From owner-freebsd-net  Tue Jun  4 14: 1:21 2002
Delivered-To: freebsd-net@freebsd.org
Received: from InterJet.dellroad.org (adsl-63-194-81-26.dsl.snfc21.pacbell.net [63.194.81.26])
	by hub.freebsd.org (Postfix) with ESMTP id D7E8137B400
	for <net@FreeBSD.ORG>; Tue,  4 Jun 2002 14:01:04 -0700 (PDT)
Received: from arch20m.dellroad.org (arch20m.dellroad.org [10.1.1.20])
	by InterJet.dellroad.org (8.9.1a/8.9.1) with ESMTP id NAA88717;
	Tue, 4 Jun 2002 13:45:11 -0700 (PDT)
Received: (from archie@localhost)
	by arch20m.dellroad.org (8.11.6/8.11.6) id g54Ki4K52234;
	Tue, 4 Jun 2002 13:44:04 -0700 (PDT)
	(envelope-from archie)
From: Archie Cobbs <archie@dellroad.org>
Message-Id: <200206042044.g54Ki4K52234@arch20m.dellroad.org>
Subject: Re: netgraph documentation?
In-Reply-To: <3CFD044C.3080300@isi.edu> "from Lars Eggert at Jun 4, 2002 11:17:48
 am"
To: Lars Eggert <larse@ISI.EDU>
Date: Tue, 4 Jun 2002 13:44:04 -0700 (PDT)
Cc: net@FreeBSD.ORG
X-Mailer: ELM [version 2.4ME+ PL88 (25)]
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=US-ASCII
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Lars Eggert writes:
> > I don't think you can have a point-to-point interface who's
> > remote IP address is also local to your box. In other words,
> > this may not work on the same machine but it might work if
> > you use two different machines... can you try that?
> 
> The addresses of the point-to-point interface aren't local to the box, 
> the encapsulation ones are. I do this all the time with gifs and tuns, 
> and it works fine.
> 
> Anyway, I tried it with two machines, and I see the same thing happening:
> 
> Ping packets originating on the client make it over the TCP tunnel, and 
> the server sends something back (ICMP reply, I from the looks of it). 
> However, the data gets dropped somewhere after the bpf dumps the packet.
> 
> Ping packets originating on the server never enter the tunnel, and I see 
> "ping: sendto: Socket is not connected".

Ah yes, now I remember.. the problem is that the listening socket
is not the same socket as the socket for the new connection. E.g.,
notice the way accept(2) works.

What you want to do is not supported in -stable. You can try applying
these patches from -current:

	sys/netgraph/ng_ksocket.c	rev. 1.20
	sys/netgraph/ng_ksocket.h	rev. 1.5

-Archie

__________________________________________________________________________
Archie Cobbs     *     Packet Design     *     http://www.packetdesign.com

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message