oct 2000 09:04:35 +0200 From: Udo Erdelhoff To: freebsd-net@freebsd.org Cc: Rudy Subject: Re: arp and bridging Message-ID: <20001021090434.C2415@nathan.ruhr.de> References: <20001021001110.B2415@nathan.ruhr.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: ; from rudy@monkeybrains.net on Fri, Oct 20, 2000 at 04:09:52PM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, > Now I'm starting to think that the bridge is mixing and matching MAC > address. it looks that way. The obvious band-aid is a static entry on pizza (i.e. arp -S 00:d0:b7:1f:fc:63 lala). That should fix your initial problem (knocks on wood). > Also, I now remember reading about in the freebsd-net archives, but I > can't find it. The search engine has its own share of problems. If you have enough disk space, download the archives and build your own local version. /s/Udo -- "God gave them the ability to reproduce... ...Science gave us the hope they won't." -KBK To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Oct 22 21: 5:20 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.ruhr.de (unknown [212.23.134.2]) by hub.freebsd.org (Postfix) with SMTP id B4A6937B479 for ; Sun, 22 Oct 2000 21:05:16 -0700 (PDT) Received: (qmail 17689 invoked by alias); 20 Oct 2000 22:24:28 -0000 MBOX-Line: From ue@nathan.ruhr.de Sat Oct 21 00:11:10 2000 Received: (from ue@localhost) by nathan.ruhr.de (8.11.0/8.11.0) id e9KMBA603649; Sat, 21 Oct 2000 00:11:10 +0200 (CEST) (envelope-from ue) Date: Sat, 21 Oct 2000 00:11:10 +0200 From: Udo Erdelhoff To: Rudy Cc: freebsd-net@freebsd.org Subject: Re: arp and bridging Message-ID: <20001021001110.B2415@nathan.ruhr.de> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: ; from rudy@monkeybrains.net on Fri, Oct 20, 2000 at 02:18:56PM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, what's the output of "ifconfig -a" on bridge and pizza? The vendor part of the phantom MAC address is intresting. From the Ethernet Codes page at http://www.cavebear.com/CaveBear/Ethernet/vendor.html 00A0C9 Intel (PRO100B and PRO100+) [used on Cisco PIX firewall among \ others] And what are the IP addresses of the boxes? /s/Udo To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 0:37: 2 2000 Delivered-To: freebsd-net@freebsd.org Received: from hotmail.com (f82.law6.hotmail.com [216.32.241.82]) by hub.freebsd.org (Postfix) with ESMTP id 1F79337B479; Mon, 23 Oct 2000 00:36:58 -0700 (PDT) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Mon, 23 Oct 2000 00:36:58 -0700 Received: from 165.228.130.11 by lw6fd.law6.hotmail.msn.com with HTTP; Mon, 23 Oct 2000 07:36:57 GMT X-Originating-IP: [165.228.130.11] From: "Aaron Hill" To: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: More on PPPoE & ADSL (Telstra Bigpond) Date: Mon, 23 Oct 2000 07:36:57 GMT Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 23 Oct 2000 07:36:58.0041 (UTC) FILETIME=[06204A90:01C03CC4] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, Further to my previous email here's the missing tcpdumps for the Linux and Windows handshake/discovery session when connecting to Telstra Bigponds (Australia) ADSL service with PPPoE. My original question still stands, can someone tell me why FreeBSDs PPPoE is different to the other packages in what it sends? FreeBSD will not connect, the others do. Windows (EnterNet)... 16:34:48.581399 0:10:5a:0:d3:de Broadcast 8863 60: PPPoE PADI [Host-Uniq UTF8] [Service-Name "bigpond"] 16:34:48.636895 0:90:39:47:0:3f 0:10:5a:0:d3:de 8863 60: PPPoE PADO [Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] 16:34:48.637021 0:10:5a:0:d3:de 0:90:39:47:0:3f 8863 60: PPPoE PADR [Host-Uniq UTF8] [Service-Name "bigpond"] 16:34:48.689108 0:90:39:47:0:3f 0:10:5a:0:d3:de 8863 60: PPPoE PADS [ses 0x1b1][Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] 16:34:48.701229 0:10:5a:0:d3:de 0:90:39:47:0:3f 8864 60: PPPoE [ses 0x1b1] LCPConfReq id=0x1 Linux (Roaring Penguin PPPoE)... 16:58:01.345104 0:10:5a:0:d3:de Broadcast 8863 60: PPPoE PADI [Service-Name "bigpond"] 16:58:01.407318 0:90:39:47:0:3f 0:10:5a:0:d3:de 8863 60: PPPoE PADO [Service-Name "bigpond"] [AC-Name "nkt1-kent"] 16:58:01.407470 0:10:5a:0:d3:de 0:90:39:47:0:3f 8863 60: PPPoE PADR [Service-Name "bigpond"] 16:58:01.466063 0:90:39:47:0:3f 0:10:5a:0:d3:de 8863 60: PPPoE PADS [ses 0x1b2][Service-Name "bigpond"] [AC-Name "nkt1-kent"] 16:58:02.338999 0:10:5a:0:d3:de 0:90:39:47:0:3f 8864 60: PPPoE [ses 0x1b2] LCPConfReq id=0x1 FreeBSD (4.1.1 Release)... 17:07:47.907372 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Service-Name "bigpond"] [Host-Uniq UTF8] 17:07:47.969361 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 179: PPPoE PADO [Service-Name] [Service-Name "telstra"] [Service-Name "cmux"] [Service-Name "bigpond"] [Service-Name "n7061992k"] [Service-Name "n2155202k"] [Service-Name "n2155201k"] 17:07:47.969440 0:e0:29:73:81:dd 0:90:39:47:0:3f 8863 60: PPPoE PADR [Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] 17:07:48.023924 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 62: PPPoE PADS [Service-Name-Error "SvcName Tag Error"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] I can see the differences but I don't know if they are the show stoppers. Is the fact that FreeBSD puts the Host-Uniq info at the end of the first frame the problem or is it something else that tcpdump doesn't pick up? Windows puts that info at the start of the frame, Linux doesn't include it at all. Anyone? Thanks Aaron Hill _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 2:39:12 2000 Delivered-To: freebsd-net@freebsd.org Received: from brunel.uk1.vbc.net (brunel.uk1.vbc.net [194.207.2.8]) by hub.freebsd.org (Postfix) with ESMTP id A784D37B479 for ; Mon, 23 Oct 2000 02:39:09 -0700 (PDT) Received: from localhost (jcv@localhost) by brunel.uk1.vbc.net (8.11.0/8.11.0) with ESMTP id e9N9d4G89107 for ; Mon, 23 Oct 2000 10:39:04 +0100 (BST) X-Authentication-Warning: brunel.uk1.vbc.net: jcv owned process doing -bs Date: Mon, 23 Oct 2000 10:39:03 +0100 (BST) From: Jean-Christophe Varaillon X-Sender: jcv@brunel.uk1.vbc.net To: freebsd-net@FreeBSD.ORG Subject: Re: device sr0 - RISCom/N2 In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This an answer from Kenjiro Cho: Starting from FreeBSD-4, drivers are supposed to set ifq_maxlen. The messages are just warnings but if you want to suppress the warning, add ifp->if_snd.ifq_maxlen = IFQ_MAXLEN; in srattach() in sys/i386/isa/if_sr.c just before calling if_attach(). -Kenjiro > > Hi all, > > I would like to connect a freeBSD box on a Cisco router. > > To do it I did rebuilt a kernel with that: > > pseudo-device sppp > device sr0 at pci? port 0x300 irq iomem 0xd0000 > > Then, when I made dmseg 'sr0', it tells me that: > sr0 XXX: driver didn't set ifq_maxlen > sr1 XXX: driver didn't set ifq_maxlen > > And I am blocked here. > If someone has any idea, he is more than welcome. > > Jean-Christophe. > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 4: 1:48 2000 Delivered-To: freebsd-net@freebsd.org Received: from brunel.uk1.vbc.net (brunel.uk1.vbc.net [194.207.2.8]) by hub.freebsd.org (Postfix) with ESMTP id 9045537B4CF for ; Mon, 23 Oct 2000 04:01:46 -0700 (PDT) Received: from localhost (jcv@localhost) by brunel.uk1.vbc.net (8.11.0/8.11.0) with ESMTP id e9NB1j589697 for ; Mon, 23 Oct 2000 12:01:45 +0100 (BST) X-Authentication-Warning: brunel.uk1.vbc.net: jcv owned process doing -bs Date: Mon, 23 Oct 2000 12:01:45 +0100 (BST) From: Jean-Christophe Varaillon X-Sender: jcv@brunel.uk1.vbc.net To: freebsd-net@FreeBSD.ORG Subject: - sr Interface & Conf - In-Reply-To: <001901c03a97$98ff1320$0a06030a@visionmis.com.br> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I would like to connect a freeBSD box on a Cisco router. To do it I did rebuilt a kernel with that: pseudo-device sppp device sr0 at pci? port 0x300 irq iomem 0xd0000 Then, when I made dmseg 'sr0', it tells me that: sr0 XXX: driver didn't set ifq_maxlen sr1 XXX: driver didn't set ifq_maxlen From a specialist called Kenjiro Cho: Starting from FreeBSD-4, drivers are supposed to set ifq_maxlen. The messages are just warnings but if you want to suppress the warning, add ifp->if_snd.ifq_maxlen = IFQ_MAXLEN; in srattach() in sys/i386/isa/if_sr.c just before calling if_attach(). ---------------- But how the FreeBSD box can know the modification since I didn't compile the program ? And I am not sur that reboot the machine is enough ? If someone has a global bit of idea, he is more than welcome. Thanks on advanced, Jean-Christophe. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 6:25:18 2000 Delivered-To: freebsd-net@freebsd.org Received: from rsys002a.roke.co.uk (rsys002a.roke.co.uk [193.118.192.251]) by hub.freebsd.org (Postfix) with ESMTP id 2CD2A37B479 for ; Mon, 23 Oct 2000 06:25:15 -0700 (PDT) Received: by RSYS002A with Internet Mail Service (5.5.2650.21) id ; Mon, 23 Oct 2000 14:24:54 +0100 Message-ID: <76C92FBBFB58D411AE760090271ED41866E027@RSYS002A> From: "Gallagher, Mick" To: 'JINMEI Tatuya / ????' Cc: freebsd-net@FreeBSD.ORG Subject: RE: GIF IPv6 tunnelling support Date: Mon, 23 Oct 2000 14:24:53 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-2022-jp" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi Tatuya, Thanks for your reply. As I read it, RFC2473 covers 3 areas: 1 - Definition of packet encapsulation (in terms of bytes on the wire) 2 - The implied means of encapsulation (i.e. looping packets through the stack twice) 3 - Additional extension headers, etc. 1 is critical. Does the GIF driver and RFC2473 observe the same method of packet encapsulation? (i.e. Is the inner v6 packet embedded in the outer by inserting a v6 protocol value (41?) into the 'next header' field of the outer packet?) 2 may be important, in that it may implies whether or not the stack looks after extension header processing. If the GIF driver performs packet encapsulation but does not handle extension headers, then I guess this makes tunnel fragmentation impossible. Is this an issue? (I suppose not, given that Path MTU discovery should prevent this. Are there any other not-so-desirable implications of lack of tunnel extension headers that you're aware of?) 3 I'm not so concerned with. I assume that if we tried to interoperate GIF with an RFC2473 tunnelling entity, we shouldn't run into problems since (i) The tunnel encapsulation is (hopefully) the same, and the (ii) GIF driver will simply ignore Tunnel Encapsulation Limit destination options. Does this sound reasonable? Many thanks for your help. Best regards, Mick ---- mick.gallagher@roke.co.uk > -----Original Message----- > From: jinmei@isl.rdc.toshiba.co.jp > [mailto:jinmei@isl.rdc.toshiba.co.jp] > Sent: 22 October 2000 15:13 > To: Gallagher, Mick > Cc: freebsd-net@FreeBSD.ORG > Subject: Re: GIF IPv6 tunnelling support > > > >>>>> On Thu, 19 Oct 2000 14:50:09 +0100, > >>>>> "Gallagher, Mick" said: > > > The GIF man page suggests that the GIF tunnelling behaviour > is based on RFC1933, which outlines transition mechanisms for > IPv6 (basically v6 in v4 tunnelling). > > > So far as v6-in-v6 and v4-in-v6 tunnelling is concerned, > does GIF implement RFC2473 (Generic Packet Tunnelling in IPv6)? > > RFC2473 contains many things, and some of them (e.g. Tunnel > Encapsulation Limit option) are not implemented in the GIF > stuff. Which part did you particularly mean? > > > Also, does the GIF driver perform packet encapsulation > itself, or does it pass inner packets through the stack for > encapsulation in the outer packet? > > > (I'm wondering about v6 extension headers in the outer packet). > > The gif output routine(s) basically encapsulates the whole outer > packet by itself. But it does not attach any IPv6 extension headers. > > JINMEI, Tatuya > Communication Platform Lab. > Corporate R&D Center, > Toshiba Corp. > jinmei@isl.rdc.toshiba.co.jp > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 10:52:30 2000 Delivered-To: freebsd-net@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id 03D5237B479 for ; Mon, 23 Oct 2000 10:52:27 -0700 (PDT) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id NAA53041; Mon, 23 Oct 2000 13:52:18 -0400 (EDT) (envelope-from wollman) Date: Mon, 23 Oct 2000 13:52:18 -0400 (EDT) From: Garrett Wollman Message-Id: <200010231752.NAA53041@khavrinen.lcs.mit.edu> To: "C. Stephen Gunn" Cc: freebsd-net@FreeBSD.ORG Subject: Re: [Patch] VLAN MTU1500 patch for FreeBSD 4.1-RELEASE and later In-Reply-To: <20001019151439.A17464@waterspout.com> References: <200010191411.e9JEBZ817011@lavender.sanpei.org> <20001019151439.A17464@waterspout.com> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: > There isn't currently a mechanism in FreeBSD to either allow the > physical device to report what its maximum receive framesize is Yes, there is. An interface which is prepared to accept frames larger than 1514 octets can so indicate in the if_data.ifi_hdrlen field of its interface structure. -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 11: 6:23 2000 Delivered-To: freebsd-net@freebsd.org Received: from gomer.august.net (gomer.august.net [216.87.128.131]) by hub.freebsd.org (Postfix) with ESMTP id 7151E37B479 for ; Mon, 23 Oct 2000 11:06:20 -0700 (PDT) Received: from localhost (1237 bytes) by gomer.august.net via send-mail with P:stdio/R:inet_hosts/T:smtp (sender: ) (ident using unix) id for ; Mon, 23 Oct 2000 13:06:13 -0500 (CDT) (Smail-3.2.0.108 1999-Sep-19 #1 built 1999-Oct-11) Message-Id: Date: Mon, 23 Oct 2000 13:06:13 -0500 (CDT) From: lgfausak@august.net (Greg Fausak) To: freebsd-net@FreeBSD.ORG Subject: BPF usage questions Cc: greg@august.net Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org FreeBSD Net Mail List: I've got an application on FreeBSD which is running several hundred network interfaces. They are frame relay interfaces, about 120 per T1 line, and I currently have 4 T1 lines. We offer our customers DHCP. About 200 of them have requested it. To provide DHCP we use the ISC implementation which employs BPFilters. I've modified the kernel to accompdate 255 bpf devices. I seem to be limited by the number of minor devices allowed. I have a few questions concerning the use of BPFs...any help would be greatly appreciated. 1) Is it wise to use so many BPF devices? 2) Is there any way to increase the number of BPF devices beyond 255? and, finally, the real questions... 3) Is there some way I can listen on a single device and determine what real device a packet comes in on and... 4) Has anyone done something like this? This is much like the dhcp helper command on a cisco router. I'd like to be able to serve DHCP for thousands of 'devices'. ---greg Greg Fausak August.Net Services, LLC greg@august.net 972-323-6598 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 14:32:35 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id 9A5AF37B479 for ; Mon, 23 Oct 2000 14:32:29 -0700 (PDT) Received: from marakesh-57.budapest.interware.hu ([195.70.50.185] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13npCf-0008P5-00; Mon, 23 Oct 2000 23:32:22 +0200 Message-ID: <39F4AE61.9FD8F9E0@elischer.org> Date: Mon, 23 Oct 2000 14:32:17 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Greg Fausak Cc: freebsd-net@FreeBSD.ORG, greg@august.net Subject: Re: BPF usage questions References: Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greg Fausak wrote: > > FreeBSD Net Mail List: > > I've got an application on FreeBSD which is running several hundred > network interfaces. They are frame relay interfaces, about 120 > per T1 line, and I currently have 4 T1 lines. > > We offer our customers DHCP. About 200 of them have requested > it. To provide DHCP we use the ISC implementation which employs > BPFilters. I've modified the kernel to accompdate 255 bpf devices. > I seem to be limited by the number of minor devices allowed. > > I have a few questions concerning the use of BPFs...any help > would be greatly appreciated. > > 1) Is it wise to use so many BPF devices? > > 2) Is there any way to increase the number of BPF devices beyond 255? > > and, finally, the real questions... > > 3) Is there some way I can listen on a single device and determine > what real device a packet comes in on and... > > 4) Has anyone done something like this? This is much like the > dhcp helper command on a cisco router. I'd like to be able to > serve DHCP for thousands of 'devices'. I hate to sound like a broken record, but archie and I have been looking at using netgraph for this. Of course we have pretty full (approved by MCI) frame relay support in Netgraph already so all teh device driver needs to do is supply a simple netgraph interface, and let us do the frame relay demultiplexing. It is then very simple to slot in a netgraph node to filter out and redirect all DHCP stuff. We don;t support DHCP with our netgraph code at teh moment but it wouldn;t be hard, and as a kernel module it could easily handle thousands of dhcp clients with very littel system load. What software are you using for frame relay at the moment? > > ---greg > Greg Fausak > August.Net Services, LLC > greg@august.net > 972-323-6598 > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 17:11:40 2000 Delivered-To: freebsd-net@freebsd.org Received: from teaausdmz001.telusa.com (teaausdmz001.telusa.com [208.218.238.10]) by hub.freebsd.org (Postfix) with ESMTP id 6147337B4C5 for ; Mon, 23 Oct 2000 17:11:16 -0700 (PDT) Received: from [172.17.250.2] by teaausdmz001.telusa.com (Post.Office MTA v3.5.1 release 219 ID# 0-0U10L2S100) with SMTP id com for ; Mon, 23 Oct 2000 19:01:58 -0500 Received: from teaaushub001.telusa.com ( [172.17.40.252]) by with SMTP (MailShield v1.5); Mon, 23 Oct 2000 19:01:57 -0500 Received: from teaaus0030.telusa.com ([172.17.40.130]) by teaaushub001.telusa.com (Post.Office MTA v3.5.1 release 219 ID# 0-57493U100L2S100V35) with ESMTP id com for ; Mon, 23 Oct 2000 19:11:28 -0500 Received: by teaaus0030.telusa.com with Internet Mail Service (5.5.2650.21) id ; Mon, 23 Oct 2000 19:11:10 -0500 Message-ID: <6BFFC6F3FB6AD211A9D800A0C99B3E6F01B3DD70@TEAPHX0031> From: "TAZ Gravel, Emmanuel" To: "'freebsd-net@freebsd.org'" Subject: Socket programming, strange recv reaction Date: Mon, 23 Oct 2000 19:10:59 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C03D4E.E868237A" X-SMTP-HELO: teaaushub001.telusa.com X-SMTP-MAIL-FROM: EGravel@taz.telusa.com X-SMTP-RCPT-TO: freebsd-net@freebsd.org X-SMTP-PEER-INFO: [172.17.40.252] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C03D4E.E868237A Content-Type: text/plain; charset="iso-8859-1" I'm trying to write a small client-server pair using TCP sockets. I'm not changing the default blocking mechanisms for recv(). The client connects to the server, which sends it a welcome message. Then, the client sends ASCII "commands" that are interpreted by the server (recv'ed, strcmp'ed and answered to). If the command is "unknown" it echoes it back to the client using send(). The client, on the other end, is "waiting" with a recv(). Appart from the first message sent by the client, most others were never echoed back to the client, and when one arrived, it was from a previous message, anywhere between 2 and 8 iterations previous to the one that was just sent. Using ethereal to analyze the traffic, and blocking the server with a 5 second sleep, showed that the recv in the client was accepting a simple ACK message as an acceptable message. The "conversation" is all [PSH, ACK] or [ACK]. Ethereal was set to look at the loopback interface to see this happening, and for some reason all packets were "duplicated" (same time frame, same exact packet, always in pairs). Don't know if this has anything to do with it or not though. I know the problem centers around the recv in the client, however I don't know where to look. Just starting to look at socket programming, and using tutorials and newbie code found online (using Beej's Guide to Network Programming right now). Read the man page for recv() also, and since it's supposed to be blocking until something is recieved, I don't know what to make of this. Inlining my code since I'm using Outlook right now... Thanks for your help! Emmanuel #include #include #include #include #include #include #include #include #include #include #include #define MYPORT 4039 /* the port users will be connecting to */ #define MAXBUFLEN 128 #define BACKLOG 10 /* how many pending connections queue will hold */ #define MAXCHILD 5 /* Global variables */ int sockfd; /* listen on sock_fd */ int child[MAXCHILD]; void usage(newfd) int newfd; { char *msg; int numbytes; printf("Sending usage information.\n"); msg = "Usage:\n\thello: returns a message.\n\tquit: exits the session.\n"; if ((numbytes = send(newfd, msg, MAXBUFLEN, 0)) == -1) { perror("send"); exit(1); } printf("Sent [%i] bytes.\nMessage sent is %s\n",numbytes,msg); } void hello(newfd,buf) int newfd; char *buf; { char msg[128] = "You said: "; int numbytes; printf("Entering hello \n"); printf("Replying to [%s].\n",buf); strcat(msg,buf); printf("first strcat\n"); strcat(msg,"\n"); printf("sending message now\n"); sleep(5); if ((numbytes = send(newfd, msg, MAXBUFLEN, 0)) == -1) { perror("send"); close(newfd); exit(1); } printf("Sent [%i] bytes.\nMessage sent is [%s]\n",numbytes,msg); } void bye(newfd) int newfd; { /* signal(SIGINT, finalize); */ /* Only usefull in programs not exiting after signal trap */ char *msg; msg = "Closing connection. Goodbye!\n"; printf("in bye\n"); if (send(newfd, msg, sizeof(msg), 0) == -1) { printf("error in sending\n"); perror("send"); close(newfd); exit(1); } printf("closing now\n"); close(newfd); printf("Closing connection. Child PID is [%i]. \n",getpid()); exit(0); } void finalize() { printf("Closing all connections\n"); while(waitpid(-1,NULL,0) > 0); /* clean up all child processes */ close(sockfd); exit(0); } int main() { int new_fd; /* new connection on new_fd */ int sin_size; struct sockaddr_in my_addr; /* my address information */ struct sockaddr_in their_addr; /* connector's address information */ int numberbytes; /* int i, addre_len; */ char buf[MAXBUFLEN]; unsigned short int children; if ((sockfd = socket(AF_INET, SOCK_STREAM, 0)) == -1) { perror("socket"); exit(1); } signal(SIGINT, finalize); my_addr.sin_family = AF_INET; /* host byte order */ my_addr.sin_port = htons(MYPORT); /* short, network byte order */ my_addr.sin_addr.s_addr = INADDR_ANY; /* automatically fill with my IP */ bzero(&(my_addr.sin_zero), 8); /* zero the rest of the struct */ if (bind(sockfd, (struct sockaddr *)&my_addr, sizeof(struct sockaddr)) == -1) { perror("bind"); exit(1); } if (listen(sockfd, BACKLOG) == -1) { perror("listen"); exit(1); } children = 0; while(1) { /* main accept() loop */ sin_size = sizeof(struct sockaddr_in); if (children < MAXCHILD) { if ((new_fd = accept(sockfd, (struct sockaddr *)&their_addr, &sin_size)) == -1) { perror("accept"); continue; } printf("server: got connection from [%s]\n", inet_ntoa(their_addr.sin_addr)); if (!fork()) { /* this is the child process */ /* Anything that happens here is only executed by the child, * and that's the only thing that the child executes. */ if (send(new_fd, "Welcome to my world!\nWhat is your pleasure?\n", 44, 0) == -1) { perror("send"); close(new_fd); exit(1); } while(1) { if ((numberbytes = recv(new_fd,buf,MAXBUFLEN,0)) == -1) { perror("recv"); continue; } buf[numberbytes] = '\0'; printf("numberbytes = [%i]\nbuffer = [%s]\n",numberbytes,buf); if(!strcmp(buf, "")) { printf("printing usage\n"); usage(new_fd); } else if(!strncmp(buf, "quit", 4)) { printf("calling bye\n"); bye(new_fd); } else { printf("calling hello\n"); hello(new_fd,buf); } } } } /* clean up all child processes */ while(waitpid(-1,NULL,WNOHANG) > 0); } } #include #include #include #include #include #include #include #include #include #include #include #define PORT 4039 /* the port client will be connecting to */ #define MAXDATASIZE 100 /* max number of bytes we can get at once */ int main(int argc, char *argv[]) { int sockfd, numbytes; char buf[MAXDATASIZE],msg[MAXDATASIZE] = "sta"; struct hostent *he; struct sockaddr_in their_addr; /* connector's address information */ /* printf("Before init\n"); */ if (argc != 2) { fprintf(stderr,"usage: manuclient hostname\n"); /* put actual error message here */ exit(1); } /*printf("Before gethostbyname\n"); */ if ((he=gethostbyname(argv[1])) == NULL) { /* get the host info */ perror("gethostbyname"); exit(1); } /*printf("Host is %s\nBeofre socket creation\n", *((struct in_addr *)he->h_addr)); */ if ((sockfd = socket(AF_INET, SOCK_STREAM, 0)) == -1) { perror("socket"); exit(1); } /* printf("Socket created. Before socket connection.\n"); */ their_addr.sin_family = AF_INET; /* host byte order */ their_addr.sin_port = htons(PORT); /* short, network byte order */ their_addr.sin_addr = *((struct in_addr *)he->h_addr); bzero(&(their_addr.sin_zero), 8); /* zero the rest of the struct */ if (connect(sockfd, (struct sockaddr *)&their_addr, sizeof(struct sockaddr)) == -1) { perror("connect"); exit(1); } /*printf("Socket connected. Before while loop, value is %i\n",strcmp(msg,"quit")); */ while(strcmp(msg,"quit")) { /* Begin chat routine with the server */ printf("Before recv\n"); /*sleep(5);*/ if ((numbytes=recv(sockfd, buf, MAXDATASIZE, 0)) == -1) { perror("recv"); exit(1); } printf("After recv\n"); buf[numbytes] = '\0'; printf("Received: %s\n",buf); printf("Command > "); scanf("%s",msg); /* if (sizeof(msg) >= MAXDATASIZE) msg[MAXDATASIZE] = '\0'; */ printf("Size of message is %i\n",sizeof(msg)); if ((numbytes = send(sockfd, msg, MAXDATASIZE, 0)) == -1) { perror("send"); exit(1); } printf("sent message %s to %s\nNumber of bytes sent is %i\n",msg,inet_ntoa(their_addr.sin_addr),numbytes); if(!strcmp(msg,"quit")) printf("Recieved quit command, exiting!\n"); } close(sockfd); return 0; } ------_=_NextPart_001_01C03D4E.E868237A Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Socket programming, strange recv reaction

I'm trying to write a small = client-server pair using TCP sockets.
I'm not changing the default blocking = mechanisms for recv().
The client connects to the server, = which sends it a welcome
message. Then, the client sends ASCII = "commands" that are
interpreted by the server (recv'ed, = strcmp'ed and answered to).
If the command is "unknown" = it echoes it back to the client
using send(). The client, on the = other end, is "waiting" with a
recv().

Appart from the first message sent by = the client, most others
were never echoed back to the client, = and when one arrived, it
was from a previous message, anywhere = between 2 and 8 iterations
previous to the one that was just = sent. Using ethereal to analyze
the traffic, and blocking the server = with a 5 second sleep, showed
that the recv in the client was = accepting a simple ACK message
as an acceptable message. The = "conversation" is all [PSH, ACK]
or [ACK]. Ethereal was set to look at = the loopback interface to
see this happening, and for some = reason all packets were
"duplicated" (same time = frame, same exact packet, always in
pairs). Don't know if this has = anything to do with it or not
though.

I know the problem centers around the = recv in the client, however
I don't know where to look. Just = starting to look at socket
programming, and using tutorials and = newbie code found online
(using Beej's Guide to Network = Programming right now).

Read the man page for recv() also, and = since it's supposed to
be blocking until something is = recieved, I don't know what to
make of this.

Inlining my code since I'm using = Outlook right now...

Thanks for your help!

Emmanuel

<server code>
#include <stdio.h>
#include <stdlib.h>
#include <errno.h>
#include <signal.h>
#include <string.h>
#include <unistd.h>
#include <sys/types.h>
#include <netinet/in.h>
#include <sys/socket.h>
#include <sys/wait.h>
#include <arpa/inet.h>

#define MYPORT 4039    = /* the port users will be connecting to */

#define MAXBUFLEN 128

#define BACKLOG = 10     /* how many pending connections queue will = hold */
#define MAXCHILD 5

/* Global variables */

int sockfd; /* listen on sock_fd = */
int child[MAXCHILD];


void usage(newfd)
     int = newfd;
{
  char *msg;
  int numbytes;
  printf("Sending usage = information.\n");
  msg =3D "Usage:\n\thello: = returns a message.\n\tquit: exits the session.\n";
  if ((numbytes =3D send(newfd, = msg, MAXBUFLEN, 0)) =3D=3D -1) {
    = perror("send");
    = exit(1);   
  }
  printf("Sent [%i] = bytes.\nMessage sent is %s\n",numbytes,msg);
}

void hello(newfd,buf)
     int = newfd;
     char = *buf;
{
  char msg[128] =3D "You = said: ";
  int numbytes;
  printf("Entering hello = \n");
  printf("Replying to = [%s].\n",buf);
  strcat(msg,buf);
  printf("first = strcat\n");
  = strcat(msg,"\n");
  printf("sending message = now\n");
  sleep(5);
  if ((numbytes =3D send(newfd, = msg, MAXBUFLEN, 0)) =3D=3D -1) {
    = perror("send");
    = close(newfd);
    exit(1);
  }
  printf("Sent [%i] = bytes.\nMessage sent is [%s]\n",numbytes,msg);
}

void bye(newfd)
     int = newfd;
{
  /* signal(SIGINT, finalize); = */
  /* Only usefull in programs = not exiting after signal trap */
  char *msg;
  msg =3D "Closing = connection. Goodbye!\n";
  printf("in = bye\n");
  if (send(newfd, msg, = sizeof(msg), 0) =3D=3D -1) {
    printf("error = in sending\n");
    = perror("send");
    = close(newfd);
    exit(1);
  }
  printf("closing = now\n");
  close(newfd);
  printf("Closing = connection. Child PID is [%i]. \n",getpid());
  exit(0);
}

void finalize()

  printf("Closing all = connections\n");
  while(waitpid(-1,NULL,0) > = 0); /* clean up all child processes */
  close(sockfd);
  exit(0);
}


int main()
{
    int new_fd;  = /* new connection on new_fd */
    int = sin_size;
    struct sockaddr_in = my_addr;    /* my address information */
    struct sockaddr_in = their_addr; /* connector's address information */
    int = numberbytes;
    = /*    int i, addre_len; */
    char = buf[MAXBUFLEN];
    unsigned short int = children;

    if ((sockfd =3D = socket(AF_INET, SOCK_STREAM, 0)) =3D=3D -1) {
        = perror("socket");
        = exit(1);
    }

    signal(SIGINT, = finalize);

    my_addr.sin_family = =3D AF_INET;         /* host = byte order */
    my_addr.sin_port = =3D htons(MYPORT);     /* short, network byte order = */
    = my_addr.sin_addr.s_addr =3D INADDR_ANY; /* automatically fill with my = IP */
    = bzero(&(my_addr.sin_zero), = 8);        /* zero the rest of the = struct */

    if (bind(sockfd, = (struct sockaddr *)&my_addr,
         &nb= sp;   sizeof(struct sockaddr)) =3D=3D -1) {
        = perror("bind");
        = exit(1);
    }

    if (listen(sockfd, = BACKLOG) =3D=3D -1) {
        = perror("listen");
        = exit(1);
    }

    children =3D = 0;

    while(1) {  /* = main accept() loop */
        sin_size =3D = sizeof(struct sockaddr_in);
       =20
        if (children < MAXCHILD) {
          if ((new_fd =3D accept(sockfd,
         &nb= sp;           &nb= sp;         (struct sockaddr = *)&their_addr,
         &nb= sp;           &nb= sp;         &sin_size)) = =3D=3D -1) {
            perror("accept");
            continue;
          }
          printf("server: got connection from = [%s]\n",
         &nb= sp;        = inet_ntoa(their_addr.sin_addr));
          if (!fork()) { /* this is the child process = */
            /* Anything that happens here is only = executed by the child,
             * and that's the only thing = that the child executes. */
         &nb= sp;  if (send(new_fd,
         &nb= sp;           = "Welcome to my world!\nWhat is your pleasure?\n",
         &nb= sp;           44, 0) = =3D=3D -1) {
              = perror("send");
              close(new_fd);
              exit(1);
            }
           
            while(1) {
             
              if ((numberbytes =3D = recv(new_fd,buf,MAXBUFLEN,0)) =3D=3D -1) {
        =         perror("recv");
        =         continue;
              }
             
              buf[numberbytes] =3D = '\0';

              printf("numberbytes = =3D [%i]\nbuffer =3D [%s]\n",numberbytes,buf);
             
              if(!strcmp(buf, = "")) {
        =         printf("printing usage\n");
        =         usage(new_fd);
              }
              else if(!strncmp(buf, = "quit", 4)) {
        =         printf("calling bye\n");
        =         bye(new_fd);
              }
              else {
        =         printf("calling hello\n");
        =         hello(new_fd,buf);
              }
            }
          }
        }
        /* clean up = all child processes */
        = while(waitpid(-1,NULL,WNOHANG) > 0);
    }
}

<client code>
#include <stdio.h>
#include <stdlib.h>
#include <errno.h>
#include <string.h>
#include <netdb.h>
#include <unistd.h>
#include <sys/types.h>
#include <netinet/in.h>
#include <sys/socket.h>
#include <sys/wait.h>
#include <arpa/inet.h>

#define PORT 4039    /* = the port client will be connecting to */

#define MAXDATASIZE 100 /* max number = of bytes we can get at once */

int main(int argc, char = *argv[])
{
  int sockfd, numbytes;  =
  char = buf[MAXDATASIZE],msg[MAXDATASIZE] =3D "sta";
  struct hostent *he;
  struct sockaddr_in their_addr; = /* connector's address information */

  /*  printf("Before = init\n");
   */
  if (argc !=3D 2) {
    = fprintf(stderr,"usage: manuclient hostname\n"); /* put actual = error message here */
    exit(1);
  }
 
  /*printf("Before = gethostbyname\n");
   */
  if = ((he=3Dgethostbyname(argv[1])) =3D=3D NULL) {  /* get the host = info */
    = perror("gethostbyname");
    exit(1);
  }
 
  /*printf("Host is = %s\nBeofre socket creation\n", *((struct in_addr = *)he->h_addr));
   */
  if ((sockfd =3D = socket(AF_INET, SOCK_STREAM, 0)) =3D=3D -1) {
    = perror("socket");
    exit(1);
  }
 
  /* printf("Socket = created. Before socket connection.\n");
   */
  their_addr.sin_family =3D = AF_INET;         /* host byte = order */
  their_addr.sin_port =3D = htons(PORT);     /* short, network byte order = */
  their_addr.sin_addr =3D = *((struct in_addr *)he->h_addr);
  = bzero(&(their_addr.sin_zero), = 8);        /* zero the rest of the = struct */

  if (connect(sockfd, (struct = sockaddr *)&their_addr, sizeof(struct sockaddr)) =3D=3D -1) = {
    = perror("connect");
    exit(1);
  }
 
  /*printf("Socket = connected. Before while loop, value is = %i\n",strcmp(msg,"quit"));
   */
  = while(strcmp(msg,"quit")) {   /* Begin chat routine = with the server */

    printf("Before = recv\n");
    = /*sleep(5);*/

    if = ((numbytes=3Drecv(sockfd, buf, MAXDATASIZE, 0)) =3D=3D -1) {
      = perror("recv");
      = exit(1);
    }

    printf("After = recv\n");

    buf[numbytes] =3D = '\0';
   
    = printf("Received: %s\n",buf);
   
    = printf("Command > ");
   
    = scanf("%s",msg);

    /*   if = (sizeof(msg) >=3D MAXDATASIZE)
      = msg[MAXDATASIZE] =3D '\0';
    */
    printf("Size = of message is %i\n",sizeof(msg));

    if ((numbytes =3D = send(sockfd, msg, MAXDATASIZE, 0)) =3D=3D -1) {
      = perror("send");
      = exit(1);
    }
   
    printf("sent = message %s to %s\nNumber of bytes sent is = %i\n",msg,inet_ntoa(their_addr.sin_addr),numbytes);
   
    = if(!strcmp(msg,"quit"))
      = printf("Recieved quit command, exiting!\n");
   
  }

  close(sockfd);
 
  return 0;
}

------_=_NextPart_001_01C03D4E.E868237A-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 18:30:23 2000 Delivered-To: freebsd-net@freebsd.org Received: from gomer.august.net (gomer.august.net [216.87.128.131]) by hub.freebsd.org (Postfix) with ESMTP id 9022037B479 for ; Mon, 23 Oct 2000 18:30:21 -0700 (PDT) Received: from localhost (2191 bytes) by gomer.august.net via send-mail with P:stdio/R:inet_hosts/T:smtp (sender: ) (ident using unix) id for ; Mon, 23 Oct 2000 20:30:12 -0500 (CDT) (Smail-3.2.0.108 1999-Sep-19 #1 built 1999-Oct-11) Message-Id: Date: Mon, 23 Oct 2000 20:30:12 -0500 (CDT) From: lgfausak@august.net (Greg Fausak) To: julian@elischer.org, lgfausak@august.net Subject: Re: BPF usage questions Cc: freebsd-net@FreeBSD.ORG Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Julian wrote> >Greg Fausak wrote: >> >> FreeBSD Net Mail List: >> >>...deleted... >> 1) Is it wise to use so many BPF devices? >> >> 2) Is there any way to increase the number of BPF devices beyond 255? >> >> and, finally, the real questions... >> >> 3) Is there some way I can listen on a single device and determine >> what real device a packet comes in on and... >> >> 4) Has anyone done something like this? This is much like the >> dhcp helper command on a cisco router. I'd like to be able to >> serve DHCP for thousands of 'devices'. > >I hate to sound like a broken record, but archie and I have been looking >at using netgraph for this. What is netgraph? >Of course we have pretty full (approved by MCI) frame relay support in >Netgraph already >so all teh device driver needs to do is supply a simple netgraph >interface, and let us do >the frame relay demultiplexing. It is then very simple to slot in a >netgraph node >to filter out and redirect all DHCP stuff. We don;t support DHCP with >our >netgraph code at teh moment but it wouldn;t be hard, and as a kernel >module it could >easily handle thousands of dhcp clients with very littel system load. > >What software are you using for frame relay at the moment? I'm using bridging software written by etinc.com. It's called bwmgr. Very robust, I've been running 400 DSL customers for about a month with no problems. I'm sure I could load it up with 800 customers if I had some way to handle the BPF/DHCP problem. My partner is Andy Fullford, he's from (around) Sydney... G'day mate! ---greg > > >> >> ---greg >> Greg Fausak >> August.Net Services, LLC >> greg@august.net >> 972-323-6598 >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> with "unsubscribe freebsd-net" in the body of the message > >-- > __--_|\ Julian Elischer > / \ julian@elischer.org > ( OZ ) World tour 2000 >---> X_.---._/ presently in: Budapest > v > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 18:38:58 2000 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id 2967137B479 for ; Mon, 23 Oct 2000 18:38:55 -0700 (PDT) Received: from localhost ([3ffe:501:4819:2000:250:4ff:fefe:d85f]) by shuttle.wide.toshiba.co.jp (8.9.1+3.1W/8.9.1) with ESMTP id KAA18631; Tue, 24 Oct 2000 10:23:50 +0900 (JST) Date: Tue, 24 Oct 2000 09:51:16 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: "Gallagher, Mick" Cc: freebsd-net@FreeBSD.ORG Subject: RE: GIF IPv6 tunnelling support In-Reply-To: In your message of "Mon, 23 Oct 2000 14:24:53 +0100" <76C92FBBFB58D411AE760090271ED41866E027@RSYS002A> References: <76C92FBBFB58D411AE760090271ED41866E027@RSYS002A> User-Agent: Wanderlust/2.3.0 (Roam) Emacs/20.7 Mule/4.0 (HANANOEN) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.13.7 - "Awazu") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 45 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >>>>> On Mon, 23 Oct 2000 14:24:53 +0100, >>>>> "Gallagher, Mick" said: > As I read it, RFC2473 covers 3 areas: > 1 - Definition of packet encapsulation (in terms of bytes on the wire) > 2 - The implied means of encapsulation (i.e. looping packets through the stack twice) > 3 - Additional extension headers, etc. > 1 is critical. Does the GIF driver and RFC2473 observe the same > method of packet encapsulation? (i.e. Is the inner v6 packet > embedded in the outer by inserting a v6 protocol value (41?) into > the 'next header' field of the outer packet?) Yes, I believe so. > 2 may be important, in that it may implies whether or not the stack > looks after extension header processing. If the GIF driver performs > packet encapsulation but does not handle extension headers, then I > guess this makes tunnel fragmentation impossible. Is this an issue? > (I suppose not, given that Path MTU discovery should prevent > this. Are there any other not-so-desirable implications of lack of > tunnel extension headers that you're aware of?) Actually, the gif output routine recursively calls IPv4 or IPv6 output routine where fragmentation is done if necessary. I'm not sure if path MTU discovery works well for the tunnel link, but it would be anther issue. > 3 I'm not so concerned with. I assume that if we tried to > interoperate GIF with an RFC2473 tunnelling entity, we shouldn't run > into problems since (i) The tunnel encapsulation is (hopefully) the > same, and the (ii) GIF driver will simply ignore Tunnel > Encapsulation Limit destination options. Does this sound reasonable? If your main concern is interoperability between a KAME (i.e. gif) box and another implementation that sends encapsulated packets with the Tunnel Encapsulation Limit option, you're right. The KAME box will simply ignore the (unknown) option, and the packet will be just forwarded. JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 19:58: 8 2000 Delivered-To: freebsd-net@freebsd.org Received: from snafu.adept.org (adsl-63-201-63-44.dsl.snfc21.pacbell.net [63.201.63.44]) by hub.freebsd.org (Postfix) with ESMTP id 8E2FD37B479 for ; Mon, 23 Oct 2000 19:58:07 -0700 (PDT) Received: by snafu.adept.org (Postfix, from userid 65532) id 476959EE01; Mon, 23 Oct 2000 19:57:49 -0700 (PDT) From: "Mike Hoskins" To: Rudy , freebsd-net@FreeBSD.org Subject: Re: '/kernel: Too many dynamic rules, sorry' X-Mailer: NeoMail 1.20pre3 X-IPAddress: 206.136.108.22 MIME-Version: 1.0 Message-Id: <20001024025749.476959EE01@snafu.adept.org> Date: Mon, 23 Oct 2000 19:57:49 -0700 (PDT) Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > [4] A nice feature would be the ability to extend timeouts within the ipfw > ruleset for specific ports. For instance, I'd like to change the timeout > for my ssh connections from 5 minutes to 60 minutes. Something like: > allow tcp from any to any 22 keep-state ack-lifetime 3600 in recv fxp0 setup You need patches like Aaron Gifford's. Search the security list archive for 'ipfw patches' from around July. -mrh To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 21:15:35 2000 Delivered-To: freebsd-net@freebsd.org Received: from snafu.adept.org (adsl-63-201-63-44.dsl.snfc21.pacbell.net [63.201.63.44]) by hub.freebsd.org (Postfix) with ESMTP id AC6CD37B479 for ; Mon, 23 Oct 2000 21:15:30 -0700 (PDT) Received: by snafu.adept.org (Postfix, from userid 65532) id 8DF089EE01; Mon, 23 Oct 2000 21:15:13 -0700 (PDT) From: "Mike Hoskins" To: Udo Erdelhoff , freebsd-net@freebsd.org Subject: Re: mpd, the Windows VPN Client and subnets X-Mailer: NeoMail 1.20pre3 X-IPAddress: 206.136.108.22 MIME-Version: 1.0 Message-Id: <20001024041513.8DF089EE01@snafu.adept.org> Date: Mon, 23 Oct 2000 21:15:13 -0700 (PDT) Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > short version of my question: Is it possible to pass a subnet mask and/or > a broadcast address to a client during the negotiation? Sounds like DHCP... > The Windows box can connect to the outside interface of the FreeBSD box > and establishes a pptp connection. During the negotiation, the client > requests to use an IP address from the 172.16.188.0/22 network. The > server agrees to this and everything seems to be just fine. How is this IP assigned? Does mpd do that? Unfortuneately, the only thing like this I've setup is not FreeBSD based. We have Win2k clients who connect to a central Win2k VPN box. The VPN box assigns IPs (and, therefore, netmasks, DNS servers, etc.) from our DHCP server. > Except logging in to the NT domain and browsing. Once the subnet mask issue is solved, see if you can ping 'internal' IP's, or ssh to server IP's. If so, setting up a WINS server may resolve browsing issues. -mrh To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 21:29: 9 2000 Delivered-To: freebsd-net@freebsd.org Received: from InterJet.dellroad.org (adsl-63-194-81-26.dsl.snfc21.pacbell.net [63.194.81.26]) by hub.freebsd.org (Postfix) with ESMTP id EA8D237B479 for ; Mon, 23 Oct 2000 21:29:06 -0700 (PDT) Received: from curve.dellroad.org (curve.dellroad.org [10.1.1.30]) by InterJet.dellroad.org (8.9.1a/8.9.1) with ESMTP id VAA40705; Mon, 23 Oct 2000 21:29:05 -0700 (PDT) Received: (from archie@localhost) by curve.dellroad.org (8.11.0/8.11.0) id e9O4T5A08163; Mon, 23 Oct 2000 21:29:05 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010240429.e9O4T5A08163@curve.dellroad.org> Subject: Re: mpd, the Windows VPN Client and subnets In-Reply-To: <20001021160542.A7418@nathan.ruhr.de> "from Udo Erdelhoff at Oct 21, 2000 04:05:42 pm" To: Udo Erdelhoff Date: Mon, 23 Oct 2000 21:29:05 -0700 (PDT) Cc: freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Udo Erdelhoff writes: > short version of my question: Is it possible to pass a subnet mask and/or > a broadcast address to a client during the negotiation? Unfortunately, no.. PPP doesn't officially support doing that. I think there may have once been an unofficial Microsoft proposalo or something that got shot down. What you can do is pass the NBNS server IP addresses to the Win98 client via IPCP (see the mpd man page, ipcp section). This "should" work assuming you have an NT domain controller at that address, I think. Make sure you have the same workgroup setting too, etc. -Archie ___________________________________________________________________________ Archie Cobbs * Packet Design, Inc. * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 21:45:52 2000 Delivered-To: freebsd-net@freebsd.org Received: from modemcable101.200-201-24.mtl.mc.videotron.ca (modemcable140.61-201-24.mtl.mc.videotron.ca [24.201.61.140]) by hub.freebsd.org (Postfix) with SMTP id 5C8DD37B479 for ; Mon, 23 Oct 2000 21:45:48 -0700 (PDT) Received: (qmail 70171 invoked from network); 24 Oct 2000 04:45:47 -0000 Received: from patrak.local.mindstep.com (HELO PATRAK) (192.168.10.4) by jacuzzi.local.mindstep.com with SMTP; 24 Oct 2000 04:45:47 -0000 Message-ID: <084801c03d75$5c2265c0$040aa8c0@local.mindstep.com> From: "Patrick Bihan-Faou" To: "Archie Cobbs" Cc: References: <200010122143.e9CLhY190211@bubba.whistle.com> Subject: Re: mpd-netgraph port and FreeBSD 3.5-STABLE Date: Tue, 24 Oct 2000 00:46:23 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, > Patrick Bihan-Faou writes: > > I tried to install the mpd-netgraph port on a FreeBSD 3.5-STABLE machine, > > however it fails because the file "netgraph/ng_mppc.h" is missing from the > > standard include files on my system. I fiddled with mpd's Makefile, and > > compiled it without mppc support, however this also disables the encryption > > support for PPTP. > > > > A part from that mpd works beautifully and I can set up incoming PPTP > > sessions (without encryption). > > > > Could somebody MFC the appropriate netgraph code to the RELENG-3 branch > > please ? > > You should be able to (pretty much) take the 4.1-stable sources for > ng_mppc.c and ng_mppc.h and build them on 3.5-stable. > > Just grab these files from 4.1-stable, put them in your tree, > and see if the KLD builds: > > sys/netgraph/ng_mppc.c > sys/netgraph/ng_mppc.h > sys/modules/netgraph/mppc/* > OK there is just a little bit more than just the few files mentioned by Archie. The mppc netgraph module does not compile because it can not find the necessary crypto header files on my system. Oh well, I guess I'll update that machine to 4.x sometime soon... Thanks for the help anyway! Patrick. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 21:45:54 2000 Delivered-To: freebsd-net@freebsd.org Received: from InterJet.dellroad.org (adsl-63-194-81-26.dsl.snfc21.pacbell.net [63.194.81.26]) by hub.freebsd.org (Postfix) with ESMTP id 2BCC637B4CF; Mon, 23 Oct 2000 21:45:50 -0700 (PDT) Received: from curve.dellroad.org (curve.dellroad.org [10.1.1.30]) by InterJet.dellroad.org (8.9.1a/8.9.1) with ESMTP id VAA40839; Mon, 23 Oct 2000 21:45:49 -0700 (PDT) Received: (from archie@localhost) by curve.dellroad.org (8.11.0/8.11.0) id e9O4jnw08213; Mon, 23 Oct 2000 21:45:49 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010240445.e9O4jnw08213@curve.dellroad.org> Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) In-Reply-To: "from Aaron Hill at Oct 23, 2000 07:36:57 am" To: Aaron Hill Date: Mon, 23 Oct 2000 21:45:49 -0700 (PDT) Cc: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Aaron Hill writes: > Further to my previous email here's the missing tcpdumps for the Linux and > Windows handshake/discovery session when connecting to Telstra Bigponds > (Australia) ADSL service with PPPoE. My original question still stands, can > someone tell me why FreeBSDs PPPoE is different to the other packages in > what it sends? FreeBSD will not connect, the others do. Dunno. Make sure you power cycle the DSL modem before trying each new system. Sometimes the router on the other end caches the ARP address of the host system and won't forget it until the line is reset. -Archie ___________________________________________________________________________ Archie Cobbs * Packet Design, Inc. * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 23: 6:26 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail-out1.apple.com (mail-out1.apple.com [17.254.0.52]) by hub.freebsd.org (Postfix) with ESMTP id 45F5C37B479 for ; Mon, 23 Oct 2000 23:06:18 -0700 (PDT) Received: from mailgate1.apple.com (A17-128-100-225.apple.com [17.128.100.225]) by mail-out1.apple.com (8.9.3/8.9.3) with ESMTP id XAA26314 for ; Mon, 23 Oct 2000 23:06:18 -0700 (PDT) Received: from scv1.apple.com (scv1.apple.com) by mailgate1.apple.com (Content Technologies SMTPRS 4.1.5) with ESMTP id for ; Mon, 23 Oct 2000 23:06:17 -0700 Received: from grinch ([17.219.158.67]) by scv1.apple.com (8.9.3/8.9.3) with SMTP id XAA03131 for ; Mon, 23 Oct 2000 23:06:16 -0700 (PDT) Message-Id: <200010240606.XAA03131@scv1.apple.com> Date: Mon, 23 Oct 2000 23:06:14 -0700 Reply-To: justin@apple.com Content-Type: text/plain; charset=us-ascii X-Mailer: Apple Mail (2.337) From: "Justin C. Walker" To: "'freebsd-net@freebsd.org'" Mime-Version: 1.0 (Apple Message framework v337) Content-Transfer-Encoding: quoted-printable Subject: Re: Socket programming, strange recv reaction Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org A quick check shows that you're sending 128 bytes each time around the = server loop, but only reading 100 bytes around the receiver loop. = Therefore, you fall behind by 28 bytes each time. Since the "non = message" bytes are likely to be zero, you appear to be reading no bytes = (when you print the string in 'buf', the first character is 'nul'). If you examine the received buffer with gdb, you'll see that your = message arrives, but it is offset because of the difference between = bytes sent and bytes read. Regards, Justin On Monday, October 23, 2000, at 05:10 PM, TAZ Gravel, Emmanuel wrote: > I'm trying to write a small client-server pair using TCP sockets.=20 > I'm not changing the default blocking mechanisms for recv().=20 > The client connects to the server, which sends it a welcome=20 > message. Then, the client sends ASCII "commands" that are=20 > interpreted by the server (recv'ed, strcmp'ed and answered to).=20 > If the command is "unknown" it echoes it back to the client=20 > using send(). The client, on the other end, is "waiting" with a=20 > recv().=20 > =20 > Appart from the first message sent by the client, most others=20 > were never echoed back to the client, and when one arrived, it=20 > was from a previous message, anywhere between 2 and 8 iterations=20 > previous to the one that was just sent. Using ethereal to analyze=20 > the traffic, and blocking the server with a 5 second sleep, showed=20 > that the recv in the client was accepting a simple ACK message=20 > as an acceptable message. The "conversation" is all [PSH, ACK]=20 > or [ACK]. Ethereal was set to look at the loopback interface to=20 > see this happening, and for some reason all packets were=20 > "duplicated" (same time frame, same exact packet, always in=20 > pairs). Don't know if this has anything to do with it or not=20 > though.=20 > =20 > I know the problem centers around the recv in the client, however=20 > I don't know where to look. Just starting to look at socket=20 > programming, and using tutorials and newbie code found online=20 > (using Beej's Guide to Network Programming right now).=20 > =20 > Read the man page for recv() also, and since it's supposed to=20 > be blocking until something is recieved, I don't know what to=20 > make of this.=20 > =20 > Inlining my code since I'm using Outlook right now...=20 > =20 > Thanks for your help!=20 > =20 > Emmanuel=20 > =20 > =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > =20 > #define MYPORT 4039 /* the port users will be connecting to */=20 > =20 > #define MAXBUFLEN 128=20 > =20 > #define BACKLOG 10 /* how many pending connections queue will hold = */=20 > #define MAXCHILD 5=20 > =20 > /* Global variables */=20 > =20 > int sockfd; /* listen on sock_fd */=20 > int child[MAXCHILD];=20 > =20 > =20 > void usage(newfd)=20 > int newfd;=20 > {=20 > char *msg;=20 > int numbytes;=20 > printf("Sending usage information.\n");=20 > msg =3D "Usage:\n\thello: returns a message.\n\tquit: exits the = session.\n";=20 > if ((numbytes =3D send(newfd, msg, MAXBUFLEN, 0)) =3D=3D -1) {=20 > perror("send");=20 > exit(1); =20 > }=20 > printf("Sent [%i] bytes.\nMessage sent is %s\n",numbytes,msg);=20 > }=20 > =20 > void hello(newfd,buf)=20 > int newfd;=20 > char *buf;=20 > {=20 > char msg[128] =3D "You said: ";=20 > int numbytes;=20 > printf("Entering hello \n");=20 > printf("Replying to [%s].\n",buf);=20 > strcat(msg,buf);=20 > printf("first strcat\n");=20 > strcat(msg,"\n");=20 > printf("sending message now\n");=20 > sleep(5);=20 > if ((numbytes =3D send(newfd, msg, MAXBUFLEN, 0)) =3D=3D -1) {=20 > perror("send");=20 > close(newfd);=20 > exit(1);=20 > }=20 > printf("Sent [%i] bytes.\nMessage sent is [%s]\n",numbytes,msg);=20 > }=20 > =20 > void bye(newfd)=20 > int newfd;=20 > {=20 > /* signal(SIGINT, finalize); */=20 > /* Only usefull in programs not exiting after signal trap */=20 > char *msg;=20 > msg =3D "Closing connection. Goodbye!\n";=20 > printf("in bye\n");=20 > if (send(newfd, msg, sizeof(msg), 0) =3D=3D -1) {=20 > printf("error in sending\n");=20 > perror("send");=20 > close(newfd);=20 > exit(1);=20 > }=20 > printf("closing now\n");=20 > close(newfd);=20 > printf("Closing connection. Child PID is [%i]. \n",getpid());=20 > exit(0);=20 > }=20 > =20 > void finalize()=20 > { =20 > printf("Closing all connections\n");=20 > while(waitpid(-1,NULL,0) > 0); /* clean up all child processes */=20 > close(sockfd);=20 > exit(0);=20 > }=20 > =20 > =20 > int main()=20 > {=20 > int new_fd; /* new connection on new_fd */=20 > int sin_size;=20 > struct sockaddr_in my_addr; /* my address information */=20 > struct sockaddr_in their_addr; /* connector's address information = */=20 > int numberbytes;=20 > /* int i, addre_len; */=20 > char buf[MAXBUFLEN];=20 > unsigned short int children;=20 > =20 > if ((sockfd =3D socket(AF_INET, SOCK_STREAM, 0)) =3D=3D -1) {=20 > perror("socket");=20 > exit(1);=20 > }=20 > =20 > signal(SIGINT, finalize);=20 > =20 > my_addr.sin_family =3D AF_INET; /* host byte order */=20 > my_addr.sin_port =3D htons(MYPORT); /* short, network byte = order */=20 > my_addr.sin_addr.s_addr =3D INADDR_ANY; /* automatically fill with = my IP=20 > */=20 > bzero(&(my_addr.sin_zero), 8); /* zero the rest of the = struct */=20 > =20 > if (bind(sockfd, (struct sockaddr *)&my_addr,=20 > sizeof(struct sockaddr)) =3D=3D -1) {=20 > perror("bind");=20 > exit(1);=20 > }=20 > =20 > if (listen(sockfd, BACKLOG) =3D=3D -1) {=20 > perror("listen");=20 > exit(1);=20 > }=20 > =20 > children =3D 0;=20 > =20 > while(1) { /* main accept() loop */=20 > sin_size =3D sizeof(struct sockaddr_in);=20 > =20 > if (children < MAXCHILD) {=20 > if ((new_fd =3D accept(sockfd,=20 > (struct sockaddr *)&their_addr,=20 > &sin_size)) =3D=3D -1) {=20 > perror("accept");=20 > continue;=20 > }=20 > printf("server: got connection from [%s]\n",=20 > inet_ntoa(their_addr.sin_addr));=20 > if (!fork()) { /* this is the child process */=20 > /* Anything that happens here is only executed by the child,=20= > * and that's the only thing that the child executes. */=20 > if (send(new_fd,=20 > "Welcome to my world!\nWhat is your pleasure?\n",=20= > 44, 0) =3D=3D -1) {=20 > perror("send");=20 > close(new_fd);=20 > exit(1);=20 > }=20 > =20 > while(1) {=20 > =20 > if ((numberbytes =3D recv(new_fd,buf,MAXBUFLEN,0)) =3D=3D = -1) {=20 > perror("recv");=20 > continue;=20 > }=20 > =20 > buf[numberbytes] =3D '\0';=20 > =20 > printf("numberbytes =3D [%i]\nbuffer =3D = [%s]\n",numberbytes,buf);=20 > =20 > if(!strcmp(buf, "")) {=20 > printf("printing usage\n");=20 > usage(new_fd);=20 > }=20 > else if(!strncmp(buf, "quit", 4)) {=20 > printf("calling bye\n");=20 > bye(new_fd);=20 > }=20 > else {=20 > printf("calling hello\n");=20 > hello(new_fd,buf);=20 > }=20 > }=20 > }=20 > }=20 > /* clean up all child processes */=20 > while(waitpid(-1,NULL,WNOHANG) > 0);=20 > }=20 > }=20 > =20 > =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > #include =20 > =20 > #define PORT 4039 /* the port client will be connecting to */=20 > =20 > #define MAXDATASIZE 100 /* max number of bytes we can get at once */=20= > =20 > int main(int argc, char *argv[])=20 > {=20 > int sockfd, numbytes; =20 > char buf[MAXDATASIZE],msg[MAXDATASIZE] =3D "sta";=20 > struct hostent *he;=20 > struct sockaddr_in their_addr; /* connector's address information */=20= > =20 > /* printf("Before init\n");=20 > */=20 > if (argc !=3D 2) {=20 > fprintf(stderr,"usage: manuclient hostname\n"); /* put actual = error=20 > message here */=20 > exit(1);=20 > }=20 > =20 > /*printf("Before gethostbyname\n");=20 > */=20 > if ((he=3Dgethostbyname(argv[1])) =3D=3D NULL) { /* get the host = info */=20 > perror("gethostbyname");=20 > exit(1);=20 > }=20 > =20 > /*printf("Host is %s\nBeofre socket creation\n", *((struct in_addr=20= > *)he->h_addr));=20 > */=20 > if ((sockfd =3D socket(AF_INET, SOCK_STREAM, 0)) =3D=3D -1) {=20 > perror("socket");=20 > exit(1);=20 > }=20 > =20 > /* printf("Socket created. Before socket connection.\n");=20 > */=20 > their_addr.sin_family =3D AF_INET; /* host byte order */=20 > their_addr.sin_port =3D htons(PORT); /* short, network byte = order */=20 > their_addr.sin_addr =3D *((struct in_addr *)he->h_addr);=20 > bzero(&(their_addr.sin_zero), 8); /* zero the rest of the = struct */=20 > =20 > if (connect(sockfd, (struct sockaddr *)&their_addr, sizeof(struct=20 > sockaddr)) =3D=3D -1) {=20 > perror("connect");=20 > exit(1);=20 > }=20 > =20 > /*printf("Socket connected. Before while loop, value is=20 > %i\n",strcmp(msg,"quit"));=20 > */=20 > while(strcmp(msg,"quit")) { /* Begin chat routine with the server = */=20 > =20 > printf("Before recv\n");=20 > /*sleep(5);*/=20 > =20 > if ((numbytes=3Drecv(sockfd, buf, MAXDATASIZE, 0)) =3D=3D -1) {=20 > perror("recv");=20 > exit(1);=20 > }=20 > =20 > printf("After recv\n");=20 > =20 > buf[numbytes] =3D '\0';=20 > =20 > printf("Received: %s\n",buf);=20 > =20 > printf("Command > ");=20 > =20 > scanf("%s",msg);=20 > =20 > /* if (sizeof(msg) >=3D MAXDATASIZE)=20 > msg[MAXDATASIZE] =3D '\0';=20 > */=20 > printf("Size of message is %i\n",sizeof(msg));=20 > =20 > if ((numbytes =3D send(sockfd, msg, MAXDATASIZE, 0)) =3D=3D -1) {=20= > perror("send");=20 > exit(1);=20 > }=20 > =20 > printf("sent message %s to %s\nNumber of bytes sent is=20 > %i\n",msg,inet_ntoa(their_addr.sin_addr),numbytes);=20 > =20 > if(!strcmp(msg,"quit"))=20 > printf("Recieved quit command, exiting!\n");=20 > =20 > }=20 > =20 > close(sockfd);=20 > =20 > return 0;=20 > }=20 > =20 Justin C. Walker, Curmudgeon-At-Large * Institute for General Semantics | Manager, CoreOS Networking | When LuteFiske is outlawed Apple Computer, Inc. | Only outlaws will have 2 Infinite Loop | LuteFiske Cupertino, CA 95014 | = *---------------------------------------*-------------------------------* To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 23 23:41:54 2000 Delivered-To: freebsd-net@freebsd.org Received: from jason.argos.org (a1-3a105.neo.rr.com [24.93.180.105]) by hub.freebsd.org (Postfix) with ESMTP id 0F6B637B479 for ; Mon, 23 Oct 2000 23:41:52 -0700 (PDT) Received: from localhost (mike@localhost) by jason.argos.org (8.10.1/8.10.1) with ESMTP id e9O6dsq09989 for ; Tue, 24 Oct 2000 02:39:54 -0400 Date: Tue, 24 Oct 2000 02:39:54 -0400 (EDT) From: Mike Nowlin To: freebsd-net@freebsd.org Subject: src IP addr w/multiple ifaces Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have a system here that has four different ethernet interfaces (dc0, dc1, dc2, and fxp0), each on a different IP address: dc0 10.220.134.162/30 <-- Link to outside world dc1 1.2.3.4/27 <-- Subnet assigned by my ISP dc2 10.98.1.1/16 fxp0 10.97.1.1/16 The machines "assigned" IP is the 1.2.3.4 addr, but anytime I try and make an outgoing connection, it uses a src IP of 10.220.134.162, not 1.2.3.4. (We had to do it this way so that the ISP could route the /27 block via 10.220.134.162.) How is this source IP chosen in the kernel - by order of interfaces? (The order listed above is the order probed during bootup.) Is there any way to force it to use the 1.2.3.4 addr instead of 10.220.134.162? I imagine I could figure it out with NATD, but I see that as being a little ugly... --mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 1: 9:40 2000 Delivered-To: freebsd-net@freebsd.org Received: from vbook.express.ru (vbook.express.ru [212.24.37.106]) by hub.freebsd.org (Postfix) with ESMTP id EC8F237B479 for ; Tue, 24 Oct 2000 01:09:36 -0700 (PDT) Received: (from vova@localhost) by vbook.express.ru (8.9.3/8.9.3) id MAA52996; Tue, 24 Oct 2000 12:09:47 +0400 (MSD) (envelope-from vova) From: "Vladimir B. Grebenschikov" MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <14837.17355.162839.648003@vbook.express.ru> Date: Tue, 24 Oct 2000 12:09:47 +0400 (MSD) To: Yar Tikhiy Cc: freebsd-net@freebsd.org Subject: Re: kern/22185: Identical IP addresses on two broadcast interfaces In-Reply-To: <200010240729.LAA23397@comp.chem.msu.su> References: <14836.34675.657339.710180@vbook.express.ru> <200010240729.LAA23397@comp.chem.msu.su> X-Mailer: VM 6.72 under 21.1 (patch 9) "Canyonlands" XEmacs Lucid Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Yar Tikhiy writes: > Hello Vladimir, > > > > It's possible to add two absolutely identical IP addresses > > > to two different broadcast interfaces. > > > > > > I guess it would be possible to add different addresses from > > > the same network, too. > > > > > > The problem arises from in_control()/in_ifinit() leaving the > > > address installed even if adding the link-layer route fails. > > > > Is it a bug ? May be it is nice feature ? It feauter is useful if know > > exact what happens. > > IMHO this feature is hard to use and likely to cause troubles because > interfaces' IP addresses are coupled tightly with the routing table, > which is not tolerant to multiple entries pointing to the same destination. > Of course, I can imagine cases where the feature might appear useful. > Anyway, it's up to the development team to decide if it's a feature or > a bug. I just reported the system's behaviour that didn't seem completely > natural to me. For me routing to connected interface have no deal with interface addreses. Common use is that interface 10.0.0.1/24 appears with route 10.0.0.0/24 to the interface, yes ? But look at small example: ifconfig fxp0 10.0.0.1 netmask 255.255.255.0 ifconfig fxp1 10.0.0.2 netmask 255.255.255.0 and fxp0 and fxp1 coinnected to one real ethernet segment. So route for will appear only on fxp0. But we can use fxp2 for external input for 10.0.0.2, or use something like 'route add default 10.0.0.77 -iface fxp1' for setting default route through fxp1. Another example: I have router with pccard interface wi, and I need to use interface address to star nat's and netgraph tunnel. On moment starting nat and ng tunnel pccard not detected and interface wi0 not present. So I am add exactly same address on loopback (with mask /32) and all starup correctly, than wi0 appears with same interface address and some real mask (/28 for example) - all works great. > SY, Yar -- TSB Russian Express, Moscow Vladimir B. Grebenschikov, vova@express.ru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 1:43:37 2000 Delivered-To: freebsd-net@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id 4751137B479 for ; Tue, 24 Oct 2000 01:43:29 -0700 (PDT) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.0/8.11.0) id e9O8fsV68549; Tue, 24 Oct 2000 11:41:54 +0300 (EEST) (envelope-from ru) Date: Tue, 24 Oct 2000 11:41:54 +0300 From: Ruslan Ermilov To: Mike Nowlin Cc: freebsd-net@FreeBSD.ORG Subject: Re: src IP addr w/multiple ifaces Message-ID: <20001024114154.B67369@sunbay.com> Mail-Followup-To: Mike Nowlin , freebsd-net@FreeBSD.ORG References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from mike@argos.org on Tue, Oct 24, 2000 at 02:39:54AM -0400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Oct 24, 2000 at 02:39:54AM -0400, Mike Nowlin wrote: > > I have a system here that has four different ethernet interfaces (dc0, > dc1, dc2, and fxp0), each on a different IP address: > > dc0 10.220.134.162/30 <-- Link to outside world > dc1 1.2.3.4/27 <-- Subnet assigned by my ISP > dc2 10.98.1.1/16 > fxp0 10.97.1.1/16 > > The machines "assigned" IP is the 1.2.3.4 addr, but anytime I try > and make an outgoing connection, it uses a src IP of 10.220.134.162, not > 1.2.3.4. (We had to do it this way so that the ISP could route the /27 > block via 10.220.134.162.) > > How is this source IP chosen in the kernel - by order of > interfaces? (The order listed above is the order probed during > bootup.) Is there any way to force it to use the 1.2.3.4 addr instead of > 10.220.134.162? I imagine I could figure it out with NATD, but I see that > as being a little ugly... > See the output of the "route -vn get default" command, it will show you the IFP (interface pointer), and IFA (interface address). If you would have the 1.2.3.4 as an alias address on the dc0 interface, you could change it with "route change default -ifa 1.2.3.4". But you happen to have it on dc1. -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 5:14:49 2000 Delivered-To: freebsd-net@freebsd.org Received: from hanoi.cronyx.ru (hanoi.cronyx.ru [144.206.181.53]) by hub.freebsd.org (Postfix) with ESMTP id 757BA37B4C5 for ; Tue, 24 Oct 2000 05:14:42 -0700 (PDT) Received: from cronyx.ru by hanoi.cronyx.ru with ESMTP id QAA01888; (8.9.3/vak/2.1) Tue, 24 Oct 2000 16:22:01 +0400 (MSD) Message-ID: <39F57E2C.8B00509C@cronyx.ru> Date: Tue, 24 Oct 2000 16:18:52 +0400 From: Kurakin Roman Organization: Cronyx X-Mailer: Mozilla 4.6 [en] (WinNT; I) X-Accept-Language: ru,en MIME-Version: 1.0 To: Jean-Christophe Varaillon Cc: freebsd-net@FreeBSD.ORG Subject: Re: - sr Interface & Conf - References: Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Which modification do you mean? Are you going to use Sync PPP or Cisco HDLC protocol? Any way if you are going to use if_sppp and don't want to use NETGRAPH, I can send some useful patches for sppp. Kurakin Roman Jean-Christophe Varaillon wrote: > > I would like to connect a freeBSD box on a Cisco router. > > To do it I did rebuilt a kernel with that: > > pseudo-device sppp > device sr0 at pci? port 0x300 irq iomem 0xd0000 > > Then, when I made dmseg 'sr0', it tells me that: > sr0 XXX: driver didn't set ifq_maxlen > sr1 XXX: driver didn't set ifq_maxlen > > >From a specialist called Kenjiro Cho: > > Starting from FreeBSD-4, drivers are supposed to set ifq_maxlen. > The messages are just warnings but if you want to suppress the > warning, add > ifp->if_snd.ifq_maxlen = IFQ_MAXLEN; > in srattach() in sys/i386/isa/if_sr.c just before calling if_attach(). > > ---------------- > But how the FreeBSD box can know the modification since I didn't compile > the program ? > And I am not sur that reboot the machine is enough ? > > If someone has a global bit of idea, he is more than welcome. > > Thanks on advanced, > Jean-Christophe. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 5:25:56 2000 Delivered-To: freebsd-net@freebsd.org Received: from brunel.uk1.vbc.net (brunel.uk1.vbc.net [194.207.2.8]) by hub.freebsd.org (Postfix) with ESMTP id 2E20337B479 for ; Tue, 24 Oct 2000 05:25:54 -0700 (PDT) Received: from localhost (jcv@localhost) by brunel.uk1.vbc.net (8.11.0/8.11.0) with ESMTP id e9OCPX796477; Tue, 24 Oct 2000 13:25:33 +0100 (BST) X-Authentication-Warning: brunel.uk1.vbc.net: jcv owned process doing -bs Date: Tue, 24 Oct 2000 13:25:33 +0100 (BST) From: Jean-Christophe Varaillon X-Sender: jcv@brunel.uk1.vbc.net To: Kurakin Roman Cc: freebsd-net@FreeBSD.ORG Subject: Re: - sr Interface & Conf - In-Reply-To: <39F57E2C.8B00509C@cronyx.ru> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi Kuraki, > Which modification do you mean? > Are you going to use Sync PPP or Cisco HDLC protocol? > Any way if you are going to use if_sppp and don't want to use NETGRAPH, > I can send some useful patches for sppp. I don't know if I am going to use Sync PPP or Cisco HDLC protocol. The thing is from "man sr" where it is precised that I have to add "pseudo-device sppp" What are the purpose of the patches for sppp that you can send ? > > I would like to connect a freeBSD box on a Cisco router. > > > > To do it I did rebuilt a kernel with that: > > > > pseudo-device sppp > > device sr0 at pci? port 0x300 irq iomem 0xd0000 > > > > Then, when I made dmseg 'sr0', it tells me that: > > sr0 XXX: driver didn't set ifq_maxlen > > sr1 XXX: driver didn't set ifq_maxlen > > > > >From a specialist called Kenjiro Cho: > > > > Starting from FreeBSD-4, drivers are supposed to set ifq_maxlen. > > The messages are just warnings but if you want to suppress the > > warning, add > > ifp->if_snd.ifq_maxlen = IFQ_MAXLEN; > > in srattach() in sys/i386/isa/if_sr.c just before calling if_attach(). To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 6:44:53 2000 Delivered-To: freebsd-net@freebsd.org Received: from brunel.uk1.vbc.net (brunel.uk1.vbc.net [194.207.2.8]) by hub.freebsd.org (Postfix) with ESMTP id 7469037B479 for ; Tue, 24 Oct 2000 06:44:51 -0700 (PDT) Received: from localhost (jcv@localhost) by brunel.uk1.vbc.net (8.11.0/8.11.0) with ESMTP id e9ODinm96841 for ; Tue, 24 Oct 2000 14:44:50 +0100 (BST) X-Authentication-Warning: brunel.uk1.vbc.net: jcv owned process doing -bs Date: Tue, 24 Oct 2000 14:44:49 +0100 (BST) From: Jean-Christophe Varaillon X-Sender: jcv@brunel.uk1.vbc.net To: Freebsd-net Subject: - Config Serial Line - In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I want to use a serial line beetwen a Cisco and jcv. I configured on each end and this is what I have: jcv# dmesg | grep 'sr0' sr0: Adapter 0, port 0. sr0 XXX: driver didn't set ifq_maxlen sr0: transmit failed, ST0 00, ST1 40, ST3 0f, DSR 03. sr0: transmit failed, ST0 00, ST1 40, ST3 0f, DSR 03. sr0: transmit failed, ST0 00, ST1 40, ST3 0f, DSR 03. sr0: Down event, taking interface down. jcv# If it's talking to someone... ------- Jean-Christophe. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 7: 9: 7 2000 Delivered-To: freebsd-net@freebsd.org Received: from zibbi.icomtek.csir.co.za (zibbi.icomtek.csir.co.za [146.64.24.58]) by hub.freebsd.org (Postfix) with ESMTP id EB43337B479 for ; Tue, 24 Oct 2000 07:08:59 -0700 (PDT) Received: (from jhay@localhost) by zibbi.icomtek.csir.co.za (8.11.0/8.11.0) id e9OE8GF97402; Tue, 24 Oct 2000 16:08:16 +0200 (SAT) (envelope-from jhay) From: John Hay Message-Id: <200010241408.e9OE8GF97402@zibbi.icomtek.csir.co.za> Subject: Re: - Config Serial Line - In-Reply-To: from Jean-Christophe Varaillon at "Oct 24, 2000 02:44:49 pm" To: jcv@vbc.net (Jean-Christophe Varaillon) Date: Tue, 24 Oct 2000 16:08:16 +0200 (SAT) Cc: freebsd-net@FreeBSD.ORG (Freebsd-net) X-Mailer: ELM [version 2.4ME+ PL54 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > I want to use a serial line beetwen a Cisco and jcv. > > I configured on each end and this is what I have: > > jcv# dmesg | grep 'sr0' > sr0: Adapter 0, port 0. > sr0 XXX: driver didn't set ifq_maxlen > sr0: transmit failed, ST0 00, ST1 40, ST3 0f, DSR 03. > sr0: transmit failed, ST0 00, ST1 40, ST3 0f, DSR 03. > sr0: transmit failed, ST0 00, ST1 40, ST3 0f, DSR 03. > sr0: Down event, taking interface down. > jcv# > > If it's talking to someone... That looks like it is not receiving a clock signal. John -- John Hay -- John.Hay@icomtek.csir.co.za To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 7:57:43 2000 Delivered-To: freebsd-net@freefall.freebsd.org Received: from ICSI.Berkeley.EDU (fruitcake.ICSI.Berkeley.EDU [192.150.186.11]) by hub.freebsd.org (Postfix) with ESMTP id C822437B479 for ; Tue, 24 Oct 2000 07:57:41 -0700 (PDT) Received: from fondue.ICSI.Berkeley.EDU (fondue.ICSI.Berkeley.EDU [192.150.186.19]) by ICSI.Berkeley.EDU (8.9.0/8.9.0) with ESMTP id HAA23758 for ; Tue, 24 Oct 2000 07:57:41 -0700 (PDT) Received: from localhost (rizzo@localhost) by fondue.ICSI.Berkeley.EDU (8.8.2/1.8) with ESMTP id HAA12591 for ; Tue, 24 Oct 2000 07:57:41 -0700 (PDT) X-Authentication-Warning: fondue.ICSI.Berkeley.EDU: rizzo owned process doing -bs Date: Tue, 24 Oct 2000 07:57:41 -0700 (PDT) From: Luigi Rizzo To: freebsd-net@freefall.freebsd.org Subject: Any GRE support in FreeBSD ? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org As the subject says, is there any GRE support in FreeBSD ? (GRE is an encapsulation mechanism documented in RFC1701) thanks luigi rizzo To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 7:59:40 2000 Delivered-To: freebsd-net@freebsd.org Received: from hanoi.cronyx.ru (hanoi.cronyx.ru [144.206.181.53]) by hub.freebsd.org (Postfix) with ESMTP id 0176937B479 for ; Tue, 24 Oct 2000 07:59:35 -0700 (PDT) Received: from cronyx.ru by hanoi.cronyx.ru with ESMTP id TAA02308; (8.9.3/vak/2.1) Tue, 24 Oct 2000 19:08:29 +0400 (MSD) Message-ID: <39F5A52F.CCA5A9CD@cronyx.ru> Date: Tue, 24 Oct 2000 19:05:19 +0400 From: Kurakin Roman Organization: Cronyx X-Mailer: Mozilla 4.6 [en] (WinNT; I) X-Accept-Language: ru,en MIME-Version: 1.0 To: Jean-Christophe Varaillon Cc: freebsd-net@FreeBSD.ORG Subject: Re: - sr Interface & Conf - References: Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Jean-Christophe Varaillon wrote: > > Hi Kurakin, > > > Which modification do you mean? > > Are you going to use Sync PPP or Cisco HDLC protocol? > > Any way if you are going to use if_sppp and don't want to use NETGRAPH, > > I can send some useful patches for sppp. > > I don't know if I am going to use Sync PPP or Cisco HDLC protocol. > The thing is from "man sr" where it is precised that I have to add > "pseudo-device sppp" Now FreeBSD supports two branches of sync drivers. First one old and traditional sppp. Second one - NETGRAPH. (man netgraph) As far as I know sr supports NETGRAPH. > What are the purpose of the patches for sppp that you can send ? Current state of sppp has incorrect behavior in some cases (ppp, cisco). Those patches solve those problems and adds support of FrameRelay. > > > I would like to connect a freeBSD box on a Cisco router. > > > > > > To do it I did rebuilt a kernel with that: > > > > > > pseudo-device sppp > > > device sr0 at pci? port 0x300 irq iomem 0xd0000 > > > > > > Then, when I made dmseg 'sr0', it tells me that: > > > sr0 XXX: driver didn't set ifq_maxlen > > > sr1 XXX: driver didn't set ifq_maxlen > > > > > > >From a specialist called Kenjiro Cho: > > > > > > Starting from FreeBSD-4, drivers are supposed to set ifq_maxlen. > > > The messages are just warnings but if you want to suppress the > > > warning, add > > > ifp->if_snd.ifq_maxlen = IFQ_MAXLEN; > > > in srattach() in sys/i386/isa/if_sr.c just before calling if_attach(). > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 8: 3:56 2000 Delivered-To: freebsd-net@freefall.freebsd.org Received: from roam.psg.com (nanog-20-1.atdn.net [64.236.20.1]) by hub.freebsd.org (Postfix) with ESMTP id 11DB737B4C5 for ; Tue, 24 Oct 2000 08:03:55 -0700 (PDT) Received: from randy by roam.psg.com with local (Exim 3.12 #1) id 13o5cB-0004Gc-00; Tue, 24 Oct 2000 11:03:47 -0400 From: Randy Bush MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit To: Luigi Rizzo Cc: freebsd-net@freefall.freebsd.org Subject: Re: Any GRE support in FreeBSD ? References: Message-Id: Date: Tue, 24 Oct 2000 11:03:47 -0400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > (GRE is an encapsulation mechanism documented in RFC1701) 2784 obsoletes 1701 randy To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 8: 5:46 2000 Delivered-To: freebsd-net@freebsd.org Received: from hanoi.cronyx.ru (hanoi.cronyx.ru [144.206.181.53]) by hub.freebsd.org (Postfix) with ESMTP id DDD4E37B479 for ; Tue, 24 Oct 2000 08:05:27 -0700 (PDT) Received: from cronyx.ru by hanoi.cronyx.ru with ESMTP id TAA02331; (8.9.3/vak/2.1) Tue, 24 Oct 2000 19:14:28 +0400 (MSD) Message-ID: <39F5A697.932C29B5@cronyx.ru> Date: Tue, 24 Oct 2000 19:11:19 +0400 From: Kurakin Roman Organization: Cronyx X-Mailer: Mozilla 4.6 [en] (WinNT; I) X-Accept-Language: ru,en MIME-Version: 1.0 To: Jean-Christophe Varaillon Cc: Freebsd-net Subject: Re: - Config Serial Line - References: Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Jean-Christophe Varaillon wrote: > > I want to use a serial line beetwen a Cisco and jcv. > > I configured on each end and this is what I have: > > jcv# dmesg | grep 'sr0' > sr0: Adapter 0, port 0. > sr0 XXX: driver didn't set ifq_maxlen > sr0: transmit failed, ST0 00, ST1 40, ST3 0f, DSR 03. > sr0: transmit failed, ST0 00, ST1 40, ST3 0f, DSR 03. > sr0: transmit failed, ST0 00, ST1 40, ST3 0f, DSR 03. > sr0: Down event, taking interface down. > jcv# > > If it's talking to someone... Is it ISA card? If it is, then check if you mark interrupt for that card as used by ISA bus in BIOS. Kurakin Roman > ------- > Jean-Christophe. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 8:24:15 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id E201F37B479 for ; Tue, 24 Oct 2000 08:24:09 -0700 (PDT) Received: from kairo-01.budapest.interware.hu ([195.70.50.65] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13o5vg-0006eY-00; Tue, 24 Oct 2000 17:23:56 +0200 Message-ID: <39F5A987.882A2A5B@elischer.org> Date: Tue, 24 Oct 2000 08:23:51 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Kurakin Roman Cc: Jean-Christophe Varaillon , freebsd-net@FreeBSD.ORG Subject: Re: - sr Interface & Conf - References: <39F5A52F.CCA5A9CD@cronyx.ru> Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Kurakin Roman wrote: > > Hi, > > Jean-Christophe Varaillon wrote: > Now FreeBSD supports two branches of sync drivers. First one old and > traditional sppp. Second one - NETGRAPH. (man netgraph) > As far as I know sr supports NETGRAPH. The problem we have is that no-one who can work with the netgraph versions actually HAVE such a card or the information as to how to run them so we have a problem in that at least SOME of the sr cards will not work under netgraph, even though theoretically they should. The netgraph frame relay implememtation is independent of the lower level drivers however and has been heavily tested at MCI (and other places). > > > What are the purpose of the patches for sppp that you can send ? > > Current state of sppp has incorrect behavior in some cases (ppp, cisco). > Those patches solve those problems and adds support of FrameRelay. What were those incorrect behavious? I would like ot see if they were inherritted by the netgraph cisco code. > > > > > I would like to connect a freeBSD box on a Cisco router. > > > > > > > > To do it I did rebuilt a kernel with that: > > > > > > > > pseudo-device sppp > > > > device sr0 at pci? port 0x300 irq iomem 0xd0000 > > > > > > > > Then, when I made dmseg 'sr0', it tells me that: > > > > sr0 XXX: driver didn't set ifq_maxlen > > > > sr1 XXX: driver didn't set ifq_maxlen > > > > > > > > >From a specialist called Kenjiro Cho: > > > > > > > > Starting from FreeBSD-4, drivers are supposed to set ifq_maxlen. > > > > The messages are just warnings but if you want to suppress the > > > > warning, add > > > > ifp->if_snd.ifq_maxlen = IFQ_MAXLEN; > > > > in srattach() in sys/i386/isa/if_sr.c just before calling if_attach(). The netgraph code doesn't have an "interface" for the card but rather links the protocol modules to a general purpose "assignable" interface module. In the case of Frame relay, one per Frame relay channel. -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 8:50:18 2000 Delivered-To: freebsd-net@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id 0D55437B479 for ; Tue, 24 Oct 2000 08:50:16 -0700 (PDT) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id LAA62447; Tue, 24 Oct 2000 11:48:40 -0400 (EDT) (envelope-from wollman) Date: Tue, 24 Oct 2000 11:48:40 -0400 (EDT) From: Garrett Wollman Message-Id: <200010241548.LAA62447@khavrinen.lcs.mit.edu> To: Mike Nowlin Cc: freebsd-net@FreeBSD.ORG Subject: src IP addr w/multiple ifaces In-Reply-To: References: Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: > How is this source IP chosen in the kernel If the source address is ``bound'' (either by the socket or by the protocol if there is no socket), then that source address will always be used. Otherwise, the source address is chosen to be the interface address associated with the route to the destination, or the interface address of the interface the destination is attached to if routing is disabled. This algorithm was chosen so that the Right Thing happens on multi-homed hosts where not all communication partners have routes to all addresses. -GAWollman To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 9:32:20 2000 Delivered-To: freebsd-net@freebsd.org Received: from mailman.packetdesign.com (dns.PACKETDESIGN.NET [216.15.46.10]) by hub.freebsd.org (Postfix) with ESMTP id 0281D37B4D7 for ; Tue, 24 Oct 2000 09:32:17 -0700 (PDT) Received: from bubba.packetdesign.com (bubba.packetdesign.com [192.168.0.223]) by mailman.packetdesign.com (8.11.0/8.11.0) with ESMTP id e9OGWGQ08072 for ; Tue, 24 Oct 2000 09:32:16 -0700 (PDT) (envelope-from archie@packetdesign.com) Received: (from archie@localhost) by bubba.packetdesign.com (8.11.1/8.11.1) id e9OGTe426654 for freebsd-net@freebsd.org; Tue, 24 Oct 2000 09:29:40 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010241629.e9OGTe426654@bubba.packetdesign.com> Subject: tcpdump patch To: freebsd-net@freebsd.org Date: Tue, 24 Oct 2000 09:29:40 -0700 (PDT) Reply-To: archie@freebsd.org X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Anyone care to review this patch? It prints a message if a TCP packet with a bad checksum is seen. Thanks, -Archie __________________________________________________________________________ Archie Cobbs * Packet Design, Inc. * http://www.packetdesign.com Index: src/contrib/tcpdump/interface.h =================================================================== RCS file: /home/ncvs/src/contrib/tcpdump/interface.h,v retrieving revision 1.4 diff -u -r1.4 interface.h --- interface.h 2000/01/30 01:00:50 1.4 +++ interface.h 2000/07/20 00:03:17 @@ -263,4 +263,4 @@ extern void ospf6_print(const u_char *, u_int); extern void dhcp6_print(const u_char *, u_int, u_short, u_short); #endif /*INET6*/ -extern u_short in_cksum(const u_short *addr, register int len, u_short csum); +extern u_short in_cksum(const u_short *addr, register int len, u_int csum); Index: src/contrib/tcpdump/print-ip.c =================================================================== RCS file: /home/ncvs/src/contrib/tcpdump/print-ip.c,v retrieving revision 1.7 diff -u -r1.7 print-ip.c --- print-ip.c 2000/01/30 01:00:53 1.7 +++ print-ip.c 2000/07/20 00:03:18 @@ -379,12 +379,11 @@ * don't modifiy the packet. */ u_short -in_cksum(const u_short *addr, register int len, u_short csum) +in_cksum(const u_short *addr, register int len, u_int sum) { int nleft = len; const u_short *w = addr; u_short answer; - int sum = csum; /* * Our algorithm is simple, using a 32 bit accumulator (sum), Index: src/contrib/tcpdump/print-tcp.c =================================================================== RCS file: /home/ncvs/src/contrib/tcpdump/print-tcp.c,v retrieving revision 1.1.1.4 diff -u -r1.1.1.4 print-tcp.c --- print-tcp.c 2000/01/30 00:45:48 1.1.1.4 +++ print-tcp.c 2000/07/20 00:03:18 @@ -494,6 +494,25 @@ * Decode payload if necessary. */ bp += (tp->th_off * 4); + + /* + * Verify the checksum if the full packet was captured + */ + if (vflag && TTEST2(*bp, length)) { + u_short tlen = (tp->th_off * 4) + length; + u_int sum = 0; + + sum += ((u_short *)&ip->ip_src)[0]; + sum += ((u_short *)&ip->ip_src)[1]; + sum += ((u_short *)&ip->ip_src)[2]; + sum += ((u_short *)&ip->ip_src)[3]; + sum += htons(IPPROTO_TCP); + sum += (u_short)htons(tlen); + sum = in_cksum((u_short *)tp, tlen, sum); + if (sum != 0) + (void)printf(" bad tcp cksum %x!", ntohs(tp->th_sum)); + } + if (!qflag && vflag && length > 0 && (sport == TELNET_PORT || dport == TELNET_PORT)) telnet_print(bp, length); To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 9:45:33 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.biographix.com (unknown [207.236.111.133]) by hub.freebsd.org (Postfix) with ESMTP id B429A37B479 for ; Tue, 24 Oct 2000 09:45:30 -0700 (PDT) Received: from bottleneck2000 ([192.168.1.12]) by mail.biographix.com (8.11.1/8.11.1) with SMTP id e9OJR8r08004 for ; Tue, 24 Oct 2000 15:27:09 -0400 (EDT) Message-ID: <01a101c03dda$32423ae0$0c01a8c0@bottleneck2000> From: "Elliott Perrin" To: Subject: Three interface routing problem Date: Tue, 24 Oct 2000 12:48:11 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Wondering if anyone can shed some light on how to do this properly. I am using FreeBSD 4.0 on a machine configured as a firewall. I have been trying to set it up so that I can have three interfaces, one to live web servers, one to carrier and one to LAN. Current interface configuration is xl0 192.168.1.1 netmask 255.255.255.0 xl1 xxx.xxx.xxx.115 netmask 255.255.255.248 xl2 xxx.xxx.xxx..129 netmask 255.255.255.240 xl2 goes to carrier, xl1 goes to web servers (DMZ), and xl0 is pretty obvious. the first three octects of xl1 and xl2 are the same. Here is the problem experienced, when I connect the network to xl0 the local LAN can reach our DMZ, but cannot reach the Internet. The web servers remain live to the Internet and to the LAN and I can reach reach the outside world from the web servers. I have done this with all ipfw rules flushed to be sure that is not the ruleset and NATD is running in -u with the address of the xl2 interface (out to carrier) specified as the address to translate to. Within Sysctl net.inet.ip.fw.enable: 1 net.inet.ip.fw.one_pass: 1 Any hints as to what I am missing, I figure I gotta be missing something here. Cheers ________________________________________ Elliott Perrin eperrin@bigorbit.com [t] 416.516.0705 ext 25 [f] 416.516.9256 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 10:17:53 2000 Delivered-To: freebsd-net@freebsd.org Received: from mailtoaster2.pipeline.ch (mailtoaster2.pipeline.ch [62.48.0.71]) by hub.freebsd.org (Postfix) with ESMTP id 5631C37B479 for ; Tue, 24 Oct 2000 10:17:49 -0700 (PDT) Received: (qmail 9482 invoked from network); 24 Oct 2000 17:19:32 -0000 Received: from unknown (HELO pipeline.ch) ([62.48.0.53]) (envelope-sender ) by mailtoaster2.pipeline.ch (qmail-ldap-1.03) with RC4-MD5 encrypted SMTP for ; 24 Oct 2000 17:19:32 -0000 Message-ID: <39F5C458.D77E62A0@pipeline.ch> Date: Tue, 24 Oct 2000 19:18:16 +0200 From: Andre Oppermann X-Mailer: Mozilla 4.74 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-net@freebsd.org Subject: Problem with pppoed->ppp Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org There seems to be a problem with ppp running in an server pppoe environment. The first pppoe connection comes in fine but with the second it looks like ppp wants to use the tun0 interface again which obviously doesn't work since it is occupied already. Any hints on this problem? How to make ppp use the next tun interface? My config is this: pppoed -Fd -a vaio -p test fxp0 ppp.conf: default: allow mode direct set mru 1492 set mtu 1492 set speed sync set cd 5! set timeout 1800 enable lqr enable chap accept dns test: set ifaddr 192.168.0.2 192.168.1.32/27 The log says this: Oct 25 19:13:47 vaio ppp[364]: Error: iface_inAdd: ioctl(SIOCAIFADDR): 192.168.0.2: File exists Oct 25 19:13:47 vaio ppp[364]: Error: ipcp_InterfaceUp: unable to set ip address Oct 25 19:13:51 vaio ppp[364]: Warning: ip_Input: IPCP not open - packet dropped -- Andre To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 10:44: 3 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id B788737B479 for ; Tue, 24 Oct 2000 10:43:57 -0700 (PDT) Received: from mogadishu-54.budapest.interware.hu ([195.70.52.118] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13o872-0000WW-00; Tue, 24 Oct 2000 19:43:49 +0200 Message-ID: <39F5CA4F.4B74EFD9@elischer.org> Date: Tue, 24 Oct 2000 10:43:43 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Andre Oppermann Cc: freebsd-net@freebsd.org Subject: Re: Problem with pppoed->ppp References: <39F5C458.D77E62A0@pipeline.ch> Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Andre Oppermann wrote: > > There seems to be a problem with ppp running in an server pppoe > environment. > > The first pppoe connection comes in fine but with the second it looks > like ppp wants to use the tun0 interface again which obviously doesn't > work since it is occupied already. > > Any hints on this problem? How to make ppp use the next tun interface? > > My config is this: > > pppoed -Fd -a vaio -p test fxp0 I guess maybe pppoed needs to be able to suggest some indentifier to ppp. however what I did to test it was to make it run a script (instead of ppp directly, and have the script select a different (unused) ppp configuration) Since it was a rather odd configuration I'm not sure that ppp can do this at the moment (I forget how I did it). mpd on the other hand can handle multiple pptp sessions and I can imagine that it may be able to handle multiple pppoe session swithout too much extension. for PPP, I defer to brian, and for mpd, archie. > > ppp.conf: > default: > allow mode direct > set mru 1492 > set mtu 1492 > set speed sync > set cd 5! > set timeout 1800 > enable lqr > enable chap > accept dns > test: > set ifaddr 192.168.0.2 192.168.1.32/27 > > The log says this: > > Oct 25 19:13:47 vaio ppp[364]: Error: iface_inAdd: ioctl(SIOCAIFADDR): > 192.168.0.2: > File exists > Oct 25 19:13:47 vaio ppp[364]: Error: ipcp_InterfaceUp: unable to set ip > address > Oct 25 19:13:51 vaio ppp[364]: Warning: ip_Input: IPCP not open - packet > dropped > > -- > Andre > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 11:29:47 2000 Delivered-To: freebsd-net@freebsd.org Received: from rover.village.org (rover.village.org [204.144.255.49]) by hub.freebsd.org (Postfix) with ESMTP id 6CBD337B661; Tue, 24 Oct 2000 11:29:38 -0700 (PDT) Received: from harmony.village.org (harmony.village.org [10.0.0.6]) by rover.village.org (8.11.0/8.11.0) with ESMTP id e9OITYn87779; Tue, 24 Oct 2000 12:29:34 -0600 (MDT) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.3/8.8.3) with ESMTP id MAA17470; Tue, 24 Oct 2000 12:29:33 -0600 (MDT) Message-Id: <200010241829.MAA17470@harmony.village.org> To: freebsd-current@FreeBSD.ORG Subject: Re: new rc.network6 and rc.firewall6 Cc: Jordan Hubbard , freebsd-net@FreeBSD.ORG In-reply-to: Your message of "Sun, 22 Oct 2000 15:39:57 PDT." <20001022153957.A4742@dragon.nuxi.com> References: <20001022153957.A4742@dragon.nuxi.com> <81966.972151537@winston.osd.bsdi.com> Date: Tue, 24 Oct 2000 12:29:33 -0600 From: Warner Losh Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In message <20001022153957.A4742@dragon.nuxi.com> "David O'Brien" writes: : At BSDcon Luke M showed me what the NetBSD 1.5 rc files look like. : They've moved them all to /etc/rc.d/ and made them very granular (as : SVR4, but w/o leading numbers in the filenames). The NetBSD : implementation also solved all the issues people have brought up in the : past -- dependacies, etc... : : We should just move to using their rc code. I agree. I've been using them for a while on my dog slow Windows CE machine. There were some minor issues when they were first committed to NetBSD on some platforms (due to a too early use of ps and some brokeness in ps on pmax, for example), but these were quickly resolved. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 13:45:16 2000 Delivered-To: freebsd-net@freebsd.org Received: from slarti.muc.de (slarti.muc.de [193.149.48.10]) by hub.freebsd.org (Postfix) with SMTP id 8833B37B4D7 for ; Tue, 24 Oct 2000 13:45:00 -0700 (PDT) Received: (qmail 21577 invoked from network); 24 Oct 2000 20:51:35 -0000 Received: from jhs.muc.de (193.149.49.84) by slarti.muc.de with SMTP; 24 Oct 2000 20:51:35 -0000 Received: from park.jhs.private (localhost [127.0.0.1]) by jhs.muc.de (8.11.0/8.11.0) with ESMTP id e9OFlNX17858; Tue, 24 Oct 2000 15:49:11 GMT (envelope-from jhs@park.jhs.private) Message-Id: <200010241549.e9OFlNX17858@jhs.muc.de> To: "Mike Hoskins" Cc: Rudy , freebsd-net@FreeBSD.org Subject: Re: '/kernel: Too many dynamic rules, sorry' In-Reply-To: Message from "Mike Hoskins" of "Mon, 23 Oct 2000 19:57:49 PDT." <20001024025749.476959EE01@snafu.adept.org> Date: Tue, 24 Oct 2000 17:47:22 +0200 From: "Julian Stacey Jhs%flip@jhs.muc.de xxyy" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Mike Hoskins" wrote: > > [4] A nice feature would be the ability to extend timeouts within the > ipfw > > ruleset for specific ports. For instance, I'd like to change the > timeout > > for my ssh connections from 5 minutes to 60 minutes. Something like: > > allow tcp from any to any 22 keep-state ack-lifetime 3600 in recv fxp0 > setup > > You need patches like Aaron Gifford's. Search the security list archive > for 'ipfw patches' from around July. Summer 1999 or before, I ran out of space for all my rules, I append my http://bim.bsn.com/~jhs/src/bsd/fixes/FreeBSD/src/gen/sys/netinet/ip_fw.c.diff see also sbin/ipfw/ipfw.8.diff share/man/man4/netintro.4.diff Its been running fine for over a year if someone wants to try it & commit it, please do. --------------------------------------------------------------------------- I have not read kernel to check if the kernel might now run out of space somewhere, now I can have more rules, I guess if its doing a malloc it will be OK. It's been running fine with me since at least January 2000 with my 688 rules. I did do a scan of entire /usr/include & /sys for "100" in case somewhere else a programmer has assumed the same 100 but without using a common define, that would have been evil, & deserved to be discovered. Ideally one could convert this 20 to a define & use a sysctl to amend it in the MIB base of net.inet.ip.fw *** 3.3-and-3.4-and-4.1.1-RELEASE/src/sys/netinet/ip_fw.c Sun Aug 29 18:29:44 1999 --- jhs/src/sys/netinet/ip_fw.c.nu Fri Jan 28 11:17:55 2000 *************** *** 1001,1007 **** return(0); } ! /* If entry number is 0, find highest numbered rule and add 100 */ if (ftmp->fw_number == 0) { for (fcp = LIST_FIRST(chainptr); fcp; fcp = LIST_NEXT(fcp, chain)) { if (fcp->rule->fw_number != (u_short)-1) --- 1001,1007 ---- return(0); } ! /* If entry number is 0, find highest numbered rule and add 20 */ if (ftmp->fw_number == 0) { for (fcp = LIST_FIRST(chainptr); fcp; fcp = LIST_NEXT(fcp, chain)) { if (fcp->rule->fw_number != (u_short)-1) *************** *** 1009,1016 **** else break; } ! if (nbr < IPFW_DEFAULT_RULE - 100) ! nbr += 100; ftmp->fw_number = nbr; } --- 1009,1016 ---- else break; } ! if (nbr < IPFW_DEFAULT_RULE - 20) ! nbr += 20; ftmp->fw_number = nbr; } # The next patch does not apply on 4.1-RELEASE, & by human inspection # I find no occurences of "100" that need changing, so its commented out. # *** 3.4-RELEASE/src/sbin/ipfw/ipfw.8 Wed Oct 20 15:07:36 1999 # --- jhs/src/sbin/ipfw/ipfw.8 Thu Apr 13 11:25:36 2000 # *************** # *** 228,234 **** # Multiple rules may share the same number and apply in # the order in which they were added. # .Pp # ! If a rule is added without a number, it is numbered 100 higher than the highest # defined rule number, unless the highest defined rule number is 65435 or # greater, in which case new rules are given that same number. # .Pp # --- 228,234 ---- # Multiple rules may share the same number and apply in # the order in which they were added. # .Pp # ! If a rule is added without a number, it is numbered 20 higher than the highest # defined rule number, unless the highest defined rule number is 65435 or # greater, in which case new rules are given that same number. # .Pp # -------------------------------------------------------------------------------- Files with "100" that I probably can ignore, but not certain, & would appreciate confirmation from someone. sys/netinet/tcp_debug.h #define TCP_NDEBUG 100 sys/kern/kern_sysctl.c k += 100; sys/netinet/ip_divert.c #define DIVSNDQ (65536 + 100) sys/netinet/ip_dummynet.c if (p->queue_size > 100) sys/netipx/spx_debug.h #define SPX_NDEBUG 100 sys/netns/spp_debug.h #define SPP_NDEBUG 100 Julian - Julian Stacey http://bim.bsn.com/~jhs/ Munich Unix Consultant. Free BSD Unix with 3900 packages & sources. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 14: 7:20 2000 Delivered-To: freebsd-net@freebsd.org Received: from virtual.sysadmin-inc.com (lists.sysadmin-inc.com [209.16.228.140]) by hub.freebsd.org (Postfix) with ESMTP id 6A24237B479; Tue, 24 Oct 2000 14:07:16 -0700 (PDT) Received: from 98wkst ([10.10.1.71]) by virtual.sysadmin-inc.com (8.9.1/8.9.1) with SMTP id RAA06331; Tue, 24 Oct 2000 17:07:48 -0400 Reply-To: From: "Peter Brezny" To: Subject: request for example rc.firewall script Date: Tue, 24 Oct 2000 17:07:24 -0400 Message-ID: <003401c03dfe$68b42d80$47010a0a@fire.sysadmininc.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm working on adding the rules needed to rc.firewall under the 'simple' sections to allow the script to function as a firewall/nat router for a small network with private ip's in the 10.x.x.x range. The firewall works if i use a simplified script, but the standard rc.firewall that comes with 4.1 doesn't appear to allow nat to work without modifying the rc.firewall script more than just putting in your network info. i think i need some allow rules before the # Stop RFC1918 nets on the outside inteface section of the script. If anyone would be willing to share a portion of their rc.firewall script I'd really appreciate it. Peter Brezny SysAdmin Services, Inc. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 14:31:41 2000 Delivered-To: freebsd-net@freebsd.org Received: from ICSI.Berkeley.EDU (fruitcake.ICSI.Berkeley.EDU [192.150.186.11]) by hub.freebsd.org (Postfix) with ESMTP id B184437B4C5 for ; Tue, 24 Oct 2000 14:31:36 -0700 (PDT) Received: from fondue.ICSI.Berkeley.EDU (fondue.ICSI.Berkeley.EDU [192.150.186.19]) by ICSI.Berkeley.EDU (8.9.0/8.9.0) with ESMTP id OAA28356; Tue, 24 Oct 2000 14:31:29 -0700 (PDT) Received: from localhost (rizzo@localhost) by fondue.ICSI.Berkeley.EDU (8.8.2/1.8) with ESMTP id OAA14497; Tue, 24 Oct 2000 14:31:29 -0700 (PDT) X-Authentication-Warning: fondue.ICSI.Berkeley.EDU: rizzo owned process doing -bs Date: Tue, 24 Oct 2000 14:31:29 -0700 (PDT) From: Luigi Rizzo To: "Julian Stacey Jhs%flip@jhs.muc.de xxyy" Cc: Mike Hoskins , Rudy , freebsd-net@FreeBSD.ORG Subject: Re: '/kernel: Too many dynamic rules, sorry In-Reply-To: <200010241549.e9OFlNX17858@jhs.muc.de> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Summer 1999 or before, > I ran out of space for all my rules, I append my Julian, i think you are talking about a different thing. The original posting was referring to the stateful (aka dynamic) ipfw rules, which were introduced in Jan2000. The patches which someone else mentioned were related to configuring timeouts on stateful rules. Your patches just modify the increment in autonumbering ipfw rules. [and the only reason i spotted this is the "Summer 1999" ...] cheers luigi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 20:15:54 2000 Delivered-To: freebsd-net@freebsd.org Received: from web1604.mail.yahoo.com (web1604.mail.yahoo.com [128.11.23.204]) by hub.freebsd.org (Postfix) with SMTP id 85CB437B479 for ; Tue, 24 Oct 2000 20:15:52 -0700 (PDT) Received: (qmail 21552 invoked by uid 60001); 25 Oct 2000 03:23:39 -0000 Message-ID: <20001025032339.21551.qmail@web1604.mail.yahoo.com> Received: from [128.42.4.66] by web1604.mail.yahoo.com; Tue, 24 Oct 2000 20:23:39 PDT Date: Tue, 24 Oct 2000 20:23:39 -0700 (PDT) From: Ping Yuan Subject: Clock keep changing. To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I am now doing some experiments on Freebsd3.2. What I want is a stable clock. But I found that the clock is keep changing (about several milliseconds in a minute). I have three questions about this: 1. Is it possible that the kernel is trying to synchroniz with some other machine? I've checked but found no NTPD runing. 2. Could it be possible to configure something in the kernel, and make it stable? 3. How can I get a stable clock? Thanks in advance, -ping __________________________________________________ Do You Yahoo!? Yahoo! Messenger - Talk while you surf! It's FREE. http://im.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 20:28:17 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.allnet.ne.jp (mailr.allnet.ne.jp [210.228.1.19]) by hub.freebsd.org (Postfix) with ESMTP id 3532137B4CF for ; Tue, 24 Oct 2000 20:28:13 -0700 (PDT) Received: from dorei (www.graycastle.com [210.228.3.165] (may be forged)) by mail.allnet.ne.jp (8.9.3/mail_980908.001/99072202) with SMTP id MAA00981 for ; Wed, 25 Oct 2000 12:28:11 +0900 (JST) Message-ID: <004301c03e33$a1373d20$0201a8c0@dorei> From: "kouryuu" To: References: Subject: /kernel: arp: message appearing Date: Wed, 25 Oct 2000 12:28:22 +0900 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I have a message which keeps appearing on the terminal: /kerel: arp: 192.168.1.97 is on dc0 but got reply from on ed0 Here is my environment: FBSD box: ed0 up on an external static IP address (via cable modem) dc0 up on an internal address, 192.168.1.1, connected to a hub. Win2k box One nic up on 192.168.1.2 which is connected to the hub. I don't know where 192.168.1.97 is coming from. Could it be from an external machine that FBSD thinks is on my internal network? Any advice appreciated. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 21: 8: 8 2000 Delivered-To: freebsd-net@freebsd.org Received: from snafu.adept.org (adsl-63-201-63-44.dsl.snfc21.pacbell.net [63.201.63.44]) by hub.freebsd.org (Postfix) with ESMTP id 20FF737B479 for ; Tue, 24 Oct 2000 21:08:07 -0700 (PDT) Received: by snafu.adept.org (Postfix, from userid 65532) id 307DB9EE01; Tue, 24 Oct 2000 21:07:47 -0700 (PDT) From: "Mike Hoskins" To: "Elliott Perrin" , Subject: Re: Three interface routing problem X-Mailer: NeoMail 1.20pre3 X-IPAddress: 206.136.108.22 MIME-Version: 1.0 Message-Id: <20001025040747.307DB9EE01@snafu.adept.org> Date: Tue, 24 Oct 2000 21:07:47 -0700 (PDT) Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > xl0 192.168.1.1 netmask 255.255.255.0 > xl1 xxx.xxx.xxx.115 netmask 255.255.255.248 > xl2 xxx.xxx.xxx..129 netmask 255.255.255.240 Do we support VLSM? -mrh To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 21:26:16 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id DD56537B479 for ; Tue, 24 Oct 2000 21:26:14 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id WAA13080; Tue, 24 Oct 2000 22:25:17 -0600 (MDT) Date: Tue, 24 Oct 2000 22:25:17 -0600 (MDT) From: Nick Rogness To: Mike Hoskins Cc: Elliott Perrin , freebsd-net@freebsd.org Subject: Re: Three interface routing problem In-Reply-To: <20001025040747.307DB9EE01@snafu.adept.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 24 Oct 2000, Mike Hoskins wrote: > > xl0 192.168.1.1 netmask 255.255.255.0 > > xl1 xxx.xxx.xxx.115 netmask 255.255.255.248 > > xl2 xxx.xxx.xxx..129 netmask 255.255.255.240 > > Do we support VLSM? I've never had a problem using them. The above addresses seem to be valid in their given subnets. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 22:31:29 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.allnet.ne.jp (mailr.allnet.ne.jp [210.228.1.19]) by hub.freebsd.org (Postfix) with ESMTP id 5463137B479 for ; Tue, 24 Oct 2000 22:31:26 -0700 (PDT) Received: from dorei (www.graycastle.com [210.228.3.165] (may be forged)) by mail.allnet.ne.jp (8.9.3/mail_980908.001/99072202) with SMTP id OAA02168 for ; Wed, 25 Oct 2000 14:28:45 +0900 (JST) Message-ID: <005e01c03e44$7a3907b0$0201a8c0@dorei> From: "kouryuu" To: References: <3.0.32.20001024210850.01feddc0@mail.ok-connect.com> Subject: Re: /kernel: arp: message appearing Date: Wed, 25 Oct 2000 14:22:30 +0900 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanks. I tried to filter the messages out with ipfw add deny all from 192.168.0.0 to but I am still getting the messages. Any idea how I can stop it? ----- Original Message ----- From: "Darcy Buskermolen" To: "kouryuu" Sent: Wednesday, October 25, 2000 1:08 PM Subject: Re: /kernel: arp: message appearing > it means that there is a box on the cable network that is brodcasting the > 192.168 address.. > > At 12:28 PM 10/25/00 +0900, you wrote: > >Hi, > > > >I have a message which keeps appearing on the terminal: > > > >/kerel: arp: 192.168.1.97 is on dc0 but got reply from on > >ed0 > > > >Here is my environment: > > > >FBSD box: > >ed0 up on an external static IP address (via cable modem) > >dc0 up on an internal address, 192.168.1.1, connected to a hub. > > > >Win2k box > >One nic up on 192.168.1.2 which is connected to the hub. > > > >I don't know where 192.168.1.97 is coming from. Could it be from an external > >machine that FBSD thinks is on my internal network? > > > >Any advice appreciated. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 24 23:34:43 2000 Delivered-To: freebsd-net@freebsd.org Received: from pizza.monkeybrains.net (pizza.monkeybrains.net [209.21.40.4]) by hub.freebsd.org (Postfix) with ESMTP id 90FEF37B479 for ; Tue, 24 Oct 2000 23:34:41 -0700 (PDT) Received: from localhost (rudy@localhost) by pizza.monkeybrains.net (8.11.1/8.11.1) with ESMTP id e9P6XSn73655; Tue, 24 Oct 2000 23:33:28 -0700 (PDT) (envelope-from rudy@monkeybrains.net) Date: Tue, 24 Oct 2000 23:33:28 -0700 (PDT) From: Rudy To: kouryuu Cc: freebsd-net@FreeBSD.ORG Subject: Re: /kernel: arp: message appearing In-Reply-To: <005e01c03e44$7a3907b0$0201a8c0@dorei> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 25 Oct 2000, kouryuu wrote: _Thanks. _ _I tried to filter the messages out with _ _ipfw add deny all from 192.168.0.0 to _> >/kerel: arp: 192.168.1.97 is on dc0 but got reply from Try: ipfw add deny all from 192.168.0.0/16 to any in via EXTERNAL_DEVICE You forgot the netmask. Also, you could add the following: ipfw add deny all from 192.168.0.0/16 to any out via EXTERNAL_DEVICE If you notice the count go up when you do ipfw show, you'll be able to deduce you have another problem. Rudy To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 0:45:11 2000 Delivered-To: freebsd-net@freebsd.org Received: from pizza.monkeybrains.net (pizza.monkeybrains.net [209.21.40.4]) by hub.freebsd.org (Postfix) with ESMTP id AAF8B37B479 for ; Wed, 25 Oct 2000 00:45:09 -0700 (PDT) Received: from localhost (rudy@localhost) by pizza.monkeybrains.net (8.11.1/8.11.1) with ESMTP id e9P7hwc74777 for ; Wed, 25 Oct 2000 00:43:58 -0700 (PDT) (envelope-from rudy@monkeybrains.net) Date: Wed, 25 Oct 2000 00:43:57 -0700 (PDT) From: Rudy To: freebsd-net@freebsd.org Subject: Re: arp and bridging In-Reply-To: <20001021090434.C2415@nathan.ruhr.de> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Just a followup: I cvsup the source, rebuilt world and the kernel (on the bridging box) and the problem went away. No phantom ARP messages for 5 days. Rudy On Sat, 21 Oct 2000, Udo Erdelhoff wrote: _Hi, _> Now I'm starting to think that the bridge is mixing and matching MAC _> address. _it looks that way. The obvious band-aid is a static entry on pizza (i.e. _arp -S 00:d0:b7:1f:fc:63 lala). That should fix your initial problem _(knocks on wood). To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 1:35:43 2000 Delivered-To: freebsd-net@freebsd.org Received: from hanoi.cronyx.ru (hanoi.cronyx.ru [144.206.181.53]) by hub.freebsd.org (Postfix) with ESMTP id F27B437B479 for ; Wed, 25 Oct 2000 01:35:39 -0700 (PDT) Received: from cronyx.ru by hanoi.cronyx.ru with ESMTP id MAA01416; (8.9.3/vak/2.1) Wed, 25 Oct 2000 12:43:00 +0400 (MSD) Message-ID: <39F69C53.55E7059D@cronyx.ru> Date: Wed, 25 Oct 2000 12:39:47 +0400 From: Kurakin Roman Organization: Cronyx X-Mailer: Mozilla 4.6 [en] (WinNT; I) X-Accept-Language: ru,en MIME-Version: 1.0 To: Julian Elischer Cc: freebsd-net@FreeBSD.ORG Subject: Re: - sr Interface & Conf - References: <39F5A52F.CCA5A9CD@cronyx.ru> <39F5A987.882A2A5B@elischer.org> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Julian Elischer wrote: > > Kurakin Roman wrote: > > > > Hi, > > > > Jean-Christophe Varaillon wrote: > > > Now FreeBSD supports two branches of sync drivers. First one old and > > traditional sppp. Second one - NETGRAPH. (man netgraph) > > As far as I know sr supports NETGRAPH. > > The problem we have is that no-one who can work with the netgraph > versions actually HAVE such a card or the information as to how to > run them so we have a problem in that at least SOME of the sr cards will > not work > under netgraph, even though theoretically they should. > > The netgraph frame relay implememtation is independent of the lower > level > drivers however and has been heavily tested at MCI > (and other places). Sppp implementation of FrameRelay is independent of the lower level drivers too. Support of FrameRelay in sppp was implemented quite long time ago and many people use it not only sers of our communication equipment use it. And as far as I know this code (sppp) was ported in some other OS. So we made patch with FrameRelay and we hope that it would be accepted and we will see it in current. > > > What are the purpose of the patches for sppp that you can send ? > > > > Current state of sppp has incorrect behavior in some cases (ppp, cisco). > > Those patches solve those problems and adds support of FrameRelay. > > What were those incorrect behavious? I would like ot see if they were > inherritted by the netgraph cisco code. I think that they not. Except that some cisco could send packets that have length less than 18 bytes - 14 bytes. All other changes in cisco part (in comparision with current code) were made for ability to add FrameRelay code. Current state of PPP code can't work proper in almost all cases of leased line connection. Most of errors in state machine. This patch was send as a bug report kern/21771. Kurakin Roman > > > > > > > I would like to connect a freeBSD box on a Cisco router. > > > > > > > > > > To do it I did rebuilt a kernel with that: > > > > > > > > > > pseudo-device sppp > > > > > device sr0 at pci? port 0x300 irq iomem 0xd0000 > > > > > > > > > > Then, when I made dmseg 'sr0', it tells me that: > > > > > sr0 XXX: driver didn't set ifq_maxlen > > > > > sr1 XXX: driver didn't set ifq_maxlen > > > > > > > > > > >From a specialist called Kenjiro Cho: > > > > > > > > > > Starting from FreeBSD-4, drivers are supposed to set ifq_maxlen. > > > > > The messages are just warnings but if you want to suppress the > > > > > warning, add > > > > > ifp->if_snd.ifq_maxlen = IFQ_MAXLEN; > > > > > in srattach() in sys/i386/isa/if_sr.c just before calling if_attach(). > > The netgraph code doesn't have an "interface" for the card but rather > links the protocol modules to a general purpose "assignable" interface > module. > In the case of Frame relay, one per Frame relay channel. > > -- > __--_|\ Julian Elischer > / \ julian@elischer.org > ( OZ ) World tour 2000 > ---> X_.---._/ presently in: Budapest > v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 4: 7:51 2000 Delivered-To: freebsd-net@freebsd.org Received: from spooky.eis.net.au (unknown [203.12.171.2]) by hub.freebsd.org (Postfix) with ESMTP id 91D1337B479 for ; Wed, 25 Oct 2000 04:07:47 -0700 (PDT) Received: (from ernie@localhost) by spooky.eis.net.au (8.11.1/8.9.3) id e9PB7cZ00370 for freebsd-net@freebsd.org; Wed, 25 Oct 2000 21:07:38 +1000 (EST) (envelope-from ernie) From: Ernie Elu Message-Id: <200010251107.e9PB7cZ00370@spooky.eis.net.au> Subject: RADIUS Accounting with PPP To: freebsd-net@freebsd.org Date: Wed, 25 Oct 2000 21:07:33 +1000 (EST) X-Mailer: ELM [version 2.4ME+ PL40 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org How do you get Radius Accounting to work with ppp? I managed to get authentication to work after a lot of mucking around, but it leaves no accounting records on our radius server about the connection. - Ernie. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 6:33:35 2000 Delivered-To: freebsd-net@freebsd.org Received: from bohemia.nacad.ufrj.br (unknown [146.164.31.133]) by hub.freebsd.org (Postfix) with ESMTP id 2A7BF37B479 for ; Wed, 25 Oct 2000 06:32:59 -0700 (PDT) Received: from skol (skol.nacad.ufrj.br [146.164.31.141]) by bohemia.nacad.ufrj.br (8.9.3/8.9.3) with SMTP id LAA80517 for ; Wed, 25 Oct 2000 11:32:51 -0200 (BRST) (envelope-from bino@bino.eng.br) Message-Id: <3.0.6.32.20001025113249.007eddf0@bino.eng.br> X-Sender: albino@bino.eng.br X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.6 (32) Date: Wed, 25 Oct 2000 11:32:49 -0200 To: net@freebsd.org From: Albino Aveleda Subject: Warning Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Dear all, I work at Federal University of Rio de Janeiro, Brazil and I installed the FreeBSD 4.1.1 im my server (Dual Pentium III 800, motherboard supermicro 370DL3) :))) Sometimes I have received this warning Oct 24 12:56:44 caracu /kernel: fxp0: warning: unsupported PHY, type = 17, addr = 2 but the network is work :)) What is the problem??? What do I do?? Thanks a lot, Albino _______________________________________________________ Albino A. Aveleda bino@bino.eng.br Network Manager http://www.bino.eng.br To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 7:15:10 2000 Delivered-To: freebsd-net@freebsd.org Received: from slarti.muc.de (slarti.muc.de [193.149.48.10]) by hub.freebsd.org (Postfix) with SMTP id A613437B479 for ; Wed, 25 Oct 2000 07:15:07 -0700 (PDT) Received: (qmail 20030 invoked from network); 25 Oct 2000 14:21:42 -0000 Received: from jhs.muc.de (193.149.49.84) by slarti.muc.de with SMTP; 25 Oct 2000 14:21:42 -0000 Received: from park.jhs.private (localhost [127.0.0.1]) by jhs.muc.de (8.11.0/8.11.0) with ESMTP id e9P7qLX29809; Wed, 25 Oct 2000 07:54:09 GMT (envelope-from jhs@park.jhs.private) Message-Id: <200010250754.e9P7qLX29809@jhs.muc.de> To: Luigi Rizzo Cc: Mike Hoskins , Rudy , freebsd-net@FreeBSD.ORG Subject: Re: /kernel: Too many dynamic rules, sorry Date: Wed, 25 Oct 2000 09:52:20 +0200 From: "Julian Stacey Jhs@jhs.muc.de" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Luigi Rizzo wrote: > > Summer 1999 or before, > > I ran out of space for all my rules, I append my > > Julian, i think you are talking about a different thing. > > The original posting was referring to the stateful (aka dynamic) ipfw > rules, which were introduced in Jan2000. > > The patches which someone else mentioned were related to configuring > timeouts on stateful rules. > > Your patches just modify the increment in autonumbering ipfw rules. Yup, just a tiny change (after a lot of code scanning). > [and the only reason i spotted this is the "Summer 1999" ...] > > cheers > luigi Ah, sorry, my mail stream was disrupted so I came back on line half way through this thread, & off at a tangent, sorry ! (PS I have read about dynamic rules now I recall, but not tried them yet). Julian - Julian Stacey http://bim.bsn.com/~jhs/ Munich Unix Consultant. Free BSD Unix with 3900 packages & sources. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 8:12:55 2000 Delivered-To: freebsd-net@freebsd.org Received: from skiv1.caravan.ru (mag.caravan.ru [212.24.53.226]) by hub.freebsd.org (Postfix) with ESMTP id 95D2F37B4C5; Wed, 25 Oct 2000 08:12:34 -0700 (PDT) Received: from caravan.ru (localhost [127.0.0.1]) by skiv1.caravan.ru (8.11.0/8.9.3) with ESMTP id e9PFGAZ01645; Wed, 25 Oct 2000 19:16:14 +0400 (MSD) (envelope-from skiv@caravan.ru) Message-ID: <39F6F939.417A7846@caravan.ru> Date: Wed, 25 Oct 2000 19:16:09 +0400 From: "Sergey V. Artjushkin" X-Mailer: Mozilla 4.72 [ru] (X11; I; FreeBSD 4.1.1-RELEASE i386) X-Accept-Language: ru, en MIME-Version: 1.0 To: freebsd-net@freebsd.org Cc: freebsd-question@freebsd.org Subject: questions about tcp-connections Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello colleagues. I have some problem with connectivity from some of my subnets. My network is like this: internet -- FreeBSD router 1 (4.1-R) --- VLAN -- FreeBSD router 2 (4.0 R) -- ethernet -- workstation(217.23.130.87) The problem is, that some sites are not accessible by HTTP from workstation. For example: (tcpdump log file from router 2 from ethernet interface) 217.23.130.87.1105 > 195.2.70.38.80: S 166910132:166910132(0) win 32120 (DF) [tos 0x10] (ttl 64, id 10731) 195.2.70.38.80 > 217.23.130.87.1105: S 782516795:782516795(0) ack 166910133 win 33304 (DF) (ttl 58, id 65057) 217.23.130.87.1105 > 195.2.70.38.80: . ack 1 win 32120 (DF) [t os 0x10] (ttl 64, id 10732) 217.23.130.87.1105 > 195.2.70.38.80: P 1:695(694) ack 1 win 32120 (DF) [tos 0x10] (ttl 64, id 10733) 195.2.70.38.80 > 217.23.130.87.1105: . ack 695 win 33304 (DF) (ttl 58, id 65058) 195.2.70.38.80 > 217.23.130.87.1105: P 1:189(188) ack 695 win 33304 (DF) (ttl 58, id 65059) 217.23.130.87.1105 > 195.2.70.38.80: . ack 189 win 32120 (DF) [tos 0x10] (ttl 64, id 10734) 195.2.70.38.80 > 217.23.130.87.1105: P 1637:2015(378) ack 695 win 33304 (DF) (ttl 58, id 65061) 195.2.70.38.80 > 217.23.130.87.1105: P 2015:2039(24) ack 695 win 33304 (DF) (ttl 58, id 65062) 217.23.130.87.1105 > 195.2.70.38.80: . ack 189 win 32120 (DF) [tos 0x10] (ttl 64, id 10735) 217.23.130.87.1105 > 195.2.70.38.80: . ack 189 win 32120 (DF) [tos 0x10] (ttl 64, id 10736) 195.2.70.38.80 > 217.23.130.87.1105: P 2039:2887(848) ack 695 win 33304 (DF) (ttl 58, id 65063) 195.2.70.38.80 > 217.23.130.87.1105: P 2887:2935(48) ack 695 win 33304 (DF) (ttl 58, id 65064) 217.23.130.87.1105 > 195.2.70.38.80: . ack 189 win 32120 (DF) [tos 0x10] (ttl 64, id 10737) and so on The workstation sending ack only for first packet 195.2.70.38.80 > 217.23.130.87.1105: P 1:189(188) ack 695 win 33304 (DF) (ttl 58, id 65059) This is the same connection from router 1 (from vlan interface): 217.23.130.87.1106 > 195.2.70.38.80: S 605375461:605375461(0) win 32120 (DF) [tos 0x10] (ttl 63, id 10845) 195.2.70.38.80 > 217.23.130.87.1106: S 1113114427:1113114427(0) ack 605375462 win 33304 (DF) (ttl 59, id 59665) 217.23.130.87.1106 > 195.2.70.38.80: . ack 1 win 32120 (DF) [t os 0x10] (ttl 63, id 10846) 217.23.130.87.1106 > 195.2.70.38.80: P 1:695(694) ack 1 win 32120 (DF) [tos 0x10] (ttl 63, id 10847) 195.2.70.38.80 > 217.23.130.87.1106: . ack 695 win 32610 (DF) (ttl 59, id 59666) 195.2.70.38.80 > 217.23.130.87.1106: P 1:189(188) ack 695 win 33304 (DF) (ttl 59, id 59667) 195.2.70.38.80 > 217.23.130.87.1106: P 1637:2015(378) ack 695 win 33304 (DF) (ttl 59, id 59669) 195.2.70.38.80 > 217.23.130.87.1106: P 2015:2039(24) ack 695 win 33304 (DF) (ttl 59, id 59670) 195.2.70.38.80 > 217.23.130.87.1106: P 2039:2887(848) ack 695 win 33304 (DF) (ttl 59, id 59671) 217.23.130.87.1106 > 195.2.70.38.80: . ack 189 win 32120 (DF) [tos 0x10] (ttl 63, id 10850) 195.2.70.38.80 > 217.23.130.87.1106: . 2887:4285(1398) ack 695 win 33304 (DF) (ttl 59, id 59672) 217.23.130.87.1106 > 195.2.70.38.80: . ack 189 win 32120 (DF) [tos 0x10] (ttl 63, id 10851) 217.23.130.87.1106 > 195.2.70.38.80: . ack 189 win 32120 (DF) [tos 0x10] (ttl 63, id 10852) 217.23.130.87.1106 > 195.2.70.38.80: . ack 189 win 32120 (DF) [tos 0x10] (ttl 63, id 10853) 195.2.70.38.80 > 217.23.130.87.1106: P 4285:4975(690) ack 695 win 33304 (DF) (ttl 59, id 59674) and so on What do you think about the connections like this? With other servers the connections is ok. In this segment of the network there are no filters on all routers. All worked well while, we have not installed VLAN between routers. As I see a problem not in VLAN MTU but something else. What it can be? Thak you for advance. ---------------------------------------------------------------- Sergey Artjushkin ISP Tel: +7 095 203-10-72 "CARAVAN" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 10: 7:59 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.ruhr.de (www.ruhr.de [212.23.134.2]) by hub.freebsd.org (Postfix) with SMTP id EF01337B4D7 for ; Wed, 25 Oct 2000 10:07:21 -0700 (PDT) Received: (qmail 12875 invoked by alias); 25 Oct 2000 17:11:13 -0000 Received: (from ue@localhost) by nathan.ruhr.de (8.11.0/8.11.0) id e9PGEop08414 for freebsd-net@freebsd.org; Wed, 25 Oct 2000 18:14:50 +0200 (CEST) (envelope-from ue) Date: Wed, 25 Oct 2000 18:14:50 +0200 From: Udo Erdelhoff To: freebsd-net@freebsd.org Subject: Re: mpd, the Windows VPN Client and subnets Message-ID: <20001025181450.B334@nathan.ruhr.de> Mail-Followup-To: freebsd-net@freebsd.org References: <20001024041513.8DF089EE01@snafu.adept.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: <20001024041513.8DF089EE01@snafu.adept.org>; from mike@adept.org on Mon, Oct 23, 2000 at 09:15:13PM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, > Sounds like DHCP... is it really possible to use full-fledged DHCP on a "PPTP interface"? > How is this IP assigned? Does mpd do that? No, the IP address is defined in the TCP/IP-settings dialog box of the connection. I have to use this method. The clients boxes are laptops with PCMCIA ethernet and modem. They will use the enternet connection while their owners are in the office. > based. We have Win2k clients who connect to a central Win2k VPN box. We already have a VPN box running on Mircosoft Windows NT, using Digital Altavista Tunnel. And our experiences with that solution are one of the reasons why I've started to build a FreeBSD VPN box. > Once the subnet mask issue is solved, see if you can ping 'internal' > IP's, or ssh to server IP's. That's not the problem, I can reach the machines within the LAN over the VPN connection with normal (non-broadcast) protocols. > If so, setting up a WINS server may resolve browsing issues. 12 WINS servers :-( 6 NT domains, each with a primary and a backup domain controller. And the M$ docs say that it would be a very good idea (read: do this or you are doomed) to put a WINS server on each of them... /s/Udo -- Eat the rich -- the poor are tough and stringy. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 10: 8: 6 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.ruhr.de (www.ruhr.de [212.23.134.2]) by hub.freebsd.org (Postfix) with SMTP id 0E11337B4C5 for ; Wed, 25 Oct 2000 10:07:25 -0700 (PDT) Received: (qmail 11364 invoked by alias); 25 Oct 2000 17:10:44 -0000 Received: (from ue@localhost) by nathan.ruhr.de (8.11.0/8.11.0) id e9PGvXM08474 for freebsd-net@FreeBSD.ORG; Wed, 25 Oct 2000 18:57:33 +0200 (CEST) (envelope-from ue) Date: Wed, 25 Oct 2000 18:57:32 +0200 From: Udo Erdelhoff To: freebsd-net@FreeBSD.ORG Subject: Re: mpd, the Windows VPN Client and subnets Message-ID: <20001025185732.C334@nathan.ruhr.de> Mail-Followup-To: freebsd-net@FreeBSD.ORG References: <20001021160542.A7418@nathan.ruhr.de> <200010240429.e9O4T5A08163@curve.dellroad.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: <200010240429.e9O4T5A08163@curve.dellroad.org>; from archie@dellroad.org on Mon, Oct 23, 2000 at 09:29:05PM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, On Mon, Oct 23, 2000 at 09:29:05PM -0700, Archie Cobbs wrote: > Udo Erdelhoff writes: > > short version of my question: Is it possible to pass a subnet mask and/or > > a broadcast address to a client during the negotiation? > > Unfortunately, no.. PPP doesn't officially support doing that. This is the answer I feared... Murphy was an optimist. > This "should" work assuming you have an NT domain controller I had to install WINS servers on the domain controllers first. And I had to define the WINS servers within the TCP/IP properties dialog box of the VPN connection on the Win98 box. The Win98 box got the addresses but ignored the WINS servers for name resolution (in other words, still node type 1, b-node, broadcast only). Defining the WINS servers on the client changed the node type to 8 (WINS with broadcast as backup). Things are working right now, even with an incorrect subnet mask. All that remains is a little mpd hacking. I don't want to maintain a third password database so mpd will have to learn to use the system password database. /s/Udo -- Why is it that if someone tells you that there are 1 billion stars in the universe you will believe them, but if they tell you a wall has wet paint you will have to touch it to be sure? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 10:48:56 2000 Delivered-To: freebsd-net@freebsd.org Received: from gomer.august.net (gomer.august.net [216.87.128.131]) by hub.freebsd.org (Postfix) with ESMTP id 1B5B237B4C5 for ; Wed, 25 Oct 2000 10:48:54 -0700 (PDT) Received: from localhost (1216 bytes) by gomer.august.net via send-mail with P:stdio/R:inet_hosts/T:smtp (sender: ) (ident using unix) id for ; Wed, 25 Oct 2000 12:48:47 -0500 (CDT) (Smail-3.2.0.108 1999-Sep-19 #1 built 1999-Oct-11) Message-Id: Date: Wed, 25 Oct 2000 12:48:47 -0500 (CDT) From: lgfausak@august.net (Greg Fausak) To: julian@elischer.org, lgfausak@august.net Subject: Re: BPF usage questions Cc: freebsd-net@FreeBSD.ORG Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > >Julian wrote> >>Greg Fausak wrote: >>> >>> FreeBSD Net Mail List: >>> >>>...deleted... >>> 1) Is it wise to use so many BPF devices? >>> >>> 2) Is there any way to increase the number of BPF devices beyond 255? >>> >>> and, finally, the real questions... >>> >>> 3) Is there some way I can listen on a single device and determine >>> what real device a packet comes in on and... >>> >>> 4) Has anyone done something like this? This is much like the >>> dhcp helper command on a cisco router. I'd like to be able to >>> serve DHCP for thousands of 'devices'. >> >>I hate to sound like a broken record, but archie and I have been looking >>at using netgraph for this. > >What is netgraph? whoops... Foot in mouth. I have done some research now and see this is great! Is there somewhere I can look at examples of ng implemented nodes? Specifically, I'd like to experiment with frame relay (DSL), multi-link (node multiplexing-demultiplexing) and vpn. Thanks, ---greg To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 15: 3: 2 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id EDB2737B4D7 for ; Wed, 25 Oct 2000 15:02:58 -0700 (PDT) Received: from bissau-38.budapest.interware.hu ([195.70.53.166] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13oYdJ-0003wT-00; Thu, 26 Oct 2000 00:02:53 +0200 Message-ID: <39F75886.A6EBD94@elischer.org> Date: Wed, 25 Oct 2000 15:02:46 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Greg Fausak Cc: freebsd-net@FreeBSD.ORG Subject: Re: BPF usage questions References: Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greg Fausak wrote: > > >What is netgraph? > > whoops... Foot in mouth. I have done some research now and see this > is great! Is there somewhere I can look at examples of > ng implemented nodes? Specifically, I'd like to experiment with > frame relay (DSL), multi-link (node multiplexing-demultiplexing) and > vpn. welllll, start with the netgraph(4) manpage (not netgraph(3)) then you'll find MOST of the implemented nodes in /sys/netgraph, though there are a couple of others (sync cards) the mpd-netgraph port (under ports/net) can use netgraph to run pptp vpns and the ppp daemon (ppp(8)) can use netgraph to connect to pppoe sessions running through DSL. (though it needs a ethernet attached DSL modem.) there is also an article on netgraph on Daemonnews in the "blueprints (?)" section that is illuminating.. also check out /usr/share/examples/netgraph for examples of how you might set up some configurations. For a very conoluted example you may write yur own setup and control C program using the netgraph(3) library to control it. (that's what mpd and ppp do) > > Thanks, > > ---greg -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v ' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 15:11: 4 2000 Delivered-To: freebsd-net@freebsd.org Received: from pfa0frpk001.panasonicfa.com (unknown [38.248.119.1]) by hub.freebsd.org (Postfix) with ESMTP id 91A9237B4CF for ; Wed, 25 Oct 2000 15:11:01 -0700 (PDT) Received: by exchange.panasonicfa.com with Internet Mail Service (5.5.2650.21) id ; Wed, 25 Oct 2000 17:10:41 -0500 Message-ID: <054F7DAA9E54D311AD090008C74CE9BD01766CDF@exchange.panasonicfa.com> From: "Zaitsau, Andrei" To: 'Julian Elischer' Cc: "'freebsd-net@FreeBSD.ORG'" Subject: RE: BPF usage questions Date: Wed, 25 Oct 2000 17:10:36 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Sorry for a small comment (not really related to the topic). I wouldn't call it DSL modem, As far as I know it does not have analog data, so there is nothing to Modulate/Demodulate. I would refer it as a router or bridge... I guess... Feel Free to correct me if I am wrong. Andrei. ....and the ppp daemon (ppp(8)) can use netgraph to connect to pppoe sessions running through DSL. (though it needs a ethernet attached DSL modem.) -----Original Message----- From: Julian Elischer [mailto:julian@elischer.org] Sent: Wednesday, October 25, 2000 5:03 PM To: Greg Fausak Cc: freebsd-net@FreeBSD.ORG Subject: Re: BPF usage questions Greg Fausak wrote: > > >What is netgraph? > > whoops... Foot in mouth. I have done some research now and see this > is great! Is there somewhere I can look at examples of > ng implemented nodes? Specifically, I'd like to experiment with > frame relay (DSL), multi-link (node multiplexing-demultiplexing) and > vpn. welllll, start with the netgraph(4) manpage (not netgraph(3)) then you'll find MOST of the implemented nodes in /sys/netgraph, though there are a couple of others (sync cards) the mpd-netgraph port (under ports/net) can use netgraph to run pptp vpns and the ppp daemon (ppp(8)) can use netgraph to connect to pppoe sessions running through DSL. (though it needs a ethernet attached DSL modem.) there is also an article on netgraph on Daemonnews in the "blueprints (?)" section that is illuminating.. also check out /usr/share/examples/netgraph for examples of how you might set up some configurations. For a very conoluted example you may write yur own setup and control C program using the netgraph(3) library to control it. (that's what mpd and ppp do) > > Thanks, > > ---greg -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v ' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 16:22: 1 2000 Delivered-To: freebsd-net@freebsd.org Received: from hoemail2.firewall.lucent.com (hoemail2.lucent.com [192.11.226.163]) by hub.freebsd.org (Postfix) with ESMTP id CB6E037B4C5 for ; Wed, 25 Oct 2000 16:21:59 -0700 (PDT) Received: from hoemail2.firewall.lucent.com (localhost [127.0.0.1]) by hoemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id TAA27879 for ; Wed, 25 Oct 2000 19:21:59 -0400 (EDT) Received: from mhmail.mh.lucent.com (h135-3-115-8.lucent.com [135.3.115.8]) by hoemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id TAA27870; Wed, 25 Oct 2000 19:21:58 -0400 (EDT) Received: from lucent.com (positron.micro.lucent.com [192.19.56.129]) by mhmail.mh.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id TAA05766; Wed, 25 Oct 2000 19:21:46 -0400 (EDT) Message-ID: <39F76ABF.6FC586FE@lucent.com> Date: Wed, 25 Oct 2000 19:20:31 -0400 From: "Gary T. Corcoran" Reply-To: gcorcoran@lucent.com Organization: Lucent Microelectronics - Client Access Broadband Systems X-Mailer: Mozilla 4.73 [en] (Win95; U) X-Accept-Language: en MIME-Version: 1.0 To: "Zaitsau, Andrei" Cc: "'Julian Elischer'" , "'freebsd-net@FreeBSD.ORG'" Subject: Re: BPF usage questions References: <054F7DAA9E54D311AD090008C74CE9BD01766CDF@exchange.panasonicfa.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Zaitsau, Andrei" wrote: > > Sorry for a small comment (not really related to the topic). > I wouldn't call it DSL modem, As far as I know it does not have analog data, > so there is nothing to Modulate/Demodulate. I would refer it as a router or > bridge... I guess... > Feel Free to correct me if I am wrong. I've been working on DSL (writing drivers) for almost 3 years. Although it is vastly different from V.90, the analog modem standard, you certainly *do* have to modulate/demodulate DSL onto your phone wire. It's just a different and much more complicated type of modulation scheme. So the term "DSL modem" is technically correct... Gary To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 17:18:12 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.knight-trosoft.com (mail.knight-trosoft.com [209.180.70.2]) by hub.freebsd.org (Postfix) with ESMTP id 6AD9937B4C5; Wed, 25 Oct 2000 17:18:03 -0700 (PDT) Received: from Windoze.vwebpage.com (dh.vwebpage.com [209.180.70.5]) (authenticated) by mail.knight-trosoft.com (8.11.0/8.11.0) with ESMTP id e9Q0GpT14493; Wed, 25 Oct 2000 19:16:52 -0500 (CDT) Message-Id: <4.3.2.7.2.20001025191653.021c25d8@mail.vwebpage.com> X-Sender: johnp@mail.vwebpage.com (Unverified) X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Wed, 25 Oct 2000 19:20:33 -0500 To: freebsd-isp@freebsd.org, freebsd-net@freebsd.org From: John Prince Subject: Multipath natd Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello.. Is it possible (I have been trying).... I have noticed other requests, however there does not seem to be any answers.. I have a firewall setup, IPFW and Natd, with 2 external interfaces, and a single internal. Each external interface is connected to a provider. Setup is as follows.. External Internal. bbb.bbb.bbb.bbb --------------- |--------------- ccc.ccc.ccc.ccc aaa.aaa.aaa.aaa --------------- The internal network consists of 2 nets, 10.0.1.0 and 10.0.2.0 What I want to do is route any traffic from the 10.0.1.0 network to the (bbb) external interface, and traffic from the 10.0.2.0 to the the (aaa) interface.. Ipfw and Natd appear to function, as long as I specify a default route.. I would like to do this all on a single machine, if possible.. Any help would be greatly appreciated.. Thanks, --john John Prince John Prince To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 19:59: 4 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 8B26037B4CF; Wed, 25 Oct 2000 19:58:13 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id UAA82202; Wed, 25 Oct 2000 20:58:00 -0600 (MDT) Date: Wed, 25 Oct 2000 20:58:00 -0600 (MDT) From: Nick Rogness To: John Prince Cc: freebsd-isp@freebsd.org, freebsd-net@freebsd.org Subject: Re: Multipath natd In-Reply-To: <4.3.2.7.2.20001025191653.021c25d8@mail.vwebpage.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 25 Oct 2000, John Prince wrote: > Hello.. > Is it possible (I have been trying).... > I have noticed other requests, however there does not seem to be any answers.. > > I have a firewall setup, IPFW and Natd, with 2 external interfaces, and a > single internal. > Each external interface is connected to a provider. > Setup is as follows.. > External Internal. > bbb.bbb.bbb.bbb --------------- > |--------------- ccc.ccc.ccc.ccc > aaa.aaa.aaa.aaa --------------- > The internal network consists of 2 nets, 10.0.1.0 and 10.0.2.0 > What I want to do is route any traffic from the 10.0.1.0 network to the > (bbb) external > interface, and traffic from the 10.0.2.0 to the the (aaa) interface.. > Ipfw and Natd appear to function, as long as I specify a default route.. > I would like to do this all on a single machine, if possible.. > Any help would be greatly appreciated.. It's possible. Run 2 differnet natd's. Setup ipfw like so: #Don;t Divert local traffic ipfw add 50 allow ip from 10.0.1.0/24 to 10.0.2.0/24 ipfw add 51 allow ip from 10.0.2.0/24 to 10.0.1.0/24 #Dvert traffic from 1.0/24 out and in interface B ipfw add 100 divert natd ip from 10.0.1.0/24 to any ipfw add 101 divert natd ip from any to any in via $INTERFACE_B #Divert traffic from 2.0/24 network in and out int a ipfw add 200 divert natd2 ip from 10.0.2.0/24 to any ipfw add 201 divert natd2 ip from any to any in via $INTERFACE_A #Add routing for these natd'd addresses ipfw add 1000 fwd $INTERFACE_B_NEXT_HOP ip from \ $INTERFACE_B_ADDRESS to any ipfw add 2000 fwd $INTERFACE_A_NEXT_HOP ip from \ $INTERFACE_A_ADDRESS to any #Leave on for testing until it works ipfw add 3000 allow ip from any to any Then after you do that setup the 2 different natd's to listen on different ports (default 8668) and another entry int /etc/services: natd2 8669/divert # Network Address Translation Then run the nat's seperately: root# natd -p 8668 -a $INTERFACE_B_ADDRESS root# natd -p 8669 -a $INTERFACE_A_ADDRESS Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 21:54:19 2000 Delivered-To: freebsd-net@freebsd.org Received: from InterJet.dellroad.org (adsl-63-194-81-26.dsl.snfc21.pacbell.net [63.194.81.26]) by hub.freebsd.org (Postfix) with ESMTP id 48E7537B479 for ; Wed, 25 Oct 2000 21:54:18 -0700 (PDT) Received: from curve.dellroad.org (curve.dellroad.org [10.1.1.30]) by InterJet.dellroad.org (8.9.1a/8.9.1) with ESMTP id VAA56647; Wed, 25 Oct 2000 21:54:17 -0700 (PDT) Received: (from archie@localhost) by curve.dellroad.org (8.11.0/8.11.0) id e9Q4sFf20783; Wed, 25 Oct 2000 21:54:15 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010260454.e9Q4sFf20783@curve.dellroad.org> Subject: Re: BPF usage questions In-Reply-To: <39F76ABF.6FC586FE@lucent.com> "from Gary T. Corcoran at Oct 25, 2000 07:20:31 pm" To: gcorcoran@lucent.com Date: Wed, 25 Oct 2000 21:54:15 -0700 (PDT) Cc: "Zaitsau, Andrei" , "'Julian Elischer'" , "'freebsd-net@FreeBSD.ORG'" X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > I wouldn't call it DSL modem, As far as I know it does not have analog data, If you go low enough, everything is analog :-) -Archie __________________________________________________________________________ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 22:23:41 2000 Delivered-To: freebsd-net@freebsd.org Received: from InterJet.dellroad.org (adsl-63-194-81-26.dsl.snfc21.pacbell.net [63.194.81.26]) by hub.freebsd.org (Postfix) with ESMTP id 229CA37B479 for ; Wed, 25 Oct 2000 22:23:40 -0700 (PDT) Received: from curve.dellroad.org (curve.dellroad.org [10.1.1.30]) by InterJet.dellroad.org (8.9.1a/8.9.1) with ESMTP id WAA56830; Wed, 25 Oct 2000 22:23:39 -0700 (PDT) Received: (from archie@localhost) by curve.dellroad.org (8.11.0/8.11.0) id e9Q5Ndx20888; Wed, 25 Oct 2000 22:23:39 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010260523.e9Q5Ndx20888@curve.dellroad.org> Subject: Re: mpd, the Windows VPN Client and subnets In-Reply-To: <20001025185732.C334@nathan.ruhr.de> "from Udo Erdelhoff at Oct 25, 2000 06:57:32 pm" To: Udo Erdelhoff Date: Wed, 25 Oct 2000 22:23:38 -0700 (PDT) Cc: freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Udo Erdelhoff writes: > Things are working right now, even with an incorrect subnet mask. All that > remains is a little mpd hacking. I don't want to maintain a third password > database so mpd will have to learn to use the system password database. Then it will only work for PAP authentication. CHAP needs the cleartext password. -Archie __________________________________________________________________________ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 25 23:10:28 2000 Delivered-To: freebsd-net@freebsd.org Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by hub.freebsd.org (Postfix) with ESMTP id 60ED637B479 for ; Wed, 25 Oct 2000 23:10:26 -0700 (PDT) Received: from mail.Go2France.com (ms1.meiway.com [212.73.210.73]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id 479466A90F for ; Thu, 26 Oct 2000 08:10:24 +0200 (CEST) Received: from sv.Go2France.com [212.73.210.79] by mail.Go2France.com with ESMTP (SMTPD32-6.04) id AC19FC690054; Thu, 26 Oct 2000 08:15:53 +0200 Message-Id: <5.0.0.25.0.20001026080153.00a9aeb0@mail.Go2France.com> X-Sender: lconrad%Go2France.com@mail.Go2France.com X-Mailer: QUALCOMM Windows Eudora Version 5.0 Date: Thu, 26 Oct 2000 08:10:00 +0200 To: freebsd-net@freebsd.org From: Len Conrad Subject: RE: BPF usage questions In-Reply-To: <054F7DAA9E54D311AD090008C74CE9BD01766CDF@exchange.panasoni cfa.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >Sorry for a small comment (not really related to the topic). >I wouldn't call it DSL modem, I agree, or "modem" in the broadest, probably misleading sense. > As far as I know it does not have analog data, no, "D"igital Subscriber Loop, in the 3 to 10 KHz band. A good introductory overview of the DSL area: http://www.paradyne.com/sourcebook_offer/index.html >so there is nothing to Modulate/Demodulate. I would refer it as a router or >bridge... I guess... bridge, for DSL-to-Ethernet L2 conversion, and router if it also does L3. Len http://BIND8NT.MEIway.com: ISC BIND 8.2.2 p5 & 8.2.3 T6B for NT4 & W2K http://IMGate.MEIway.com: Build free, hi-perf, anti-spam mail gateways To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 0: 7:43 2000 Delivered-To: freebsd-net@freebsd.org Received: from jason.argos.org (a1-3a105.neo.rr.com [24.93.180.105]) by hub.freebsd.org (Postfix) with ESMTP id 54A1537B479 for ; Thu, 26 Oct 2000 00:07:41 -0700 (PDT) Received: from localhost (mike@localhost) by jason.argos.org (8.10.1/8.10.1) with ESMTP id e9Q75Ex20628; Thu, 26 Oct 2000 03:05:14 -0400 Date: Thu, 26 Oct 2000 03:05:14 -0400 (EDT) From: Mike Nowlin To: Len Conrad Cc: freebsd-net@FreeBSD.ORG Subject: RE: BPF usage questions In-Reply-To: <5.0.0.25.0.20001026080153.00a9aeb0@mail.Go2France.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > >Sorry for a small comment (not really related to the topic). > >I wouldn't call it DSL modem, > > I agree, or "modem" in the broadest, probably misleading sense. > > > As far as I know it does not have analog data, > > no, "D"igital Subscriber Loop, in the 3 to 10 KHz band. A good > introductory overview of the DSL area: > > http://www.paradyne.com/sourcebook_offer/index.html > > >so there is nothing to Modulate/Demodulate. I would refer it as a router or > >bridge... I guess... > > bridge, for DSL-to-Ethernet L2 conversion, and router if it also does L3. Once you start speaking of frequency bands, you're back to analog in the first place... Of course, modulation itself basically means changing a stable "thing" (voltage, radio frequency, etc.) by the influence of an outside source. Just look at 1200bps vs. 9600/56K bps amateur packet radio - two completely different methods of it, but they're both modulation... I suppose DSL is kinda like 56K packet... (check out www.wa4dsy.net) --mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 3:19:24 2000 Delivered-To: freebsd-net@freebsd.org Received: from mailout05.sul.t-online.com (mailout05.sul.t-online.com [194.25.134.82]) by hub.freebsd.org (Postfix) with ESMTP id 057C437B4CF; Thu, 26 Oct 2000 03:19:20 -0700 (PDT) Received: from fwd05.sul.t-online.com by mailout05.sul.t-online.com with smtp id 13ok7y-0002Bm-05; Thu, 26 Oct 2000 12:19:18 +0200 Received: from webmail.t-online.de (320051988339-0001@[194.25.134.112]) by fwd05.sul.t-online.com with smtp id 13ok7k-1u9WtMC; Thu, 26 Oct 2000 12:19:04 +0200 Date: 26 Oct 2000 10:19 GMT From: Sven.Huster@t-online.de Subject: high availability by routing? To: freebsd-net@freebsd.org, freebsd-isp@freebsd.org Cc: sven.huster@t-online.de X-Mailer: T-Online WebMail 0.99 MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-transfer-encoding: quoted-printable Message-ID: <13ok7k-1u9WtMC@fwd05.sul.t-online.com> X-Sender: 320051988339-0001@t-dialin.net Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org hi there, at the moment i have following setup: |isp| --- |my router| -- |switch| -- |loadbalancer| -- |web farm| i want to improve availability by adding a second loadbalancer and=20 a second router + a second connection to my network provider to eliminate the single point of failure (i know about the single switch). so the setup then will be: | | -- |router 1| -- | | -- |loadbalancer 1| -- | | |isp| |switch| |web farm| | | -- |router 2| -- | | -- |loadbalancer 2| -- | | but 1. how is routing managed between isp and my routers? 2. what happends if one router fails or one isp connection is broken? 3. how does the loadbalancer recongnizes that one router fails? 4. how do i tell my routers to distribute traffic between the loadbalancers equal? 5. how can i handle the failure of one loadbalancer? maybe i will extend the setup with another connection to a other isp. 6. how will this fit in my environment? thanks a lot regards Sven -- Sven Huster Consultant - *BSD, Linux, Solaris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 5: 4: 2 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.squidge.com (ns1.squidge.com [195.10.252.5]) by hub.freebsd.org (Postfix) with ESMTP id 6D5A137B4C5; Thu, 26 Oct 2000 05:03:43 -0700 (PDT) Received: from apollo (beta [127.0.0.5]) (authenticated) by mail.squidge.com (8.11.1/8.11.1) with ESMTP id e9QC3U976231; Thu, 26 Oct 2000 13:03:31 +0100 (BST) (envelope-from stewart@nameless-uk.com) Reply-To: From: "Stewart Morgan" To: , Subject: HELP! MII problem Date: Thu, 26 Oct 2000 13:03:28 +0100 Message-ID: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_0006_01C03F4D.226EEAE0" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0006_01C03F4D.226EEAE0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi folks, Please find attached the dmesg output from a "boot -v". I've got an Aztel PCI NIC-Hub Adapter. FreeBSD seems to find it and configure it for the most part....: wb0: port 0xec00-0xec7f mem 0xffafef80-0xffafefff irq 11 at device 15.0 on pci0 wb0: Ethernet address: 00:00:e8:21:8b:11 ... but then fails with: device_probe_and_attach: wb0 attach returned 6 I've done some investigation (see my own debug lines in the dmesg) and have tracked it down to a failure in MII to initalise the PHY. Can anybody shed any light on why FreeBSD finds the card but not the PHY and also how to fix it! Stewart. -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.3 for non-commercial use iQA/AwUBOfgdjzBV3dfs1c5kEQIz2QCgyOPDBd+Ej3jdTExZP3CZMDDMpaMAn3G9 xnNkh70PPYBzKcqRQmE/cVof =ooAF -----END PGP SIGNATURE----- ------=_NextPart_000_0006_01C03F4D.226EEAE0 Content-Type: text/plain; name="dmesg.txt" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="dmesg.txt" Copyright (c) 1992-2000 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 4.1.1-STABLE #6: Thu Oct 5 18:31:44 BST 2000 root@alpha.squidge.com:/usr/src/sys/compile/ALPHAD Calibrating clock(s) ... TSC clock: 350751170 Hz, i8254 clock: 1193031 = Hz Timecounter "i8254" frequency 1193031 Hz CPU: Pentium II/Pentium II Xeon/Celeron (350.75-MHz 686-class CPU) Origin =3D "GenuineIntel" Id =3D 0x652 Stepping =3D 2 = Features=3D0x183fbff real memory =3D 67108864 (65536K bytes) Physical memory chunk(s): 0x00001000 - 0x0009efff, 647168 bytes (158 pages) 0x00357000 - 0x03ff5fff, 63565824 bytes (15519 pages) avail memory =3D 61923328 (60472K bytes) bios32: Found BIOS32 Service Directory header at 0xc00fdb40 bios32: Entry =3D 0xfdb50 (c00fdb50) Rev =3D 0 Len =3D 1 pcibios: PCI BIOS entry at 0xdb71 pnpbios: Found PnP BIOS data at 0xc00f7330 pnpbios: Entry =3D f0000:66e4 Rev =3D 1.0 Other BIOS signatures found: ACPI: 00000000 Preloaded elf kernel "kernel" at 0xc033e000. Pentium Pro MTRR support enabled pci_open(1): mode 1 addr port (0x0cf8) is 0x8000005c pci_open(1a): mode1res=3D0x80000000 (0x80000000) pci_cfgcheck: device 0 [class=3D060000] [hdr=3D00] is there = (id=3D71a08086) pcib-: pcib0 exists, using next available unit number npx0: on motherboard npx0: INT 16 interface pci_open(1): mode 1 addr port (0x0cf8) is 0x00000000 pci_open(1a): mode1res=3D0x80000000 (0x80000000) pci_cfgcheck: device 0 [class=3D060000] [hdr=3D00] is there = (id=3D71a08086) pcib0: on motherboard found-> vendor=3D0x8086, dev=3D0x71a0, revid=3D0x00 class=3D06-00-00, hdrtype=3D0x00, mfdev=3D0 subordinatebus=3D0 secondarybus=3D0 map[10]: type 1, range 32, base f8000000, size 26 found-> vendor=3D0x8086, dev=3D0x71a1, revid=3D0x00 class=3D06-04-00, hdrtype=3D0x01, mfdev=3D0 subordinatebus=3D1 secondarybus=3D1 found-> vendor=3D0x8086, dev=3D0x7110, revid=3D0x02 class=3D06-01-00, hdrtype=3D0x00, mfdev=3D1 subordinatebus=3D0 secondarybus=3D0 found-> vendor=3D0x8086, dev=3D0x7111, revid=3D0x01 class=3D01-01-80, hdrtype=3D0x00, mfdev=3D0 subordinatebus=3D0 secondarybus=3D0 map[20]: type 1, range 32, base 0000ffa0, size 4 found-> vendor=3D0x8086, dev=3D0x7112, revid=3D0x01 class=3D0c-03-00, hdrtype=3D0x00, mfdev=3D0 subordinatebus=3D0 secondarybus=3D0 intpin=3Dd, irq=3D10 map[20]: type 1, range 32, base 0000ef80, size 5 found-> vendor=3D0x8086, dev=3D0x7113, revid=3D0x02 class=3D06-80-00, hdrtype=3D0x00, mfdev=3D0 subordinatebus=3D0 secondarybus=3D0 map[90]: type 1, range 32, base 00000440, size 4 found-> vendor=3D0x9005, dev=3D0x005f, revid=3D0x00 class=3D01-00-00, hdrtype=3D0x00, mfdev=3D1 subordinatebus=3D0 secondarybus=3D0 intpin=3Da, irq=3D0 map[10]: type 1, range 32, base ffffff00, size 8 map[14]: type 1, range 64, base fffff000, size 12 found-> vendor=3D0x9005, dev=3D0x005f, revid=3D0x00 class=3D01-00-00, hdrtype=3D0x00, mfdev=3D1 subordinatebus=3D0 secondarybus=3D0 intpin=3Da, irq=3D0 map[10]: type 1, range 32, base ffffff00, size 8 map[14]: type 1, range 64, base fffff000, size 12 found-> vendor=3D0x8086, dev=3D0x1229, revid=3D0x08 class=3D02-00-00, hdrtype=3D0x00, mfdev=3D0 subordinatebus=3D0 secondarybus=3D0 intpin=3Da, irq=3D10 map[10]: type 1, range 32, base ffaff000, size 12 map[14]: type 1, range 32, base 0000ef00, size 6 map[18]: type 1, range 32, base ff900000, size 20 found-> vendor=3D0x1050, dev=3D0x0840, revid=3D0x00 class=3D02-00-00, hdrtype=3D0x00, mfdev=3D0 subordinatebus=3D0 secondarybus=3D0 intpin=3Da, irq=3D11 map[10]: type 1, range 32, base 0000ec00, size 7 map[14]: type 1, range 32, base ffafef80, size 7 pci0: on pcib0 pcib2: at device 1.0 on = pci0 pci1: on pcib2 isab0: at device 7.0 on pci0 isa0: on isab0 atapci0: port 0xffa0-0xffaf at device 7.1 = on pci0 ata0: iobase=3D0x01f0 altiobase=3D0x03f6 bmaddr=3D0xffa0 ata0: mask=3D03 status0=3D50 status1=3D00 ata0: mask=3D03 status0=3D50 status1=3D00 ata0: devices =3D 0x1 ata0: at 0x1f0 irq 14 on atapci0 ata1: iobase=3D0x0170 altiobase=3D0x0376 bmaddr=3D0xffa8 ata1: mask=3D03 status0=3D0c status1=3D0c ata1: mask=3D03 status0=3D1b status1=3D1b ata1: devices =3D 0x0 ata1: at 0x170 irq 15 on atapci0 pci0: (vendor=3D0x8086, = dev=3D0x7112) at 7.2 irq 10 intpm0: port 0x440-0x44f irq = 9 at device 7.3 on pci0 intpm0: I/O mapped 440 intpm0: intr IRQ 9 enabled revision 0 smbus0: on intsmb0 smb0: on smbus0 intpm0: PM I/O mapped 400=20 pci0: (vendor=3D0x9005, dev=3D0x005f) at 11.0 irq 0 pci0: (vendor=3D0x9005, dev=3D0x005f) at 11.1 irq 0 fxp0: port 0xef00-0xef3f mem = 0xff900000-0xff9fffff,0xffaff000-0xffafffff irq 10 at device 13.0 on = pci0 fxp0: Ethernet address 00:e0:81:10:49:30 wb0: port 0xec00-0xec7f mem = 0xffafef80-0xffafefff irq 11 at device 15.0 on pci0 wb0: Ethernet address: 00:00:e8:21:8b:11 --- my own debuging lines --- wb0: Doing MII setup... wb0: sc->wb_miibus =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 bmsr =3D 0 wb0: MII setup failed (6)! --- end of my own debuging lines --- device_probe_and_attach: wb0 attach returned 6 pci_open(1): mode 1 addr port (0x0cf8) is 0x00000000 pci_open(1a): mode1res=3D0x80000000 (0x80000000) pci_cfgcheck: device 0 [class=3D060000] [hdr=3D00] is there = (id=3D71a08086) pci-: pci1 exists, using next available unit number pcib1: on motherboard pci2: on pcib1 ata-: ata0 exists, using next available unit number ata-: ata1 exists, using next available unit number Trying Read_Port at 203 Trying Read_Port at 243 Trying Read_Port at 283 Trying Read_Port at 2c3 Trying Read_Port at 303 Trying Read_Port at 343 Trying Read_Port at 383 Trying Read_Port at 3c3 isa_probe_children: disabling PnP devices isa_probe_children: probing non-PnP devices fdc0: at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on = isa0 fdc0: FIFO enabled, 8 bytes threshold fd0: <1440-KB 3.5" drive> on fdc0 drive 0 ata2 failed to probe at port 0x1f0 irq 14 on isa0 ata3 failed to probe at port 0x170 irq 15 on isa0 atkbdc0: at port 0x60,0x64 on isa0 atkbd0: flags 0x1 irq 1 on atkbdc0 atkbd: the current kbd controller command byte 0065 atkbd: keyboard ID 0x41ab (2) kbdc: RESET_KBD return code:00fa kbdc: RESET_KBD status:00aa kbd0: atkbd0, AT 101/102 (2), config:0x1, flags:0x3d0000 vga0: at port 0x3b0-0x3bb iomem 0xb0000-0xb7fff on = isa0 fb0: vga0, mda, type:MDA (1), flags:0x70000 fb0: port:0x3b0-0x3bb, crtc:0x3b4, mem:0xb0000 0x8000 fb0: init mode:7, bios mode:7, current mode:7 fb0: window:0xc00b0000 size:32k gran:32k, buf:0 size:32k sc0: at flags 0x100 on isa0 sc0: MDA <16 virtual consoles, flags=3D0x300> sc0: fb0, kbd0, terminal emulator: sc (syscons terminal) sio0: irq maps: 0x41 0x51 0x41 0x41 sio0 at port 0x3f8-0x3ff irq 4 on isa0 sio0: type 16550A sio1: irq maps: 0x41 0x49 0x41 0x41 sio1 at port 0x2f8-0x2ff irq 3 on isa0 sio1: type 16550A isa_probe_children: probing PnP devices BIOS Geometries: 0:03fefe3f 0..1022=3D1023 cylinders, 0..254=3D255 heads, 1..63=3D63 = sectors 0 accounted for Device configuration finished. new masks: bio 68c040, tty 63001a, net 67041a DUMMYNET initialized (000608) IP packet filtering initialized, divert enabled, rule-based forwarding = enabled, default to accept, logging limited to 100 packets/entry by = default IPv6 packet filtering initialized, default to accept, logging limited to = 100 packets/entry IPsec: Initialized Security Association Processing. IP Filter: v3.4.8 initialized. Default =3D pass all, Logging =3D = enabled ata0-master: success setting UDMA2 on PIIX4 chip ad0: ATA-4 disk at ata0 as master ad0: 12949MB (26520480 sectors), 26310 cyls, 16 heads, 63 S/T, 512 B/S ad0: 16 secs/int, 32 depth queue, UDMA33 ad0: piomode=3D4 dmamode=3D2 udmamode=3D4 cblid=3D1 Creating DISK ad0 Creating DISK wd0 vinum: loaded Mounting root from ufs:/dev/wd0s1a wd0s1: type 0xa5, start 0, end =3D 26520479, size 26520480 : OK start_init: trying /sbin/init ------=_NextPart_000_0006_01C03F4D.226EEAE0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 6:18:24 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.softclub.net (spider.softclub.net [195.68.136.18]) by hub.freebsd.org (Postfix) with ESMTP id CB16937B479; Thu, 26 Oct 2000 06:18:18 -0700 (PDT) Received: from ws08.hq.softclub.net ([192.168.10.8]) by mail.softclub.net with esmtp (SOFTCLUB #3) id 13on1B-000MOO-00 ; Thu, 26 Oct 2000 17:24:29 +0400 Date: Thu, 26 Oct 2000 17:25:02 +0400 From: "Alexei V. Alexandrov" X-Mailer: The Bat! (v1.44) Reply-To: "Alexei V. Alexandrov" Organization: ElcomSoft Ltd. X-Priority: 3 (Normal) Message-ID: <2615768964.20001026172502@elcomsoft.com> To: Sven.Huster@t-online.de Cc: freebsd-net@freebsd.org, freebsd-isp@freebsd.org Subject: Re: high availability by routing? In-reply-To: <13ok7k-1u9WtMC@fwd05.sul.t-online.com> References: <13ok7k-1u9WtMC@fwd05.sul.t-online.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello Sven, Thursday, October 26, 2000, 2:19:00 PM, you wrote: SHtod> hi there, SHtod> at the moment i have following setup: SHtod> |isp| --- |my router| -- |switch| -- |loadbalancer| -- |web farm| SHtod> i want to improve availability by adding a second loadbalancer and SHtod> a second router + a second connection to my network provider to SHtod> eliminate the single point of failure (i know about the single SHtod> switch). SHtod> so the setup then will be: SHtod> | | -- |router 1| -- | | -- |loadbalancer 1| -- | | SHtod> |isp| |switch| |web farm| SHtod> | | -- |router 2| -- | | -- |loadbalancer 2| -- | | SHtod> but SHtod> 1. how is routing managed between isp and my routers? SHtod> 2. what happends if one router fails or one isp connection is broken? SHtod> 3. how does the loadbalancer recongnizes that one router fails? SHtod> 4. how do i tell my routers to distribute traffic between the SHtod> loadbalancers equal? SHtod> 5. how can i handle the failure of one loadbalancer? I think the best way is to get connected with another ISP. This gives the opportunity if one of them is down there is always another one. There is HOWTO on the net about multihoming (http://noc.comstar.ru/miscdocs/multi.html). Hope this helps. Best regards, Alexei V. Alexandrov [AA4460, AVA32-RIPN, AA1829-RIPE] ------------------------------------------------------------------------ *** Alexei V. Alexandrov -- www.elcomsoft.com ---- ava@elcomsoft.com *** *** PGP Fingerprint: 9F23 7153 51D4 FD8F 4E7F D4DF E0FA E400 *** ------------------------------------------------------------------------ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 6:58:15 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 6107B37B479; Thu, 26 Oct 2000 06:58:10 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id HAA64373; Thu, 26 Oct 2000 07:58:07 -0600 (MDT) Date: Thu, 26 Oct 2000 07:58:06 -0600 (MDT) From: Nick Rogness To: Sven.Huster@t-online.de Cc: freebsd-net@freebsd.org, freebsd-isp@freebsd.org Subject: Re: high availability by routing? In-Reply-To: <13ok7k-1u9WtMC@fwd05.sul.t-online.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 26 Oct 2000 Sven.Huster@t-online.de wrote: > hi there, > > at the moment i have following setup: > > |isp| --- |my router| -- |switch| -- |loadbalancer| -- |web farm| > > i want to improve availability by adding a second loadbalancer and > a second router + a second connection to my network provider to > eliminate the single point of failure (i know about the single > switch). > > so the setup then will be: > > | | -- |router 1| -- | | -- |loadbalancer 1| -- | | > |isp| |switch| |web farm| > | | -- |router 2| -- | | -- |loadbalancer 2| -- | | > > but > 1. how is routing managed between isp and my routers? Work with them to run some type of routing protocol. It will probably be an IRP (I'm assuming you don't have an AS #) > 2. what happends if one router fails or one isp connection is broken? It should switch over to the other. > 3. how does the loadbalancer recongnizes that one router fails? The load balancer doesn't. That's the routers job. > 4. how do i tell my routers to distribute traffic between the > loadbalancers equal? It depends on your router type. > 5. how can i handle the failure of one loadbalancer? Hmmm. Not sure on this one...you need a network clustering setup. > maybe i will extend the setup with another connection to a other isp. > 6. how will this fit in my environment? > This will provide you with diverse path's but will complicate things unless you run BGP...which is quite involved. However, if you didn't want to load balance across your ISP links you could just use static routing. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 7: 5: 6 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 34C8337B4C5; Thu, 26 Oct 2000 07:05:00 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id IAA67229; Thu, 26 Oct 2000 08:04:57 -0600 (MDT) Date: Thu, 26 Oct 2000 08:04:57 -0600 (MDT) From: Nick Rogness To: Sven.Huster@t-online.de Cc: freebsd-net@freebsd.org, freebsd-isp@freebsd.org Subject: Re: high availability by routing? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Nick Rogness wrote: > On 26 Oct 2000 Sven.Huster@t-online.de wrote: > > > hi there, > > > > at the moment i have following setup: > > > > |isp| --- |my router| -- |switch| -- |loadbalancer| -- |web farm| > > > > i want to improve availability by adding a second loadbalancer and > > a second router + a second connection to my network provider to > > eliminate the single point of failure (i know about the single > > switch). > > > > so the setup then will be: > > > > | | -- |router 1| -- | | -- |loadbalancer 1| -- | | > > |isp| |switch| |web farm| > > | | -- |router 2| -- | | -- |loadbalancer 2| -- | | > > > > but > > 1. how is routing managed between isp and my routers? > > Work with them to run some type of routing protocol. It will > probably be an IRP (I'm assuming you don't have an AS #) > > > 2. what happends if one router fails or one isp connection is broken? > > It should switch over to the other. > > > 3. how does the loadbalancer recongnizes that one router fails? > > The load balancer doesn't. That's the routers job. Have 2 default gateways...or run some type of failover on the routers...like HSRP. If it is not a cisco router, then you will needs some type of High Availability software. You could also run routing daemons on your loadbalancer machines? Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 7:11:29 2000 Delivered-To: freebsd-net@freebsd.org Received: from lunatic.oneinsane.net (lunatic.oneinsane.net [207.113.133.231]) by hub.freebsd.org (Postfix) with ESMTP id 4EB5837B4C5 for ; Thu, 26 Oct 2000 07:11:23 -0700 (PDT) Received: by lunatic.oneinsane.net (Postfix, from userid 1000) id 59F0C15551; Thu, 26 Oct 2000 07:11:13 -0700 (PDT) Date: Thu, 26 Oct 2000 07:11:13 -0700 From: Ron 'The InSaNe One' Rosson To: freebsd-net@freebsd.org Subject: Multihomed Routing Message-ID: <20001026071113.A39980@lunatic.oneinsane.net> Reply-To: Ron Rosson Mail-Followup-To: freebsd-net@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i X-Operating-System: FreeBSD lunatic.oneinsane.net 4.1.1-STABLE X-Moon: The Moon is Waning Crescent (1% of Full) X-Opinion: What you read here is my IMHO X-WWW: http://www.oneinsane.net X-GPG-FINGERPRINT: 3F11 DB43 F080 C037 96F0 F8D3 5BD2 652B 171C 86DB X-Uptime: 7:06AM up 17 days, 20:13, 1 user, load averages: 1.07, 1.16, 1.08 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Yesterday I got into a discussion with one of my asociates about if a Network has 2 Routes out how do you tell your servers to switch between the routes without having to manually go in and change them. The discussion was not how the routers/switches were going to do it but how would are FreeBSD servers no what route to take out. Would the FreeBSD servers have to run routed or some other routing based deamon to know what there gateway route is? In theory we should not have to set a default route on this network for any of our machines. Can anyone enlighten me on this kind of setup and its proper way of implimentation. TIA -- ------------------------------------------------------------------------------ Ron Rosson ... and a UNIX user said ... The InSaNe One rm -rf * insane@oneinsane.net and all was /dev/null and *void() ------------------------------------------------------------------------------ I've learned that your family won't always be there for you. Unless, of course, you win the lottery. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 8:40:27 2000 Delivered-To: freebsd-net@freebsd.org Received: from mailout05.sul.t-online.com (mailout05.sul.t-online.com [194.25.134.82]) by hub.freebsd.org (Postfix) with ESMTP id 69E9F37B479; Thu, 26 Oct 2000 08:40:20 -0700 (PDT) Received: from fwd01.sul.t-online.com by mailout05.sul.t-online.com with smtp id 13op8d-0006MU-01; Thu, 26 Oct 2000 17:40:19 +0200 Received: from venus.system7.de (320051988339-0001@[62.224.115.228]) by fwd01.sul.t-online.com with esmtp id 13op8S-17lTJQC; Thu, 26 Oct 2000 17:40:08 +0200 Received: by venus.system7.de (Postfix, from userid 1001) id 6ED3254AF; Thu, 26 Oct 2000 17:40:07 +0200 (CEST) Date: Thu, 26 Oct 2000 17:40:07 +0200 From: Sven.Huster@t-online.de (Sven Huster) To: freebsd-net@freebsd.org, freebsd-isp@freebsd.org Subject: Re: high availability by routing? Message-ID: <20001026174007.A70522@venus.system7.de> References: <13ok7k-1u9WtMC@fwd05.sul.t-online.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <13ok7k-1u9WtMC@fwd05.sul.t-online.com>; from Sven.Huster@t-online.de on Thu, Oct 26, 2000 at 10:19:00AM +0000 X-Sender: 320051988339-0001@t-dialin.net Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org hi sorry, but i should go into more detail. all my machines will be run freebsd, also the routers. so if i setup some kind of dynamic routing on _all_ machines, will there be something like high availability or not? thanks sven > hi there, > > at the moment i have following setup: > > |isp| --- |my router| -- |switch| -- |loadbalancer| -- |web farm| > > i want to improve availability by adding a second loadbalancer and > a second router + a second connection to my network provider to > eliminate the single point of failure (i know about the single > switch). > > so the setup then will be: > > | | -- |router 1| -- | | -- |loadbalancer 1| -- | | > |isp| |switch| |web farm| > | | -- |router 2| -- | | -- |loadbalancer 2| -- | | > > but > 1. how is routing managed between isp and my routers? > 2. what happends if one router fails or one isp connection is broken? > 3. how does the loadbalancer recongnizes that one router fails? > 4. how do i tell my routers to distribute traffic between the > loadbalancers equal? > 5. how can i handle the failure of one loadbalancer? > > maybe i will extend the setup with another connection to a other isp. > 6. how will this fit in my environment? > > thanks a lot > regards > Sven > > -- > Sven Huster > Consultant - *BSD, Linux, Solaris > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 10:14: 3 2000 Delivered-To: freebsd-net@freebsd.org Received: from aurora.sol.net (aurora.sol.net [206.55.65.76]) by hub.freebsd.org (Postfix) with ESMTP id CD89537B479; Thu, 26 Oct 2000 10:13:58 -0700 (PDT) Received: (from jgreco@localhost) by aurora.sol.net (8.9.3/8.9.2/SNNS-1.02) id MAA32461; Thu, 26 Oct 2000 12:13:50 -0500 (CDT) From: Joe Greco Message-Id: <200010261713.MAA32461@aurora.sol.net> Subject: Optimized routing (was: Re: Multiple PCI busses?) To: sthaug@nethelp.no Date: Thu, 26 Oct 2000 12:13:50 -0500 (CDT) Cc: freebsd-hardware@freebsd.org, peter.jeremy@alcatel.com.au, dmiller@search.sparks.net, freebsd-net@freebsd.org In-Reply-To: <96712.972577732@verdi.nethelp.no> from "sthaug@nethelp.no" at Oct 26, 2000 06:28:52 PM X-Mailer: ELM [version 2.5 PL3] MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Why are you concerned about full 'net BGP tables? Are you really sending > > data to all ~90,000 advertised routes out there simultaneously? Or is it > > more likely that you're actively sending many packets to a few hundred? > > If you are concerned with high-speed routing/forwarding lookups, and using > the cache optimally, you may not want to use regular BSD routing. See > > Mikael Degermark, Andrej Brodnik, Svante Carlsson, Stephen Pink > Small Forwarding Tables for Fast Routing Lookups > Proceedings of the ACM SIGCOMM'97 Conference on Applications, Technologies, > Architectures and Protocols for Computer Communications. (Student Paper Award). > Cannes, France, September 16-18 1997. > > for a way of doing millions of forwarding lookups per second with a 200 > Mhz PPpro. Available from http://www.cdt.luth.se/~micke/publications.html. I'm waiting for somebody to actually implement this in FreeBSD. :-) With the advent of gigabit Ethernet and the prospect of another order-of- magnitude jump in the next few years, it seems like this would make a great class project for somebody - or for a professional project for some place involved in large scale servers with lots of routes. -- ... Joe ------------------------------------------------------------------------------- Joe Greco - Systems Administrator jgreco@ns.sol.net Solaria Public Access UNIX - Milwaukee, WI 414/342-4847 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 10:44:47 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 68AFD37B479; Thu, 26 Oct 2000 10:44:44 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id LAA89808; Thu, 26 Oct 2000 11:44:37 -0600 (MDT) Date: Thu, 26 Oct 2000 11:44:37 -0600 (MDT) From: Nick Rogness To: Sven Huster Cc: freebsd-net@freebsd.org, freebsd-isp@freebsd.org Subject: Re: high availability by routing? In-Reply-To: <20001026174007.A70522@venus.system7.de> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Sven Huster wrote: > hi > > sorry, but i should go into more detail. > > all my machines will be run freebsd, also the routers. > > so if i setup some kind of dynamic routing on _all_ machines, > will there be something like high availability or not? It depends on how you set it up with your upstream and how you set it up internally. You can get HA (kinda) with dynamic routing. It won't be full proof but it will help. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 10:49:48 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 6159C37B479 for ; Thu, 26 Oct 2000 10:49:44 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id LAA92623; Thu, 26 Oct 2000 11:49:35 -0600 (MDT) Date: Thu, 26 Oct 2000 11:49:35 -0600 (MDT) From: Nick Rogness To: "Ron 'The InSaNe One' Rosson" Cc: freebsd-net@freebsd.org Subject: Re: Multihomed Routing In-Reply-To: <20001026071113.A39980@lunatic.oneinsane.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Ron 'The InSaNe One' Rosson wrote: > Yesterday I got into a discussion with one of my asociates about if a > Network has 2 Routes out how do you tell your servers to switch between > the routes without having to manually go in and change them. The > discussion was not how the routers/switches were going to do it but how > would are FreeBSD servers no what route to take out. Would the FreeBSD > servers have to run routed or some other routing based deamon to know > what there gateway route is? In theory we should not have to set a > default route on this network for any of our machines. Yes you are correct. /usr/ports/net/gated > > Can anyone enlighten me on this kind of setup and its proper way of > implimentation. Run a IRP like OSPF (via gated) which will allow you to do what you need to do. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 10:53:44 2000 Delivered-To: freebsd-net@freebsd.org Received: from lunatic.oneinsane.net (lunatic.oneinsane.net [207.113.133.231]) by hub.freebsd.org (Postfix) with ESMTP id 6798437B479 for ; Thu, 26 Oct 2000 10:53:41 -0700 (PDT) Received: by lunatic.oneinsane.net (Postfix, from userid 1000) id 6374215551; Thu, 26 Oct 2000 10:53:40 -0700 (PDT) Date: Thu, 26 Oct 2000 10:53:40 -0700 From: Ron 'The InSaNe One' Rosson To: freebsd-net@freebsd.org Subject: Re: Multihomed Routing Message-ID: <20001026105340.A45573@lunatic.oneinsane.net> Reply-To: Ron Rosson Mail-Followup-To: freebsd-net@freebsd.org References: <20001026071113.A39980@lunatic.oneinsane.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from nick@rapidnet.com on Thu, Oct 26, 2000 at 11:49:35AM -0600 X-Operating-System: FreeBSD lunatic.oneinsane.net 4.1.1-STABLE X-Moon: The Moon is New X-Opinion: What you read here is my IMHO X-WWW: http://www.oneinsane.net X-GPG-FINGERPRINT: 3F11 DB43 F080 C037 96F0 F8D3 5BD2 652B 171C 86DB X-Uptime: 10:52AM up 17 days, 23:58, 1 user, load averages: 1.15, 1.11, 1.08 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Nick Rogness (nick@rapidnet.com) wrote: > On Thu, 26 Oct 2000, Ron 'The InSaNe One' Rosson wrote: > > > Yesterday I got into a discussion with one of my asociates about if a > > Network has 2 Routes out how do you tell your servers to switch between > > the routes without having to manually go in and change them. The > > discussion was not how the routers/switches were going to do it but how > > would are FreeBSD servers no what route to take out. Would the FreeBSD > > servers have to run routed or some other routing based deamon to know > > what there gateway route is? In theory we should not have to set a > > default route on this network for any of our machines. > > Yes you are correct. /usr/ports/net/gated > > > > > Can anyone enlighten me on this kind of setup and its proper way of > > implimentation. > > Run a IRP like OSPF (via gated) which will allow you to > do what you need to do. > So then you are saying that all my servers on the Network need to be running gated so they can always know the proper way out? TIA -- ------------------------------------------------------------------------------ Ron Rosson ... and a UNIX user said ... The InSaNe One rm -rf * insane@oneinsane.net and all was /dev/null and *void() ------------------------------------------------------------------------------ "Haste cuisine" - Fast French food. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 11:12:41 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 359A637B479 for ; Thu, 26 Oct 2000 11:12:37 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id MAA05471; Thu, 26 Oct 2000 12:12:32 -0600 (MDT) Date: Thu, 26 Oct 2000 12:12:32 -0600 (MDT) From: Nick Rogness To: "Ron 'The InSaNe One' Rosson" Cc: freebsd-net@freebsd.org Subject: Re: Multihomed Routing In-Reply-To: <20001026105340.A45573@lunatic.oneinsane.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Ron 'The InSaNe One' Rosson wrote: > Nick Rogness (nick@rapidnet.com) wrote: > > On Thu, 26 Oct 2000, Ron 'The InSaNe One' Rosson wrote: > > > > > Yesterday I got into a discussion with one of my asociates about if a > > > Network has 2 Routes out how do you tell your servers to switch between > > > the routes without having to manually go in and change them. The > > > discussion was not how the routers/switches were going to do it but how > > > would are FreeBSD servers no what route to take out. Would the FreeBSD > > > servers have to run routed or some other routing based deamon to know > > > what there gateway route is? In theory we should not have to set a > > > default route on this network for any of our machines. > > > > Yes you are correct. /usr/ports/net/gated > > > > > > > > Can anyone enlighten me on this kind of setup and its proper way of > > > implimentation. > > > > Run a IRP like OSPF (via gated) which will allow you to > > do what you need to do. > > > > So then you are saying that all my servers on the Network need to be > running gated so they can always know the proper way out? Some machines may need it some may not. I'll try to explain. If you have multiple paths to multiple networks and no default gateway...then yes. Example below. MachineA and MachineB should run a routing daemon to talk with the routing protocol running on Router1 and Router2. Router3--------Gateway1 (exterior routing) | Network1 | machineA ---| | |--- Router2-------Gateway2 (exterior routing) | |--- Router1-------Gateway3 (exterior Routing) machineB ---| | | Network2 This is not always the best idea. For example, if you have a machine on a network with only 1 possible path out to ALL networks, dynamic routing is not your best choice for that machine because there IS only 1 way out of your network for that machine. Example below. MachineA and MachineB only have 1 route to reach everything else...through Router1. machineA ---| | |---Router1---Network1---Router2---Network2 | machineB ---| Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 11:31:30 2000 Delivered-To: freebsd-net@freebsd.org Received: from web312.mail.yahoo.com (web312.mail.yahoo.com [216.115.105.77]) by hub.freebsd.org (Postfix) with SMTP id E9EB637B479 for ; Thu, 26 Oct 2000 11:31:27 -0700 (PDT) Message-ID: <20001026183127.14688.qmail@web312.mail.yahoo.com> Received: from [216.163.6.29] by web312.mail.yahoo.com; Thu, 26 Oct 2000 11:31:27 PDT Date: Thu, 26 Oct 2000 11:31:27 -0700 (PDT) From: Benjamin Gavin Subject: Firewall "loopback" routing To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, I haven't been able to find the answer in the archives, so I'll ask the question here. The following is my current setup: Internet <--> FreeBSD FW (ipfw + natd) <--> Internal net (172.16.x.y) I have natd rules setup to forward web requests on a certain IP to one of the machines on the internal network. I have also assigned a hostname (say foo.bar.com) to this IP. From outside of the firewall I can get to http://foo.bar.com/, but from inside, I cannot. My temporary solution to this is to setup an internal DNS server which serves up internal addresses to internal hosts, while the standard DNS server serves up the regular address to external hosts. So now both the internal and external people can get to http://foo.bar.com/. The problem is that this is a humongous pain in the a## to administer. First off, I can't just override the hosts that should have both internal and external address, I must provide addressing for the entire domain (bar.com) on both the internal and external DNS servers. Second, it is hard to troubleshoot from the inside, since I may have the ability to see the server from the inside, but the FW rules may be such that I can't see it from the outside. There are a number of firewall products that provide "loopback" processing, meaning that I could just type in the external address (i.e. 123.123.123.123) from behind the firewall and it would take care of routing the request through NAT, then back into the internal network for processing, and perform the reverse translation back again. Does FreeBSD support this type of "loopback" processing?? Here's what I've tried so far (in lieu of real loopback processing): Configure a second instance of natd, running on the inside interface and processing the same ruleset. After changing ports, I can get it to a point where the requestor asks for the external host, but then gets the correct response back from the internal responder directly, so the requester doesn't recognize the responder as the person to which it submitted the request. I can watch all the packets go out, get translated, get responded to, but the connection never happens because of the discrepancy. No matter how I pictured this in my head, it was impossible for me to get the internal server to respond back through the firewall because it believes (rightly so) that it can respond to the requestor directly. Any ideas?? Thanks, Benjamin Gavin __________________________________________________ Do You Yahoo!? Yahoo! Messenger - Talk while you surf! It's FREE. http://im.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 11:40:10 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 97BAE37B479 for ; Thu, 26 Oct 2000 11:40:08 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id MAA19300; Thu, 26 Oct 2000 12:38:16 -0600 (MDT) Date: Thu, 26 Oct 2000 12:38:16 -0600 (MDT) From: Nick Rogness To: Benjamin Gavin Cc: freebsd-net@freebsd.org Subject: Re: Firewall "loopback" routing In-Reply-To: <20001026183127.14688.qmail@web312.mail.yahoo.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Benjamin Gavin wrote: > Hi all, Hello! > I haven't been able to find the answer in the archives, so I'll ask the > question here. The following is my current setup: > > Internet <--> FreeBSD FW (ipfw + natd) <--> Internal net (172.16.x.y) > > I have natd rules setup to forward web requests on a certain IP to one > of the machines on the internal network. I have also assigned a hostname > (say foo.bar.com) to this IP. From outside of the firewall I can get to > http://foo.bar.com/, but from inside, I cannot. My temporary solution to > this is to setup an internal DNS server which serves up internal addresses > to internal hosts, while the standard DNS server serves up the regular > address to external hosts. So now both the internal and external people > can get to http://foo.bar.com/. [snip] > > Any ideas?? I'm sure there is a nat/ipfw setup you could do bu before you do that look at Bind ver9. I believe it has what you want. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 14:17:57 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id 8D89E37B479; Thu, 26 Oct 2000 14:17:50 -0700 (PDT) Received: from portonovo-29.budapest.interware.hu ([195.70.60.93] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13ouPA-0002h0-00; Thu, 26 Oct 2000 23:17:44 +0200 Message-ID: <39F89F70.B69C3186@elischer.org> Date: Thu, 26 Oct 2000 14:17:36 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Aaron Hill Cc: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Aaron Hill wrote: > > Hello, > > Further to my previous email here's the missing tcpdumps for the Linux and > Windows handshake/discovery session when connecting to Telstra Bigponds > (Australia) ADSL service with PPPoE. My original question still stands, can > someone tell me why FreeBSDs PPPoE is different to the other packages in > what it sends? FreeBSD will not connect, the others do. > > Windows (EnterNet)... > 16:34:48.581399 0:10:5a:0:d3:de Broadcast 8863 60: PPPoE PADI [Host-Uniq > UTF8] [Service-Name "bigpond"] > 16:34:48.636895 0:90:39:47:0:3f 0:10:5a:0:d3:de 8863 60: PPPoE PADO > [Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] > 16:34:48.637021 0:10:5a:0:d3:de 0:90:39:47:0:3f 8863 60: PPPoE PADR > [Host-Uniq UTF8] [Service-Name "bigpond"] > 16:34:48.689108 0:90:39:47:0:3f 0:10:5a:0:d3:de 8863 60: PPPoE PADS [ses > 0x1b1][Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] > 16:34:48.701229 0:10:5a:0:d3:de 0:90:39:47:0:3f 8864 60: PPPoE [ses 0x1b1] > LCPConfReq id=0x1 > > Linux (Roaring Penguin PPPoE)... > 16:58:01.345104 0:10:5a:0:d3:de Broadcast 8863 60: PPPoE PADI [Service-Name > "bigpond"] > 16:58:01.407318 0:90:39:47:0:3f 0:10:5a:0:d3:de 8863 60: PPPoE PADO > [Service-Name "bigpond"] [AC-Name "nkt1-kent"] > 16:58:01.407470 0:10:5a:0:d3:de 0:90:39:47:0:3f 8863 60: PPPoE PADR > [Service-Name "bigpond"] > 16:58:01.466063 0:90:39:47:0:3f 0:10:5a:0:d3:de 8863 60: PPPoE PADS [ses > 0x1b2][Service-Name "bigpond"] [AC-Name "nkt1-kent"] > 16:58:02.338999 0:10:5a:0:d3:de 0:90:39:47:0:3f 8864 60: PPPoE [ses 0x1b2] > LCPConfReq id=0x1 > > FreeBSD (4.1.1 Release)... > 17:07:47.907372 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Service-Name > "bigpond"] [Host-Uniq UTF8] > 17:07:47.969361 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 179: PPPoE PADO > [Service-Name] [Service-Name "telstra"] [Service-Name "cmux"] [Service-Name > "bigpond"] [Service-Name "n7061992k"] [Service-Name "n2155202k"] > [Service-Name "n2155201k"] > 17:07:47.969440 0:e0:29:73:81:dd 0:90:39:47:0:3f 8863 60: PPPoE PADR > [Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] > 17:07:48.023924 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 62: PPPoE PADS > [Service-Name-Error "SvcName Tag Error"] [AC-Name "nkt1-kent"] [Host-Uniq > UTF8] > > I can see the differences but I don't know if they are the show stoppers. Is > the fact that FreeBSD puts the Host-Uniq info at the end of the first frame > the problem or is it something else that tcpdump doesn't pick up? Windows > puts that info at the start of the frame, Linux doesn't include it at all. > > Anyone? > > Thanks > Aaron Hill It may "just work" if you power down and restart the DSL modem... it caches the local ethernet address sometimes and won't work with another.. (I notice that the windows and Linux are the same (different) machine from that used by BSD.. The DSL modem, once initialised to that machine may refuse to work correctly with the other machine (I've seen this many times) on the other hand it DOES look as if you are getting part way through the initialisation. I don;t understand why the provider comes back with seven service names, unless he is offering you seven possibilities. He however is NOT providing an AC-name! very wierd > > _________________________________________________________________________ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > Share information about yourself, create your own public profile at > http://profiles.msn.com. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 14:46:49 2000 Delivered-To: freebsd-net@freebsd.org Received: from overlord.e-gerbil.net (e-gerbil.net [207.91.110.247]) by hub.freebsd.org (Postfix) with ESMTP id 295F037B4C5 for ; Thu, 26 Oct 2000 14:46:47 -0700 (PDT) Received: by overlord.e-gerbil.net (Postfix, from userid 1000) id 0D0935D6E; Thu, 26 Oct 2000 17:46:37 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by overlord.e-gerbil.net (Postfix) with ESMTP id 084991F1B; Thu, 26 Oct 2000 17:46:37 -0400 (EDT) Date: Thu, 26 Oct 2000 17:46:36 -0400 (EDT) From: "Richard A. Steenbergen" To: Nick Rogness Cc: Ron 'The InSaNe One' Rosson , freebsd-net@freebsd.org Subject: Re: Multihomed Routing In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Nick Rogness wrote: > On Thu, 26 Oct 2000, Ron 'The InSaNe One' Rosson wrote: > > > Yesterday I got into a discussion with one of my asociates about if a > > Network has 2 Routes out how do you tell your servers to switch between > > the routes without having to manually go in and change them. The > > discussion was not how the routers/switches were going to do it but how > > would are FreeBSD servers no what route to take out. Would the FreeBSD > > servers have to run routed or some other routing based deamon to know > > what there gateway route is? In theory we should not have to set a > > default route on this network for any of our machines. > > Yes you are correct. /usr/ports/net/gated I believe where you're going with this is using a router redundancy protocol like HSRP (Crisco version) or VRRP (standards based). This doesn't help you with optimal routing, but allows hosts to failover transparently without having to run gated or be included on any kind of IGP. This is often MUCH cleaner in practice. machineA ---| (10.1.1.3) |--- Router2-------(link x)---> (virtual 10.1.1.1)| | |--- Router1-------(link y)---> machineB ---| (10.1.2.2) The way this works is that you have two routers which talk to each other and create a fake virtual IP and MAC address to a virtual interface which floats between routers, and the machines are configured to use this fake ".1" as their gateway. The routers are configured to have one act as primary and the other in standby, and they constantly test each others status and take over in the event of a failure. You can also do semi advanced things such as load balancing by having half default to 1 as primary and half default to the other, and assign weight metrics and then have standby decisions made based on criteria such as link failures (for example, if link y dies, router 1 can automatically adjust its metrics to shift traffic to router 2 without having to pass it over the router1<->router2 link later). -- Richard A Steenbergen http://www.e-gerbil.net/humble PGP Key ID: 0x138EA177 (67 29 D7 BC E8 18 3E DA B2 46 B3 D8 14 36 FE B6) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 14:52:31 2000 Delivered-To: freebsd-net@freebsd.org Received: from hotmail.com (f56.law6.hotmail.com [216.32.241.56]) by hub.freebsd.org (Postfix) with ESMTP id 15B6A37B4CF; Thu, 26 Oct 2000 14:52:25 -0700 (PDT) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Thu, 26 Oct 2000 14:52:21 -0700 Received: from 203.11.225.5 by lw6fd.law6.hotmail.msn.com with HTTP; Thu, 26 Oct 2000 21:52:21 GMT X-Originating-IP: [203.11.225.5] From: "Aaron Hill" To: julian@elischer.org Cc: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) Date: Thu, 26 Oct 2000 21:52:21 GMT Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 26 Oct 2000 21:52:21.0771 (UTC) FILETIME=[04B13DB0:01C03F97] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Firstly thanks for your reply. >It may "just work" if you power down and restart the DSL modem... >it caches the local ethernet address sometimes and won't work with >another.. > >(I notice that the windows and Linux are the same (different) machine >from that used >by BSD.. The DSL modem, once initialised to that machine may refuse to >work correctly with the >other machine (I've seen this many times) Good spot, I forgot to mention that. I'm pretty sure my ISP/modem doesn't have this restriction because a few times during my testing. The Windows and Linux captures were made from my desktop machine but I've also switched the connection between my work laptop (linux) and my desktop in a space of seconds and have always managed to get connected. Just to confirm though I did try your suggestion but it didn't work. I'll be happy to try most things (ritual sacrifice?) to get this working! Out of interest the adsl modem I have is called an Alcatel Speed Touch Home. I haven't had a reason to doubt it yet either, it seems a pretty reliable device. >on the other hand it DOES look as if you are getting part way through >the initialisation. >I don;t understand why the provider comes back with seven service >names, unless he is offering you seven possibilities. He however is NOT >providing an AC-name! > >very wierd Isn't it! The AC-Name is not returned in the Concentrators response yet in FreeBSD's next request it knows the AC-Name... ? Um. What's going on? The AC-Name is not in any config file and I've got the same situation after rebooting which would have cleared at any ARP caches etc. I've also tried disabling ARP on the FreeBSD interface connecting to the modem (i.e. -ARP in ifconfig) which some people seem to use in some newsgroup/mailing list archives I've seen. I've also tried different interfaces, different IP addresses, different media settings, browsing the netgraph source, about a hundred different ppp.conf options (I've got a very basic config now, just to test PPPoE discovery) etc etc. My struggle (and Peter's) continues. Aaron Hill _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 14:58:29 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id F2D6037B479 for ; Thu, 26 Oct 2000 14:58:25 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id PAA26502; Thu, 26 Oct 2000 15:58:19 -0600 (MDT) Date: Thu, 26 Oct 2000 15:58:19 -0600 (MDT) From: Nick Rogness To: "Richard A. Steenbergen" Cc: "Ron 'The InSaNe One' Rosson" , freebsd-net@freebsd.org Subject: Re: Multihomed Routing In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Richard A. Steenbergen wrote: > On Thu, 26 Oct 2000, Nick Rogness wrote: > > > On Thu, 26 Oct 2000, Ron 'The InSaNe One' Rosson wrote: > > > > > Yesterday I got into a discussion with one of my asociates about if a > > > Network has 2 Routes out how do you tell your servers to switch between > > > the routes without having to manually go in and change them. The > > > discussion was not how the routers/switches were going to do it but how > > > would are FreeBSD servers no what route to take out. Would the FreeBSD > > > servers have to run routed or some other routing based deamon to know > > > what there gateway route is? In theory we should not have to set a > > > default route on this network for any of our machines. > > > > Yes you are correct. /usr/ports/net/gated > > I believe where you're going with this is using a router redundancy > protocol like HSRP (Crisco version) or VRRP (standards based). This > doesn't help you with optimal routing, but allows hosts to failover > transparently without having to run gated or be included on any kind of > IGP. This is often MUCH cleaner in practice. Agreed. However, that is a Cisco equipment. The solution I stated earlier is ONLY good when a router(s) have multiple path's to other router(s) networks. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 15: 3:26 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id 1EAF037B479; Thu, 26 Oct 2000 15:03:20 -0700 (PDT) Received: from portonovo-29.budapest.interware.hu ([195.70.60.93] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13ov7B-0006Rm-00; Fri, 27 Oct 2000 00:03:14 +0200 Message-ID: <39F8AA1A.E9885B86@elischer.org> Date: Thu, 26 Oct 2000 15:03:06 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Aaron Hill Cc: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Aaron Hill wrote: > > > >on the other hand it DOES look as if you are getting part way through > >the initialisation. > >I don;t understand why the provider comes back with seven service > >names, unless he is offering you seven possibilities. He however is NOT > >providing an AC-name! > > > >very wierd I bet it's tcpdump only showing a limitted part of the packet.. notice that it's a lot longer.... > > Isn't it! The AC-Name is not returned in the Concentrators response yet in > FreeBSD's next request it knows the AC-Name... ? Um. What's going on? The > AC-Name is not in any config file and I've got the same situation after > rebooting which would have cleared at any ARP caches etc. > > I've also tried disabling ARP on the FreeBSD interface connecting to the > modem (i.e. -ARP in ifconfig) which some people seem to use in some > newsgroup/mailing list archives I've seen. Shouldn't make a difference. > I've also tried different > interfaces, different IP addresses, different media settings, browsing the > netgraph source, about a hundred different ppp.conf options (I've got a very > basic config now, just to test PPPoE discovery) etc etc. > > My struggle (and Peter's) continues. the trick is to make the provider's equipment respond the same.. Maybe it's the ORDER we are adding in stuff. > > Aaron Hill > _________________________________________________________________________ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > Share information about yourself, create your own public profile at > http://profiles.msn.com. -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 15:11: 3 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id 5FE4237B4C5; Thu, 26 Oct 2000 15:11:00 -0700 (PDT) Received: from portonovo-29.budapest.interware.hu ([195.70.60.93] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13ovEe-00074i-00; Fri, 27 Oct 2000 00:10:57 +0200 Message-ID: <39F8ABE9.832C74B2@elischer.org> Date: Thu, 26 Oct 2000 15:10:49 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Aaron Hill Cc: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Aaron Hill wrote: > > > Windows (EnterNet)... > 16:34:48.581399 0:10:5a:0:d3:de Broadcast 8863 60: PPPoE PADI [Host-Uniq > UTF8] [Service-Name "bigpond"] > > FreeBSD (4.1.1 Release)... > 17:07:47.907372 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Service-Name > "bigpond"] [Host-Uniq UTF8] > The provider treats these differently we probably need to reverse the order of the Host_uniq and Service name fields.. he seems to not be recognising the first, because he offers us a bunch of services instead of just one.. I'll bet that the same problem is in the 3rd (PADS) packet too.. they probably insist on having the Host_Uniq first. (I don't know why it comes up with "UTF8" though, I think that's TCPDUMP misreading something, (I forget what I put there)) -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 15:51: 5 2000 Delivered-To: freebsd-net@freebsd.org Received: from hotmail.com (f50.law6.hotmail.com [216.32.241.50]) by hub.freebsd.org (Postfix) with ESMTP id 25B8737B479; Thu, 26 Oct 2000 15:51:01 -0700 (PDT) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Thu, 26 Oct 2000 15:51:01 -0700 Received: from 203.11.225.5 by lw6fd.law6.hotmail.msn.com with HTTP; Thu, 26 Oct 2000 22:51:00 GMT X-Originating-IP: [203.11.225.5] From: "Aaron Hill" To: julian@elischer.org Cc: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) Date: Thu, 26 Oct 2000 22:51:00 GMT Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 26 Oct 2000 22:51:01.0015 (UTC) FILETIME=[36534270:01C03F9F] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >The provider treats these differently >we probably need to reverse the order of the Host_uniq and Service >name fields.. It does look like that hence my searching through the source code to check if I could make a simple hack to test it. I ran out of time though. I've been reading the RFC (2516) lately which says (I quote)... The PADI packet MUST contain exactly one TAG of TAG_TYPE Service-Name, indicating the service the Host is requesting, and any number of other TAG types. ... so from the order of that statement it seems putting the Service-Name tag first is the correct thing to do. The RFC doesn't explicitly mention what order the tags should be in. It's entirely plausible that the ISPs equipment has a requirement (bug?) that the service name comes last. >(I don't know why it comes up with "UTF8" though, I think that's >TCPDUMP misreading something, (I forget what I put there)) I agree, I think it's tcpdump trying, incorrectly, to interpret the tag contents. In case you'd like to see what the Host-Uniq tags actually contained here's some hex of the Windows PADI frame... 0:10:5a:0:d3:de Broadcast 8863 60: PPPoE PADI [Host-Uniq UTF8] [Service-Name "bigpond"] 0x0000 1109 0000 0015 0103 0006 0010 5a00 d3de ............Z... 0x0010 0101 0007 6269 6770 6f6e 6400 0000 0000 ....bigpond..... 0x0020 0000 0000 0000 0000 0000 0000 0000 .............. ... and the FreeBSD PADI frame... 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Service-Name "bigpond"] [Host-Uniq UTF8] 0x0000 1109 0000 0013 0101 0007 6269 6770 6f6e ..........bigpon 0x0010 6401 0300 0480 7067 c300 0000 0000 0000 d.....pg........ 0x0020 0000 0000 0000 0000 0000 0000 0000 .............. ... so Windows' Host-Uniq is "0010 5a00 d3de" and FreeBSD's is "0480 7067 c3". The RFC states this value can be anything the Host chooses and it is not interpreted by the Access Concentrator. Interestingly the RFC also states that the AC MUST (!) include the Host-Uniq value in any PADO/PADS replies, which isn't happening in my capture. So I think the AC's PADO continues in another frame which tcpdump isn't showing me. This would explain why we don't see the AC-Name tag being sent but FreeBSD knows the AC-Name in it's PADR. This is a side issue perhaps, it still doesn't explain why the AC doesn't understand FreeBSD's inital PADI. Sorry if this is information overload or heading down the wrong track. I'm just trying to understand the problem. Aaron _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 16:41:10 2000 Delivered-To: freebsd-net@freebsd.org Received: from tomts5-srv.bellnexxia.net (tomts5.bellnexxia.net [209.226.175.25]) by hub.freebsd.org (Postfix) with ESMTP id 46C6E37B4C5 for ; Thu, 26 Oct 2000 16:41:05 -0700 (PDT) Received: from johnny5 ([64.229.51.108]) by tomts5-srv.bellnexxia.net (InterMail vM.4.01.03.00 201-229-121) with SMTP id <20001026234056.JYKJ18376.tomts5-srv.bellnexxia.net@johnny5>; Thu, 26 Oct 2000 19:40:56 -0400 Message-ID: <002601c03fa5$a760da30$0100000a@johnny5> Reply-To: "John Telford" From: "John Telford" To: Cc: Subject: Multihomed natd, nics and default gateways continued. Date: Thu, 26 Oct 2000 19:37:07 -0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0023_01C03F84.20308EA0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0023_01C03F84.20308EA0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Nick, You are wise in the ways of FreeBSD and routing. Could you take a moment = and provide some tips on how I could expand on your help to John Prince = ? I have a similar setup but would like it to behave slightly differently. = My setup: 1 internal interface. 1 external interface doing natd, default gateway routing for the = internal to an isp. We have now brought in a second ISP and put a 3rd interface into the = Freebsd box. I'd like to have a setup like this: ISPA-----------interface A_fxp0 fxp2_NATD--interface C---------internal = network 10.130.x.x ISPB-----------interface b_fxp1 =20 I would like to have all internal -> external traffic route through = ISPA. In the event that ISPA goes down then the ISPB connection should = take over automatically with out the users noticing except that things = are slower because ISPB is a slower connection. This means the default = gateway would have to change on the fly and I can't seem to locate much = information on how this can work. Thanks in advance, John=20 =20 Nick wrote: DATE: 10/25/2000 19:58:00 SUBJECT: RE: Multipath natd n Wed, 25 Oct 2000, John Prince wrote: > Hello.. > Is it possible (I have been trying).... > I have noticed other requests, however there does not seem to be any = answers.. >=20 > I have a firewall setup, IPFW and Natd, with 2 external interfaces, = and a=20 > single internal. > Each external interface is connected to a provider. > Setup is as follows.. > External Internal. > bbb.bbb.bbb.bbb --------------- > |--------------- ccc.ccc.ccc.ccc > aaa.aaa.aaa.aaa --------------- > The internal network consists of 2 nets, 10.0.1.0 and 10.0.2.0 > What I want to do is route any traffic from the 10.0.1.0 network to = the=20 > (bbb) external > interface, and traffic from the 10.0.2.0 to the the (aaa) interface.. > Ipfw and Natd appear to function, as long as I specify a default = route.. > I would like to do this all on a single machine, if possible.. > Any help would be greatly appreciated.. It`s possible. Run 2 differnet natd`s. Setup ipfw like so: #Don;t Divert local traffic ipfw add 50 allow ip from 10.0.1.0/24 to 10.0.2.0/24 ipfw add 51 allow ip from 10.0.2.0/24 to 10.0.1.0/24 #Dvert traffic from 1.0/24 out and in interface B ipfw add 100 divert natd ip from 10.0.1.0/24 to any ipfw add 101 divert natd ip from any to any in via $INTERFACE_B #Divert traffic from 2.0/24 network in and out int a ipfw add 200 divert natd2 ip from 10.0.2.0/24 to any ipfw add 201 divert natd2 ip from any to any in via $INTERFACE_A #Add routing for these natd`d addresses ipfw add 1000 fwd $INTERFACE_B_NEXT_HOP ip from=20 $INTERFACE_B_ADDRESS to any ipfw add 2000 fwd $INTERFACE_A_NEXT_HOP ip from=20 $INTERFACE_A_ADDRESS to any #Leave on for testing until it works ipfw add 3000 allow ip from any to any Then after you do that setup the 2 different natd`s to listen on different ports (default 8668) and another entry int /etc/services: natd2 8669/divert # Network Address Translation Then run the nat`s seperately: root# natd -p 8668 -a $INTERFACE_B_ADDRESS root# natd -p 8669 -a $INTERFACE_A_ADDRESS Nick Rogness - Drive defensively. Buy a tank. ------=_NextPart_000_0023_01C03F84.20308EA0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Nick,
You are wise in the ways of FreeBSD and = routing.=20 Could you take a moment and provide some tips on how I could expand on = your help=20 to John Prince ?
I have a similar setup but would like it to = behave=20 slightly differently. My setup:
1 internal interface.
1 external interface doing = natd, default gateway=20 routing for the internal to an isp.
We have now brought in a second ISP and put a = 3rd=20 interface into the Freebsd box. I'd like to have a setup like = this:
 
ISPA-----------interface = A_fxp0
          &nbs= p;            = ;         fxp2_NATD--interfa= ce=20 C---------internal network 10.130.x.x
ISPB-----------interface=20 b_fxp1  
 
I would like to have all internal -> = external=20 traffic route through ISPA. In the event that ISPA goes down then the = ISPB=20 connection should take over automatically with out the users noticing = except=20 that things are slower because ISPB is a slower connection. This means = the=20 default gateway would have to change on the fly and I can't seem to = locate much=20 information on how this can work.
 
Thanks in = advance, John 
 
Nick wrote:
DATE:=20 10/25/2000 19:58:00
SUBJECT: RE:  Multipath=20 natd
 n Wed, 25 = Oct 2000, John=20 Prince wrote:

> Hello..
> Is it possible (I have been=20 trying)....
> I have noticed other requests, however there does = not seem=20 to be any answers..
>
> I have a firewall setup, IPFW and = Natd,=20 with 2 external interfaces, and a
> single internal.
> Each = external interface is connected to a provider.
> Setup is as=20 follows..
> External Internal.
> bbb.bbb.bbb.bbb=20 ---------------
> |--------------- ccc.ccc.ccc.ccc
> = aaa.aaa.aaa.aaa=20 ---------------
> The internal network consists of 2 nets, = 10.0.1.0 and=20 10.0.2.0
> What I want to do is route any traffic from the = 10.0.1.0=20 network to the
> (bbb) external
> interface, and traffic = from the=20 10.0.2.0 to the the (aaa) interface..
> Ipfw and Natd appear to = function,=20 as long as I specify a default route..
> I would like to do this = all on a=20 single machine, if possible..
> Any help would be greatly=20 appreciated..

It`s possible.  Run 2 differnet natd`s.  = Setup=20 ipfw like so:

#Don;t Divert local traffic
ipfw add 50 allow = ip from=20 10.0.1.0/24 to 10.0.2.0/24
ipfw add 51 allow ip from 10.0.2.0/24 to=20 10.0.1.0/24

#Dvert traffic from 1.0/24 out and in interface = B
ipfw=20 add 100 divert natd ip from 10.0.1.0/24 to any
ipfw add 101 divert = natd ip=20 from any to any in via $INTERFACE_B

#Divert traffic from 2.0/24 = network=20 in and out int a
ipfw add 200 divert natd2 ip from 10.0.2.0/24 to=20 any
ipfw add 201 divert natd2 ip from any to any in via=20 $INTERFACE_A


#Add routing for these natd`d addresses
= ipfw add=20 1000 fwd $INTERFACE_B_NEXT_HOP ip from
$INTERFACE_B_ADDRESS to=20 any

ipfw add 2000 fwd $INTERFACE_A_NEXT_HOP ip from=20
$INTERFACE_A_ADDRESS to any

#Leave on for testing until it=20 works
ipfw add 3000 allow ip from any to any

Then after you = do that=20 setup the 2 different natd`s to listen on
different ports (default = 8668) and=20 another entry=20 int
/etc/services:

= natd2          =20 8669/divert # Network Address Translation

Then run the nat`s=20 seperately:

root# natd -p 8668 -a $INTERFACE_B_ADDRESS
= root# natd=20 -p 8669 -a $INTERFACE_A_ADDRESS



Nick Rogness
- Drive=20 defensively.  Buy a tank.
------=_NextPart_000_0023_01C03F84.20308EA0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 16:49:12 2000 Delivered-To: freebsd-net@freebsd.org Received: from ihemail1.firewall.lucent.com (ihemail1.lucent.com [192.11.222.161]) by hub.freebsd.org (Postfix) with ESMTP id BC49B37B479; Thu, 26 Oct 2000 16:49:07 -0700 (PDT) Received: from ihemail1.firewall.lucent.com (localhost [127.0.0.1]) by ihemail1.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id TAA18460; Thu, 26 Oct 2000 19:49:07 -0400 (EDT) Received: from mhmail.mh.lucent.com (h135-3-115-8.lucent.com [135.3.115.8]) by ihemail1.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id TAA18445; Thu, 26 Oct 2000 19:49:06 -0400 (EDT) Received: from lucent.com (positron.micro.lucent.com [192.19.56.129]) by mhmail.mh.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id TAA24990; Thu, 26 Oct 2000 19:49:05 -0400 (EDT) Message-ID: <39F8C29F.D785C588@lucent.com> Date: Thu, 26 Oct 2000 19:47:43 -0400 From: "Gary T. Corcoran" Reply-To: gcorcoran@lucent.com Organization: Lucent Microelectronics - Client Access Broadband Systems X-Mailer: Mozilla 4.73 [en] (Win95; U) X-Accept-Language: en MIME-Version: 1.0 To: Aaron Hill Cc: julian@elischer.org, freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Aaron Hill wrote: > > >The provider treats these differently > >we probably need to reverse the order of the Host_uniq and Service > >name fields.. > > It does look like that hence my searching through the source code to check > if I could make a simple hack to test it. I ran out of time though. > > I've been reading the RFC (2516) lately which says (I quote)... > > The PADI packet MUST contain exactly one TAG of TAG_TYPE > Service-Name, indicating the service the Host is requesting, and any number > of other TAG types. > > ... so from the order of that statement it seems putting the Service-Name > tag first is the correct thing to do. [Quick background: I implemented PPPoE in our DSL drivers for the Lucent DSL adapters] Yes, the only tag REQUIRED in the PADI is a Service-Name tag, which has to match what the service provide wants, and may possibly be of zero length. > The RFC doesn't explicitly mention > what order the tags should be in. It's entirely plausible that the ISPs > equipment has a requirement (bug?) that the service name comes last. It could be. Do you know what brand of head-end equipment you're trying to communicate with? In any event, since only a Service-Name is required, if you send ONLY a Service-Name, then it will meet the bugs (requirements) of head-ends that might require it to be first _or_ last. In other words, why send the Host-Uniq at all - unless you have a specific need for it? In my drivers, I only send Service-Name in the PADI... (but we haven't tested in Australia... :-) Gary -- ========================================================= Gary Corcoran - Distinguished Member of Technical Staff Lucent Microelectronics - Client Access Broadband Systems Communications Protocol & Driver Development Group "We make the drivers that make communications work" Email: gcorcoran@lucent.com --------------------------------------------------------- "No brain, no service." ========================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 17: 5:56 2000 Delivered-To: freebsd-net@freebsd.org Received: from bacardi.torrentnet.com (bacardi.torrentnet.com [198.78.51.104]) by hub.freebsd.org (Postfix) with ESMTP id 47AF637B6B1 for ; Thu, 26 Oct 2000 17:05:52 -0700 (PDT) Received: from bacardi.torrentnet.com (localhost.torrentnet.com [127.0.0.1]) by bacardi.torrentnet.com (8.10.2/8.10.2) with ESMTP id e9R05ct21991; Thu, 26 Oct 2000 20:05:38 -0400 (EDT) Message-Id: <200010270005.e9R05ct21991@bacardi.torrentnet.com> To: Nick Rogness Cc: "Richard A. Steenbergen" , "Ron 'The InSaNe One' Rosson" , freebsd-net@FreeBSD.ORG Subject: Re: Multihomed Routing In-reply-to: Your message of "Thu, 26 Oct 2000 15:58:19 MDT." Date: Thu, 26 Oct 2000 20:05:38 -0400 From: Bakul Shah Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > On Thu, 26 Oct 2000, Ron 'The InSaNe One' Rosson wrote: > > > > > Yesterday I got into a discussion with one of my asociates about if a > > > Network has 2 Routes out how do you tell your servers to switch between > > > the routes without having to manually go in and change them. The > > > discussion was not how the routers/switches were going to do it but how > > > would are FreeBSD servers no what route to take out. Would the FreeBSD > > > servers have to run routed or some other routing based deamon to know > > > what there gateway route is? In theory we should not have to set a > > > default route on this network for any of our machines. Wouldn't listening to/soliciting router discovery ICMP messages on your hosts take care of this? See RFC 1256. Supposedly FreeBSD `routed' already does this. When you have multiple routers in your network this ought to be better than hardwiring a default gateway on your hosts. But you shouldn't need to run RIP or OSPF on your hosts. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 17:12:50 2000 Delivered-To: freebsd-net@freebsd.org Received: from ihemail1.firewall.lucent.com (ihemail1.lucent.com [192.11.222.161]) by hub.freebsd.org (Postfix) with ESMTP id 52A9337B479; Thu, 26 Oct 2000 17:12:45 -0700 (PDT) Received: from ihemail1.firewall.lucent.com (localhost [127.0.0.1]) by ihemail1.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id UAA00783; Thu, 26 Oct 2000 20:12:44 -0400 (EDT) Received: from mhmail.mh.lucent.com (h135-3-115-8.lucent.com [135.3.115.8]) by ihemail1.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id UAA00777; Thu, 26 Oct 2000 20:12:44 -0400 (EDT) Received: from lucent.com (positron.micro.lucent.com [192.19.56.129]) by mhmail.mh.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id UAA28869; Thu, 26 Oct 2000 20:12:42 -0400 (EDT) Message-ID: <39F8C82E.2C61CF55@lucent.com> Date: Thu, 26 Oct 2000 20:11:26 -0400 From: "Gary T. Corcoran" Reply-To: gcorcoran@lucent.com Organization: Lucent Microelectronics - Client Access Broadband Systems X-Mailer: Mozilla 4.73 [en] (Win95; U) X-Accept-Language: en MIME-Version: 1.0 To: Aaron Hill Cc: julian@elischer.org, freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Aaron Hill wrote: ... > I agree, I think it's tcpdump trying, incorrectly, to interpret the tag > contents. In case you'd like to see what the Host-Uniq tags actually > contained here's some hex of the Windows PADI frame... > > 0:10:5a:0:d3:de Broadcast 8863 60: PPPoE PADI [Host-Uniq UTF8] [Service-Name > "bigpond"] > 0x0000 1109 0000 0015 0103 0006 0010 5a00 d3de ............Z... > 0x0010 0101 0007 6269 6770 6f6e 6400 0000 0000 ....bigpond..... > 0x0020 0000 0000 0000 0000 0000 0000 0000 .............. > > ... and the FreeBSD PADI frame... > > 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Service-Name "bigpond"] > [Host-Uniq UTF8] > 0x0000 1109 0000 0013 0101 0007 6269 6770 6f6e ..........bigpon > 0x0010 6401 0300 0480 7067 c300 0000 0000 0000 d.....pg........ > 0x0020 0000 0000 0000 0000 0000 0000 0000 .............. This would be a bug in the head-end and not the FreeBSD implementation, but what if... The Windows PADI frame accidentally has the Service-Name terminated with a NULL. It is NOT required by the standard, but what if the head-end is scanning for the Service-Name string that way? The way the FreeBSD frame is constructed, with the Host-Uniq tag immediately after the Service-Name, it is not (pseudo) NULL-terminated, and never will be for this format. Just to make it clear, it is not _supposed_ to be Null-terminated, but if the head-end has this bug, both the Windows and Linux implementations would happen to satisfy it. Just a thought... Gary To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 18:56:42 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail0.m2mtechnology.com (unknown [203.202.15.134]) by hub.freebsd.org (Postfix) with ESMTP id 73F5237B479 for ; Thu, 26 Oct 2000 18:56:32 -0700 (PDT) Received: from ntserver (ip131.m2mtechnology.com [203.202.15.131]) by mail0.m2mtechnology.com (8.9.3/8.9.3) with SMTP id MAA19093 for ; Fri, 27 Oct 2000 12:57:13 +1100 (EST) (envelope-from freebsd@m2mtechnology.com) From: "Sysadmin" To: Subject: Packet routing Date: Fri, 27 Oct 2000 12:58:39 +1000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Can anyone tell us how to get FreeBSD to route packets? This should be an easy question, infact all the documentation that we have read says that FreeBSD should route packets simply by setting the line gateway_enable="YES" in rc.conf. What we have a gateway machine with 6 interfaces on individual networks (1 external, 5 internal). interfaces: ex0 203... vr0 10.0/16 vr1 10.1/16 vr2 10.2/16 vr3 10.3/16 vr4 10.4/16 We want the gateway to route packets across the internal networks. eg. a machine on network 10.0/16 should be able to reach a machine on 10.1/16 (or any 10.*/16 network) via the gateway. What happens is that the packet just doesn't get routed. A traceroute show the packet reach the gateway but it doesn't get any further. Could it be anything to do with the network number 10? Obviously this is in the range of non-routable networks. Does this mean that when FreeBSD recieves a packet from a 10 network, that is not destined for itself, it silently drops the packet? We have looked at all the kernel build options and we have tried the generic kernel, to no effect. This is what our routing table looks like: Internet: Destination Gateway Flags Netif Expire default 203.36.202.65 UGSc ex0 10/16 link#1 UC vr0 => 10.0.255.255 ff:ff:ff:ff:ff:ff UHLWb vr0 10.1/16 link#2 UC vr1 => 10.2/16 link#3 UC vr2 => 10.2.0.50 0:10:a4:1:db:18 UHLW vr2 1004 10.3/16 link#4 UC vr3 => 10.4/16 link#5 UC vr4 => 127.0.0.1 127.0.0.1 UH lo0 203.36.202.64/26 link#6 UC ex0 => 203.36.202.65 0:c0:7b:73:19:c6 UHLW ex0 1019 203.36.202.80 52:54:0:e5:56:b UHLW ex0 359 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 18:57: 0 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id AEE9E37B4C5 for ; Thu, 26 Oct 2000 18:56:56 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id TAA34864; Thu, 26 Oct 2000 19:56:36 -0600 (MDT) Date: Thu, 26 Oct 2000 19:56:36 -0600 (MDT) From: Nick Rogness To: Bakul Shah Cc: "Richard A. Steenbergen" , "Ron 'The InSaNe One' Rosson" , freebsd-net@FreeBSD.ORG Subject: Re: Multihomed Routing In-Reply-To: <200010270005.e9R05ct21991@bacardi.torrentnet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Bakul Shah wrote: > > > On Thu, 26 Oct 2000, Ron 'The InSaNe One' Rosson wrote: > > > > > > > Yesterday I got into a discussion with one of my asociates about if a > > > > Network has 2 Routes out how do you tell your servers to switch between > > > > the routes without having to manually go in and change them. The > > > > discussion was not how the routers/switches were going to do it but how > > > > would are FreeBSD servers no what route to take out. Would the FreeBSD > > > > servers have to run routed or some other routing based deamon to know > > > > what there gateway route is? In theory we should not have to set a > > > > default route on this network for any of our machines. > > Wouldn't listening to/soliciting router discovery ICMP > messages on your hosts take care of this? See RFC 1256. > Supposedly FreeBSD `routed' already does this. When you have > multiple routers in your network this ought to be better than > hardwiring a default gateway on your hosts. But you > shouldn't need to run RIP or OSPF on your hosts. > Sure that will work. However, consider the following: Network1 (2000 IP's) | | |---Router1 | machine1---| | |---Router2 (default gateway) What happens to Router2 when machine1 is trying to access the IP's on Router1's network? Router2 gets clogged down sending ICMP redirects for Router1 back to machine1. The problem grows exponetially[spelling] when you add more machines to the same network machine1 is on. Keep in mind, it only updates routes on machine1 for that IP...not the subnet...at least on WInBlows. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 19:31: 3 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id DB72737B479 for ; Thu, 26 Oct 2000 19:30:59 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id UAA49488; Thu, 26 Oct 2000 20:30:57 -0600 (MDT) Date: Thu, 26 Oct 2000 20:30:57 -0600 (MDT) From: Nick Rogness To: John Telford Cc: freebsd-net@FreeBSD.ORG Subject: Re: Multihomed natd, nics and default gateways continued. In-Reply-To: <002601c03fa5$a760da30$0100000a@johnny5> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, John Telford wrote: > Nick, > You are wise in the ways of FreeBSD and routing. Could you take a moment and provide some tips on how I could expand on your help to John Prince ? > I have a similar setup but would like it to behave slightly differently. My setup: > 1 internal interface. > 1 external interface doing natd, default gateway routing for the internal to an isp. > We have now brought in a second ISP and put a 3rd interface into the Freebsd box. I'd like to have a setup like this: > > ISPA-----------interface A_fxp0 > fxp2_NATD--interface C---------internal network 10.130.x.x > ISPB-----------interface b_fxp1 > > I would like to have all internal -> external traffic route through > ISPA. In the event that ISPA goes down then the ISPB connection should > take over automatically with out the users noticing except that things > are slower because ISPB is a slower connection. This means the default > gateway would have to change on the fly and I can't seem to locate > much information on how this can work. For ipfw: #Divert traffic from internal out and in interface ISP A ipfw add 101 divert natd ip from any to any via $fxp0 #Divert traffic from internal network in and out ISP B ipfw add 201 divert natd2 ip from any to any via $INTERFACE_A #Leave on for testing until it works ipfw add 3000 allow ip from any to any For natd: Then after you do that setup the 2 different natd`s to listen on different ports (default 8668) and another entry int /etc/services: natd2 8669/divert # Network Address Translation Then run the nat`s seperately: root# natd -p 8668 -n fxp0 root# natd -p 8669 -n fxp1 For routing: Add 2 default routes, one primary (ISP A) and one backup (ISP B). Since ISP A is a prefered route...it gets the more specific route: root# route add -net 0.0.0.0 $GATEWAY_IP_ISP_A -netmask 128.0.0.0 root# route add -net 128.0.0.0 $GATEWAY_IP_ISP_A -netmask 128.0.0.0 root# route add -net 0.0.0.0 $GATEWAY_IP_ISP_B -netmask 0.0.0.0 Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 20:23:38 2000 Delivered-To: freebsd-net@freebsd.org Received: from hotmail.com (f40.law6.hotmail.com [216.32.241.40]) by hub.freebsd.org (Postfix) with ESMTP id 315A837B479; Thu, 26 Oct 2000 20:23:32 -0700 (PDT) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Thu, 26 Oct 2000 20:23:32 -0700 Received: from 203.11.225.5 by lw6fd.law6.hotmail.msn.com with HTTP; Fri, 27 Oct 2000 03:23:31 GMT X-Originating-IP: [203.11.225.5] From: "Aaron Hill" To: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Cc: paulh@chariot.net.au, julian@elischer.org, ao@pobox.com, gcorcoran@lucent.com Subject: Solved! R4.1.1 PPPoE with ADSL (Telstra Bigpond) Date: Fri, 27 Oct 2000 03:23:31 GMT Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 27 Oct 2000 03:23:32.0121 (UTC) FILETIME=[48580890:01C03FC5] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org For those following my problems getting FreeBSD 4.1.1-RELEASE to work with ADSL, that problem is now solved. Thank you to everyone on the list who responded or just spent some brain time on the problem, I appreciate your help. Please read on for the solution. What it all comes down to is my ISPs equipment is not RFC 2516 compliant - in the way I read the RFC at least. Their Access Concentrator would not work correctly with a PPPoE discovery session unless the the Service-Name tag was positioned as the last tag in the PPPoE payload. Following is proof of that. First here's the system I'm working with... homer# uname -a FreeBSD homer 4.1.1-RELEASE FreeBSD 4.1.1-RELEASE #2: Fri Oct 27 04:25:15 EST 2000 root@homer:/usr/src/sys/compile/FWCUSTOM i386 ... next I should say that the only thing that was being changed on this system between the following tcpdump captures was a modification of the file /usr/src/sys/netgraph/ng_pppoe.c , a re-compile of the kernel and a reboot. Here's what is happening when I try to start a PPPoE session with the standard 4.1.1-RELEASE code... 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Service-Name "bigpond"] [Host-Uniq UTF8] 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 192: PPPoE PADO [Service-Name] [Service-Name "telstra"] [Service-Name "cmux"] [Service-Name "bigpond"] [Service-Name "n7061992k"] [Service-Name "n2155202k"] [Service-Name "n2155201k"] [Service-Name "n1011426k"] [Service-Name "n2155203k"] [Service-Name "n7061995k"] [Service-Name "n2155205k"] [Service-Name "n3120511k"] [Service-Name "n2155206k"] [AC-Name "nkt1-kent"] [Hos t-Uniq UTF8] 0:e0:29:73:81:dd 0:90:39:47:0:3f 8863 60: PPPoE PADR [Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 62: PPPoE PADS [Service-Name-Error "SvcNameTag Error"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] ... so that's not working. You can see FreeBSD makes correct PADI and PADR requests of the Access Concentrator but receives nonsense in reply - the AC is not hearing what FreeBSD is saying. So next I modified the source code for pppoe to put the Service-Name tag after the Host-Uniq tag in the PADI frame. Here's the results... 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Host-Uniq UTF8] [Service-Name "bigpond"] 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 60: PPPoE PADO [Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] 0:e0:29:73:81:dd 0:90:39:47:0:3f 8863 60: PPPoE PADR [Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 62: PPPoE PADS [Service-Name-Error "SvcNameTag Error"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] ... so now I'm getting somewhere - the Access Concentrator is reading the PADI correctly and offering the PADO as it should. Problem is it doesn't understand the next PADR frame so another Service-Name-Error is encountered. Kicking myself I modify the code again, this time to change the order of the tags in the PADR frame as well as the PADI frame. Here's the results... 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Host-Uniq UTF8] [Service-Name "bigpond"] 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 60: PPPoE PADO [Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] 0:e0:29:73:81:dd 0:90:39:47:0:3f 8863 60: PPPoE PADR [Host-Uniq UTF8] [AC-Name "nkt1-kent"] [Service-Name "bigpond"] 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 60: PPPoE PADS [ses 0x1ec] [Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] ... success! The session then goes on to authenticate and set up IP addresses etc. Here's the final result... tun0: flags=8051 mtu 1492 inet 61.9.179.226 --> 172.31.18.3 netmask 0xff000000 Opened by PID 181 ...done. So what do I/we do next with this information? Is it worth changing the FreeBSD source to accomodate for dodgy ISP equipment? I can't say what type of Access Concentrator it is I'm dealing with but if this Telco is using it I'd say others will. Of course anyone's welcome to the changes I've made but based on the descriptions above I'm sure you could replicate it yourself easily. I only changed the position of two lines in the file. Thanks again Aaron Hill _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 20:39:36 2000 Delivered-To: freebsd-net@freebsd.org Received: from tomts7-srv.bellnexxia.net (tomts7.bellnexxia.net [209.226.175.40]) by hub.freebsd.org (Postfix) with ESMTP id D9EBD37B479 for ; Thu, 26 Oct 2000 20:39:32 -0700 (PDT) Received: from johnny5 ([64.229.51.108]) by tomts7-srv.bellnexxia.net (InterMail vM.4.01.03.00 201-229-121) with SMTP id <20001027033926.SJHF1583.tomts7-srv.bellnexxia.net@johnny5>; Thu, 26 Oct 2000 23:39:26 -0400 Message-ID: <001701c03fc6$f92d3d60$0100000a@johnny5> Reply-To: "John Telford" From: "John Telford" To: "Nick Rogness" Cc: References: Subject: Re: Multihomed natd, nics and default gateways continued. Date: Thu, 26 Oct 2000 23:35:38 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanks Nick, A couple of clarifications for newbie me if you could, > On Thu, 26 Oct 2000, John Telford wrote: > > > Nick, > > You are wise in the ways of FreeBSD and routing. Could you take a moment and provide some tips on how I could expand on your help to John Prince ? > > I have a similar setup but would like it to behave slightly differently. My setup: > > 1 internal interface. > > 1 external interface doing natd, default gateway routing for the internal to an isp. > > We have now brought in a second ISP and put a 3rd interface into the Freebsd box. I'd like to have a setup like this: > > > > ISPA-----------interface A_fxp0 > > fxp2_NATD--interface C---------internal network 10.130.x.x > > ISPB-----------interface b_fxp1 > > > > > I would like to have all internal -> external traffic route through > > ISPA. In the event that ISPA goes down then the ISPB connection should > > take over automatically with out the users noticing except that things > > are slower because ISPB is a slower connection. This means the default > > gateway would have to change on the fly and I can't seem to locate > > much information on how this can work. > > > For ipfw: > > #Divert traffic from internal out and in interface ISP A > ipfw add 101 divert natd ip from any to any via $fxp0 > > #Divert traffic from internal network in and out ISP B > ipfw add 201 divert natd2 ip from any to any via $INTERFACE_A > > #Leave on for testing until it works > ipfw add 3000 allow ip from any to any > > For natd: > Then after you do that setup the 2 different natd`s to listen on > different ports (default 8668) and another entry int > /etc/services: > > natd2 8669/divert # Network Address Translation > > Then run the nat`s seperately: > > root# natd -p 8668 -n fxp0 > root# natd -p 8669 -n fxp1 The proper place to have these load at boot would be rc.conf or rc.local or ? > > For routing: > > Add 2 default routes, one primary (ISP A) and one backup (ISP > B). Since ISP A is a prefered route...it gets the more specific > route: > > root# route add -net 0.0.0.0 $GATEWAY_IP_ISP_A -netmask 128.0.0.0 > root# route add -net 128.0.0.0 $GATEWAY_IP_ISP_A -netmask 128.0.0.0 > > root# route add -net 0.0.0.0 $GATEWAY_IP_ISP_B -netmask 0.0.0.0 My tcp/ip is weak, how does applying a route for 128.0.0.0 work here ? or what happens in the box if ISP_A goes down ? > > > Nick Rogness > - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 21:23:54 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id BF35237B479 for ; Thu, 26 Oct 2000 21:23:51 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id WAA95275; Thu, 26 Oct 2000 22:23:48 -0600 (MDT) Date: Thu, 26 Oct 2000 22:23:39 -0600 (MDT) From: Nick Rogness To: John Telford Cc: freebsd-net@FreeBSD.ORG Subject: Re: Multihomed natd, nics and default gateways continued. In-Reply-To: <001701c03fc6$f92d3d60$0100000a@johnny5> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, John Telford wrote: > > natd2 8669/divert # Network Address Translation > > > > Then run the nat`s seperately: > > > > root# natd -p 8668 -n fxp0 > > root# natd -p 8669 -n fxp1 > > The proper place to have these load at boot would be rc.conf or rc.local or It's really up to you, but rc.conf is probably the best place. In /etc/rc.conf: defaultrouter="NO" static_routes="0 1 2" route_0="-net 0.0.0.0 -netmask 128.0.0.0 AAA.AAA.AAA.AAA" route_1="-net 128.0.0.0 -netmask 128.0.0.0 AAA.AAA.AAA.AAA" route_2="default BBB.BBB.BBB.BBB" Where AAA.AAA.AAA.AAA is the default gateway for ISP A and BBB.BBB.BBB.BBB is the default gateway for ISP B. > ? > > > > For routing: > > > > Add 2 default routes, one primary (ISP A) and one backup (ISP > > B). Since ISP A is a prefered route...it gets the more specific > > route: > > > > root# route add -net 0.0.0.0 $GATEWAY_IP_ISP_A -netmask 128.0.0.0 > > root# route add -net 128.0.0.0 $GATEWAY_IP_ISP_A -netmask 128.0.0.0 > > > > root# route add -net 0.0.0.0 $GATEWAY_IP_ISP_B -netmask 0.0.0.0 > My tcp/ip is weak, how does applying a route for 128.0.0.0 work here ? or > what happens in the box if ISP_A goes down ? What happens is traffic normally flows to ISP A because it has a more specific route to get to a any given network 0.0.0.0/8 & 128.0.0.0/8. The reason for this is because FreeBSD doesn't have support (yet) for 2 routes to the same network. Since 0.0.0.0/8 & 128.0.0.0/8 are more specific routes to the 0.0.0.0/0 network they take precedence. However, if ISP A becomes unreachable, FreeBSD will mark the route for those networks (0.0.0.0/8 & 128.0.0.0/8) as unreachable. This will force routing to use the next specific route (0.0.0.0/0) to be triggered and traffic will start to flow across to ISP B and start using the natd2 address translation. This is not a prefect design. Some things will break during the switch-over (like FTP during a file transfer). However, things should work after the switch over. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 21:47:53 2000 Delivered-To: freebsd-net@freebsd.org Received: from bacardi.torrentnet.com (bacardi.torrentnet.com [198.78.51.104]) by hub.freebsd.org (Postfix) with ESMTP id AA29D37B479 for ; Thu, 26 Oct 2000 21:47:50 -0700 (PDT) Received: from bacardi.torrentnet.com (localhost.torrentnet.com [127.0.0.1]) by bacardi.torrentnet.com (8.10.2/8.10.2) with ESMTP id e9R4lht14585; Fri, 27 Oct 2000 00:47:43 -0400 (EDT) Message-Id: <200010270447.e9R4lht14585@bacardi.torrentnet.com> To: Nick Rogness Cc: "Richard A. Steenbergen" , "Ron 'The InSaNe One' Rosson" , freebsd-net@FreeBSD.ORG Subject: Re: Multihomed Routing In-reply-to: Your message of "Thu, 26 Oct 2000 19:56:36 MDT." Date: Fri, 27 Oct 2000 00:47:43 -0400 From: Bakul Shah Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Sure that will work. However, consider the following: > > > > Network1 (2000 IP's) > | > | > |---Router1 > | > machine1---| > | > |---Router2 (default gateway) > > What happens to Router2 when machine1 is trying to access the IP's > on Router1's network? Router2 gets clogged down sending ICMP > redirects for Router1 back to machine1. The problem grows > exponetially[spelling] when you add more machines to the same > network machine1 is on. Unless I am missing something the redirect traffic won't grow exponentially. Machine1 will get one redirect per destination D and will switch its route to D to go via Router1. From then on it won't bother Router2 for D. So the total number of redirects is SUM(H[i]) for i = 1..number of servers, where H[i] == number of hosts server i talks to. So yes, there is some extra traffic but assuming your local network is far faster than your external connections this shouldn't be a problem (unless you send only a single packet to each destination). > Keep in mind, it only updates routes on machine1 for that IP...not > the subnet...at least on WInBlows. As per RFC 1812 a router will only generate host redirects. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 21:51:45 2000 Delivered-To: freebsd-net@freebsd.org Received: from overlord.e-gerbil.net (e-gerbil.net [207.91.110.247]) by hub.freebsd.org (Postfix) with ESMTP id 8935F37B479 for ; Thu, 26 Oct 2000 21:51:42 -0700 (PDT) Received: by overlord.e-gerbil.net (Postfix, from userid 1000) id 9CE905D6E; Fri, 27 Oct 2000 00:51:41 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by overlord.e-gerbil.net (Postfix) with ESMTP id 95BF41F1B; Fri, 27 Oct 2000 00:51:41 -0400 (EDT) Date: Fri, 27 Oct 2000 00:51:41 -0400 (EDT) From: "Richard A. Steenbergen" To: Nick Rogness Cc: John Telford , freebsd-net@FreeBSD.ORG Subject: Re: Multihomed natd, nics and default gateways continued. In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Nick Rogness wrote: > > My tcp/ip is weak, how does applying a route for 128.0.0.0 work here ? or > > what happens in the box if ISP_A goes down ? > > > What happens is traffic normally flows to ISP A because it has a > more specific route to get to a any given network 0.0.0.0/8 & > 128.0.0.0/8. The reason for this is because FreeBSD doesn't have > support (yet) for 2 routes to the same network. Since 0.0.0.0/8 > & 128.0.0.0/8 are more specific routes to the 0.0.0.0/0 network > they take precedence. > > However, if ISP A becomes unreachable, FreeBSD will mark the route > for those networks (0.0.0.0/8 & 128.0.0.0/8) as unreachable. This > will force routing to use the next specific route (0.0.0.0/0) to > be triggered and traffic will start to flow across to ISP B and > start using the natd2 address translation. > > This is not a prefect design. Some things will break during the > switch-over (like FTP during a file transfer). However, things > should work after the switch over. I believe you're looking for /1 not /8 (mask 128.0.0.0)... Using NAT for redundancy is pretty difficult when using IPs from each respective ISP's IP space and not speaking BGP, since all established TCP connections will break. Load balancing is a much nicer application for it, since by design you can do per-connection selection of multiple interfaces. -- Richard A Steenbergen http://www.e-gerbil.net/humble PGP Key ID: 0x138EA177 (67 29 D7 BC E8 18 3E DA B2 46 B3 D8 14 36 FE B6) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 22:38:29 2000 Delivered-To: freebsd-net@freebsd.org Received: from homer.softweyr.com (bsdconspiracy.net [208.187.122.220]) by hub.freebsd.org (Postfix) with ESMTP id B8E3237B4C5 for ; Thu, 26 Oct 2000 22:38:10 -0700 (PDT) Received: from [127.0.0.1] (helo=softweyr.com ident=Fools trust ident!) by homer.softweyr.com with esmtp (Exim 3.16 #1) id 13p0NY-0000Z1-00; Thu, 26 Oct 2000 21:40:29 -0600 Message-ID: <39F8F92C.183B303B@softweyr.com> Date: Thu, 26 Oct 2000 21:40:28 -0600 From: Wes Peters Organization: Softweyr LLC X-Mailer: Mozilla 4.75 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: Ron Rosson Cc: freebsd-net@freebsd.org Subject: Re: Multihomed Routing References: <20001026071113.A39980@lunatic.oneinsane.net> <20001026105340.A45573@lunatic.oneinsane.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ron 'The InSaNe One' Rosson wrote: > > Nick Rogness (nick@rapidnet.com) wrote: > > On Thu, 26 Oct 2000, Ron 'The InSaNe One' Rosson wrote: > > > > > Yesterday I got into a discussion with one of my asociates about if a > > > Network has 2 Routes out how do you tell your servers to switch between > > > the routes without having to manually go in and change them. The > > > discussion was not how the routers/switches were going to do it but how > > > would are FreeBSD servers no what route to take out. Would the FreeBSD > > > servers have to run routed or some other routing based deamon to know > > > what there gateway route is? In theory we should not have to set a > > > default route on this network for any of our machines. > > > > Yes you are correct. /usr/ports/net/gated > > > > > > > > Can anyone enlighten me on this kind of setup and its proper way of > > > implimentation. > > > > Run a IRP like OSPF (via gated) which will allow you to > > do what you need to do. > > > > So then you are saying that all my servers on the Network need to be > running gated so they can always know the proper way out? If you have a single router connected to the interior LAN and the multiple exterior routes, no. You can run OSPF on the router, everyone else uses the router as their default gateway and doesn't need any other routes. If you have two routers on your LAN, then yes, every host will need to run some sort of routing protocol. You may be able to run gated on the routers and something simpler, like routed, on the hosts, but once you've configured gated you might as well just share that configuration among all the hosts. -- "Where am I, and what am I doing in this handbasket?" Wes Peters Softweyr LLC wes@softweyr.com http://softweyr.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 22:50:21 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 0E65F37B479 for ; Thu, 26 Oct 2000 22:50:19 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id XAA17033; Thu, 26 Oct 2000 23:50:02 -0600 (MDT) Date: Thu, 26 Oct 2000 23:50:02 -0600 (MDT) From: Nick Rogness To: Bakul Shah Cc: "Richard A. Steenbergen" , "Ron 'The InSaNe One' Rosson" , freebsd-net@FreeBSD.ORG Subject: Re: Multihomed Routing In-Reply-To: <200010270447.e9R4lht14585@bacardi.torrentnet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 27 Oct 2000, Bakul Shah wrote: > > Sure that will work. However, consider the following: > > > > > > > > Network1 (2000 IP's) > > | > > | > > |---Router1 > > | > > machine1---| > > | > > |---Router2 (default gateway) > > > > What happens to Router2 when machine1 is trying to access the IP's > > on Router1's network? Router2 gets clogged down sending ICMP > > redirects for Router1 back to machine1. The problem grows > > exponetially[spelling] when you add more machines to the same > > network machine1 is on. > > Unless I am missing something the redirect traffic won't > grow exponentially. Machine1 will get one redirect per > destination D and will switch its route to D to go via > Router1. From then on it won't bother Router2 for D. So the > total number of redirects is [exponentially was a figure of speech] ;-) Until the routing table on the machine gets flushed. > > SUM(H[i]) for i = 1..number of servers, > where H[i] == number of hosts server i talks to. You are assuming that the network that machine1 lies on has only 1 machine on it. What happens when you add 2 more machines to that network? Now, router1 has to handle redirects for all of those machines as well. 1 machine = 200 redirects 2 machines = 400 redirects (200 for machine1 & 200 for machine2) 3 machines = 600 redirects . . . > > So yes, there is some extra traffic but assuming your local > network is far faster than your external connections this > shouldn't be a problem (unless you send only a single packet > to each destination). > This IS a problem. Traffic analysis on that router1 will show a good load on the router just handling those requests. What if machine1 was a web server and the 2000 IP's you have on Network1 are dialing clients trying to reach that web server? What happens when you add more dial equipment to Network1?...more redirects. You fill up the routing table on your machines with host routes when it can be accomplished with a subnet route. In that case it would pay to run a routing protocol. But yes, sometimes it is not significant traffic, but in my example there is a good reason to run routing protocols on your machines. It just scales better. However, you do have a great point. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 23:21:56 2000 Delivered-To: freebsd-net@freebsd.org Received: from overlord.e-gerbil.net (e-gerbil.net [207.91.110.247]) by hub.freebsd.org (Postfix) with ESMTP id 452F137B4C5 for ; Thu, 26 Oct 2000 23:21:53 -0700 (PDT) Received: by overlord.e-gerbil.net (Postfix, from userid 1000) id 8A5145D6E; Fri, 27 Oct 2000 02:21:52 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by overlord.e-gerbil.net (Postfix) with ESMTP id 85BBE1F1B; Fri, 27 Oct 2000 02:21:52 -0400 (EDT) Date: Fri, 27 Oct 2000 02:21:52 -0400 (EDT) From: "Richard A. Steenbergen" To: Nick Rogness Cc: Bakul Shah , Ron 'The InSaNe One' Rosson , freebsd-net@FreeBSD.ORG Subject: Re: Multihomed Routing In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Nick Rogness wrote: > You are assuming that the network that machine1 lies on has only 1 > machine on it. What happens when you add 2 more machines to that > network? Now, router1 has to handle redirects for all of those > machines as well. > > 1 machine = 200 redirects > 2 machines = 400 redirects (200 for machine1 & 200 for machine2) > 3 machines = 600 redirects In practice this is beyond silly (and most hosts should probably not be honoring redirects for security reasons). If reliability is that important to you, you should have routers which support a redundancy protocol. This will scale many orders of magnitude further then informing every host of available routes, especially as the number of hosts and the number of routes increase. The only advantages of pushing the routing decision down to the host is A) load balancing, and B) the asthetic value of one less hop if the best exit is not available on the router you ended up hitting. For point A, if you have two NICs and a legitimate need to balance across them at an IP layer, go for it. For point B, I would venture to bet that the local communication between two routers sitting beside each other is far more reliable then trying to push a full routing table down to every host. :P And if you design your network correctly many of these become non-issues. -- Richard A Steenbergen http://www.e-gerbil.net/humble PGP Key ID: 0x138EA177 (67 29 D7 BC E8 18 3E DA B2 46 B3 D8 14 36 FE B6) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 23:30:58 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id A5FF737B4C5; Thu, 26 Oct 2000 23:30:51 -0700 (PDT) Received: from kairo-31.budapest.interware.hu ([195.70.50.95] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13p32O-00072I-00; Fri, 27 Oct 2000 08:30:48 +0200 Message-ID: <39F9210E.B728D4F8@elischer.org> Date: Thu, 26 Oct 2000 23:30:38 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: gcorcoran@lucent.com Cc: Aaron Hill , freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Gary T. Corcoran" wrote: > > [Quick background: I implemented PPPoE in our DSL drivers for the Lucent DSL adapters] Under Windows I presume? No BSD drivers? :-) > > Yes, the only tag REQUIRED in the PADI is a Service-Name tag, which has > to match what the service provide wants, and may possibly be of zero length. > > > The RFC doesn't explicitly mention > > what order the tags should be in. It's entirely plausible that the ISPs > > equipment has a requirement (bug?) that the service name comes last. > > It could be. Do you know what brand of head-end equipment you're trying > to communicate with? In any event, since only a Service-Name is required, > if you send ONLY a Service-Name, then it will meet the bugs (requirements) > of head-ends that might require it to be first _or_ last. In other words, > why send the Host-Uniq at all - unless you have a specific need for it? > In my drivers, I only send Service-Name in the PADI... > (but we haven't tested in Australia... :-) I match the returning packets to the outgoing packets using the Host-uniq. because I have the capacity to run several pppoe sessions concurrently (should the cable/DSL provider provide service to several ISPs) > > Gary -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 23:37:38 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id 2AC8737B479; Thu, 26 Oct 2000 23:37:30 -0700 (PDT) Received: from kairo-31.budapest.interware.hu ([195.70.50.95] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13p38o-0007MY-00; Fri, 27 Oct 2000 08:37:27 +0200 Message-ID: <39F9229D.BB6849D5@elischer.org> Date: Thu, 26 Oct 2000 23:37:17 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Aaron Hill Cc: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG, paulh@chariot.net.au, ao@pobox.com, gcorcoran@lucent.com Subject: Re: Solved! R4.1.1 PPPoE with ADSL (Telstra Bigpond) References: Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Aaron Hill wrote: > > For those following my problems getting FreeBSD 4.1.1-RELEASE to work with > ADSL, that problem is now solved. Thank you to everyone on the list who > responded or just spent some brain time on the problem, I appreciate your > help. > > Please read on for the solution. can you test to see if adding a NULL to the end of the service name also helps? (with the tags in the original order?) Send me your exact diffs and I'll commit them. It's really arbitraray which way I construct the packets. > > What it all comes down to is my ISPs equipment is not RFC 2516 compliant - > in the way I read the RFC at least. Their Access Concentrator would not work > correctly with a PPPoE discovery session unless the the Service-Name tag was > positioned as the last tag in the PPPoE payload. Following is proof of that. > > First here's the system I'm working with... > > homer# uname -a > FreeBSD homer 4.1.1-RELEASE FreeBSD 4.1.1-RELEASE #2: Fri Oct 27 04:25:15 > EST 2000 root@homer:/usr/src/sys/compile/FWCUSTOM i386 > > ... next I should say that the only thing that was being changed on this > system between the following tcpdump captures was a modification of the file > /usr/src/sys/netgraph/ng_pppoe.c , a re-compile of the kernel and a reboot. > > Here's what is happening when I try to start a PPPoE session with the > standard 4.1.1-RELEASE code... > > 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Service-Name "bigpond"] > [Host-Uniq UTF8] > > 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 192: PPPoE PADO [Service-Name] > [Service-Name "telstra"] [Service-Name "cmux"] [Service-Name "bigpond"] > [Service-Name "n7061992k"] [Service-Name "n2155202k"] [Service-Name > "n2155201k"] [Service-Name "n1011426k"] [Service-Name "n2155203k"] > [Service-Name "n7061995k"] [Service-Name "n2155205k"] [Service-Name > "n3120511k"] [Service-Name "n2155206k"] [AC-Name "nkt1-kent"] [Hos > t-Uniq UTF8] > > 0:e0:29:73:81:dd 0:90:39:47:0:3f 8863 60: PPPoE PADR [Service-Name > "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] > > 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 62: PPPoE PADS [Service-Name-Error > "SvcNameTag Error"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] > > ... so that's not working. You can see FreeBSD makes correct PADI and PADR > requests of the Access Concentrator but receives nonsense in reply - the AC > is not hearing what FreeBSD is saying. So next I modified the source code > for pppoe to put the Service-Name tag after the Host-Uniq tag in the PADI > frame. Here's the results... > > 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Host-Uniq UTF8] > [Service-Name "bigpond"] > > 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 60: PPPoE PADO [Service-Name > "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] > > 0:e0:29:73:81:dd 0:90:39:47:0:3f 8863 60: PPPoE PADR [Service-Name > "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] > > 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 62: PPPoE PADS [Service-Name-Error > "SvcNameTag Error"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] > > ... so now I'm getting somewhere - the Access Concentrator is reading the > PADI correctly and offering the PADO as it should. Problem is it doesn't > understand the next PADR frame so another Service-Name-Error is encountered. > Kicking myself I modify the code again, this time to change the order of the > tags in the PADR frame as well as the PADI frame. Here's the results... > > 0:e0:29:73:81:dd Broadcast 8863 60: PPPoE PADI [Host-Uniq UTF8] > [Service-Name "bigpond"] > > 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 60: PPPoE PADO [Service-Name > "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] > > 0:e0:29:73:81:dd 0:90:39:47:0:3f 8863 60: PPPoE PADR [Host-Uniq UTF8] > [AC-Name "nkt1-kent"] [Service-Name "bigpond"] > > 0:90:39:47:0:3f 0:e0:29:73:81:dd 8863 60: PPPoE PADS [ses 0x1ec] > [Service-Name "bigpond"] [AC-Name "nkt1-kent"] [Host-Uniq UTF8] > > ... success! The session then goes on to authenticate and set up IP > addresses etc. Here's the final result... > > tun0: flags=8051 mtu 1492 > inet 61.9.179.226 --> 172.31.18.3 netmask 0xff000000 > Opened by PID 181 > > ...done. > > So what do I/we do next with this information? Is it worth changing the > FreeBSD source to accomodate for dodgy ISP equipment? I can't say what type > of Access Concentrator it is I'm dealing with but if this Telco is using it > I'd say others will. > > Of course anyone's welcome to the changes I've made but based on the > descriptions above I'm sure you could replicate it yourself easily. I only > changed the position of two lines in the file. > > Thanks again > Aaron Hill > > _________________________________________________________________________ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > Share information about yourself, create your own public profile at > http://profiles.msn.com. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 23:40:39 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id B736337B4D7; Thu, 26 Oct 2000 23:40:33 -0700 (PDT) Received: from kairo-31.budapest.interware.hu ([195.70.50.95] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13p3Bo-0007Vp-00; Fri, 27 Oct 2000 08:40:32 +0200 Message-ID: <39F92356.9366E787@elischer.org> Date: Thu, 26 Oct 2000 23:40:22 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Aaron Hill Cc: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG, paulh@chariot.net.au, ao@pobox.com, gcorcoran@lucent.com Subject: Re: Solved! R4.1.1 PPPoE with ADSL (Telstra Bigpond) References: Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Aaron Hill wrote: > > For those following my problems getting FreeBSD 4.1.1-RELEASE to work with > ADSL, that problem is now solved. Thank you to everyone on the list who > responded or just spent some brain time on the problem, I appreciate your > help. > > Please read on for the solution. > > What it all comes down to is my ISPs equipment is not RFC 2516 compliant - > in the way I read the RFC at least. Their Access Concentrator would not work > correctly with a PPPoE discovery session unless the the Service-Name tag was > positioned as the last tag in the PPPoE payload. Following is proof of that. > Can you find out what kind of system it is? (And can you complain loudly? With a sample of the good packet producing bad output?) Don't forget to get tcpdump to give you all the data insttead of the default first 64 bytes. > Of course anyone's welcome to the changes I've made but based on the > descriptions above I'm sure you could replicate it yourself easily. I only > changed the position of two lines in the file. > > Thanks again > Aaron Hill > > _________________________________________________________________________ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > Share information about yourself, create your own public profile at > http://profiles.msn.com. -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 26 23:59:35 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 03B4F37B479 for ; Thu, 26 Oct 2000 23:59:33 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id AAA30739; Fri, 27 Oct 2000 00:58:10 -0600 (MDT) Date: Fri, 27 Oct 2000 00:58:10 -0600 (MDT) From: Nick Rogness To: "Richard A. Steenbergen" Cc: Bakul Shah , "Ron 'The InSaNe One' Rosson" , freebsd-net@FreeBSD.ORG Subject: Re: Multihomed Routing In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 27 Oct 2000, Richard A. Steenbergen wrote: > On Thu, 26 Oct 2000, Nick Rogness wrote: > > > You are assuming that the network that machine1 lies on has only 1 > > machine on it. What happens when you add 2 more machines to that > > network? Now, router1 has to handle redirects for all of those > > machines as well. > > > > 1 machine = 200 redirects > > 2 machines = 400 redirects (200 for machine1 & 200 for machine2) > > 3 machines = 600 redirects > > In practice this is beyond silly (and most hosts should probably not be > honoring redirects for security reasons). If reliability is that important > to you, you should have routers which support a redundancy protocol. This > will scale many orders of magnitude further then informing every host of > available routes, especially as the number of hosts and the number of > routes increase. That is the main reason you use dynamic routing on the hosts. To keep routing tables simple on the hosts. Carrying subnet routes instead of host routes. Multiple paths to multiple networks can become a nightmare without it ;-) The only reason I mention this is because I have had to deal with this issue in the past. I've seen routers load to 30% just handling all of the ICMP redirects. This solution eliminates that and all you have to do is run a simple routing daemon on the machines. Set it up once...let it do the rest. > > The only advantages of pushing the routing decision down to the host is > A) load balancing, and B) the asthetic value of one less hop if the best > exit is not available on the router you ended up hitting. > Yes. What happens when you have multiple networks with multiple paths? Your default router handles redirects for all of those networks. > For point A, if you have two NICs and a legitimate need to balance across > them at an IP layer, go for it. > > For point B, I would venture to bet that the local communication between > two routers sitting beside each other is far more reliable then trying to > push a full routing table down to every host. :P > Don't get me wrong. IMHO, I believe the routers should do most of the work. But on a large network this is sometimes not doable...because of design flaws or whatever. > And if you design your network correctly many of these become non-issues. > There are several design reasons why you can't just make things as simple as you want them to be. Geographical, financial, political, etc. Limiting your design by not looking at all "angles" is ridiculous[spelling?]. I never once said this is the only way to do it...but it is an option. The point of the message was to make clear that there is other options with FreeBSD. Not just always throwing in more routers and switches and adding net cards to machines when it can be done with the facilities provided to you. Which [IMO] is what the FreeBSD project is all about. I hear you loud and clear though ;-p Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 5:29:32 2000 Delivered-To: freebsd-net@freebsd.org Received: from worldclass.jolt.nu (lgh637b.hn-krukan.AC [212.217.139.112]) by hub.freebsd.org (Postfix) with ESMTP id C1E3137B4C5 for ; Fri, 27 Oct 2000 05:29:29 -0700 (PDT) Received: from localhost (c4@localhost) by worldclass.jolt.nu (8.9.3/8.9.3) with ESMTP id OAA00632; Fri, 27 Oct 2000 14:28:36 +0200 (CEST) (envelope-from c4@worldclass.jolt.nu) Date: Fri, 27 Oct 2000 14:28:36 +0200 (CEST) From: Tobias Fredriksson To: kouryuu Cc: freebsd-net@FreeBSD.ORG Subject: Re: /kernel: arp: message appearing In-Reply-To: <004301c03e33$a1373d20$0201a8c0@dorei> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 25 Oct 2000, kouryuu wrote: > Hi, > > I have a message which keeps appearing on the terminal: > > /kerel: arp: 192.168.1.97 is on dc0 but got reply from on > ed0 > > Here is my environment: > > FBSD box: > ed0 up on an external static IP address (via cable modem) > dc0 up on an internal address, 192.168.1.1, connected to a hub. > > Win2k box > One nic up on 192.168.1.2 which is connected to the hub. > > I don't know where 192.168.1.97 is coming from. Could it be from an external > machine that FBSD thinks is on my internal network? > > Any advice appreciated. This is because many cable companys use 192.168.x.x on their own computers and allow the traffic to flow freely on their routers ;) I had almost the same thing when i before used an cable company provider I had traffic from 10.x.x.x and 172.16-32.x.x and 192.168.x.x just flying everywhere ;) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 5:45:57 2000 Delivered-To: freebsd-net@freebsd.org Received: from relay.flashnet.it (ems.flashnet.it [194.247.160.44]) by hub.freebsd.org (Postfix) with ESMTP id 75E3237B4CF for ; Fri, 27 Oct 2000 05:45:51 -0700 (PDT) Received: from smtp.flashnet.it (ip223.pool-173.cyb.it [195.191.181.224]) by relay.flashnet.it (EMS-RELAY/8.10.0) with SMTP id e9RCjns02958 for ; Fri, 27 Oct 2000 14:45:49 +0200 Message-Id: <200010271245.e9RCjns02958@relay.flashnet.it> To: freebsd-net@FreeBSD.ORG X-Mailer: Post Road Mailer for OS/2 (Green Edition Ver 3.0) Date: Fri, 27 Oct 2000 14:45:48 EST From: Andrea Venturoli Reply-To: Andrea Venturoli Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ** Reply to note from "Aaron Hill" Thu, 26 Oct 2000 21:52:21 GMT > Out of interest the adsl modem I have is called an Alcatel Speed Touch Home. > I haven't had a reason to doubt it yet either, it seems a pretty reliable > device. I am working on the same device and confirm that I can connect just fine (with ISP tin.it). However, the connection is all but relyable, since that box tend to hang for good (meaning it doesn't even respond to a ping on its ethernet address), and only power-cycling it will bring it to reason again. I'm saying this because that happens almost only when the modem is connected to a FreeBSD box, it won't behave as bad when it's connected to a Win98 machine. Anyone knows anything? Bye av. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 7:10:22 2000 Delivered-To: freebsd-net@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id DDEA437B4C5; Fri, 27 Oct 2000 07:10:02 -0700 (PDT) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.0/8.11.0) id e9RE9X036938; Fri, 27 Oct 2000 17:09:33 +0300 (EEST) (envelope-from ru) Date: Fri, 27 Oct 2000 17:09:33 +0300 From: Ruslan Ermilov To: Darren Reed , Darren Reed Cc: net@FreeBSD.org Subject: [CFR] IPFILTER patch Message-ID: <20001027170933.A36523@sunbay.com> Mail-Followup-To: Darren Reed , Darren Reed , net@FreeBSD.org Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="k1lZvvs/B4yU6o8G" Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --k1lZvvs/B4yU6o8G Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Hi! As we discussed yesterday, here are the patches to IPFILTER that are needed for my upcoming "byte-swapping elimination" patch. Sorry, it took a bit more than an hour... The patch is 99% a clear optimization to an existing code. We certainly benefit from not doing (ip->ip_off & IP_OFFMASK) all over the time, since we already have this info stored in `fin_off' by fr_makefrip(). Also, the (IP_MF|IP_OFFMASK) check is already indicated by the FI_FRAG flag. The ip_frag.c code now stores fragment offsets in bytes rather than in octets. This allows us to use the `fin_off' field and eliminate unnecessary use of `<< 3' and `>> 3'. You may also notice a minor optimization in ipfr_fastroute() IP fragmentation code. It is duplicated from the same optimization I have recently made to ip_output(). When reviewing this modification, please keep in mind that FreeBSD will shortly preserve the `ip_off' in network byte order, while `fin_off' will still be made available in host byte order. That (I hope) should explain you my intention to replace the `ip_off' references with `fin_off' ones wherever possible. The diff is against the most recent IPFILTER sources that include yesterday's import. Cheers, -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age --k1lZvvs/B4yU6o8G Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename=p Index: fil.c =================================================================== RCS file: /home/ncvs/src/sys/netinet/fil.c,v retrieving revision 1.21 diff -u -p -r1.21 fil.c --- fil.c 2000/10/26 12:33:42 1.21 +++ fil.c 2000/10/27 13:29:07 @@ -227,7 +227,6 @@ fr_info_t *fin; if (v == 4) { fin->fin_id = ip->ip_id; fi->fi_tos = ip->ip_tos; - off = (ip->ip_off & IP_OFFMASK) << 3; tcp = (tcphdr_t *)((char *)ip + hlen); (*(((u_short *)fi) + 1)) = (*(((u_short *)ip) + 4)); fi->fi_src.i6[1] = 0; @@ -240,8 +239,10 @@ fr_info_t *fin; fi->fi_daddr = ip->ip_dst.s_addr; p = ip->ip_p; fi->fi_fl = (hlen > sizeof(ip_t)) ? FI_OPTIONS : 0; - if (ip->ip_off & 0x3fff) + off = ip->ip_off; + if (off & (IP_MF|IP_OFFMASK)) fi->fi_fl |= FI_FRAG; + off <<= 3; plen = ip->ip_len; fin->fin_dlen = plen - hlen; } @@ -514,20 +515,16 @@ void *m; { register struct frentry *fr; register fr_ip_t *fi = &fin->fin_fi; - int rulen, portcmp = 0, off, skip = 0, logged = 0; + int rulen, portcmp = 0, skip = 0, logged = 0; u_32_t passt; fr = fin->fin_fr; fin->fin_fr = NULL; fin->fin_rule = 0; fin->fin_group = 0; - if (fin->fin_v == 4) - off = ip->ip_off & IP_OFFMASK; - else - off = 0; pass |= (fi->fi_fl << 24); - if ((fi->fi_fl & FI_TCPUDP) && (fin->fin_dlen > 3) && !off) + if ((fi->fi_fl & FI_TCPUDP) && (fin->fin_dlen > 3) && !fin->fin_off) portcmp = 1; for (rulen = 0; fr; fr = fr->fr_next, rulen++) { @@ -654,7 +651,7 @@ void *m; if (!fr_tcpudpchk(&fr->fr_tuc, fin)) continue; } else if (fr->fr_icmpm || fr->fr_icmp) { - if ((fi->fi_p != IPPROTO_ICMP) || off || + if ((fi->fi_p != IPPROTO_ICMP) || fin->fin_off || (fin->fin_dlen < 2)) continue; if ((fin->fin_data[0] & fr->fr_icmpm) != fr->fr_icmp) { Index: ip_fil.c =================================================================== RCS file: /home/ncvs/src/sys/netinet/ip_fil.c,v retrieving revision 1.24 diff -u -p -r1.24 ip_fil.c --- ip_fil.c 2000/10/26 12:33:42 1.24 +++ ip_fil.c 2000/10/27 13:29:07 @@ -1286,6 +1286,7 @@ frdest_t *fdp; struct sockaddr_in *dst; struct route iproute; frentry_t *fr; + u_short ip_off; hlen = fin->fin_hlen; ip = mtod(m0, struct ip *); @@ -1417,7 +1418,8 @@ frdest_t *fdp; * Too large for interface; fragment if possible. * Must be able to put at least 8 bytes per fragment. */ - if (ip->ip_off & IP_DF) { + ip_off = ip->ip_off; + if (ip_off & IP_DF) { error = EMSGSIZE; goto bad; } @@ -1459,9 +1461,7 @@ frdest_t *fdp; mhip->ip_hl = mhlen >> 2; } m->m_len = mhlen; - mhip->ip_off = ((off - hlen) >> 3) + (ip->ip_off & ~IP_MF); - if (ip->ip_off & IP_MF) - mhip->ip_off |= IP_MF; + mhip->ip_off = ((off - hlen) >> 3) + ip_off; if (off + len >= ip->ip_len) len = ip->ip_len - off; else @@ -1490,7 +1490,7 @@ frdest_t *fdp; */ m_adj(m0, hlen + firstlen - ip->ip_len); ip->ip_len = htons((u_short)(hlen + firstlen)); - ip->ip_off = htons((u_short)(ip->ip_off | IP_MF)); + ip->ip_off = htons((u_short)(ip_off | IP_MF)); ip->ip_sum = 0; ip->ip_sum = in_cksum(m0, hlen); sendorfree: Index: ip_frag.c =================================================================== RCS file: /home/ncvs/src/sys/netinet/ip_frag.c,v retrieving revision 1.13 diff -u -p -r1.13 ip_frag.c --- ip_frag.c 2000/10/26 12:33:42 1.13 +++ ip_frag.c 2000/10/27 13:29:07 @@ -200,7 +200,7 @@ ipfr_t *table[]; /* * Compute the offset of the expected start of the next packet. */ - fra->ipfr_off = (ip->ip_off & IP_OFFMASK) + (fin->fin_dlen >> 3); + fra->ipfr_off = fin->fin_off + fin->fin_dlen; ATOMIC_INCL(ipfr_stats.ifs_new); ATOMIC_INC32(ipfr_inuse); return fra; @@ -280,7 +280,6 @@ ipfr_t *table[]; for (f = table[idx]; f; f = f->ipfr_next) if (!bcmp((char *)&frag.ipfr_src, (char *)&f->ipfr_src, IPFR_CMPSZ)) { - u_short atoff, off; if (f != table[idx]) { /* @@ -294,17 +293,15 @@ ipfr_t *table[]; f->ipfr_prev = NULL; table[idx] = f; } - off = ip->ip_off & IP_OFFMASK; - atoff = off + (fin->fin_dlen >> 3); /* * If we've follwed the fragments, and this is the * last (in order), shrink expiration time. */ - if (off == f->ipfr_off) { + if (fin->fin_off == f->ipfr_off) { if (!(ip->ip_off & IP_MF)) f->ipfr_ttl = 1; else - f->ipfr_off = atoff; + f->ipfr_off = fin->fin_off + fin->fin_dlen; } ATOMIC_INCL(ipfr_stats.ifs_hits); return f; Index: ip_nat.c =================================================================== RCS file: /home/ncvs/src/sys/netinet/ip_nat.c,v retrieving revision 1.18 diff -u -p -r1.18 ip_nat.c --- ip_nat.c 2000/10/26 12:33:42 1.18 +++ ip_nat.c 2000/10/27 13:29:07 @@ -1600,7 +1600,7 @@ int dir; ip_t *oip; int flags = 0; - if ((fin->fin_fi.fi_fl & FI_SHORT) || (ip->ip_off & IP_OFFMASK)) + if ((fin->fin_fi.fi_fl & FI_SHORT) || fin->fin_off) return NULL; /* * nat_icmplookup() will return NULL for `defective' packets. @@ -2105,7 +2105,7 @@ ip_t *ip; ft = &np->in_tuc; if (!(fin->fin_fi.fi_fl & FI_TCPUDP) || - (fin->fin_fi.fi_fl & FI_SHORT) || (ip->ip_off & IP_OFFMASK)) { + (fin->fin_fi.fi_fl & FI_SHORT) || fin->fin_off) { if (ft->ftu_scmp || ft->ftu_dcmp) return 0; return 1; @@ -2144,7 +2144,7 @@ fr_info_t *fin; else ifp = fin->fin_ifp; - if (!(ip->ip_off & IP_OFFMASK) && !(fin->fin_fi.fi_fl & FI_SHORT)) { + if (!fin->fin_off && !(fin->fin_fi.fi_fl & FI_SHORT)) { if (ip->ip_p == IPPROTO_TCP) nflags = IPN_TCP; else if (ip->ip_p == IPPROTO_UDP) @@ -2163,7 +2163,7 @@ fr_info_t *fin; if ((ip->ip_p == IPPROTO_ICMP) && (nat = nat_icmp(ip, fin, &nflags, NAT_OUTBOUND))) ; - else if ((ip->ip_off & (IP_OFFMASK|IP_MF)) && + else if ((fin->fin_fi.fi_fl & FI_FRAG) && (nat = ipfr_nat_knownfrag(ip, fin))) natadd = 0; else if ((nat = nat_outlookup(ifp, nflags, (u_int)ip->ip_p, ip->ip_src, @@ -2275,7 +2275,7 @@ maskloop: #endif ip->ip_src = nat->nat_outip; - if (!(ip->ip_off & IP_OFFMASK) && + if (!fin->fin_off && !(fin->fin_fi.fi_fl & FI_SHORT)) { if ((nat->nat_outport != 0) && (nflags & IPN_TCPUDP)) { @@ -2358,7 +2358,7 @@ fr_info_t *fin; if ((nat_list == NULL) || (ip->ip_v != 4) || (fr_nat_lock)) return 0; - if (!(ip->ip_off & IP_OFFMASK) && !(fin->fin_fi.fi_fl & FI_SHORT)) { + if (!fin->fin_off && !(fin->fin_fi.fi_fl & FI_SHORT)) { if (ip->ip_p == IPPROTO_TCP) nflags = IPN_TCP; else if (ip->ip_p == IPPROTO_UDP) @@ -2379,7 +2379,7 @@ fr_info_t *fin; if ((ip->ip_p == IPPROTO_ICMP) && (nat = nat_icmp(ip, fin, &nflags, NAT_INBOUND))) ; - else if ((ip->ip_off & (IP_OFFMASK|IP_MF)) && + else if ((fin->fin_fi.fi_fl & FI_FRAG) && (nat = ipfr_nat_knownfrag(ip, fin))) natadd = 0; else if ((nat = nat_inlookup(fin->fin_ifp, nflags, (u_int)ip->ip_p, @@ -2475,7 +2475,7 @@ maskloop: else fix_outcksum(&ip->ip_sum, nat->nat_ipsumd); #endif - if (!(ip->ip_off & IP_OFFMASK) && + if (!fin->fin_off && !(fin->fin_fi.fi_fl & FI_SHORT)) { if ((nat->nat_inport != 0) && (nflags & IPN_TCPUDP)) { --k1lZvvs/B4yU6o8G-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 7:31:58 2000 Delivered-To: freebsd-net@freebsd.org Received: from darren2.lnk.telstra.net (darren2.lnk.telstra.net [139.130.53.33]) by hub.freebsd.org (Postfix) with ESMTP id 5847237B479; Fri, 27 Oct 2000 07:31:49 -0700 (PDT) Received: (from root@localhost) by darren2.lnk.telstra.net (8.11.0/8.11.0) id e9REVkE28948; Sat, 28 Oct 2000 01:31:46 +1100 (EST) From: Darren Reed Message-Id: <200010271431.BAA19966@avalon.reed.wattle.id.au> Subject: Re: [CFR] IPFILTER patch In-Reply-To: <20001027170933.A36523@sunbay.com> from Ruslan Ermilov at "Oct 27, 0 05:09:33 pm" To: ru@FreeBSD.org (Ruslan Ermilov) Date: Sat, 28 Oct 2000 01:31:23 +1100 (EST) Cc: net@FreeBSD.org X-Mailer: ELM [version 2.4ME+ PL37 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In some email I received from Ruslan Ermilov, sie wrote: > Hi! > > As we discussed yesterday, here are the patches to IPFILTER > that are needed for my upcoming "byte-swapping elimination" > patch. Sorry, it took a bit more than an hour... Hmm, there are some problems with this. In some cases, off is being put into an int (should always be a u_short) but of more concern is that you're treating fin_off as both a byte address (you shift it left three times) and as the eight byte offset it actually is in the packet. Cheers, Darren To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 7:57: 0 2000 Delivered-To: freebsd-net@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id 452C937B479 for ; Fri, 27 Oct 2000 07:56:53 -0700 (PDT) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.0/8.11.0) id e9REu7640085; Fri, 27 Oct 2000 17:56:07 +0300 (EEST) (envelope-from ru) Date: Fri, 27 Oct 2000 17:56:06 +0300 From: Ruslan Ermilov To: Darren Reed , Darren Reed Cc: net@FreeBSD.org Subject: Re: [CFR] IPFILTER patch Message-ID: <20001027175606.A39062@sunbay.com> Mail-Followup-To: Darren Reed , Darren Reed , net@FreeBSD.org References: <20001027170933.A36523@sunbay.com> <200010271431.BAA19966@avalon.reed.wattle.id.au> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <200010271431.BAA19966@avalon.reed.wattle.id.au>; from darrenr@reed.wattle.id.au on Sat, Oct 28, 2000 at 01:31:23AM +1100 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, Oct 28, 2000 at 01:31:23AM +1100, Darren Reed wrote: > In some email I received from Ruslan Ermilov, sie wrote: > > Hi! > > > > As we discussed yesterday, here are the patches to IPFILTER > > that are needed for my upcoming "byte-swapping elimination" > > patch. Sorry, it took a bit more than an hour... > > Hmm, there are some problems with this. > > In some cases, off is being put into an int (should always be > a u_short) > Huh, the only such a case I see is inside fr_makefrip(), and is easily fixed by: --- fil.c 2000/10/26 12:33:42 1.21 +++ fil.c 2000/10/27 14:50:40 @@ -204,8 +204,8 @@ int hlen; ip_t *ip; fr_info_t *fin; { - u_short optmsk = 0, secmsk = 0, auth = 0; - int i, mv, ol, off, p, plen, v; + u_short optmsk = 0, secmsk = 0, auth = 0, off; + int i, mv, ol, p, plen, v; fr_ip_t *fi = &fin->fin_fi; struct optlist *op; u_char *s, opt; > but of more concern is that you're treating fin_off > as both a byte address (you shift it left three times) and as > the eight byte offset it actually is in the packet. > Umm, not exactly. They are really EQUIVALENT for zero/non-zero tests. If the offset is zero, then offset*8 is also zero, and vice versa. As for the ip_frag.c code, I have explicitly stated that it now stores offsets of fragments in bytes (previously was in octets). So this should not be a problem. -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 10:10: 1 2000 Delivered-To: freebsd-net@freebsd.org Received: from ihemail2.firewall.lucent.com (ihemail2.lucent.com [192.11.222.163]) by hub.freebsd.org (Postfix) with ESMTP id AB9D237B479; Fri, 27 Oct 2000 10:09:55 -0700 (PDT) Received: from ihemail2.firewall.lucent.com (localhost [127.0.0.1]) by ihemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id NAA24026; Fri, 27 Oct 2000 13:09:55 -0400 (EDT) Received: from mhmail.mh.lucent.com (h135-3-115-8.lucent.com [135.3.115.8]) by ihemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id NAA23991; Fri, 27 Oct 2000 13:09:53 -0400 (EDT) Received: from lucent.com (positron.micro.lucent.com [192.19.56.129]) by mhmail.mh.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id NAA18703; Fri, 27 Oct 2000 13:09:41 -0400 (EDT) Message-ID: <39F9B679.CA563B9E@lucent.com> Date: Fri, 27 Oct 2000 13:08:09 -0400 From: "Gary T. Corcoran" Reply-To: gcorcoran@lucent.com Organization: Lucent Microelectronics - Client Access Broadband Systems X-Mailer: Mozilla 4.73 [en] (Win95; U) X-Accept-Language: en MIME-Version: 1.0 To: Julian Elischer Cc: Aaron Hill , freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Julian Elischer wrote: > > "Gary T. Corcoran" wrote: > > > > [Quick background: I implemented PPPoE in our DSL drivers for the Lucent DSL adapters] > > Under Windows I presume? > No BSD drivers? :-) Well, actually... :-) Besides Windows drivers, we were also tasked with writing drivers for Linux. We did that, but since I am a fan of FreeBSD, and I had already figured out what the porting issues from Windows to Linux were, I also ported the code to FreeBSD. Until recently though the BSD version wasn't too useful, as FreeBSD doesn't presently have the capability to have parameters when doing a kldload (long story short: I need to know which main flavor of DSL protocol I'm going to use, to know whether to become an ethernet-like or a PPP device at device attach time). But then Terry Lambert told me of a trick with loading an extra "parameter module" first, whereby I could do an ioctl to the parameter module, then load the DSL driver and have it read the parameters from the parameter module. I got this basically working last Friday. I need to polish up the code a bit, but then it will be ready for beta testing*, if you have a Lucent WildWire DSL (PCI plug-in card) adapter. Anybody interested in trying it? * assuming my bosses lets me post or send out the code at this time. Gary To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 10:28: 2 2000 Delivered-To: freebsd-net@freebsd.org Received: from server.osny.com.br (osny.com.br [200.215.110.57]) by hub.freebsd.org (Postfix) with ESMTP id 4AA8437B479 for ; Fri, 27 Oct 2000 10:27:51 -0700 (PDT) Received: from osny.com.br ([172.20.185.22]) by server.osny.com.br (8.10.1/8.10.1) with ESMTP id e9RHTJl03961 for ; Fri, 27 Oct 2000 15:29:20 -0200 (EDT) Message-ID: <39F9A08A.273FF8D8@osny.com.br> Date: Fri, 27 Oct 2000 15:34:34 +0000 From: Michelangelo Pisa Organization: Agencia Maritima Osny X-Mailer: Mozilla 4.7 [en] (Win98; I) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-net@FreeBSD.ORG Subject: Metamail Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi! I need to know where I find the metamail version for my Free 2.2 stable , because dont't have some in the packages I try to install the 2.7.tgz version(come with free 3.3) , but shown erros missing file in /usr/libexec , maybe can be a not compiled version..help!!! thanks miche To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 12:15:54 2000 Delivered-To: freebsd-net@freebsd.org Received: from gomer.august.net (gomer.august.net [216.87.128.131]) by hub.freebsd.org (Postfix) with ESMTP id 777B637B4C5 for ; Fri, 27 Oct 2000 12:15:52 -0700 (PDT) Received: from localhost (1343 bytes) by gomer.august.net via send-mail with P:stdio/R:inet_hosts/T:smtp (sender: ) (ident using unix) id for ; Fri, 27 Oct 2000 14:15:49 -0500 (CDT) (Smail-3.2.0.108 1999-Sep-19 #1 built 1999-Oct-11) Message-Id: Date: Fri, 27 Oct 2000 14:15:49 -0500 (CDT) From: lgfausak@august.net (Greg Fausak) To: julian@elischer.org, lgfausak@august.net Subject: Re: BPF usage questions Cc: freebsd-net@FreeBSD.ORG Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I am writing my first netgraph nodes. I need a mux node and a demux node. For simplicity, the mux node will combine 2 independant channels and round robin the packets. The demux node will simply receive packets on multiple channels and serialize them. The purpose is to bond multiple ethernet connections between two points. I envision creating 2 udp tunnels and using the mux node to feed and demux to bring back together. I haven't built any netgraph code yet. Can someone give me some pointers? I've examined many different sources, some are fairly complex and some are real simple. I regard this as a fairly simply node. Perhaps 3 hooks (upstream, link1, link2). Once I get it to work in a primitive fashion I would like to add control features, like: * only use link2 if packets can't get through link1 * force load balancing based upon theoretical link rates like speed, latency. * calculate load balancing, so dialup, isdn, dsl and t1 can be bonded. I'm looking for a real easy way o get started. Any practical hints would be appreciated. Thanks, ---greg Greg Fausak August.Net Services, LLC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 13:33: 5 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id 306D837B4C5; Fri, 27 Oct 2000 13:33:00 -0700 (PDT) Received: from monrovia-54.budapest.interware.hu ([195.70.53.246] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13pGBH-0006ik-00; Fri, 27 Oct 2000 22:32:51 +0200 Message-ID: <39F9E669.FB8D77D2@elischer.org> Date: Fri, 27 Oct 2000 13:32:41 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: gcorcoran@lucent.com Cc: Aaron Hill , freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> <39F9B679.CA563B9E@lucent.com> Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Gary T. Corcoran" wrote: > > Julian Elischer wrote: > > > > "Gary T. Corcoran" wrote: > > > > > > [Quick background: I implemented PPPoE in our DSL drivers for the Lucent DSL adapters] > > > > Under Windows I presume? > > No BSD drivers? :-) > > Well, actually... :-) > Besides Windows drivers, we were also tasked with writing drivers for Linux. > We did that, but since I am a fan of FreeBSD, and I had already figured > out what the porting issues from Windows to Linux were, I also ported the > code to FreeBSD. Until recently though the BSD version wasn't too useful, > as FreeBSD doesn't presently have the capability to have parameters when > doing a kldload (long story short: I need to know which main flavor of DSL > protocol I'm going to use, to know whether to become an ethernet-like or > a PPP device at device attach time). > > But then Terry Lambert told me of a trick with loading an extra "parameter > module" first, whereby I could do an ioctl to the parameter module, then > load the DSL driver and have it read the parameters from the parameter module. > I got this basically working last Friday. I need to polish up the code a > bit, but then it will be ready for beta testing*, if you have a Lucent > WildWire DSL (PCI plug-in card) adapter. Anybody interested in trying it? no chance of adding a netgraph interface? ok ok so you already do pppoe but do you do multiple pppoe sessions with ability to be a pppoe server? (which netgraph does.) > > * assuming my bosses lets me post or send out the code at this time. > > Gary -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 13:41:55 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id 28AE737B479 for ; Fri, 27 Oct 2000 13:41:51 -0700 (PDT) Received: from monrovia-54.budapest.interware.hu ([195.70.53.246] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13pGJx-0007fU-00; Fri, 27 Oct 2000 22:41:49 +0200 Message-ID: <39F9E883.2EE90B44@elischer.org> Date: Fri, 27 Oct 2000 13:41:39 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Greg Fausak , net@freebsd.org Subject: Re: BPF usage questions References: Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greg Fausak wrote: > > I am writing my first netgraph nodes. > > I need a mux node and a demux node. > > For simplicity, the mux node will combine 2 independant > channels and round robin the packets. The demux node > will simply receive packets on multiple channels and > serialize them. Archie already wrote this I think.. If you want to play with it, here is the current version: ftp://ftp.whistle.com/pub/archie/netgraph/ng_one2many.tgz > > The purpose is to bond multiple ethernet connections between > two points. I envision creating 2 udp tunnels and using the > mux node to feed and demux to bring back together. Archies does N arbitray links. (and it has a man page etc....) > > I haven't built any netgraph code yet. Can someone give me some > pointers? I've examined many different sources, some are fairly > complex and some are real simple. I regard this as a fairly simply node. > Perhaps 3 hooks (upstream, link1, link2). > > Once I get it to work in a primitive fashion I would like to > add control features, like: > * only use link2 if packets can't get through link1 > * force load balancing based upon theoretical link rates like > speed, latency. > * calculate load balancing, so dialup, isdn, dsl and t1 can be > bonded. > > I'm looking for a real easy way to get started. > Any practical hints would be appreciated. Start with archies code and add the stuff you want (control etc.) :-) > > Thanks, > ---greg > Greg Fausak > August.Net Services, LLC -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 14:23:26 2000 Delivered-To: freebsd-net@freebsd.org Received: from hoemail2.firewall.lucent.com (hoemail2.lucent.com [192.11.226.163]) by hub.freebsd.org (Postfix) with ESMTP id 3DDBC37B479; Fri, 27 Oct 2000 14:23:22 -0700 (PDT) Received: from hoemail2.firewall.lucent.com (localhost [127.0.0.1]) by hoemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id RAA12295; Fri, 27 Oct 2000 17:23:21 -0400 (EDT) Received: from mhmail.mh.lucent.com (h135-3-115-8.lucent.com [135.3.115.8]) by hoemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id RAA12287; Fri, 27 Oct 2000 17:23:21 -0400 (EDT) Received: from lucent.com (positron.micro.lucent.com [192.19.56.129]) by mhmail.mh.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id RAA02636; Fri, 27 Oct 2000 17:23:19 -0400 (EDT) Message-ID: <39F9F1FB.F00E686F@lucent.com> Date: Fri, 27 Oct 2000 17:22:03 -0400 From: "Gary T. Corcoran" Reply-To: gcorcoran@lucent.com Organization: Lucent Microelectronics - Client Access Broadband Systems X-Mailer: Mozilla 4.73 [en] (Win95; U) X-Accept-Language: en MIME-Version: 1.0 To: Julian Elischer Cc: Aaron Hill , freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> <39F9B679.CA563B9E@lucent.com> <39F9E669.FB8D77D2@elischer.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Julian Elischer wrote: > no chance of adding a netgraph interface? Sure there's a chance - if I get some free time... ;-) But I'm not at all familiar with netgraph. I've never used it. What advantage would there be to adding it? (and can you point me to a sample driver that would show me what needs to be done?) > ok ok so you already do pppoe but do you do multiple pppoe sessions with > ability to be a pppoe server? (which netgraph does.) No, I don't support multiple pppoe sessions. This card is geared to be used on a client on an ADSL line, where the downstream rate is much higher than the upstream - in other words much better at downloading than serving. :) And most DSL providers tend to get upset if you run a server from a residential service... :-) Most businesses use SDSL - symmetric DSL, which this card doesn't support. The other thing is that in order to support the PPP flavors of DSL (RFC2364), we have to load a sync PPP module. I used the syncppp.c code from FreeBSD, but it wasn't quite usable as-is so I had to tweak it. Of course that module is only providing PPP, not PPPoE - the DSL driver itself does the PPPoE negotiations before letting the PPP go through. Then it just adds/ subtracts the PPPoE wrapper on the frames (when in PPPoE mode). Given this framework (ppp0 interface -> ltdsl driver), would netgraph fit in? Would the sync PPP code also have to be modified to use netgraph? In the other flavors of DSL (RFC1483), the DSL card appears as an ethernet device to the system. As you may be able to tell, without knowing what netgraph really does I'm a little bit at a loss as to how/why to use it... But if it's relatively easy to add support for netgraph, and it has some advantages for the user, then I'm willing to give it a shot... Thanks, Gary To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 15:20:25 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id 3F47537B479; Fri, 27 Oct 2000 15:20:17 -0700 (PDT) Received: from monrovia-54.budapest.interware.hu ([195.70.53.246] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13pHr4-0006mu-00; Sat, 28 Oct 2000 00:20:07 +0200 Message-ID: <39F9FF8C.F10D5F65@elischer.org> Date: Fri, 27 Oct 2000 15:19:56 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: gcorcoran@lucent.com Cc: Aaron Hill , freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> <39F9B679.CA563B9E@lucent.com> <39F9E669.FB8D77D2@elischer.org> <39F9F1FB.F00E686F@lucent.com> Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Gary T. Corcoran" wrote: > > Julian Elischer wrote: > > > no chance of adding a netgraph interface? > > Sure there's a chance - if I get some free time... ;-) > But I'm not at all familiar with netgraph. I've never used it. > What advantage would there be to adding it? (and can you point me > to a sample driver that would show me what needs to be done?) for more info, look at: http://www.daemonnews.org/200003/netgraph.html The drivers for if_sr.c and if_ar.c have been netgraphified, (though they have some problems) also the following drivers have netgraph functionality: dev/musycc/musycc.c dev/usb/udbp.c dev/lmc/if_lmc.c As well, the ethernet interfaces have been netgraphified (netgraph/ng_ether.c) and I think that the i4b ISDN stuff has some startings of netgraph compatibility. Basically the driver needs only handle whole FRAMES in an opaque manner and let the other netgraph nodes handle all the protocol stuff. (Why should a driver know about PPPOE?). > > > ok ok so you already do pppoe but do you do multiple pppoe sessions with > > ability to be a pppoe server? (which netgraph does.) > > No, I don't support multiple pppoe sessions. This card is geared to be > used on a client on an ADSL line, where the downstream rate is much > higher than the upstream - in other words much better at downloading > than serving. :) And most DSL providers tend to get upset if you run > a server from a residential service... :-) Most businesses use SDSL - > symmetric DSL, which this card doesn't support. but some DSL providers allow you to select from one of several providers on a single DSL cloud. By allowing multiple sessions you can set up several 'redundant' links out through the single DSL link, to several such providers to (hopefully) get aroung their breakages.. :-) > > The other thing is that in order to support the PPP flavors of DSL (RFC2364), > we have to load a sync PPP module. I used the syncppp.c code from FreeBSD, > but it wasn't quite usable as-is so I had to tweak it. Since PPP and mpd know about netgraph they can just connect directly to the netgraph interfaces offered after processing by the pppoe protocol node. mpd even does one better, by linking a kernel ppp netgraph node to the pppoe node, and letting it handle all the ppp decoding in the kernel. > Of course that > module is only providing PPP, not PPPoE - the DSL driver itself does the > PPPoE negotiations before letting the PPP go through. Then it just adds/ > subtracts the PPPoE wrapper on the frames (when in PPPoE mode). Why should a driver know about PPPOE? They are talking about using it on cable systems too... shouldn't it be independent of the driver? :-) > > Given this framework (ppp0 interface -> ltdsl driver), would netgraph > fit in? Would the sync PPP code also have to be modified to use > netgraph? In the other flavors of DSL (RFC1483), the DSL card appears > as an ethernet device to the system. As you may be able to tell, without > knowing what netgraph really does I'm a little bit at a loss as to how/why > to use it... But if it's relatively easy to add support for netgraph, and > it has some advantages for the user, then I'm willing to give it a shot... Have a read, and tell me what you think.. > > Thanks, > Gary -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 15:20:59 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id 4E90937B479 for ; Fri, 27 Oct 2000 15:20:55 -0700 (PDT) Received: from monrovia-54.budapest.interware.hu ([195.70.53.246] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13pHra-0006of-00; Sat, 28 Oct 2000 00:20:39 +0200 Message-ID: <39F9FFAD.2992767D@elischer.org> Date: Fri, 27 Oct 2000 15:20:29 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 Cc: Aaron Hill , freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> <39F9B679.CA563B9E@lucent.com> <39F9E669.FB8D77D2@elischer.org> <39F9F1FB.F00E686F@lucent.com> Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Gary T. Corcoran" wrote: > > Julian Elischer wrote: > > > no chance of adding a netgraph interface? > > Sure there's a chance - if I get some free time... ;-) > But I'm not at all familiar with netgraph. I've never used it. > What advantage would there be to adding it? (and can you point me > to a sample driver that would show me what needs to be done?) for more info, look at: http://www.daemonnews.org/200003/netgraph.html The drivers for if_sr.c and if_ar.c have been netgraphified, (though they have some problems) also the following drivers have netgraph functionality: dev/musycc/musycc.c dev/usb/udbp.c dev/lmc/if_lmc.c As well, the ethernet interfaces have been netgraphified (netgraph/ng_ether.c) and I think that the i4b ISDN stuff has some startings of netgraph compatibility. Basically the driver needs only handle whole FRAMES in an opaque manner and let the other netgraph nodes handle all the protocol stuff. (Why should a driver know about PPPOE?). > > > ok ok so you already do pppoe but do you do multiple pppoe sessions with > > ability to be a pppoe server? (which netgraph does.) > > No, I don't support multiple pppoe sessions. This card is geared to be > used on a client on an ADSL line, where the downstream rate is much > higher than the upstream - in other words much better at downloading > than serving. :) And most DSL providers tend to get upset if you run > a server from a residential service... :-) Most businesses use SDSL - > symmetric DSL, which this card doesn't support. but some DSL providers allow you to select from one of several providers on a single DSL cloud. By allowing multiple sessions you can set up several 'redundant' links out through the single DSL link, to several such providers to (hopefully) get aroung their breakages.. :-) > > The other thing is that in order to support the PPP flavors of DSL (RFC2364), > we have to load a sync PPP module. I used the syncppp.c code from FreeBSD, > but it wasn't quite usable as-is so I had to tweak it. Since PPP and mpd know about netgraph they can just connect directly to the netgraph interfaces offered after processing by the pppoe protocol node. mpd even does one better, by linking a kernel ppp netgraph node to the pppoe node, and letting it handle all the ppp decoding in the kernel. > Of course that > module is only providing PPP, not PPPoE - the DSL driver itself does the > PPPoE negotiations before letting the PPP go through. Then it just adds/ > subtracts the PPPoE wrapper on the frames (when in PPPoE mode). Why should a driver know about PPPOE? They are talking about using it on cable systems too... shouldn't it be independent of the driver? :-) > > Given this framework (ppp0 interface -> ltdsl driver), would netgraph > fit in? Would the sync PPP code also have to be modified to use > netgraph? In the other flavors of DSL (RFC1483), the DSL card appears > as an ethernet device to the system. As you may be able to tell, without > knowing what netgraph really does I'm a little bit at a loss as to how/why > to use it... But if it's relatively easy to add support for netgraph, and > it has some advantages for the user, then I'm willing to give it a shot... Have a read, and tell me what you think.. > > Thanks, > Gary -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 15:23:40 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.interware.hu (mail.interware.hu [195.70.32.130]) by hub.freebsd.org (Postfix) with ESMTP id 02E4A37B479 for ; Fri, 27 Oct 2000 15:23:37 -0700 (PDT) Received: from monrovia-54.budapest.interware.hu ([195.70.53.246] helo=elischer.org) by mail.interware.hu with esmtp (Exim 3.16 #1 (Debian)) id 13pHuJ-0006xN-00; Sat, 28 Oct 2000 00:23:28 +0200 Message-ID: <39FA0056.8CB7D452@elischer.org> Date: Fri, 27 Oct 2000 15:23:18 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-net@Freebsd.org, "Gary T. Corcoran" Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> <39F9B679.CA563B9E@lucent.com> <39F9E669.FB8D77D2@elischer.org> <39F9F1FB.F00E686F@lucent.com> <39F9FFAD.2992767D@elischer.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Duh! I left you off the recipients list! (don't know if you are on -net) Julian Elischer wrote: > > "Gary T. Corcoran" wrote: > > > > Julian Elischer wrote: > > > > > no chance of adding a netgraph interface? > > > > Sure there's a chance - if I get some free time... ;-) > > But I'm not at all familiar with netgraph. I've never used it. > > What advantage would there be to adding it? (and can you point me > > to a sample driver that would show me what needs to be done?) > > for more info, look at: > http://www.daemonnews.org/200003/netgraph.html > > The drivers for if_sr.c and if_ar.c have been netgraphified, > (though they have some problems) > > also the following drivers have netgraph functionality: > dev/musycc/musycc.c > dev/usb/udbp.c > dev/lmc/if_lmc.c > > As well, the ethernet interfaces have been netgraphified > (netgraph/ng_ether.c) and I think that the i4b ISDN stuff > has some startings of netgraph compatibility. > > Basically the driver needs only handle whole FRAMES in an opaque manner > and let the other netgraph nodes handle all the protocol stuff. > (Why should a driver know about PPPOE?). > > > > > > ok ok so you already do pppoe but do you do multiple pppoe sessions with > > > ability to be a pppoe server? (which netgraph does.) > > > > No, I don't support multiple pppoe sessions. This card is geared to be > > used on a client on an ADSL line, where the downstream rate is much > > higher than the upstream - in other words much better at downloading > > than serving. :) And most DSL providers tend to get upset if you run > > a server from a residential service... :-) Most businesses use SDSL - > > symmetric DSL, which this card doesn't support. > > but some DSL providers allow you to select from one of several providers > on a single > DSL cloud. By allowing multiple sessions you can set up several > 'redundant' > links out through the single DSL link, to several > such providers to (hopefully) get aroung their breakages.. :-) > > > > > The other thing is that in order to support the PPP flavors of DSL (RFC2364), > > we have to load a sync PPP module. I used the syncppp.c code from FreeBSD, > > but it wasn't quite usable as-is so I had to tweak it. > > Since PPP and mpd know about netgraph they can just connect directly to > the netgraph interfaces offered after processing by the pppoe protocol > node. > mpd even does one better, by linking a kernel ppp netgraph node to the > pppoe node, and letting it handle all the ppp decoding in the kernel. > > > Of course that > > module is only providing PPP, not PPPoE - the DSL driver itself does the > > PPPoE negotiations before letting the PPP go through. Then it just adds/ > > subtracts the PPPoE wrapper on the frames (when in PPPoE mode). > > Why should a driver know about PPPOE? They are talking about using it > on cable systems too... shouldn't it be independent of the driver? :-) > > > > > Given this framework (ppp0 interface -> ltdsl driver), would netgraph > > fit in? Would the sync PPP code also have to be modified to use > > netgraph? In the other flavors of DSL (RFC1483), the DSL card appears > > as an ethernet device to the system. As you may be able to tell, without > > knowing what netgraph really does I'm a little bit at a loss as to how/why > > to use it... But if it's relatively easy to add support for netgraph, and > > it has some advantages for the user, then I'm willing to give it a shot... > > Have a read, and tell me what you think.. > > > > > Thanks, > > Gary > > -- > __--_|\ Julian Elischer > / \ julian@elischer.org > ( OZ ) World tour 2000 > ---> X_.---._/ presently in: Budapest > v -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Budapest v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 15:24: 2 2000 Delivered-To: freebsd-net@freebsd.org Received: from gomer.august.net (gomer.august.net [216.87.128.131]) by hub.freebsd.org (Postfix) with ESMTP id 3552237B4E5 for ; Fri, 27 Oct 2000 15:24:00 -0700 (PDT) Received: from localhost (861 bytes) by gomer.august.net via send-mail with P:stdio/R:inet_hosts/T:smtp (sender: ) (ident using unix) id for ; Fri, 27 Oct 2000 17:23:11 -0500 (CDT) (Smail-3.2.0.108 1999-Sep-19 #1 built 1999-Oct-11) Message-Id: Date: Fri, 27 Oct 2000 17:23:11 -0500 (CDT) From: lgfausak@august.net (Greg Fausak) To: julian@elischer.org, lgfausak@august.net, net@freebsd.org Subject: Re: BPF usage questions Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I get a compile error when I hit: #define NG_ONE2MANY_LINK_STATS_TYPE_INFO { \ { \ { "recvOctets", &ng_parse_uint64_type }, \ { "recvPackets", &ng_parse_uint64_type }, \ { "xmitOctets", &ng_parse_uint64_type }, \ { "xmitPackets", &ng_parse_uint64_type }, \ { NULL } \ } \ I changed the references to ng_parse_int64_type and it seems to compile now. ---greg To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 15:57:50 2000 Delivered-To: freebsd-net@freebsd.org Received: from hoemail2.firewall.lucent.com (hoemail2.lucent.com [192.11.226.163]) by hub.freebsd.org (Postfix) with ESMTP id CD56E37B4C5 for ; Fri, 27 Oct 2000 15:57:46 -0700 (PDT) Received: from hoemail2.firewall.lucent.com (localhost [127.0.0.1]) by hoemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id SAA08332 for ; Fri, 27 Oct 2000 18:57:46 -0400 (EDT) Received: from mhmail.mh.lucent.com (h135-3-115-8.lucent.com [135.3.115.8]) by hoemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id SAA08328; Fri, 27 Oct 2000 18:57:45 -0400 (EDT) Received: from lucent.com (positron.micro.lucent.com [192.19.56.129]) by mhmail.mh.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id SAA17240; Fri, 27 Oct 2000 18:57:44 -0400 (EDT) Message-ID: <39FA081C.3E56D791@lucent.com> Date: Fri, 27 Oct 2000 18:56:28 -0400 From: "Gary T. Corcoran" Reply-To: gcorcoran@lucent.com Organization: Lucent Microelectronics - Client Access Broadband Systems X-Mailer: Mozilla 4.73 [en] (Win95; U) X-Accept-Language: en MIME-Version: 1.0 To: Julian Elischer Cc: freebsd-net@Freebsd.org Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> <39F9B679.CA563B9E@lucent.com> <39F9E669.FB8D77D2@elischer.org> <39F9F1FB.F00E686F@lucent.com> <39F9FFAD.2992767D@elischer.org> <39FA0056.8CB7D452@elischer.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Julian Elischer wrote: > > for more info, look at: > > http://www.daemonnews.org/200003/netgraph.html Okay thanks - will do next week when I get a chance. > > but some DSL providers allow you to select from one of several providers > > on a single > > DSL cloud. By allowing multiple sessions you can set up several > > 'redundant' > > links out through the single DSL link, to several > > such providers to (hopefully) get aroung their breakages.. :-) I thought that was the whole (or most of) the idea behind "service names". That is, by specifying the "service name", you could (possibly) choose amongst different ISPs that serve your DSL connection. I get your point if you actually wanted multiple _concurrent_ sessions, my current driver couldn't do it. However I (personally) wouldn't want to pay for several ISPs! :) > > Why should a driver know about PPPOE? They are talking about using it > > on cable systems too... shouldn't it be independent of the driver? :-) Yes, ideally, a driver should NOT know about PPPOE. But since Windows didn't provide it, and it was relatively easy to add it to our driver, I chose that route, and since the code then already existed, kept it in the FreeBSD driver. I suppose one *might* have been able to write an "intermediate" network driver for windows, which I suspect is roughly equivalent to what a netgraph node would provide, but that would have required another learning curve on Windows... ;-) Personally (my opinion only), I dislike PPPoE. It adds a full THIRTY (30) bytes of overhead to every packet you send! And for a (real) DSL link, it's not needed. That is, you really just want to send PPP over ATM (DSL packets get formatted as ATM cells, if you didn't know). Gary To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 17: 8:40 2000 Delivered-To: freebsd-net@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id 74A5537B479 for ; Fri, 27 Oct 2000 17:08:37 -0700 (PDT) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id UAA35316; Fri, 27 Oct 2000 20:08:34 -0400 (EDT) (envelope-from wollman) Date: Fri, 27 Oct 2000 20:08:34 -0400 (EDT) From: Garrett Wollman Message-Id: <200010280008.UAA35316@khavrinen.lcs.mit.edu> To: gcorcoran@lucent.com Cc: Julian Elischer , freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) In-Reply-To: <39FA081C.3E56D791@lucent.com> References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> <39F9B679.CA563B9E@lucent.com> <39F9E669.FB8D77D2@elischer.org> <39F9F1FB.F00E686F@lucent.com> <39F9FFAD.2992767D@elischer.org> <39FA0056.8CB7D452@elischer.org> <39FA081C.3E56D791@lucent.com> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: > if you actually wanted multiple _concurrent_ sessions, my current driver > couldn't do it. However I (personally) wouldn't want to pay for several > ISPs! :) Consider the case where you have a DSL connection into a private network, but also want to have access to the public network. -GAWollman To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 17:12:51 2000 Delivered-To: freebsd-net@freebsd.org Received: from hoemlsrv.firewall.lucent.com (hoemail1.lucent.com [192.11.226.161]) by hub.freebsd.org (Postfix) with ESMTP id 1CAD937B657 for ; Fri, 27 Oct 2000 17:12:47 -0700 (PDT) Received: from hoemlsrv.firewall.lucent.com (localhost [127.0.0.1]) by hoemlsrv.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id UAA15958 for ; Fri, 27 Oct 2000 20:12:45 -0400 (EDT) Received: from mhmail.mh.lucent.com (h135-3-115-8.lucent.com [135.3.115.8]) by hoemlsrv.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id UAA15953; Fri, 27 Oct 2000 20:12:45 -0400 (EDT) Received: from lucent.com (positron.micro.lucent.com [192.19.56.129]) by mhmail.mh.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id UAA26617; Fri, 27 Oct 2000 20:12:43 -0400 (EDT) Message-ID: <39FA19AF.B385583F@lucent.com> Date: Fri, 27 Oct 2000 20:11:27 -0400 From: "Gary T. Corcoran" Reply-To: gcorcoran@lucent.com Organization: Lucent Microelectronics - Client Access Broadband Systems X-Mailer: Mozilla 4.73 [en] (Win95; U) X-Accept-Language: en MIME-Version: 1.0 To: Garrett Wollman Cc: Julian Elischer , freebsd-net@FreeBSD.ORG Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> <39F9B679.CA563B9E@lucent.com> <39F9E669.FB8D77D2@elischer.org> <39F9F1FB.F00E686F@lucent.com> <39F9FFAD.2992767D@elischer.org> <39FA0056.8CB7D452@elischer.org> <39FA081C.3E56D791@lucent.com> <200010280008.UAA35316@khavrinen.lcs.mit.edu> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Garrett Wollman wrote: > > < said: > > > if you actually wanted multiple _concurrent_ sessions, my current driver > > couldn't do it. However I (personally) wouldn't want to pay for several > > ISPs! :) > > Consider the case where you have a DSL connection into a private > network, but also want to have access to the public network. Good point - that might actually occur... Gary To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 18: 7: 3 2000 Delivered-To: freebsd-net@freebsd.org Received: from whizzo.transsys.com (whizzo.TransSys.COM [144.202.42.10]) by hub.freebsd.org (Postfix) with ESMTP id 3BEB537B4C5 for ; Fri, 27 Oct 2000 18:06:56 -0700 (PDT) Received: from whizzo.transsys.com (localhost.transsys.com [127.0.0.1]) by whizzo.transsys.com (8.11.0/8.11.0) with ESMTP id e9S16iG52793; Fri, 27 Oct 2000 21:06:44 -0400 (EDT) (envelope-from louie@whizzo.transsys.com) Message-Id: <200010280106.e9S16iG52793@whizzo.transsys.com> X-Mailer: exmh version 2.1.1 10/15/1999 To: gcorcoran@lucent.com Cc: Garrett Wollman , Julian Elischer , freebsd-net@FreeBSD.ORG X-Image-URL: http://www.transsys.com/louie/images/louie-mail.jpg From: "Louis A. Mamakos" Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> <39F9B679.CA563B9E@lucent.com> <39F9E669.FB8D77D2@elischer.org> <39F9F1FB.F00E686F@lucent.com> <39F9FFAD.2992767D@elischer.org> <39FA0056.8CB7D452@elischer.org> <39FA081C.3E56D791@lucent.com> <200010280008.UAA35316@khavrinen.lcs.mit.edu> <39FA19AF.B385583F@lucent.com> In-reply-to: Your message of "Fri, 27 Oct 2000 20:11:27 EDT." <39FA19AF.B385583F@lucent.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Fri, 27 Oct 2000 21:06:44 -0400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > > Garrett Wollman wrote: > > > > < said: > > > > > if you actually wanted multiple _concurrent_ sessions, my current driver > > > couldn't do it. However I (personally) wouldn't want to pay for several > > > ISPs! :) > > > > Consider the case where you have a DSL connection into a private > > network, but also want to have access to the public network. > > Good point - that might actually occur... This scenario was exactly one of the configurations we wanted to support whilst developing the protocol. The thought was to be able to concurrently support a "consumer"-style (e.g., AOL, MSN) user as well as a teleworker on different end-systems simultaneously, with different access policies and characteristics. I was part of the architecture that this policy would be implemented at the access concentrator, which is where filtering, over-subscription, etc. is managed. Having multiple sessions per end-system also seemed useful, and is why there's a session id so you can multiplex on that as well as the end-system and access concentrator MAC addresses. Louis Mamakos (AKA louie@UU.NET, one of the instigators of the protocol) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 18:24:15 2000 Delivered-To: freebsd-net@freebsd.org Received: from whizzo.transsys.com (whizzo.TransSys.COM [144.202.42.10]) by hub.freebsd.org (Postfix) with ESMTP id 8D2DC37B479 for ; Fri, 27 Oct 2000 18:24:11 -0700 (PDT) Received: from whizzo.transsys.com (localhost.transsys.com [127.0.0.1]) by whizzo.transsys.com (8.11.0/8.11.0) with ESMTP id e9S1O8G52999; Fri, 27 Oct 2000 21:24:08 -0400 (EDT) (envelope-from louie@whizzo.transsys.com) Message-Id: <200010280124.e9S1O8G52999@whizzo.transsys.com> X-Mailer: exmh version 2.1.1 10/15/1999 X-Exmh-Isig-CompType: repl X-Exmh-Isig-Folder: inbox/freebsd To: gcorcoran@lucent.com Cc: Julian Elischer , freebsd-net@FreeBSD.ORG X-Image-URL: http://www.transsys.com/louie/images/louie-mail.jpg From: "Louis A. Mamakos" Subject: Re: More on PPPoE & ADSL (Telstra Bigpond) References: <39F8C29F.D785C588@lucent.com> <39F9210E.B728D4F8@elischer.org> <39F9B679.CA563B9E@lucent.com> <39F9E669.FB8D77D2@elischer.org> <39F9F1FB.F00E686F@lucent.com> <39F9FFAD.2992767D@elischer.org> <39FA0056.8CB7D452@elischer.org> <39FA081C.3E56D791@lucent.com> In-reply-to: Your message of "Fri, 27 Oct 2000 18:56:28 EDT." <39FA081C.3E56D791@lucent.com> Mime-Version: 1.0 Content-Type: text/plain Date: Fri, 27 Oct 2000 21:24:08 -0400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Personally (my opinion only), I dislike PPPoE. It adds a full THIRTY (30) > bytes of overhead to every packet you send! And for a (real) DSL link, > it's not needed. That is, you really just want to send PPP over ATM > (DSL packets get formatted as ATM cells, if you didn't know). The 30 bytes of overhead on the link aren't that big a deal considering that it's all being shredded into AAL5 ATM cells (usually) too. The speed of the DSL span likely isn't the limiting factor; it's the oversubscription beyond the DSLAM. While you can certainly do PPP over ATM, this also means you get to buy a *DSL NIC card for your PC, and figure out how to write a driver for it under FreeBSD. The alternative that PPPoE gives you is using a $15 10/100 Ethernet NIC that's already supported, plus you can have multiple end systems beyond the *DSL CPE modem which can simultanously use the link. The PPP over ATM alterative means that the system with the ATM NIC needs to act as a router, and the overall reliability is only as good at the one system. While this isn't a big problem for FreeBSD, consider the household with only Windows boxes, and the frequency at which these things are restarted. When we started doing some DSL development work at UUNET, some of the explicit goals were to: - support multiple sessions on one DSL connection, potentially different end-systems - to enable immediate DSL deployment without requiring new DSL CPE hardware to be built. At that time, pretty much every vendor had dumb ethernet bridges for their particular flavor of DSL. Note that some DSL implementations are not ATM based - CHEAP, and hopefully already installed, network interfaces for the end systems - as little configuration of the DSL CPE device as possible. No config at all is great. For a residential service, controlling customer service costs is very important. A somewhat unstated goal was to make it easy to add DSL support to other than just Windows platforms. There are a bunch of alternatives which are based on the DSL/ATM NIC card in the client end-system; these suffer the system reliabilty I mentioned. But as a FreeBSD user, it seemed pretty clear to me that there was not going to be much motivation for the folks building that hardware to release documentation, much less support "non-mainstream" driver development. By putting all of the DSL hardware behind a cheap and ubiquitous Ethernet host interface, most of those considerations go away. There were other proposals using Ethernet; one particularlly scaring one had ATM cells tranported over the Ethernet to the end-system, where the SAR (cell segmentation and reassembly process) would BE DONE IN SOFTWARE, along with a complete ATM signalling stack! This makes sense if you consider that Intel was proposing it, and you're looking for more opportunities for selling CPU upgrades. Now, if all the f*&king firewalls in the world didn't break MTU discovery, using PPPoE would be much more painless, sigh. louie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 27 19:59:29 2000 Delivered-To: freebsd-net@freebsd.org Received: from dsms.com (dsms.com [205.158.42.162]) by hub.freebsd.org (Postfix) with ESMTP id D6FA637B479 for ; Fri, 27 Oct 2000 19:59:27 -0700 (PDT) Received: from dsms.com (hvb@bp-38.sm.dsms.com [199.89.215.38]) by dsms.com (8.9.3/8.9.3) with ESMTP id UAA98494 for ; Fri, 27 Oct 2000 20:07:10 -0700 (PDT) Message-ID: <39FA4187.2750D012@dsms.com> Date: Fri, 27 Oct 2000 20:01:27 -0700 From: harold barker Reply-To: hvb@dsms.com Organization: Dark Side of the Moon SoftWare X-Mailer: Mozilla 4.73 [en] (X11; I; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 Cc: freebsd-net@FreeBSD.ORG Subject: athome RCA modem References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Does anyone know the default address and port (for the web config) used by athome for the RCA modems? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 28 1:22:24 2000 Delivered-To: freebsd-net@freebsd.org Received: from jason.argos.org (jason.argos.org [216.233.245.106]) by hub.freebsd.org (Postfix) with ESMTP id 70F3C37B479 for ; Sat, 28 Oct 2000 01:22:22 -0700 (PDT) Received: from localhost (mike@localhost) by jason.argos.org (8.10.1/8.10.1) with ESMTP id e9S8K9s01192 for ; Sat, 28 Oct 2000 04:20:09 -0400 Date: Sat, 28 Oct 2000 04:20:08 -0400 (EDT) From: Mike Nowlin To: freebsd-net@freebsd.org Subject: Multiple IP addrs in a jail Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Been playing with this off and on for a couple days now, with no success - time to ask the think tank... I'm in the middle of switching from one ISP to another, and having to change all of the IP addresses to the new block. For most of the machines, no problem. However: A few of the boxes are running jails {where the jails are} in the old IP block. I can use an "ifconfig alias" to make the host machine respond to both the new and old IP address for the host, but is it possible to make a jailed environment respond to two different IPs? If not, is there some trick I can use with IPFW/NATD to flop around the addresses so that the jail responds? I haven't moved any of these machines to their new home yet, but we're trying to avoid any "down time" caused by cached IP addresses wherever they may be. These jails are (basically) Apache configs used by our clients. I considered duplicating the jails and then locking the old ones down to no-updates, but that's ugly and very time-consuming....... Any words of wisdom? --mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 28 8:16:41 2000 Delivered-To: freebsd-net@freebsd.org Received: from gomer.august.net (gomer.august.net [216.87.128.131]) by hub.freebsd.org (Postfix) with ESMTP id E378C37B479 for ; Sat, 28 Oct 2000 08:16:38 -0700 (PDT) Received: from localhost (532 bytes) by gomer.august.net via send-mail with P:stdio/R:inet_hosts/T:smtp (sender: ) (ident using unix) id for ; Sat, 28 Oct 2000 10:16:37 -0500 (CDT) (Smail-3.2.0.108 1999-Sep-19 #1 built 1999-Oct-11) Message-Id: Date: Sat, 28 Oct 2000 10:16:37 -0500 (CDT) From: lgfausak@august.net (Greg Fausak) To: freebsd-net@Freebsd.org Subject: creation and connection of netgraph nodes Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I seem to be fumbling around with creating and connecting netrgraph nodes. I've built the one2many node, and am trying to link it up: Can someone post an example of creating a couple of nodes and then connecting them up. I've read the man pages and examples, I just can seem to get the hang of creating and connecting. Are there more examples anywhere? Thanks, ---greg To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 28 9:17:59 2000 Delivered-To: freebsd-net@freebsd.org Received: from prserv.net (out1.prserv.net [32.97.166.31]) by hub.freebsd.org (Postfix) with ESMTP id 2A03237B479 for ; Sat, 28 Oct 2000 09:17:57 -0700 (PDT) Received: from mobinho.stones.prv ([32.100.160.199]) by prserv.net (out1) with SMTP id <2000102816175520104uvslqe>; Sat, 28 Oct 2000 16:17:55 +0000 Date: Sat, 28 Oct 2000 12:18:49 -0400 From: Joao Pedras To: freebsd-net@freebsd.org Subject: xe0 not working ? Message-Id: <20001028121849.0ff3a026.jpedras@webvolution.net> X-Mailer: Sylpheed version 0.4.1 (GTK+ 1.2.8; FreeBSD 4.1.1-STABLE; i386) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello all Was anything xe0-related (pcmcia Intel Etherexpress Pro 100+) changed in the last few days ? I used to be able to use my laptop as a router to a win95 box. Now I can't even ping from wherever I am. If I start windows on the laptop they are able to ping each other so the problem seems to be in BSD. The output from ifconfig is xe0: flags=8843 mtu 1500 inet 192.168.0.3 netmask 0xffffff00 broadcast 192.168.0.255 ether 00:d0:b7:a1:08:7b media: autoselect (10baseT/UTP) supported media: autoselect 10baseT/UTP 100baseTX Any ideais ? Tkx in advance. Joao To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 28 10:35:11 2000 Delivered-To: freebsd-net@freebsd.org Received: from InterJet.dellroad.org (adsl-63-194-81-26.dsl.snfc21.pacbell.net [63.194.81.26]) by hub.freebsd.org (Postfix) with ESMTP id 39EC637B4C5 for ; Sat, 28 Oct 2000 10:35:09 -0700 (PDT) Received: from curve.dellroad.org (curve.dellroad.org [10.1.1.30]) by InterJet.dellroad.org (8.9.1a/8.9.1) with ESMTP id KAA75717; Sat, 28 Oct 2000 10:35:07 -0700 (PDT) Received: (from archie@localhost) by curve.dellroad.org (8.11.0/8.11.0) id e9SHZ5733979; Sat, 28 Oct 2000 10:35:05 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010281735.e9SHZ5733979@curve.dellroad.org> Subject: Re: Packet routing In-Reply-To: "from Sysadmin at Oct 27, 2000 12:58:39 pm" To: Sysadmin Date: Sat, 28 Oct 2000 10:35:05 -0700 (PDT) Cc: freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Sysadmin writes: > Can anyone tell us how to get FreeBSD to route packets? This should be an > easy question, infact all the documentation that we have read says that > FreeBSD should route packets simply by setting the line gateway_enable="YES" > in rc.conf. And, make sure if you've enabled the firewall code that packets are allowed to flow. > Could it be anything to do with the network number 10? Obviously this is in No.. FreeBSD doesn't care about that. > This is what our routing table looks like: > > Internet: > Destination Gateway Flags Netif Expire > default 203.36.202.65 UGSc ex0 > 10/16 link#1 UC vr0 => > 10.0.255.255 ff:ff:ff:ff:ff:ff UHLWb vr0 > 10.1/16 link#2 UC vr1 => > 10.2/16 link#3 UC vr2 => > 10.2.0.50 0:10:a4:1:db:18 UHLW vr2 1004 > 10.3/16 link#4 UC vr3 => > 10.4/16 link#5 UC vr4 => > 127.0.0.1 127.0.0.1 UH lo0 > 203.36.202.64/26 link#6 UC ex0 => > 203.36.202.65 0:c0:7b:73:19:c6 UHLW ex0 1019 > 203.36.202.80 52:54:0:e5:56:b UHLW ex0 359 Looks good. Check your firewall. Also, verify routing is really being enabled: $ sysctl net.inet.ip.forwarding net.inet.ip.forwarding: 1 -Archie __________________________________________________________________________ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 28 12:56:51 2000 Delivered-To: freebsd-net@freebsd.org Received: from light.imasy.or.jp (light.imasy.or.jp [202.227.24.4]) by hub.freebsd.org (Postfix) with ESMTP id 052F537B479; Sat, 28 Oct 2000 12:56:45 -0700 (PDT) Received: (from uucp@localhost) by light.imasy.or.jp (8.11.0+3.3W/3.7W-light) with UUCP id e9SJuOB17077; Sun, 29 Oct 2000 04:56:24 +0900 (JST) (envelope-from ume@mahoroba.org) Received: from localhost (IDENT:clzPAoomKUaOv3qiYQr21jYEzbh530J5vhpGi2KIRi3aZGuC0WVZRnfrRQQjXVAe@peace.mahoroba.org [2001:200:301:0:200:f8ff:fe05:3eae]) by mail.mahoroba.org (8.11.1/8.11.1/chaos) with ESMTP/inet6 id e9SJtE907447; Sun, 29 Oct 2000 04:55:14 +0900 (JST) (envelope-from ume@mahoroba.org) Date: Sun, 29 Oct 2000 04:55:13 +0900 (JST) Message-Id: <20001029.045513.104066484.ume@mahoroba.org> To: jkh@winston.osd.bsdi.com Cc: jruigrok@via-net-works.nl, freebsd-current@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: new rc.network6 and rc.firewall6 From: Hajimu UMEMOTO In-Reply-To: <82990.972178713@winston.osd.bsdi.com> References: <82990.972178713@winston.osd.bsdi.com> X-Mailer: xcite1.20> Mew version 1.95b38 on Emacs 20.7 / Mule 4.0 =?iso-2022-jp?B?KBskQjJWMWMbKEIp?= X-PGP-Public-Key: http://www.imasy.org/~ume/publickey.asc X-PGP-Fingerprint: 6B 0C 53 FC 5D D0 37 91 05 D0 B3 EF 36 9B 6A BC X-URL: http://www.imasy.org/~ume/ X-OS: FreeBSD 5.0-CURRENT Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >>>>> On Sat, 21 Oct 2000 18:38:33 -0700 >>>>> Jordan Hubbard said: jkh> Sounds good to me. My comments were, just to make it clear again, jkh> just food for thought and not out-and-out objections. If even 47 more jkh> files in /etc is what it takes to get IPv6 fully supported, then so be jkh> it. :) There are many discussion aboud having NetBSD style rc.d. However, I think it takes for a period of time. Once, I wish to commit my changes to be in time for 4.2-RELEASE. -- Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan ume@mahoroba.org ume@bisd.hitachi.co.jp ume@FreeBSD.org http://www.imasy.org/~ume/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 28 14:22:49 2000 Delivered-To: freebsd-net@freebsd.org Received: from winston.osd.bsdi.com (winston.osd.bsdi.com [204.216.27.229]) by hub.freebsd.org (Postfix) with ESMTP id 7DDC237B4C5; Sat, 28 Oct 2000 14:22:46 -0700 (PDT) Received: from winston.osd.bsdi.com (jkh@localhost [127.0.0.1]) by winston.osd.bsdi.com (8.11.1/8.9.3) with ESMTP id e9SLMQ462571; Sat, 28 Oct 2000 14:22:27 -0700 (PDT) (envelope-from jkh@winston.osd.bsdi.com) To: Hajimu UMEMOTO Cc: jruigrok@via-net-works.nl, freebsd-current@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: new rc.network6 and rc.firewall6 In-Reply-To: Message from Hajimu UMEMOTO of "Sun, 29 Oct 2000 04:55:13 +0900." <20001029.045513.104066484.ume@mahoroba.org> Date: Sat, 28 Oct 2000 14:22:26 -0700 Message-ID: <62568.972768146@winston.osd.bsdi.com> From: Jordan Hubbard Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > There are many discussion aboud having NetBSD style rc.d. However, I > think it takes for a period of time. > Once, I wish to commit my changes to be in time for 4.2-RELEASE. I think people were talking only about -current here anyway. A NetBSD style rc.d is certainly not planned for -stable. - Jordan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 28 14:24:42 2000 Delivered-To: freebsd-net@freebsd.org Received: from web1610.mail.yahoo.com (web1610.mail.yahoo.com [128.11.23.164]) by hub.freebsd.org (Postfix) with SMTP id 95C3037B4CF for ; Sat, 28 Oct 2000 14:24:34 -0700 (PDT) Received: (qmail 14617 invoked by uid 60001); 28 Oct 2000 21:32:38 -0000 Message-ID: <20001028213238.14616.qmail@web1610.mail.yahoo.com> Received: from [165.247.95.36] by web1610.mail.yahoo.com; Sat, 28 Oct 2000 14:32:38 PDT Date: Sat, 28 Oct 2000 14:32:38 -0700 (PDT) From: Jason Lin Subject: Need help with Freebsd pppoe server setup To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org i, I've followed the instructions for setting up a freebsd pppoe server found in the isp-wireless archive. http://isp-lists.isp-planet.com/isp-wireless/0008/msg00911.html I've also installed ICRadius(v.0.16), and made sure that it is working. http://icradius.hislora.com.au But I am getting the following error in the ppp log when i try to connect from a client machine using RASPPPOE software: ppp[]: Warning: Label pppoe-in rejected -direct connection: Configuration lable not found Here's my /ppp/ppp.conf file: #pppoe-in pppoe-in: allow users enable chap enable pap allow mode direct set mru 1492 set mtu 1492 set speed sync enable lqr set ifaddr 10.0.0.1 10.0.0.2-10.0.0.10 accept dns load server set radius /etc/raddb/radius.conf 10.0.0.1 is the IP Addr of the pppoe interface /etc/raddb/radius.conf is the radius.conf file for ICRadius Here's my radius.conf #/etc/raddb/radius.conf server localhost login root password mypassword radius_db radius acctcheck_table radacct authreply_table radreply groupcheck_table radgroupcheck groupreply_table radgroupreply usergroup_table usergroup realms_table realms realmgroup_table realmgroup sensitiveusername off deletestalesession on sqltrace off TIA jason jason@freesco.org __________________________________________________ Do You Yahoo!? Yahoo! Messenger - Talk while you surf! It's FREE. http://im.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 28 14:39:21 2000 Delivered-To: freebsd-net@freebsd.org Received: from gw.nectar.com (gw.nectar.com [208.42.49.153]) by hub.freebsd.org (Postfix) with ESMTP id 51D2537B479 for ; Sat, 28 Oct 2000 14:39:18 -0700 (PDT) Received: from hamlet.nectar.com (hamlet.nectar.com [10.0.1.102]) by gw.nectar.com (Postfix) with ESMTP id 096D7193F1 for ; Sat, 28 Oct 2000 16:39:09 -0500 (CDT) Received: (from nectar@localhost) by hamlet.nectar.com (8.11.1/8.9.3) id e9SLdAF77433 for freebsd-net@freebsd.org; Sat, 28 Oct 2000 16:39:10 -0500 (CDT) (envelope-from nectar@spawn.nectar.com) Date: Sat, 28 Oct 2000 16:39:10 -0500 From: "Jacques A. Vidrine" To: freebsd-net@freebsd.org Subject: getaddrinfo and the UNIX domain Message-ID: <20001028163909.A77420@hamlet.nectar.com> Mail-Followup-To: "Jacques A. Vidrine" , freebsd-net@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i X-Url: http://www.nectar.com/ Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Calling getaddrinfo like the following: memset(&hints, 0, sizeof(hints)); hints.ai_flags = AI_PASSIVE; hints.ai_family = PF_UNSPEC; hints.ai_socktype = SOCK_STREAM; getaddrinfo(NULL, "/tmp/some-socket", &hints, &res); will result in `servname not supported for ai_socktype'. How should this work? OpenLDAP 2.x uses getaddrinfo in this fashion. I note that calling getaddrinfo with ai_family = PF_UNIX also fails. Thanks, -- Jacques Vidrine / n@nectar.com / jvidrine@verio.net / nectar@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 28 20: 8:14 2000 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id 033B237B4C5 for ; Sat, 28 Oct 2000 20:08:12 -0700 (PDT) Received: from localhost ([3ffe:501:100f:13ff::e]) by shuttle.wide.toshiba.co.jp (8.9.1+3.1W/8.9.1) with ESMTP id LAA10297; Sun, 29 Oct 2000 11:53:09 +0900 (JST) Date: Sun, 29 Oct 2000 12:07:35 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: "Jacques A. Vidrine" Cc: freebsd-net@FreeBSD.ORG Subject: Re: getaddrinfo and the UNIX domain In-Reply-To: In your message of "Sat, 28 Oct 2000 16:39:10 -0500" <20001028163909.A77420@hamlet.nectar.com> References: <20001028163909.A77420@hamlet.nectar.com> User-Agent: Wanderlust/2.3.0 (Roam) Emacs/20.7 Mule/4.0 (HANANOEN) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.13.7 - "Awazu") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 35 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >>>>> On Sat, 28 Oct 2000 16:39:10 -0500, >>>>> "Jacques A. Vidrine" said: > Calling getaddrinfo like the following: > memset(&hints, 0, sizeof(hints)); > hints.ai_flags = AI_PASSIVE; > hints.ai_family = PF_UNSPEC; > hints.ai_socktype = SOCK_STREAM; > getaddrinfo(NULL, "/tmp/some-socket", &hints, &res); > will result in `servname not supported for ai_socktype'. > How should this work? > OpenLDAP 2.x uses getaddrinfo in this fashion. > I note that calling getaddrinfo with ai_family = PF_UNIX also fails. As far as I know, current implementation of getaddrinfo() supports PF_INET and PF_INET6 only. I'm not 100% sure about the situation of the latest FreeBSD implemenation, but this is the case at least for the latest one of KAME's implementation (on which FreeBSD one is based). By the way, in my understanding, if getaddrinfo supported PF_UNIX, it would take the filename as its 1st argument: getaddrinfo("/tmp/some-socket", NULL, &hints, &res); JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message