From owner-freebsd-questions Fri Feb 21 10:12:22 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2606A37B401 for ; Fri, 21 Feb 2003 10:12:20 -0800 (PST) Received: from mrelay-i2.mesd.k12.or.us (dns2i.mesd.k12.or.us [198.236.68.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4929F43F3F for ; Fri, 21 Feb 2003 10:12:19 -0800 (PST) (envelope-from david@axisintegrated.com) Received: from mail.mesd.k12.or.us (webmail.mesd.k12.or.us [198.236.66.2]) by mrelay-i2.mesd.k12.or.us (Postfix) with ESMTP id D3D036F4BB for ; Fri, 21 Feb 2003 10:12:18 -0800 (PST) Received: from axisintegrated.com (dcramblett.mesd.k12.or.us [198.236.66.199]) by mail.mesd.k12.or.us (Postfix) with ESMTP id 95A0F2EA9D4 for ; Fri, 21 Feb 2003 10:12:18 -0800 (PST) Message-ID: <3E566C4B.8090801@axisintegrated.com> Date: Fri, 21 Feb 2003 10:13:31 -0800 From: David Cramblett User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20030211 X-Accept-Language: en-us, en MIME-Version: 1.0 To: "FreeBSD-Questions@freebsd.org" Subject: Re: gif tunnels? References: In-Reply-To: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I have a similar configuration, what are your internal router/firewall ip's? From your diagram, I would think something like 10.1.0.1 and 10.2.0.1 ?? so where you have: # ifconfig gif0 inet 10.255.255.1 10.255.255.2 netmask 255.255.255.252 My config would have: # ifconfig gif0 10.1.0.1 10.2.0.1 netmask 0xffffffff Hope that helps, I run VPN tunnels to two separate boxes with similar configurations, forming kinda of a triangle VPN if you will. David Aaron Burke wrote: >>-----Original Message----- >>From: owner-freebsd-questions@FreeBSD.ORG >>[mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of >>Krassimir Slavchev >>Sent: Friday, February 21, 2003 12:21 AM >>To: questions@FreeBSD.ORG >>Subject: gif tunnels? >> >> >>Hello All, >> >>I have: >> >> Private Net 1 Firewall 1 Firewall 2 Private Net 2 >>--------------- ------------ ------------ --------------- >>| 10.1.0.0/24 |----| FBSD 4.7 |--//--| FBSD 4.7 |----| 10.2.0.0/24 | >>--------------- ------------ ------------ --------------- >> |______tunnel______| >> >>I want to configure tunnel between "Private Net 1" and "Private Net 2" >>and >>can not get tunnel to work when Public IP of "Firewall 1" and "Firewall >>2" are >>from same subnet. If public IPs of my firewalls are from different >>subnets all works fine. >> >>On "Firewall 1" I do: >># ifconfig gif0 create >># gifconfig gif0 x.y.z.1 x.y.z.2 >># ifconfig gif0 inet 10.255.255.1 10.255.255.2 netmask 255.255.255.252 >># route add -net 10.2.0.0/24 10.255.255.2 >> >>On "Firewall 2" I do: >># ifconfig gif0 create >># gifconfig gif0 x.y.z.2 x.y.z.1 >># ifconfig gif0 inet 10.255.255.2 10.255.255.1 netmask 255.255.255.252 >># route add -net 10.1.0.0/24 10.255.255.1 >> >>Is there any way to get this to work? > > > You may want to check out http://www.nullplusone.com/vpn .It describes > a slightly different situation. Here there is a link from the 192.168.0.0/24 > to 10.1.1.0/24. > > >>Thanks in advance > > Hope this site is some help > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message -- David Cramblett To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message