From owner-freebsd-questions@FreeBSD.ORG Tue Oct 15 08:35:02 2013 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id C5ED0AEF for ; Tue, 15 Oct 2013 08:35:02 +0000 (UTC) (envelope-from kraduk@gmail.com) Received: from mail-qa0-x230.google.com (mail-qa0-x230.google.com [IPv6:2607:f8b0:400d:c00::230]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 88D5B2CA7 for ; Tue, 15 Oct 2013 08:35:02 +0000 (UTC) Received: by mail-qa0-f48.google.com with SMTP id k4so2065209qaq.14 for ; Tue, 15 Oct 2013 01:35:01 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=vuMsPN28QM8eLNQ4wmzYkKgsMl13fcVdJBf0v2kkc/s=; b=CFXX75AUDzDjBfmYxXimK/ieTKFCZUWY1Q7Qb9BsPPCcKC+uPe78vG2zFtX88wdo4y +6TmdvQBCkTZoYAK/N0unN7d9VotmxfMAQIIswWxKYYuvLoLiWgyf5FyG0Fonp691Xre tIXp3GcaFjl2F6ckDlFmxyUOsBEQDmQCytLejnSmCVvcl7IMMUAX7HThcJg17ZjlQCdL nKGVEAZ4Tn8mZ3bcaG7kBddJAd29XMhL8vTS5+3Jw+NCr4VbJeCeL0ZyFHqhWNCTsdPZ +F2cKMfOeHPgD9NFmCG9RpAhWnX6l/0eRDXHFRem08gVJc6rvDoCeRynGhu2oZ2vT45E tUWQ== MIME-Version: 1.0 X-Received: by 10.49.127.195 with SMTP id ni3mr44005080qeb.21.1381826101736; Tue, 15 Oct 2013 01:35:01 -0700 (PDT) Received: by 10.224.55.77 with HTTP; Tue, 15 Oct 2013 01:35:01 -0700 (PDT) In-Reply-To: References: Date: Tue, 15 Oct 2013 09:35:01 +0100 Message-ID: Subject: Re: Tunnelling between Cisco and Freebsd From: krad To: Monah Baki Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.14 Cc: FreeBSD Questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Oct 2013 08:35:02 -0000 check the tunnel status as when i create on by default its not up # ifconfig gre0 gre0: flags=9010 metric 0 mtu 1476 nd6 options=21 to fix # ifconfig gre0 up # ifconfig gre0 gre0: flags=9011 metric 0 mtu 1476 inet6 fe80::a00:27ff:fe7d:7332%gre0 prefixlen 64 scopeid 0x6 nd6 options=21 If you still have issues, you may need to specify the public ip on the tunnel config. I seem to remember having to do this years ago with some gif tunnels, but it may well be wrong now, maybe someone else can comment on this eg ifconfig gre0 tunnel 107.48.4.129 187.255.253.1 You might have to bind the public ip to your loopback to make this work. On 13 October 2013 21:25, Monah Baki wrote: > Hi all, > > I am running FreeBSD 9.2. The FreeBSD server in on a private IP, > 192.168.1.6. I have only one public IP and that's on my verizon firewall > configured to port forward to my FreeBSD server. > > I do not control the Cisco device, but here is the config that was sent to > me: > > > > interface Tunnel10 > ip address 10.1.1.1 255.255.255.252 > tunnel source GigabitEthernet0/0/2.1 (187.255.253.1) > tunnel destination 107.48.4.129 > > Here is what I did on my FreeBSD: > ifconfig gre0 create > ifconfig gre0 10.1.1.2 10.1.1.1 netmask 255.255.255.252 > ifconfig gre0 tunnel 192.168.1.6 187.255.253.1 > > > Now I can ping 10.1.1.1 (his end) > > But when I try to add a static route for his subnets via his tunnel IP, it > fails > > > root@devsrvr:/root # route add -net > 187.255.252.0/2210.1.1.1 > route: writing to routing socket: Network is unreachable > add net 187.255.252.0 : gateway 10.1.1.1: Network is > unreachable > > > Am I missing anything? It's my first time configuring a Tunnel. > > > Thanks > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" >