From owner-freebsd-net@FreeBSD.ORG Sun Nov 13 10:56:54 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BA90916A41F for ; Sun, 13 Nov 2005 10:56:54 +0000 (GMT) (envelope-from silby@silby.com) Received: from relay00.pair.com (relay00.pair.com [209.68.5.9]) by mx1.FreeBSD.org (Postfix) with SMTP id 3D94043D46 for ; Sun, 13 Nov 2005 10:56:54 +0000 (GMT) (envelope-from silby@silby.com) Received: (qmail 79284 invoked from network); 13 Nov 2005 10:56:53 -0000 Received: from unknown (HELO localhost) (unknown) by unknown with SMTP; 13 Nov 2005 10:56:53 -0000 X-pair-Authenticated: 209.68.2.70 Date: Sun, 13 Nov 2005 04:56:51 -0600 (CST) From: Mike Silbersack To: freebsd-net@freebsd.org In-Reply-To: <20051112011829.J9033@odysseus.silby.com> Message-ID: <20051113045023.V757@odysseus.silby.com> References: <20051112011829.J9033@odysseus.silby.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: Re: Testing with a Cisco router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 13 Nov 2005 10:56:54 -0000 On Sat, 12 Nov 2005, Mike Silbersack wrote: > Does anyone have a Cisco router running an up to date version of IOS that > they would be willing to run some tests on for me? I'm running tests vs the > TCP stacks of various operating systems for my eurobsdcon presentation, and > IOS is the one OS I can't seem to download and install inside VMWare. :) Thanks to all who offered to help, too many people responded for me to reply to each person individually. It turns out that a spare router running IOS 12.4 is only a few feet from a cluster of machines already set up for network testing purposes, so I'm going to give a go at that one. Once again, thanks for all the offers. Mike "Silby" Silbersack From owner-freebsd-net@FreeBSD.ORG Sun Nov 13 18:01:41 2005 Return-Path: X-Original-To: freebsd-net@FreeBSD.ORG Delivered-To: freebsd-net@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DB3D416A41F for ; Sun, 13 Nov 2005 18:01:41 +0000 (GMT) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (lurza.secnetix.de [83.120.8.8]) by mx1.FreeBSD.org (Postfix) with ESMTP id 40E9A43D49 for ; Sun, 13 Nov 2005 18:01:41 +0000 (GMT) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (hmdazw@localhost [127.0.0.1]) by lurza.secnetix.de (8.13.1/8.13.1) with ESMTP id jADI1dgS061200 for ; Sun, 13 Nov 2005 19:01:40 +0100 (CET) (envelope-from oliver.fromme@secnetix.de) Received: (from olli@localhost) by lurza.secnetix.de (8.13.1/8.13.1/Submit) id jADI1dKI061199; Sun, 13 Nov 2005 19:01:39 +0100 (CET) (envelope-from olli) Date: Sun, 13 Nov 2005 19:01:39 +0100 (CET) Message-Id: <200511131801.jADI1dKI061199@lurza.secnetix.de> From: Oliver Fromme To: freebsd-net@FreeBSD.ORG In-Reply-To: <437500FD.6080403@lovetemple.net> X-Newsgroups: list.freebsd-net User-Agent: tin/1.5.4-20000523 ("1959") (UNIX) (FreeBSD/4.11-RELEASE (i386)) Cc: Subject: Re: All-in-one box X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: freebsd-net@FreeBSD.ORG List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 13 Nov 2005 18:01:42 -0000 Karel Miklav wrote: > I didn't know I'm poking into such an exotic area. I'll probalbly go > the common route and then hide all the network gizmos with the cable > nest into a carton box or something :) Nowadays there are 5-port switches which are so small you can easily put them inside the computer case (let the cables go through some appropriate hole in the case). They are also very cheap. With a little bit of tweaking and soldering, you might even be able to connect it to the computer's power supply, so you don't need an additional external power supply and power socket. But don't try this if you're not familiar with voltages and how power supplies work, or if you're unsure which end of the soldering iron is the hot one. ;-) Best regards Oliver -- Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd Any opinions expressed in this message may be personal to the author and may not necessarily reflect the opinions of secnetix in any way. I suggested holding a "Python Object Oriented Programming Seminar", but the acronym was unpopular. -- Joseph Strout From owner-freebsd-net@FreeBSD.ORG Sun Nov 13 18:13:11 2005 Return-Path: X-Original-To: freebsd-net@FreeBSD.ORG Delivered-To: freebsd-net@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7942F16A41F for ; Sun, 13 Nov 2005 18:13:11 +0000 (GMT) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (lurza.secnetix.de [83.120.8.8]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1E2D943D67 for ; Sun, 13 Nov 2005 18:13:04 +0000 (GMT) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (pahevu@localhost [127.0.0.1]) by lurza.secnetix.de (8.13.1/8.13.1) with ESMTP id jADID3nK061723 for ; Sun, 13 Nov 2005 19:13:04 +0100 (CET) (envelope-from oliver.fromme@secnetix.de) Received: (from olli@localhost) by lurza.secnetix.de (8.13.1/8.13.1/Submit) id jADID3bE061722; Sun, 13 Nov 2005 19:13:03 +0100 (CET) (envelope-from olli) Date: Sun, 13 Nov 2005 19:13:03 +0100 (CET) Message-Id: <200511131813.jADID3bE061722@lurza.secnetix.de> From: Oliver Fromme To: freebsd-net@FreeBSD.ORG In-Reply-To: X-Newsgroups: list.freebsd-net User-Agent: tin/1.5.4-20000523 ("1959") (UNIX) (FreeBSD/4.11-RELEASE (i386)) Cc: Subject: Re: FreeBSD on embedded systems X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: freebsd-net@FreeBSD.ORG List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 13 Nov 2005 18:13:11 -0000 Ivo Vachkov wrote: > 2005/11/12, Poul-Henning Kamp : > > Dankoweit writes: > > > > > My question is now: is there an overview on which embedded systems > > > FreeBSD runs? > > It does really matters what do you mean by "embedded system". I > suppose you're interested in the form factor of i386 computers. > > > Typically in this space, people select hardware based on I/O > > requirements and there is plenty to pick at. > > > > FreeBSD runs on pretty much anything with an i386 compatible CPU, > > and the soekris is merely the hackers favourite. > > > > I have experience running FreeBSD (4-STABLE and up) on VIA embedded > main boards. More info: > - http://www.viaembedded.com/index.jsp > I also think you'll find the following links interesting: > - http://www.tri-m.com/products/cpu.html#3_5 > - http://www.tri-m.com/products/cpu.html#5_25 > Lots of hardware to choose from, different form factors, on board i/o > ports, etc ... I don't know if this is what you're looking for, but I'm running FreeBSD 6 successuflly on a VIA EPIA PD-10000. That's a Mini-ITX mainboard (6.7" x 6.7") with 1GHz VIA C3-Nehemiah processor. All components are completely supported by FreeBSD, including the hardware random number generator and the hardware crypto accelerator, which is used by IPSEC and OpenSSL. This little box is now my DSL router (it has 2 NICs onboard and can be upgraded via a standard PCI slot). It also has six (!) USB2 ports, four (!) serial ports, one parallel, two UDMA133-capable PATA channels (for up to four devices), onboard graphics and sound. http://www.secnetix.de/~olli/dmesg/epia/ There are various variants of the EPIA boards, with varying onboard components, processor speeds, passive and active cooling etc. Furthermore, I have FreeBSD 4-stable installed on an AdvanTech SBC (single-board computer) with 233 MHz Geode processor. The board is just 4" x 6" (about the size of a 3.5" hard disk). I use this sweet little thing as a stand-alone mp3 player. It's running diskless (boots from a CompactFlash card and mounts data via NFS). http://www.secnetix.de/~olli/dmesg/cantaro/ Best regards Oliver -- Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd Any opinions expressed in this message may be personal to the author and may not necessarily reflect the opinions of secnetix in any way. > Can the denizens of this group enlighten me about what the > advantages of Python are, versus Perl ? "python" is more likely to pass unharmed through your spelling checker than "perl". -- An unknown poster and Fredrik Lundh From owner-freebsd-net@FreeBSD.ORG Sun Nov 13 23:03:12 2005 Return-Path: X-Original-To: freebsd-net@FreeBSD.ORG Delivered-To: freebsd-net@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 017B016A420 for ; Sun, 13 Nov 2005 23:03:12 +0000 (GMT) (envelope-from fbsd-net@mawer.org) Received: from mail11.syd.optusnet.com.au (mail11.syd.optusnet.com.au [211.29.132.192]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7215D43D46 for ; Sun, 13 Nov 2005 23:03:11 +0000 (GMT) (envelope-from fbsd-net@mawer.org) Received: from [127.0.0.1] (c220-237-120-88.thorn1.nsw.optusnet.com.au [220.237.120.88]) by mail11.syd.optusnet.com.au (8.12.11/8.12.11) with ESMTP id jADN33a3018081 for ; Mon, 14 Nov 2005 10:03:09 +1100 Message-ID: <4377C634.8050203@mawer.org> Date: Mon, 14 Nov 2005 10:03:16 +1100 From: Antony Mawer User-Agent: Thunderbird 1.5 (Windows/20051025) MIME-Version: 1.0 To: freebsd-net@FreeBSD.ORG References: <200511131801.jADI1dKI061199@lurza.secnetix.de> In-Reply-To: <200511131801.jADI1dKI061199@lurza.secnetix.de> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Re: All-in-one box X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 13 Nov 2005 23:03:12 -0000 On 14/11/2005 5:01 AM, Oliver Fromme wrote: > Karel Miklav wrote: > > I didn't know I'm poking into such an exotic area. I'll probalbly go > > the common route and then hide all the network gizmos with the cable > > nest into a carton box or something :) > > Nowadays there are 5-port switches which are so small > you can easily put them inside the computer case (let > the cables go through some appropriate hole in the case). > They are also very cheap. > > With a little bit of tweaking and soldering, you might > even be able to connect it to the computer's power > supply, so you don't need an additional external power > supply and power socket. But don't try this if you're > not familiar with voltages and how power supplies work, > or if you're unsure which end of the soldering iron is > the hot one. ;-) For that matter, I've seen some cheap 5-port switches that can be powered via a USB or a PS2 cable. See here: http://www.retractacable.com/product_info.php?products_id=143 Cheers Antony From owner-freebsd-net@FreeBSD.ORG Mon Nov 14 00:41:52 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A17DB16A41F for ; Mon, 14 Nov 2005 00:41:52 +0000 (GMT) (envelope-from baldur@foo.is) Received: from gremlin.foo.is (gremlin.foo.is [194.105.250.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 417F943D46 for ; Mon, 14 Nov 2005 00:41:51 +0000 (GMT) (envelope-from baldur@foo.is) Received: from 127.0.0.1 (localhost.foo.is [127.0.0.1]) by injector.foo.is (Postfix) with SMTP id 7D25428465 for ; Mon, 14 Nov 2005 00:41:48 +0000 (GMT) Received: by gremlin.foo.is (Postfix, from userid 1000) id 3E45028441; Mon, 14 Nov 2005 00:41:45 +0000 (GMT) Date: Mon, 14 Nov 2005 00:41:45 +0000 From: Baldur Gislason To: freebsd-net@freebsd.org Message-ID: <20051114004145.GA97528@gremlin.foo.is> User-Agent: Mutt/1.4.2.1i X-Spam-Checker-Version: SpamAssassin 3.0.4 (2005-06-05) on gremlin.foo.is X-Spam-Level: X-Spam-Status: No, score=-5.8 required=6.0 tests=ALL_TRUSTED,BAYES_00, HOT_NASTY autolearn=ham version=3.0.4 X-Sanitizer: Foo MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Disposition: inline Subject: zebra - ospfd and gif0 problems X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 00:41:52 -0000 I'm trying to setup a small VPN with IPIP tunnels and using Zebra with OSPF to do the routing. However, ospfd doesn't seem to recognise the gif0 interface. tesla# sho ip osp int fxp0 is up, line protocol is up Internet Address 192.168.1.50/24, Area 0.0.0.0 Router ID 192.168.1.50, Network Type BROADCAST, Cost: 10 Transmit Delay is 1 sec, State DR, Priority 1 Designated Router (ID) 192.168.1.50, Interface Address 192.168.1.50 No backup designated router on this network Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5 Hello due in 00:00:02 Neighbor Count is 0, Adjacent neighbor count is 0 vlan0 is up, line protocol is up Internet Address 192.168.2.50/24, Area 0.0.0.0 Router ID 192.168.1.50, Network Type BROADCAST, Cost: 10 Transmit Delay is 1 sec, State DR, Priority 1 Designated Router (ID) 192.168.1.50, Interface Address 192.168.2.50 No backup designated router on this network Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5 Hello due in 00:00:09 Neighbor Count is 0, Adjacent neighbor count is 0 lo0 is up, line protocol is up OSPF not enabled on this interface gif0 is up, line protocol is up OSPF not enabled on this interface And here's the ospf configuration: router ospf ospf router-id 192.168.1.50 network 192.168.1.0/24 area 0.0.0.0 network 192.168.2.0/24 area 0.0.0.0 network 192.168.192.0/30 area 0.0.0.0 neighbor 192.168.192.1 And ifconfig of gif0 gif0: flags=8051 mtu 1280 tunnel inet xxx.xxx.xxx.xxx --> zzz.zzz.zzz.zzz inet 192.168.192.2 --> 192.168.192.1 netmask 0xfffffffc inet6 fe80::210:4bff:fecc:fe38%gif0 prefixlen 64 scopeid 0xc Is anyone running ospfd on freebsd with point to point interfaces? Baldur From owner-freebsd-net@FreeBSD.ORG Mon Nov 14 00:51:29 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5EB8416A41F for ; Mon, 14 Nov 2005 00:51:29 +0000 (GMT) (envelope-from tillman@seekingfire.com) Received: from mail.seekingfire.com (caliban.seekingfire.com [24.72.123.45]) by mx1.FreeBSD.org (Postfix) with ESMTP id 293F643D62 for ; Mon, 14 Nov 2005 00:51:24 +0000 (GMT) (envelope-from tillman@seekingfire.com) Received: by mail.seekingfire.com (Postfix, from userid 500) id CAC9E4B4; Sun, 13 Nov 2005 18:51:23 -0600 (CST) Date: Sun, 13 Nov 2005 18:51:23 -0600 From: Tillman Hodgson To: freebsd-net@freebsd.org Message-ID: <20051114005123.GG50645@seekingfire.com> References: <20051114004145.GA97528@gremlin.foo.is> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051114004145.GA97528@gremlin.foo.is> X-Habeas-SWE-1: winter into spring X-Habeas-SWE-2: brightly anticipated X-Habeas-SWE-3: like Habeas SWE (tm) X-Habeas-SWE-4: Copyright 2002 Habeas (tm) X-Habeas-SWE-5: Sender Warranted Email (SWE) (tm). The sender of this X-Habeas-SWE-6: email in exchange for a license for this Habeas X-Habeas-SWE-7: warrant mark warrants that this is a Habeas Compliant X-Habeas-SWE-8: Message (HCM) and not spam. Please report use of this X-Habeas-SWE-9: mark in spam to . X-GPG-Key-ID: 828AFC7B X-GPG-Fingerprint: 5584 14BA C9EB 1524 0E68 F543 0F0A 7FBC 828A FC7B X-GPG-Key: http://www.seekingfire.com/personal/gpg_key.asc X-Urban-Legend: There is lots of hidden information in headers X-Tillman-rules: yes he does User-Agent: Mutt/1.5.11 Subject: Re: zebra - ospfd and gif0 problems X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 00:51:29 -0000 On Mon, Nov 14, 2005 at 12:41:45AM +0000, Baldur Gislason wrote: > I'm trying to setup a small VPN with IPIP tunnels and using Zebra with OSPF to do the routing. > However, ospfd doesn't seem to recognise the gif0 interface. > gif0 is up, line protocol is up > OSPF not enabled on this interface > Is anyone running ospfd on freebsd with point to point interfaces? I'm using Quagga with OpenVPN tunnels, which is a similar situation. Do you have a stanza like this in your osfpd.conf describing the gif0 interface? interface tun2 ip ospf network point-to-point -T -- I love the way Microsoft follows standards. In much the same manner that fish follow migrating caribou. -- A.S.R. quote (Paul Tomblin) From owner-freebsd-net@FreeBSD.ORG Mon Nov 14 03:58:07 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 47A9B16A420; Mon, 14 Nov 2005 03:58:07 +0000 (GMT) (envelope-from ganbold@micom.mng.net) Received: from publicd.ub.mng.net (publicd.ub.mng.net [202.179.0.88]) by mx1.FreeBSD.org (Postfix) with ESMTP id 52C1243D55; Mon, 14 Nov 2005 03:58:05 +0000 (GMT) (envelope-from ganbold@micom.mng.net) Received: from [202.179.0.164] (helo=ganbold.micom.mng.net) by publicd.ub.mng.net with esmtpa (Exim 4.53 (FreeBSD)) id 1EbVXm-000ASV-Hi; Mon, 14 Nov 2005 12:02:10 +0800 Message-Id: <6.2.1.2.2.20051114114343.04848eb0@202.179.0.80> X-Mailer: QUALCOMM Windows Eudora Version 6.2.1.2 Date: Mon, 14 Nov 2005 11:57:58 +0800 To: freebsd-net@freebsd.org From: Ganbold Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Cc: glebius@FreeBSD.org Subject: mpd pppoe users log in problem X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 03:58:07 -0000 Hi, I have some problem with my mpd PPPoe server in FreeBSD 6.0. Everything is working fine except some problems. I have several users connected to 2 DSLAMs. Users, who is connected to first DSLAM, are working fine, they can log in. However users, who is connected to second DSLAM, are having problem logging in. They can't log in, however after restarting mpd problem goes away. I see errors in mpd.log something like: Nov 14 10:15:12 gw mpd: [pppoe10] LCP: SendConfigReq #128 Nov 14 10:15:12 gw mpd: PROTOCOMP Nov 14 10:15:12 gw mpd: MRU 1492 Nov 14 10:15:12 gw mpd: MAGICNUM 4afa9f5a Nov 14 10:15:12 gw mpd: AUTHPROTO PAP Nov 14 10:15:14 gw mpd: [pppoe10] LCP: rec'd Configure Reject #127 link 0 (Ack-Sent) Nov 14 10:15:08 gw mpd: [pppoe10] LCP: Up event Nov 14 10:15:08 gw mpd: [pppoe10] LCP: state change Starting --> Req-Sent Nov 14 10:15:08 gw mpd: [pppoe10] LCP: phase shift DEAD --> ESTABLISH Nov 14 10:15:08 gw mpd: [pppoe10] LCP: SendConfigReq #126 Nov 14 10:15:08 gw mpd: PROTOCOMP Nov 14 10:15:08 gw mpd: MRU 1492 Nov 14 10:15:08 gw mpd: MAGICNUM 4afa9f5a Nov 14 10:15:08 gw mpd: AUTHPROTO PAP Nov 14 10:15:10 gw mpd: [pppoe10] LCP: SendConfigReq #127 Nov 14 10:15:10 gw mpd: PROTOCOMP Nov 14 10:15:10 gw mpd: MRU 1492 Nov 14 10:15:10 gw mpd: MAGICNUM 4afa9f5a Nov 14 10:15:10 gw mpd: AUTHPROTO PAP Nov 14 10:15:11 gw mpd: [pppoe10] LCP: rec'd Configure Request #189 link 0 (Req-Sent) Nov 14 10:15:11 gw mpd: MRU 1492 Nov 14 10:15:11 gw mpd: [pppoe10] LCP: SendConfigAck #189 Nov 14 10:15:11 gw mpd: MRU 1492 Nov 14 10:15:11 gw mpd: [pppoe10] LCP: state change Req-Sent --> Ack-Sent Nov 14 10:15:11 gw mpd: [pppoe10] LCP: rec'd Configure Reject #126 link 0 (Ack-Sent) Nov 14 10:15:11 gw mpd: Wrong id#, expecting 127 Nov 14 10:15:12 gw mpd: [pppoe10] LCP: SendConfigReq #128 Nov 14 10:15:12 gw mpd: PROTOCOMP Nov 14 10:15:12 gw mpd: MRU 1492 Nov 14 10:15:12 gw mpd: MAGICNUM 4afa9f5a Nov 14 10:15:12 gw mpd: AUTHPROTO PAP Nov 14 10:15:14 gw mpd: [pppoe10] LCP: rec'd Configure Reject #127 link 0 (Ack-Sent) Nov 14 10:15:14 gw mpd: Wrong id#, expecting 128 Nov 14 10:15:14 gw mpd: [pppoe10] LCP: SendConfigReq #129 In the log it says LCP: "rec'd Configure Reject #127 link 0 (Ack-Sent), Wrong id#, expecting 128". Maybe I'm missing something in the mpd configuration. I appreciate if somebody help me to solve this problem. thanks, Ganbold My mpd config file: default: load server1 load server2 load server3 load server4 load server5 load server6 pppoe_standard: set bundle no multilink set bundle enable compression set bundle accept encryption set bundle max-logins 3 set bundle enable radius-acct set bundle enable radius-auth set iface idle 0 set iface disable on-demand set iface disable proxy-arp set iface enable tcpmssfix set iface mtu 1500 set iface route default set link type pppoe set link mtu 1500 set link no chap set link enable pap # set link keep-alive 60 180 set link keep-alive 10 60 set link max-redial -1 set link mtu 1492 set link latency 0 set link bandwidth 1224000 set ccp yes mpp-e40 set ccp yes mpp-e128 set ccp yes mpp-stateless set pppoe iface fxp1 set pppoe service "*" set pppoe disable originate set pppoe enable incoming set ipcp dns x.x.x.x set ipcp yes vjcomp set ipcp no vjcomp set radius server x.x.x.x 1812 1813 set radius timeout 10 set radius config /etc/ppp/radius.conf set radius retries 3 server1: new -i ng1 pppoe1 pppoe1 set ipcp ranges 192.168.5.2/32 192.168.5.128/25 load pppoe_standard server2: new -i ng2 pppoe2 pppoe2 set ipcp ranges 192.168.5.2/32 192.168.5.129/25 load pppoe_standard server3: new -i ng3 pppoe3 pppoe3 set ipcp ranges 192.168.5.2/32 192.168.5.130/25 load pppoe_standard server4: new -i ng4 pppoe4 pppoe4 set ipcp ranges 192.168.5.2/32 192.168.5.131/25 load pppoe_standard server5: new -i ng5 pppoe5 pppoe5 set ipcp ranges 192.168.5.2/32 192.168.5.132/25 load pppoe_standard server6: new -i ng6 pppoe6 pppoe6 set ipcp ranges 192.168.5.2/32 192.168.5.133/25 load pppoe_standard mpd.links file: pppoe1: set link type pppoe set pptp self 192.168.5.2 set pppoe enable incoming set pppoe disable originate pppoe2: set link type pppoe set pptp self 192.168.5.2 set pppoe enable incoming set pppoe disable originate pppoe3: set link type pppoe set pptp self 192.168.5.2 set pppoe enable incoming set pppoe disable originate pppoe4: set link type pppoe set pptp self 192.168.5.2 set pppoe enable incoming set pppoe disable originate pppoe5: set link type pppoe set pptp self 192.168.5.2 set pppoe enable incoming set pppoe disable originate pppoe6: set link type pppoe set pptp self 192.168.5.2 set pppoe enable incoming set pppoe disable originate From owner-freebsd-net@FreeBSD.ORG Mon Nov 14 09:07:30 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5EA4F16A41F for ; Mon, 14 Nov 2005 09:07:30 +0000 (GMT) (envelope-from baldur@foo.is) Received: from gremlin.foo.is (gremlin.foo.is [194.105.250.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9BCA343D73 for ; Mon, 14 Nov 2005 09:07:29 +0000 (GMT) (envelope-from baldur@foo.is) Received: from 127.0.0.1 (localhost.foo.is [127.0.0.1]) by injector.foo.is (Postfix) with SMTP id CD83D28465 for ; Mon, 14 Nov 2005 09:07:28 +0000 (GMT) Received: by gremlin.foo.is (Postfix, from userid 1000) id C33A128442; Mon, 14 Nov 2005 09:07:25 +0000 (GMT) Date: Mon, 14 Nov 2005 09:07:25 +0000 From: Baldur Gislason To: freebsd-net@freebsd.org Message-ID: <20051114090725.GC97528@gremlin.foo.is> User-Agent: Mutt/1.4.2.1i X-Spam-Checker-Version: SpamAssassin 3.0.4 (2005-06-05) on gremlin.foo.is X-Spam-Level: X-Spam-Status: No, score=-5.9 required=6.0 tests=ALL_TRUSTED,AWL,BAYES_00 autolearn=ham version=3.0.4 X-Sanitizer: Foo MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Disposition: inline Subject: Re: zebra - ospfd and gif0 problems X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 09:07:30 -0000 I do have a line like that for gif0, yes. I'll give Quagga a try I guess. Baldur >I'm using Quagga with OpenVPN tunnels, which is a similar situation. >Do you have a stanza like this in your osfpd.conf describing the gif0 >interface? >interface tun2 > ip ospf network point-to-point >-T >-- >I love the way Microsoft follows standards. In much the same manner that >fish follow migrating caribou. > -- A.S.R. quote (Paul Tomblin) From owner-freebsd-net@FreeBSD.ORG Mon Nov 14 11:02:32 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 62CA116A420 for ; Mon, 14 Nov 2005 11:02:32 +0000 (GMT) (envelope-from owner-bugmaster@freebsd.org) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1827543D45 for ; Mon, 14 Nov 2005 11:02:32 +0000 (GMT) (envelope-from owner-bugmaster@freebsd.org) Received: from freefall.freebsd.org (peter@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.3/8.13.3) with ESMTP id jAEB2VCl073786 for ; Mon, 14 Nov 2005 11:02:31 GMT (envelope-from owner-bugmaster@freebsd.org) Received: (from peter@localhost) by freefall.freebsd.org (8.13.3/8.13.1/Submit) id jAEB2Vmp073780 for freebsd-net@freebsd.org; Mon, 14 Nov 2005 11:02:31 GMT (envelope-from owner-bugmaster@freebsd.org) Date: Mon, 14 Nov 2005 11:02:31 GMT Message-Id: <200511141102.jAEB2Vmp073780@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: peter set sender to owner-bugmaster@freebsd.org using -f From: FreeBSD bugmaster To: freebsd-net@FreeBSD.org Cc: Subject: Current problem reports assigned to you X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 11:02:32 -0000 Current FreeBSD problem reports Critical problems Serious problems Non-critical problems S Submitted Tracker Resp. Description ------------------------------------------------------------------------------- o [2003/07/11] kern/54383 net [nfs] [patch] NFS root configurations wit o [2005/11/03] kern/88450 net SYN+ACK reports strange size of window 2 problems total. From owner-freebsd-net@FreeBSD.ORG Mon Nov 14 14:08:47 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 081DA16A41F for ; Mon, 14 Nov 2005 14:08:47 +0000 (GMT) (envelope-from baldur@foo.is) Received: from gremlin.foo.is (gremlin.foo.is [194.105.250.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 49A8D43D6D for ; Mon, 14 Nov 2005 14:08:42 +0000 (GMT) (envelope-from baldur@foo.is) Received: from 127.0.0.1 (localhost.foo.is [127.0.0.1]) by injector.foo.is (Postfix) with SMTP id 7131628446 for ; Mon, 14 Nov 2005 14:08:41 +0000 (GMT) Received: by gremlin.foo.is (Postfix, from userid 1000) id 3DACF28435; Mon, 14 Nov 2005 14:08:36 +0000 (GMT) Date: Mon, 14 Nov 2005 14:08:36 +0000 From: Baldur Gislason To: freebsd-net@freebsd.org Message-ID: <20051114140836.GD97528@gremlin.foo.is> References: <20051114090725.GC97528@gremlin.foo.is> In-Reply-To: <20051114090725.GC97528@gremlin.foo.is> User-Agent: Mutt/1.4.2.1i X-Spam-Checker-Version: SpamAssassin 3.0.4 (2005-06-05) on gremlin.foo.is X-Spam-Level: X-Spam-Status: No, score=-5.9 required=6.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham version=3.0.4 X-Sanitizer: Foo MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Disposition: inline Subject: Re: zebra - ospfd and gif0 problems X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 14:08:47 -0000 I installed quagga, it works right on my 4.11-STABLE box but not on my 5.4-STABLE box. Still doesn't want to work with gif0 Baldur On Mon, Nov 14, 2005 at 09:07:25AM +0000, Baldur Gislason wrote: > I do have a line like that for gif0, yes. > I'll give Quagga a try I guess. > > Baldur > > >I'm using Quagga with OpenVPN tunnels, which is a similar situation. > > >Do you have a stanza like this in your osfpd.conf describing the gif0 > >interface? > > >interface tun2 > > ip ospf network point-to-point > > >-T > > > >-- > >I love the way Microsoft follows standards. In much the same manner that > >fish follow migrating caribou. > > -- A.S.R. quote (Paul Tomblin) > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > From owner-freebsd-net@FreeBSD.ORG Mon Nov 14 14:12:43 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 97B6816A420 for ; Mon, 14 Nov 2005 14:12:43 +0000 (GMT) (envelope-from baldur@foo.is) Received: from gremlin.foo.is (gremlin.foo.is [194.105.250.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id E332B43D46 for ; Mon, 14 Nov 2005 14:12:42 +0000 (GMT) (envelope-from baldur@foo.is) Received: from 127.0.0.1 (localhost.foo.is [127.0.0.1]) by injector.foo.is (Postfix) with SMTP id 4670C28465 for ; Mon, 14 Nov 2005 14:12:42 +0000 (GMT) Received: by gremlin.foo.is (Postfix, from userid 1000) id CB0ED28446; Mon, 14 Nov 2005 14:12:38 +0000 (GMT) Date: Mon, 14 Nov 2005 14:12:38 +0000 From: Baldur Gislason To: freebsd-net@freebsd.org Message-ID: <20051114141238.GE97528@gremlin.foo.is> References: <20051114090725.GC97528@gremlin.foo.is> <20051114140836.GD97528@gremlin.foo.is> In-Reply-To: <20051114140836.GD97528@gremlin.foo.is> User-Agent: Mutt/1.4.2.1i X-Spam-Checker-Version: SpamAssassin 3.0.4 (2005-06-05) on gremlin.foo.is X-Spam-Level: X-Spam-Status: No, score=-5.9 required=6.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham version=3.0.4 X-Sanitizer: Foo MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Disposition: inline Subject: Re: zebra - ospfd and gif0 problems X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 14:12:43 -0000 Nevermind, just forgot to bring the interface up again... *slaps self* Baldur On Mon, Nov 14, 2005 at 02:08:36PM +0000, Baldur Gislason wrote: > I installed quagga, it works right on my 4.11-STABLE box but not on my > 5.4-STABLE box. Still doesn't want to work with gif0 > > Baldur > > On Mon, Nov 14, 2005 at 09:07:25AM +0000, Baldur Gislason wrote: > > I do have a line like that for gif0, yes. > > I'll give Quagga a try I guess. > > > > Baldur > > > > >I'm using Quagga with OpenVPN tunnels, which is a similar situation. > > > > >Do you have a stanza like this in your osfpd.conf describing the gif0 > > >interface? > > > > >interface tun2 > > > ip ospf network point-to-point > > > > >-T > > > > > > >-- > > >I love the way Microsoft follows standards. In much the same manner that > > >fish follow migrating caribou. > > > -- A.S.R. quote (Paul Tomblin) > > > > _______________________________________________ > > freebsd-net@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-net > > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > > > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > From owner-freebsd-net@FreeBSD.ORG Mon Nov 14 19:00:59 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2879016A420 for ; Mon, 14 Nov 2005 19:00:59 +0000 (GMT) (envelope-from karel@lovetemple.net) Received: from mta1.siol.net (mta1.siol.net [193.189.160.88]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6FFBE43D69 for ; Mon, 14 Nov 2005 19:00:51 +0000 (GMT) (envelope-from karel@lovetemple.net) Received: from edge1.siol.net ([10.10.10.210]) by mta1.siol.net with ESMTP id <20051114190139.GIUH7456.mta1.siol.net@edge1.siol.net>; Mon, 14 Nov 2005 20:01:39 +0100 Received: from [192.168.0.149] (really [195.210.211.199]) by edge1.siol.net with ESMTP id <20051114190038.IMOR15081.edge1.siol.net@[192.168.0.149]>; Mon, 14 Nov 2005 20:00:38 +0100 Message-ID: <4378DED3.4040404@lovetemple.net> Date: Mon, 14 Nov 2005 20:00:35 +0100 From: Karel Miklav User-Agent: Mozilla Thunderbird 1.0.6 (X11/20050806) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Antony Mawer , freebsd-net@freebsd.org References: <200511131801.jADI1dKI061199@lurza.secnetix.de> <4377C634.8050203@mawer.org> In-Reply-To: <4377C634.8050203@mawer.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Re: All-in-one box X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 19:00:59 -0000 Antony Mawer wrote: > For that matter, I've seen some cheap 5-port switches that can be > powered via a USB or a PS2 cable. See here: > > http://www.retractacable.com/product_info.php?products_id=143 Yeah, nice gadget although a little pricey in relation to my old box it should supplement. Local LevelOne distributer told me, their FNC-0600TXM only works with Windows. As there are no decent multiport NICs in this price range I'll just go into a local shop and buy some kind of an external gizmo. -- Regards, Karel Miklav From owner-freebsd-net@FreeBSD.ORG Mon Nov 14 20:19:32 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 730F016A41F; Mon, 14 Nov 2005 20:19:32 +0000 (GMT) (envelope-from full-disclosure@csilva.org) Received: from jupiter.nswebhost.com (jupiter.nswebhost.com [72.9.236.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7525543D58; Mon, 14 Nov 2005 20:19:30 +0000 (GMT) (envelope-from full-disclosure@csilva.org) Received: from 55-254.dial.nortenet.pt ([212.13.55.254]:34612 helo=[192.168.1.10]) by jupiter.nswebhost.com with esmtpa (Exim 4.52) id 1EbknO-00040c-DI; Mon, 14 Nov 2005 15:19:18 -0500 Message-ID: <4378F126.5090602@csilva.org> Date: Mon, 14 Nov 2005 20:18:46 +0000 From: Carlos Silva aka |Danger_Man| User-Agent: Mozilla Thunderbird 1.0.6 (Windows/20050716) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org, freebsd-current@freebsd.org, freebsd-isp@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Antivirus-Scanner: Clean mail though you should still use an Antivirus X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - jupiter.nswebhost.com X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [0 0] / [47 12] X-AntiAbuse: Sender Address Domain - csilva.org X-Source: X-Source-Args: X-Source-Dir: Cc: Subject: Pipe config bw... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 20:19:32 -0000 Hi, I've set "ipfw add pipe 1 ip from any to any 80;ipfw pipe 1 config bw 2Kbyte/s" but ipfw don't limit the bw of the port 80. If I set an IP (from xxx.xxx.xxx.xxx), ipfw limits the bandwidth, but with this config, ipw doesn't limit the bandwidth. I have DUMMYNET on the kernel.. Anyone knows the solution? Best Regards, Carlos Silva http://osiris.csilva.org/ From owner-freebsd-net@FreeBSD.ORG Mon Nov 14 22:02:43 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9419516A420; Mon, 14 Nov 2005 22:02:43 +0000 (GMT) (envelope-from fullermd@over-yonder.net) Received: from mail.localelinks.com (web.localelinks.com [65.170.254.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 41BB143D45; Mon, 14 Nov 2005 22:02:42 +0000 (GMT) (envelope-from fullermd@over-yonder.net) Received: from mortis.over-yonder.net (adsl-157-21-134.jan.bellsouth.net [70.157.21.134]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.localelinks.com (Postfix) with ESMTP id 283232A; Mon, 14 Nov 2005 16:02:40 -0600 (CST) Received: by mortis.over-yonder.net (Postfix, from userid 100) id 348C020FFA; Mon, 14 Nov 2005 16:02:38 -0600 (CST) Date: Mon, 14 Nov 2005 16:02:37 -0600 From: "Matthew D. Fuller" To: Carlos Silva aka|Danger_Man| Message-ID: <20051114220237.GG20846@over-yonder.net> References: <4378F126.5090602@csilva.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4378F126.5090602@csilva.org> X-Editor: vi X-OS: FreeBSD User-Agent: Mutt/1.5.9i-fullermd.2 Cc: freebsd-net@freebsd.org Subject: Re: Pipe config bw... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2005 22:02:43 -0000 [ Crossposting bcc'd; followup to -net ] On Mon, Nov 14, 2005 at 08:18:46PM +0000 I heard the voice of Carlos Silva aka |Danger_Man|, and lo! it spake thus: > > I've set "ipfw add pipe 1 ip from any to any 80;ipfw pipe 1 config > bw 2Kbyte/s" but ipfw don't limit the bw of the port 80. Yes, it does, just now how you probably want. It limits the bandwidth of all packets _DESTINED_ to port 80. Packets _FROM_ port 80 don't hit that rule, therefore don't go through the pipe. Limiting traffic TO port 80 to 2kB/s probably isn't all that useful unless people are posting some really big forms 8-} -- Matthew Fuller (MF4839) | fullermd@over-yonder.net Systems/Network Administrator | http://www.over-yonder.net/~fullermd/ On the Internet, nobody can hear you scream. From owner-freebsd-net@FreeBSD.ORG Tue Nov 15 09:24:39 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9A1B416A41F for ; Tue, 15 Nov 2005 09:24:39 +0000 (GMT) (envelope-from comepu@gmail.com) Received: from zproxy.gmail.com (zproxy.gmail.com [64.233.162.203]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3D08443D45 for ; Tue, 15 Nov 2005 09:24:39 +0000 (GMT) (envelope-from comepu@gmail.com) Received: by zproxy.gmail.com with SMTP id 8so1349583nzo for ; Tue, 15 Nov 2005 01:24:38 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:from:to:subject:date:mime-version:content-type:x-priority:x-msmail-priority:x-mailer:x-mimeole; b=t7UB6w8Jr+EAtjLAn25adJ+iFn4ZPMiR/EvwS4uUdthju+uPTPOwVZwQFYK+gG9LzgLpF6LSJNNlVA2t0GUA0Fj5mCUoYJBUD0uzRIxB1v3WoDf8Ozsxn0XzRZfz2ZjwYn+cDcSr5fak46hE6a7UNM8Cra691TL+pjj2djaJMLI= Received: by 10.36.250.70 with SMTP id x70mr2811479nzh; Tue, 15 Nov 2005 01:24:38 -0800 (PST) Received: from wtfzhangj ( [203.212.5.196]) by mx.gmail.com with ESMTP id 38sm97109nzk.2005.11.15.01.24.35; Tue, 15 Nov 2005 01:24:38 -0800 (PST) Message-ID: <002c01c5e9c6$53b64de0$ba00a8c0@wtfzhangj> From: "Jon" To: Date: Tue, 15 Nov 2005 17:23:46 +0800 MIME-Version: 1.0 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Content-Type: text/plain; charset="gb2312" Content-Transfer-Encoding: base64 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Fw: hello, everybody X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Nov 2005 09:24:39 -0000 DQotLS0tLSBPcmlnaW5hbCBNZXNzYWdlIC0tLS0tIA0KRnJvbTogSm9uIA0KVG86IGZyZWVic2Qt bmV0QGZyZWVic2Qub3JnIA0KU2VudDogVHVlc2RheSwgTm92ZW1iZXIgMTUsIDIwMDUgNToxNSBQ TQ0KU3ViamVjdDogaGVsbG8sIGV2ZXJ5Ym9keQ0KDQoNCmknbSByZWFkaW5nIFRDUC9JUCBzb3Vy Y2UgY29kZS5idXQgaSBkbyBub3QgdW5kZXJzdGFuZCB0aGlzIGZ1bmN0aW9uLCB0Y3BfdGltZXJf Mm1zbF90dy4gIHdoYXQgbWVhbiBpcyAidHciPyB3aG8gY2FuIHRlbGwgbWU/DQp0aGlua3Mh From owner-freebsd-net@FreeBSD.ORG Tue Nov 15 19:42:15 2005 Return-Path: X-Original-To: net@freebsd.org Delivered-To: freebsd-net@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E1C3C16A41F; Tue, 15 Nov 2005 19:42:15 +0000 (GMT) (envelope-from Alexander@Leidinger.net) Received: from www.ebusiness-leidinger.de (jojo.ms-net.de [84.16.236.246]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8DBD043D4C; Tue, 15 Nov 2005 19:42:14 +0000 (GMT) (envelope-from Alexander@Leidinger.net) Received: from Andro-Beta.Leidinger.net (p54A5FB73.dip.t-dialin.net [84.165.251.115]) (authenticated bits=0) by www.ebusiness-leidinger.de (8.13.1/8.13.1) with ESMTP id jAFJIVJe041624; Tue, 15 Nov 2005 20:18:31 +0100 (CET) (envelope-from Alexander@Leidinger.net) Received: from Magellan.Leidinger.net (Magellan.Leidinger.net [192.168.1.1]) by Andro-Beta.Leidinger.net (8.13.3/8.13.3) with ESMTP id jAFJg62S083006; Tue, 15 Nov 2005 20:42:06 +0100 (CET) (envelope-from Alexander@Leidinger.net) Date: Tue, 15 Nov 2005 20:42:06 +0100 From: Alexander Leidinger To: net@freebsd.org, ports@freebsd.org Message-ID: <20051115204206.2a80de97@Magellan.Leidinger.net> X-Mailer: Sylpheed-Claws 1.9.100 (GTK+ 2.8.6; i386-portbld-freebsd7.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Virus-Scanned: by amavisd-new Cc: Subject: Fix for ports/net/acx100 NIC driver to compile in 6.0? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Nov 2005 19:42:16 -0000 Hi, does someone know about a fix for the net/acx100 port to let it compile on 6.0? It seems the NIC API has changed and the port doesn't know how to cope with this. A pointer to a diff which shows how to adapt another driver to 6.0 would also be ok, if it's just some kind of mechanical translation... Bye, Alexander. -- The best things in life are free, but the expensive ones are still worth a look. http://www.Leidinger.net Alexander @ Leidinger.net GPG fingerprint = C518 BC70 E67F 143F BE91 3365 79E2 9C60 B006 3FE7 From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 05:32:16 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8D71916A41F for ; Wed, 16 Nov 2005 05:32:16 +0000 (GMT) (envelope-from fooler@skyinet.net) Received: from smtp2.skyinet.net (smtp2.skyinet.net [202.78.97.7]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3817043D46 for ; Wed, 16 Nov 2005 05:32:16 +0000 (GMT) (envelope-from fooler@skyinet.net) Received: from fooler (fooler.ilo.skyinet.net [202.78.118.66]) by smtp2.skyinet.net (Postfix) with SMTP id DE5A55BA4A; Wed, 16 Nov 2005 13:32:13 +0800 (PHT) Message-ID: <04ec01c5ea6f$2141b170$42764eca@ilo.skyinet.net> From: To: "Jon" , References: <002c01c5e9c6$53b64de0$ba00a8c0@wtfzhangj> Date: Wed, 16 Nov 2005 13:32:26 +0800 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="gb2312"; reply-type=original Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.2180 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Cc: Subject: Re: hello, everybody X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 05:32:16 -0000 ----- Original Message ----- From: "Jon" To: Sent: Tuesday, November 15, 2005 5:23 PM Subject: Fw: hello, everybody > i'm reading TCP/IP source code.but i do not understand this function, > tcp_timer_2msl_tw. what mean is "tw"? who can tell me? > thinks! timewait... fooler. From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 09:17:51 2005 Return-Path: X-Original-To: net@freebsd.org Delivered-To: freebsd-net@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 64DFC16A41F; Wed, 16 Nov 2005 09:17:51 +0000 (GMT) (envelope-from thompsa@freebsd.org) Received: from heff.fud.org.nz (60-234-149-201.bitstream.orcon.net.nz [60.234.149.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id EACF543D46; Wed, 16 Nov 2005 09:17:50 +0000 (GMT) (envelope-from thompsa@freebsd.org) Received: by heff.fud.org.nz (Postfix, from userid 1001) id 5089428464; Wed, 16 Nov 2005 22:17:49 +1300 (NZDT) Date: Wed, 16 Nov 2005 22:17:49 +1300 From: Andrew Thompson To: Alexander Leidinger Message-ID: <20051116091749.GA35587@heff.fud.org.nz> References: <20051115204206.2a80de97@Magellan.Leidinger.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051115204206.2a80de97@Magellan.Leidinger.net> User-Agent: Mutt/1.5.11 Cc: ports@freebsd.org, net@freebsd.org Subject: Re: Fix for ports/net/acx100 NIC driver to compile in 6.0? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 09:17:51 -0000 On Tue, Nov 15, 2005 at 08:42:06PM +0100, Alexander Leidinger wrote: > Hi, > > does someone know about a fix for the net/acx100 port to let it compile > on 6.0? It seems the NIC API has changed and the port doesn't know how > to cope with this. > > A pointer to a diff which shows how to adapt another driver to 6.0 > would also be ok, if it's just some kind of mechanical translation... You will want to start by looking at these two changes. http://lists.freebsd.org/mailman/htdig/cvs-src/2005-June/047650.html http://lists.freebsd.org/mailman/htdig/cvs-src/2005-August/050677.html I think they are the main API differences Andrew From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 09:58:26 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B05AD16A41F for ; Wed, 16 Nov 2005 09:58:26 +0000 (GMT) (envelope-from comepu@gmail.com) Received: from zproxy.gmail.com (zproxy.gmail.com [64.233.162.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2DDFD43D46 for ; Wed, 16 Nov 2005 09:58:25 +0000 (GMT) (envelope-from comepu@gmail.com) Received: by zproxy.gmail.com with SMTP id 8so1607801nzo for ; Wed, 16 Nov 2005 01:58:25 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:from:to:subject:date:mime-version:content-type:x-priority:x-msmail-priority:x-mailer:x-mimeole; b=Psnw9ENFh+m2E4XeS0RlfWJ75XYUnBo5pIZv0c/bcTPZ9jCfPNzcHpCJC2VWw4JBNsf1Slu4KM7taa/OKQPQs/QIu1VT+KC51LJMx/EJ+0UlynmpRDSIrPotAx8rfpqJdSm5DLNFwjL+YrrOYUY0ajo4IlO798jRb0KBFgxRyjs= Received: by 10.37.2.6 with SMTP id e6mr6080248nzi; Wed, 16 Nov 2005 01:58:25 -0800 (PST) Received: from wtfzhangj ( [203.212.5.196]) by mx.gmail.com with ESMTP id c12sm1166747nzc.2005.11.16.01.58.21; Wed, 16 Nov 2005 01:58:25 -0800 (PST) Message-ID: <002e01c5ea94$35f05750$ba00a8c0@wtfzhangj> From: "Jon" To: Date: Wed, 16 Nov 2005 17:57:46 +0800 MIME-Version: 1.0 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Content-Type: text/plain; charset="gb2312" Content-Transfer-Encoding: base64 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: hello, everyone , i have another question X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 09:58:26 -0000 SSBvZmZ0ZW4gZGlzY292ZXIgd2hhdCBzdWNoICIvKiBYWFggKi8gIiBhbm5vdGF0ZSAgaW4gc291 cmNlIGNvZGUgb2YgZnJlZWJzZKGjd2hhdCBtZWFuIGlzICJYWFgiPw0KDQp0aGluayB5b3UgdmVy eSBtdWNoIQ== From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 11:26:06 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BCB3F16A41F for ; Wed, 16 Nov 2005 11:26:06 +0000 (GMT) (envelope-from gaylord@dirtcheapemail.com) Received: from lennier.cc.vt.edu (lennier.cc.vt.edu [198.82.162.213]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5DC8E43D45 for ; Wed, 16 Nov 2005 11:26:05 +0000 (GMT) (envelope-from gaylord@dirtcheapemail.com) Received: from dagger.cc.vt.edu (IDENT:mirapoint@evil-dagger.cc.vt.edu [10.1.1.11]) by lennier.cc.vt.edu (8.12.11/8.12.11) with ESMTP id jAGBQ588008456; Wed, 16 Nov 2005 06:26:05 -0500 Received: from dirtcheapemail.com (e028121.vtacs.vt.edu [63.164.28.121]) by dagger.cc.vt.edu (MOS 3.6.4-CR) with ESMTP id EQX92428; Wed, 16 Nov 2005 06:26:04 -0500 (EST) Message-ID: <437B174B.1050405@dirtcheapemail.com> Date: Wed, 16 Nov 2005 06:26:03 -0500 From: Clark Gaylord User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.5) Gecko/20040218 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Jon , freebsd-net@freebsd.org References: <002e01c5ea94$35f05750$ba00a8c0@wtfzhangj> In-Reply-To: <002e01c5ea94$35f05750$ba00a8c0@wtfzhangj> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Re: hello, everyone , i have another question X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 11:26:06 -0000 Jon wrote: >I offten discover what such "/* XXX */ " annotate in source code of freebsd. what mean is "XXX"? > > These are "equivocation marks". They are placeholders for "I'm not sure I want to do this and want an easy way to find it again so I can undo it." Usually the intention is to come back and remove the equivocation marks once the code has passed some test (like: "it compiled! yea!") In many cases, they may be entirely vestigial, but in others the author may have felt that the solution still wasn't right, even though it worked, and wanted a visual clue to that effect for the reader. It is fair to say that the probability of bonehead code is somewhat higher in the vicinity of these marks. I usually initial and date my equivocation marks to help myself (and others) recognize vestiges, but this is an uncommon practice (unfortunately). In public repositories some people won't sign to protect themselves from embarrassment to the casual reader. --ckg From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 13:36:15 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7107F16A41F for ; Wed, 16 Nov 2005 13:36:15 +0000 (GMT) (envelope-from rwatson@FreeBSD.org) Received: from cyrus.watson.org (cyrus.watson.org [209.31.154.42]) by mx1.FreeBSD.org (Postfix) with ESMTP id 20D0943D46 for ; Wed, 16 Nov 2005 13:36:14 +0000 (GMT) (envelope-from rwatson@FreeBSD.org) Received: from fledge.watson.org (fledge.watson.org [209.31.154.41]) by cyrus.watson.org (Postfix) with ESMTP id 0A99546B0A; Wed, 16 Nov 2005 08:36:14 -0500 (EST) Date: Wed, 16 Nov 2005 13:36:13 +0000 (GMT) From: Robert Watson X-X-Sender: robert@fledge.watson.org To: Clark Gaylord In-Reply-To: <437B174B.1050405@dirtcheapemail.com> Message-ID: <20051116133045.U9390@fledge.watson.org> References: <002e01c5ea94$35f05750$ba00a8c0@wtfzhangj> <437B174B.1050405@dirtcheapemail.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: freebsd-net@freebsd.org, Jon Subject: Re: hello, everyone , i have another question X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 13:36:15 -0000 On Wed, 16 Nov 2005, Clark Gaylord wrote: > Jon wrote: > >> I offten discover what such "/* XXX */ " annotate in source code of >> freebsd. what mean is "XXX"? > > These are "equivocation marks". They are placeholders for "I'm not sure > I want to do this and want an easy way to find it again so I can undo > it." Usually the intention is to come back and remove the equivocation > marks once the code has passed some test (like: "it compiled! yea!") > In many cases, they may be entirely vestigial, but in others the author > may have felt that the solution still wasn't right, even though it > worked, and wanted a visual clue to that effect for the reader. > > It is fair to say that the probability of bonehead code is somewhat > higher in the vicinity of these marks. > > I usually initial and date my equivocation marks to help myself (and > others) recognize vestiges, but this is an uncommon practice > (unfortunately). In public repositories some people won't sign to > protect themselves from embarrassment to the casual reader. One of the unfortunate side effects of an older generation of XXX comments in the FreeBSD kernel is that while the defect associated with the comment was obvious to the writer, it's often nonobvious to a reader 10+ years separated from the the time of writing. Newer ones tend to come with a phrase or sentence identifying the nature of the problem, which helps a lot. There was a study a little while back on the changing number of XXX's in the FreeBSD kernel source. While the study seemed fine, I found some of the responses puzzling: the number of XXX's in the kernel source corresponds to the number of known problems, which while related to the total number of problems, cannot be simply equated with it. An increase in the number of XXX's can mean several things: - Introduction of more bugs, assuming rate of commenting remains the same. - Introduction of the same number (or fewer) bugs, but an increased rate of commenting. - More commenting of existing bugs, discovered by readers of the source. For instances in the latter two cases, this reflects a code improvement rather than a reduction in quality, suggesting increased awareness of the behavior of the code rather than more bugs being introduced. While the 5.x series involved really significant code changes in FreeBSD, and hence likely introduced a pretty significant number of bugs, it also involved a massive re-reading of the kernel source to identify issues that might become more apparent with architectural changes, so a good number of added XXX's were actually annotations of long-present bugs or issues, now brought to light in the face of large scale analysis of the kernel. Robert N M Watson From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 17:00:21 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AC1FE16A41F for ; Wed, 16 Nov 2005 17:00:21 +0000 (GMT) (envelope-from tbyte@otel.net) Received: from mail.otel.net (gw3.OTEL.net [212.36.8.151]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4685643D53 for ; Wed, 16 Nov 2005 17:00:20 +0000 (GMT) (envelope-from tbyte@otel.net) Received: from dragon.otel.net ([212.36.8.135]) by mail.otel.net with esmtp (Exim 4.30; FreeBSD) id 1EcQdr-0007jD-GX for freebsd-net@freebsd.org; Wed, 16 Nov 2005 19:00:15 +0200 From: Iasen Kostov To: FreeBSD Net Content-Type: text/plain Date: Wed, 16 Nov 2005 19:00:14 +0200 Message-Id: <1132160415.48874.7.camel@DraGoN.OTEL.net> Mime-Version: 1.0 X-Mailer: Evolution 2.4.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit Subject: Intel 82572EI X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 17:00:21 -0000 When will if_em support 82572EI (and 82572 in general). I saw this http://archives.neohapsis.com/archives/openbsd/cvs/2005-10/0235.html from which is this quote: "Sync up to Intel's latest FreeBSD em driver which adds support for the 82571 and 82572 PCI Express chips." but I can't find support in latest RELENG_6 cvs. I'm looking in wrong CVS or they are talking about intel's sources from intel's site ? ;) From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 17:41:01 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C17F316A41F for ; Wed, 16 Nov 2005 17:41:01 +0000 (GMT) (envelope-from julian@elischer.org) Received: from delight.idiom.com (outbound.idiom.com [216.240.47.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id 806C843D46 for ; Wed, 16 Nov 2005 17:41:01 +0000 (GMT) (envelope-from julian@elischer.org) Received: from idiom.com (idiom.com [216.240.32.1]) by delight.idiom.com (Postfix) with ESMTP id 026B6816D; Wed, 16 Nov 2005 09:41:00 -0800 (PST) Received: from [192.168.2.6] (home.elischer.org [216.240.48.38]) by idiom.com (8.12.11/8.12.11) with ESMTP id jAGHew0a053064; Wed, 16 Nov 2005 09:40:59 -0800 (PST) (envelope-from julian@elischer.org) Message-ID: <437B6F2A.6080800@elischer.org> Date: Wed, 16 Nov 2005 09:40:58 -0800 From: Julian Elischer User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7.11) Gecko/20050727 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Iasen Kostov References: <1132160415.48874.7.camel@DraGoN.OTEL.net> In-Reply-To: <1132160415.48874.7.camel@DraGoN.OTEL.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Cc: FreeBSD Net Subject: Re: Intel 82572EI X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 17:41:01 -0000 Iasen Kostov wrote: > When will if_em support 82572EI (and 82572 in general). >I saw this >http://archives.neohapsis.com/archives/openbsd/cvs/2005-10/0235.html > >from which is this quote: >"Sync up to Intel's latest FreeBSD em driver which adds >support for the 82571 and 82572 PCI Express chips." > > I believe this is coming in a few weeks as I know intel is currently working on this. >but I can't find support in latest RELENG_6 cvs. > >I'm looking in wrong CVS or they are talking about intel's sources from >intel's site ? ;) > > > > >_______________________________________________ >freebsd-net@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-net >To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > > From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 18:07:33 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 48F9B16A41F for ; Wed, 16 Nov 2005 18:07:33 +0000 (GMT) (envelope-from marwos@sbcglobal.net) Received: from smtp110.sbc.mail.mud.yahoo.com (smtp110.sbc.mail.mud.yahoo.com [68.142.198.209]) by mx1.FreeBSD.org (Postfix) with SMTP id 4C44D43D6D for ; Wed, 16 Nov 2005 18:07:25 +0000 (GMT) (envelope-from marwos@sbcglobal.net) Received: (qmail 18953 invoked from network); 16 Nov 2005 18:07:24 -0000 Received: from unknown (HELO compaq) (marwos@sbcglobal.net@71.134.228.59 with login) by smtp110.sbc.mail.mud.yahoo.com with SMTP; 16 Nov 2005 18:07:23 -0000 From: "Martin" To: Date: Wed, 16 Nov 2005 10:06:27 -0800 Message-ID: <000201c5ead8$79dded30$3be48647@compaq> MIME-Version: 1.0 X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Importance: Normal Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: egress interface index lookup through a route SACK_RAW socket call X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 18:07:33 -0000 What / how do I construct a routing raw socket call to retrieve the outgoing interface index for a particular route that is destined out of an interface other than Ethernet such as a point to point? With Ethernet interfaces I was able to contruct a rt_msghdr with RTM_GET and RTA_DST- retrieve the gateway IP for the route then recursively call the same function passing the gateway IP and the sock_addr_in ->sin_addr.s_port would return with the interface index. But this does not work with PPP interfaces or other non-Ethernet. Any insight to what i am lacking in the route request would be appreciated. Thanks, _Martin From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 18:56:26 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 962AE16A41F for ; Wed, 16 Nov 2005 18:56:26 +0000 (GMT) (envelope-from tbyte@otel.net) Received: from mail.otel.net (gw3.OTEL.net [212.36.8.151]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3490143D45 for ; Wed, 16 Nov 2005 18:56:26 +0000 (GMT) (envelope-from tbyte@otel.net) Received: from dragon.otel.net ([212.36.8.135]) by mail.otel.net with esmtp (Exim 4.30; FreeBSD) id 1EcSSF-000HyE-KC; Wed, 16 Nov 2005 20:56:23 +0200 From: Iasen Kostov To: Julian Elischer In-Reply-To: <437B6F2A.6080800@elischer.org> References: <1132160415.48874.7.camel@DraGoN.OTEL.net> <437B6F2A.6080800@elischer.org> Content-Type: text/plain Date: Wed, 16 Nov 2005 20:56:23 +0200 Message-Id: <1132167383.48874.13.camel@DraGoN.OTEL.net> Mime-Version: 1.0 X-Mailer: Evolution 2.4.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit Cc: FreeBSD Net Subject: Re: Intel 82572EI X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 18:56:26 -0000 On Wed, 2005-11-16 at 09:40 -0800, Julian Elischer wrote: > Iasen Kostov wrote: > > > When will if_em support 82572EI (and 82572 in general). > >I saw this > >http://archives.neohapsis.com/archives/openbsd/cvs/2005-10/0235.html > > > >from which is this quote: > >"Sync up to Intel's latest FreeBSD em driver which adds > >support for the 82571 and 82572 PCI Express chips." > > > > > > I believe this is coming in a few weeks as I know intel is currently > working on this. But the OpenBSD's cvs notice clearly states that the work is done. And I've looked in their sources and (at first glance) it looks like they are supporting it via "Intel's latest FreeBSD em driver" which I can not explain (I've looked at intel's site and the driver there do not support that cards ...) ;). > > >but I can't find support in latest RELENG_6 cvs. > > > >I'm looking in wrong CVS or they are talking about intel's sources from > >intel's site ? ;) > > > > > > > > > >_______________________________________________ > >freebsd-net@freebsd.org mailing list > >http://lists.freebsd.org/mailman/listinfo/freebsd-net > >To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > > > > > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 19:42:02 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 54AFD16A46F for ; Wed, 16 Nov 2005 19:42:02 +0000 (GMT) (envelope-from ru@ip.net.ua) Received: from tigra.ip.net.ua (tigra.ip.net.ua [82.193.96.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2F9F343D49 for ; Wed, 16 Nov 2005 19:42:00 +0000 (GMT) (envelope-from ru@ip.net.ua) Received: from localhost (rocky.ip.net.ua [82.193.96.2]) by tigra.ip.net.ua (8.12.11/8.12.11) with ESMTP id jAGJfwI0027477; Wed, 16 Nov 2005 21:41:58 +0200 (EET) (envelope-from ru@ip.net.ua) Received: from tigra.ip.net.ua ([82.193.96.10]) by localhost (rocky.ipnet [82.193.96.2]) (amavisd-new, port 10024) with LMTP id 11210-03-3; Wed, 16 Nov 2005 21:41:56 +0200 (EET) Received: from heffalump.ip.net.ua (heffalump.ip.net.ua [82.193.96.213]) by tigra.ip.net.ua (8.12.11/8.12.11) with ESMTP id jAGJfBb0027404 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 16 Nov 2005 21:41:11 +0200 (EET) (envelope-from ru@ip.net.ua) Received: (from ru@localhost) by heffalump.ip.net.ua (8.13.4/8.13.4) id jAGJfJ8g089424; Wed, 16 Nov 2005 21:41:19 +0200 (EET) (envelope-from ru) Date: Wed, 16 Nov 2005 21:41:19 +0200 From: Ruslan Ermilov To: Martin Message-ID: <20051116194119.GA87976@ip.net.ua> References: <000201c5ead8$79dded30$3be48647@compaq> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="liOOAslEiF7prFVr" Content-Disposition: inline In-Reply-To: <000201c5ead8$79dded30$3be48647@compaq> User-Agent: Mutt/1.5.9i X-Virus-Scanned: by amavisd-new at ip.net.ua Cc: freebsd-net@freebsd.org Subject: Re: egress interface index lookup through a route SACK_RAW socket call X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 19:42:03 -0000 --liOOAslEiF7prFVr Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Nov 16, 2005 at 10:06:27AM -0800, Martin wrote: > What / how do I construct a routing raw socket call to retrieve the > outgoing interface index for a particular route that is destined out of > an interface other than Ethernet such as a point to point? > =20 > With Ethernet interfaces I was able to contruct a rt_msghdr with RTM_GET > and RTA_DST- retrieve the gateway IP for the route then recursively call > the same function passing the gateway IP and the sock_addr_in > ->sin_addr.s_port would return with the interface index. > =20 > But this does not work with PPP interfaces or other non-Ethernet. Any > insight to what i am lacking in the route request would be appreciated. > =20 Apply the below patch to the route(8) command, then issue this: route -vn get -host x.x.x.x The IFP sockaddr will always be sockaddr_dl (AF_LINK) which has an interface index. For example, : # ifconfig ng0 10.0.0.1 10.0.0.2 : # ./route -vn get -host 10.0.0.2 : u: inet 10.0.0.2; u: link ; RTM_GET: Report Metrics: len 164, pid: 0, seq= 1, errno 0, flags: : locks: inits:=20 : sockaddrs: : 10.0.0.2 :0 : route to: 10.0.0.2 : destination: 10.0.0.2 : interface: ng0 : flags: : recvpipe sendpipe ssthresh rtt,msec rttvar hopcount mtu = expire : 0 0 0 0 0 0 1500 = 0=20 :=20 : locks: inits:=20 : sockaddrs: : 10.0.0.2 10.0.0.1 ng0:3 10.0.0.1 10.0.0.2 ^^^^^ %%% Index: route.c =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D RCS file: /home/ncvs/src/sbin/route/route.c,v retrieving revision 1.81 diff -u -r1.81 route.c --- route.c 28 Sep 2005 12:12:15 -0000 1.81 +++ route.c 16 Nov 2005 19:35:30 -0000 @@ -385,7 +385,12 @@ break; =20 case AF_LINK: - return (link_ntoa((struct sockaddr_dl *)sa)); + { + static char buf[80]; + struct sockaddr_dl *sdl =3D (struct sockaddr_dl *)sa; + sprintf(buf, "%s:%d", link_ntoa(sdl), sdl->sdl_index); + return (buf); + } =20 default: { u_short *s =3D (u_short *)sa; %%% Cheers, --=20 Ruslan Ermilov ru@FreeBSD.org FreeBSD committer --liOOAslEiF7prFVr Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFDe4tfqRfpzJluFF4RArMQAJ0Ze0IkIyb29aezyc4cMjdFBIw02gCbBkd5 sZzF9v253Q5T1tRFgnp+hmo= =C5WY -----END PGP SIGNATURE----- --liOOAslEiF7prFVr-- From owner-freebsd-net@FreeBSD.ORG Wed Nov 16 22:39:37 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 779E316A41F for ; Wed, 16 Nov 2005 22:39:37 +0000 (GMT) (envelope-from julian@elischer.org) Received: from a50.ironport.com (a50.ironport.com [63.251.108.112]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3C9E343D45 for ; Wed, 16 Nov 2005 22:39:37 +0000 (GMT) (envelope-from julian@elischer.org) Received: from unknown (HELO [10.251.19.149]) ([10.251.19.149]) by a50.ironport.com with ESMTP; 16 Nov 2005 14:39:37 -0800 X-IronPort-Anti-Spam-Filtered: true Message-ID: <437BB528.3060203@elischer.org> Date: Wed, 16 Nov 2005 14:39:36 -0800 From: Julian Elischer User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7.11) Gecko/20050727 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Iasen Kostov References: <1132160415.48874.7.camel@DraGoN.OTEL.net> <437B6F2A.6080800@elischer.org> <1132167383.48874.13.camel@DraGoN.OTEL.net> In-Reply-To: <1132167383.48874.13.camel@DraGoN.OTEL.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: FreeBSD Net Subject: Re: Intel 82572EI X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Nov 2005 22:39:37 -0000 Iasen Kostov wrote: >On Wed, 2005-11-16 at 09:40 -0800, Julian Elischer wrote: > > >>Iasen Kostov wrote: >> >> >> >>> When will if_em support 82572EI (and 82572 in general). >>>I saw this >>>http://archives.neohapsis.com/archives/openbsd/cvs/2005-10/0235.html >>> >>> >>> >>>from which is this quote: >> >> >>>"Sync up to Intel's latest FreeBSD em driver which adds >>>support for the 82571 and 82572 PCI Express chips." >>> >>> >>> >>> >>I believe this is coming in a few weeks as I know intel is currently >>working on this. >> >> > >But the OpenBSD's cvs notice clearly states that the work is done. >And I've looked in their sources and (at first glance) it looks like >they are supporting it via "Intel's latest FreeBSD em driver" which I >can not explain (I've looked at intel's site and the driver there do not >support that cards ...) ;). > > > The latest Intel version is 3.2.18 I have a copy of it I got directly. but we are under NDA etc. It has a regular BSD copyright header on it so it looks like it should be ok for them to commit it but they may not be ready yet. it only claims to support 4.10+ and 5.4 so it is possible it doesn't support 6.0 or -current yet (there were a lot of changes in the -current one done by people other than Intel and maybe they are having a problem merging them back) That may be why they have not committed it yet. the ones I can find on the website are 1.7.41 and 1.7.35 the one in -current is 2.1.7 From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 06:23:20 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3C1CB16A41F for ; Thu, 17 Nov 2005 06:23:20 +0000 (GMT) (envelope-from kaakun@highway.ne.jp) Received: from mx.highway.ne.jp (pip8.gate01.com [61.122.117.246]) by mx1.FreeBSD.org (Postfix) with ESMTP id EA84543D45 for ; Thu, 17 Nov 2005 06:23:19 +0000 (GMT) (envelope-from kaakun@highway.ne.jp) Received: from [202.213.251.158] (helo=[192.168.20.8]) by pop11.isp.us-com.jp with esmtp (Mail 4.20) id 1EcdB0-0002Q8-HR for freebsd-net@freebsd.org; Thu, 17 Nov 2005 15:23:18 +0900 Message-ID: <437C21AF.2070107@highway.ne.jp> Date: Thu, 17 Nov 2005 15:22:39 +0900 From: Kazuaki Oda User-Agent: Mozilla Thunderbird 1.0.6 (X11/20050731) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-2022-JP Content-Transfer-Encoding: 7bit Subject: carp backup host replies to arp-request X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 06:23:20 -0000 Hi list, I have set up 2 routers with FreeBSD 6.0-RELEASE. They are using carp interfaces, so one is a master router and another is a backup. They seemed to work fine, but a few days later I noticed that not only master router but also backup router replies to arp-requests of the common IP address from a layer 3 switch. This behavior confuses the switch, and sometimes it makes the switch to send a packet addressed to the common IP address to the port which is connected to backup router. I googled and found that OpenBSD fixed this problem in ip_carp.c 1.62. I hope that someone import this into FreeBSD... -------------------- Kazuaki Oda From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 09:08:54 2005 Return-Path: X-Original-To: freebsd-net@FreeBSD.org Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8B35F16A41F for ; Thu, 17 Nov 2005 09:08:54 +0000 (GMT) (envelope-from glebius@FreeBSD.org) Received: from cell.sick.ru (cell.sick.ru [217.72.144.68]) by mx1.FreeBSD.org (Postfix) with ESMTP id 676A043D4C for ; Thu, 17 Nov 2005 09:08:53 +0000 (GMT) (envelope-from glebius@FreeBSD.org) Received: from cell.sick.ru (glebius@localhost [127.0.0.1]) by cell.sick.ru (8.13.3/8.13.3) with ESMTP id jAH98pu1021260 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 17 Nov 2005 12:08:52 +0300 (MSK) (envelope-from glebius@FreeBSD.org) Received: (from glebius@localhost) by cell.sick.ru (8.13.3/8.13.1/Submit) id jAH98pqO021259; Thu, 17 Nov 2005 12:08:51 +0300 (MSK) (envelope-from glebius@FreeBSD.org) X-Authentication-Warning: cell.sick.ru: glebius set sender to glebius@FreeBSD.org using -f Date: Thu, 17 Nov 2005 12:08:50 +0300 From: Gleb Smirnoff To: Kazuaki Oda Message-ID: <20051117090850.GY1647@cell.sick.ru> Mail-Followup-To: Gleb Smirnoff , Kazuaki Oda , freebsd-net@freebsd.org References: <437C21AF.2070107@highway.ne.jp> Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="A9z/3b/E4MkkD+7G" Content-Disposition: inline In-Reply-To: <437C21AF.2070107@highway.ne.jp> User-Agent: Mutt/1.5.6i Cc: freebsd-net@FreeBSD.org Subject: Re: carp backup host replies to arp-request X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 09:08:54 -0000 --A9z/3b/E4MkkD+7G Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Kazuaki-san, On Thu, Nov 17, 2005 at 03:22:39PM +0900, Kazuaki Oda wrote: K> I have set up 2 routers with FreeBSD 6.0-RELEASE. They are using carp K> interfaces, so one is a master router and another is a backup. K> They seemed to work fine, but a few days later I noticed that not only K> master router but also backup router replies to arp-requests of the K> common IP address from a layer 3 switch. This behavior confuses the K> switch, and sometimes it makes the switch to send a packet addressed K> to the common IP address to the port which is connected to backup router. K> I googled and found that OpenBSD fixed this problem in ip_carp.c 1.62. K> I hope that someone import this into FreeBSD... Can you please confirm, that the attached patch fixes the problem for you? -- Totus tuus, Glebius. GLEBIUS-RIPN GLEB-RIPE --A9z/3b/E4MkkD+7G Content-Type: text/plain; charset=koi8-r Content-Disposition: attachment; filename="ip_carp.Ox.1.62.diff" Index: ip_carp.c =================================================================== RCS file: /home/ncvs/src/sys/netinet/ip_carp.c,v retrieving revision 1.37 diff -u -r1.37 ip_carp.c --- ip_carp.c 14 Nov 2005 12:50:23 -0000 1.37 +++ ip_carp.c 17 Nov 2005 09:06:17 -0000 @@ -1162,7 +1162,8 @@ TAILQ_FOREACH(vh, &cif->vhif_vrs, sc_list) { if ((SC2IFP(vh)->if_flags & IFF_UP) && (SC2IFP(vh)->if_drv_flags & IFF_DRV_RUNNING) && - ia->ia_ifp == SC2IFP(vh)) { + ia->ia_ifp == SC2IFP(vh) && + vh->sc_state == MASTER) { *enaddr = IF_LLADDR(vh->sc_ifp); CARP_UNLOCK(cif); return (1); @@ -1187,7 +1188,8 @@ if (IN6_ARE_ADDR_EQUAL(taddr, &ifatoia6(ifa)->ia_addr.sin6_addr) && (SC2IFP(vh)->if_flags & IFF_UP) && - (SC2IFP(vh)->if_drv_flags & IFF_DRV_RUNNING)) { + (SC2IFP(vh)->if_drv_flags & IFF_DRV_RUNNING) && + vh->sc_state == MASTER) { CARP_UNLOCK(cif); return (ifa); } --A9z/3b/E4MkkD+7G-- From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 10:21:44 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3D58816A41F for ; Thu, 17 Nov 2005 10:21:44 +0000 (GMT) (envelope-from asko_nospam@ultrasoft.ee) Received: from mail.ultrasoft.ee (ns.ultrasoft.ee [213.35.215.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id 67E5B43D53 for ; Thu, 17 Nov 2005 10:21:42 +0000 (GMT) (envelope-from asko_nospam@ultrasoft.ee) Received: from localhost (localhost [127.0.0.1]) by mail.ultrasoft.ee (Postfix) with ESMTP id A3EC45EFA for ; Thu, 17 Nov 2005 12:21:40 +0200 (EET) Received: from mail.ultrasoft.ee ([127.0.0.1]) by localhost (aidamees.ultrasoft.local [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 66424-19 for ; Thu, 17 Nov 2005 12:21:39 +0200 (EET) Received: from [192.168.8.25] (unknown [192.168.8.25]) by mail.ultrasoft.ee (Postfix) with ESMTP id D0BBB5CD7 for ; Thu, 17 Nov 2005 12:21:38 +0200 (EET) Message-ID: <437C599D.30603@ultrasoft.ee> Date: Thu, 17 Nov 2005 12:21:17 +0200 From: asko Organization: Ultrasoft =?ISO-8859-1?Q?O=DC?= User-Agent: Mozilla Thunderbird 1.0.7 (X11/20051010) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: amavisd-new at ultrasoft.ee Subject: IPSEC, Watchguard SOHO 6tc and racoon X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 10:21:44 -0000 Hi, Has anyone successfully connected Watchguard SOHO 6tc to FreeBSD with IPSEC. I am not able to get pass phase 1 during key exchange.. racoon.log shows: 2005-11-17 13:00:37: INFO: main.c:174:main(): @(#)internal version 20001216 sakane@kame.net 2005-11-17 13:00:37: INFO: main.c:175:main(): @(#)This product linked OpenSSL 0.9.7e 25 Oct 2004 (http://www.openssl.org/) 2005-11-17 13:00:37: WARNING: cftoken.l:514:yywarn(): /usr/local/etc/racoon/racoon.conf:63: "support_mip6" it is obsoleted. use "support_proxy". 2005-11-17 13:00:37: INFO: isakmp.c:1368:isakmp_open(): fe80::1%lo0[500] used as isakmp port (fd=5) 2005-11-17 13:00:37: INFO: isakmp.c:1368:isakmp_open(): ::1[500] used as isakmp port (fd=6) 2005-11-17 13:00:37: INFO: isakmp.c:1368:isakmp_open(): 127.0.0.1[500] used as isakmp port (fd=7) 2005-11-17 13:00:37: INFO: isakmp.c:1368:isakmp_open(): 192.168.8.185[500] used as isakmp port (fd=8) 2005-11-17 13:00:37: INFO: isakmp.c:1368:isakmp_open(): fe80::201:80ff:fe34:3ed5%rl0[500] used as isakmp port (fd=9) 2005-11-17 13:00:37: INFO: isakmp.c:1368:isakmp_open(): fe80::204:75ff:fed9:5bcf%xl0[500] used as isakmp port (fd=10) 2005-11-17 13:00:37: INFO: isakmp.c:1368:isakmp_open(): 192.168.1.0[500] used as isakmp port (fd=11) 2005-11-17 13:00:40: INFO: isakmp.c:1694:isakmp_post_acquire(): IPsec-SA request for 192.168.8.154 queued due to no phase1 found. 2005-11-17 13:00:40: INFO: isakmp.c:808:isakmp_ph1begin_i(): initiate new phase 1 negotiation: 192.168.8.185[500]<=>192.168.8.154[500] 2005-11-17 13:00:40: INFO: isakmp.c:813:isakmp_ph1begin_i(): begin Identity Protection mode. 2005-11-17 13:01:11: ERROR: isakmp.c:1786:isakmp_chkph1there(): phase2 negotiation failed due to time up waiting for phase1. ESP 192.168.8.154->192.168.8.185 2005-11-17 13:01:11: INFO: isakmp.c:1791:isakmp_chkph1there(): delete phase 2 handler. 2005-11-17 13:01:12: INFO: isakmp.c:1713:isakmp_post_acquire(): request for establishing IPsec-SA was queued due to no phase1 found. 2005-11-17 13:01:43: ERROR: isakmp.c:1786:isakmp_chkph1there(): phase2 negotiation failed due to time up waiting for phase1. ESP 192.168.8.154->192.168.8.185 2005-11-17 13:01:43: INFO: isakmp.c:1791:isakmp_chkph1there(): delete phase 2 handler. etc. "WAN" addresses are 192.168.8.0/24, LAN-s are 192.168.1.0 and 192.168.3.0, just a virtual test setup. No firewalls are currently set up. $cat vpn1.sh setkey -FP setkey -F # # Configure the Policy # setkey -c << END spdadd 192.168.8.185/32 192.168.3.0/24 any -P out ipsec esp/tunnel/192.168.8.185-192.168.8.154/require; spdadd 192.168.3.0/24 192.168.8.185/32 any -P in ipsec esp/tunnel/192.168.8.154-192.168.185/require; END # $ cat racoon.conf path include "/usr/local/etc/racoon" ; path pre_shared_key "/usr/local/etc/racoon/psk.txt" ; path certificate "/usr/local/etc/cert" ; padding { maximum_length 20; # maximum padding length. randomize off; # enable randomize length. strict_check off; # enable strict check. exclusive_tail off; # extract last one octet. } listen { #isakmp ::1 [7000]; #isakmp 202.249.11.124 [500]; #admin [7002]; # administrative's port by kmpstat. #strict_address; # required all addresses must be bound. } timer { # These value can be changed per remote node. counter 5; # maximum trying count to send. interval 20 sec; # maximum interval to resend. persend 1; # the number of packets per a send. # timer for waiting to complete each phase. phase1 30 sec; phase2 15 sec; } remote anonymous { exchange_mode main,aggressive; #exchange_mode main; doi ipsec_doi; situation identity_only; nonce_size 16; lifetime time 1 min; # sec,min,hour initial_contact on; support_mip6 on; proposal_check obey; # obey, strict or claim proposal { encryption_algorithm 3des; hash_algorithm md5; authentication_method pre_shared_key ; dh_group 1 ; } } sainfo anonymous { # pfs_group 1; lifetime time 30 sec; encryption_algorithm 3des ; authentication_algorithm hmac_md5; compression_algorithm deflate ; } I have tried also des encryption and sha1 authentication, agressive and main mode, and so on, no joy ;-( It probably needs some specific tweaks? FreeBSD 5.4-RELEASE, racoon-20050510a, Watchguard SOHO 6 tc firmware 6.3 Please let me know if you had any success with similar setup .. -- asko From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 11:27:17 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3DF2116A41F for ; Thu, 17 Nov 2005 11:27:17 +0000 (GMT) (envelope-from tbyte@otel.net) Received: from mail.otel.net (gw3.OTEL.net [212.36.8.151]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7847443D45 for ; Thu, 17 Nov 2005 11:27:14 +0000 (GMT) (envelope-from tbyte@otel.net) Received: from dragon.otel.net ([212.36.8.135]) by mail.otel.net with esmtp (Exim 4.30; FreeBSD) id 1Echv1-000NbX-Hu; Thu, 17 Nov 2005 13:27:07 +0200 From: Iasen Kostov To: Julian Elischer In-Reply-To: <437BB528.3060203@elischer.org> References: <1132160415.48874.7.camel@DraGoN.OTEL.net> <437B6F2A.6080800@elischer.org> <1132167383.48874.13.camel@DraGoN.OTEL.net> <437BB528.3060203@elischer.org> Content-Type: text/plain Date: Thu, 17 Nov 2005 13:27:06 +0200 Message-Id: <1132226826.48874.17.camel@DraGoN.OTEL.net> Mime-Version: 1.0 X-Mailer: Evolution 2.4.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit Cc: FreeBSD Net Subject: Re: Intel 82572EI X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 11:27:17 -0000 On Wed, 2005-11-16 at 14:39 -0800, Julian Elischer wrote: > > > The latest Intel version is 3.2.18 I have a copy of it I got directly. > but we are under NDA etc. It has a regular BSD copyright header on it > so it looks like it should be ok for them to commit it but > they may not be ready yet. it only claims to support 4.10+ and 5.4 so > it is possible it > doesn't support 6.0 or -current yet (there were a lot of changes in the > -current one done > by people other than Intel and maybe they are having a problem merging > them back) > That may be why they have not committed it yet. > > the ones I can find on the website are 1.7.41 and 1.7.35 > > the one in -current is 2.1.7 > Thanks for the clarification. > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 12:26:13 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8FD4516A41F for ; Thu, 17 Nov 2005 12:26:13 +0000 (GMT) (envelope-from jinmei@isl.rdc.toshiba.co.jp) Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3CF5343D49 for ; Thu, 17 Nov 2005 12:26:12 +0000 (GMT) (envelope-from jinmei@isl.rdc.toshiba.co.jp) Received: from impact.jinmei.org (unknown [2001:200:0:8002:8538:2695:be96:7c57]) by shuttle.wide.toshiba.co.jp (Postfix) with ESMTP id 54A1315265; Thu, 17 Nov 2005 21:26:09 +0900 (JST) Date: Thu, 17 Nov 2005 21:26:09 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: asko In-Reply-To: <437C599D.30603@ultrasoft.ee> References: <437C599D.30603@ultrasoft.ee> User-Agent: Wanderlust/2.14.0 (Africa) Emacs/21.3 Mule/5.0 (SAKAKI) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.14.6 - "Maruoka") Content-Type: text/plain; charset=US-ASCII Cc: freebsd-net@freebsd.org Subject: Re: IPSEC, Watchguard SOHO 6tc and racoon X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 12:26:13 -0000 >>>>> On Thu, 17 Nov 2005 12:21:17 +0200, >>>>> asko said: > I have tried also des encryption and sha1 authentication, agressive and > main mode, and so on, no joy ;-( It probably needs some specific tweaks? > FreeBSD 5.4-RELEASE, racoon-20050510a, Watchguard SOHO 6 tc firmware 6.3 racoon was incorporated into ipsec-tools and is now maintained there. The 'racoon' port under ports/security is going to be obsoleted, and is not recommended to use (we are now asking a port maintainer for obsoleting this port). So, please first try ipsec-tools (which includes its own version of racoon). If you still have a problem, I'd then recommend you to ask the ipsec-tools developer. JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 12:46:44 2005 Return-Path: X-Original-To: freebsd-net@FreeBSD.org Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1E6AC16A41F; Thu, 17 Nov 2005 12:46:44 +0000 (GMT) (envelope-from kaakun@highway.ne.jp) Received: from mx.highway.ne.jp (pip7.gate01.com [61.122.117.245]) by mx1.FreeBSD.org (Postfix) with ESMTP id C567443D46; Thu, 17 Nov 2005 12:46:43 +0000 (GMT) (envelope-from kaakun@highway.ne.jp) Received: from [202.213.251.158] (helo=[192.168.20.8]) by pop12.isp.us-com.jp with esmtp (Mail 4.20) id 1EcjA2-000693-Jd; Thu, 17 Nov 2005 21:46:42 +0900 Message-ID: <437C7B8A.2080802@highway.ne.jp> Date: Thu, 17 Nov 2005 21:46:02 +0900 From: Kazuaki Oda User-Agent: Mozilla Thunderbird 1.0.6 (X11/20050731) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Gleb Smirnoff References: <437C21AF.2070107@highway.ne.jp> <20051117090850.GY1647@cell.sick.ru> In-Reply-To: <20051117090850.GY1647@cell.sick.ru> Content-Type: text/plain; charset=ISO-2022-JP Content-Transfer-Encoding: 7bit Cc: freebsd-net@FreeBSD.org Subject: Re: carp backup host replies to arp-request X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 12:46:44 -0000 Gleb Smirnoff wrote: > Kazuaki-san, > > On Thu, Nov 17, 2005 at 03:22:39PM +0900, Kazuaki Oda wrote: > K> I have set up 2 routers with FreeBSD 6.0-RELEASE. They are using carp > K> interfaces, so one is a master router and another is a backup. > K> They seemed to work fine, but a few days later I noticed that not only > K> master router but also backup router replies to arp-requests of the > K> common IP address from a layer 3 switch. This behavior confuses the > K> switch, and sometimes it makes the switch to send a packet addressed > K> to the common IP address to the port which is connected to backup router. > K> I googled and found that OpenBSD fixed this problem in ip_carp.c 1.62. > K> I hope that someone import this into FreeBSD... > > Can you please confirm, that the attached patch fixes the problem for you? Yes! I just modified the patch (because I am using 6.0-RELEASE replaced IF_LLADDR to IFP2ENADDR), applied the patch, rebuilded kernel and rebooted the system. So I get no arp-reply from backup router. Layer 3 switch never sends packets to backup router. Thanks. --------------------- Kazuaki Oda From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 13:42:20 2005 Return-Path: X-Original-To: net@freebsd.org Delivered-To: freebsd-net@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 244D916A41F for ; Thu, 17 Nov 2005 13:42:20 +0000 (GMT) (envelope-from des@des.no) Received: from tim.des.no (tim.des.no [194.63.250.121]) by mx1.FreeBSD.org (Postfix) with ESMTP id B3A5543D49 for ; Thu, 17 Nov 2005 13:42:19 +0000 (GMT) (envelope-from des@des.no) Received: from tim.des.no (localhost [127.0.0.1]) by spam.des.no (Postfix) with ESMTP id 90E852082 for ; Thu, 17 Nov 2005 14:42:14 +0100 (CET) X-Spam-Tests: AWL,BAYES_00,FORGED_RCVD_HELO X-Spam-Learn: ham X-Spam-Score: -3.4/3.0 X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on tim.des.no Received: from xps.des.no (des.no [80.203.243.180]) by tim.des.no (Postfix) with ESMTP id 18F982080 for ; Thu, 17 Nov 2005 14:42:14 +0100 (CET) Received: by xps.des.no (Postfix, from userid 1001) id 0002933C1D; Thu, 17 Nov 2005 14:42:13 +0100 (CET) To: net@freebsd.org From: des@des.no (=?iso-8859-1?q?Dag-Erling_Sm=F8rgrav?=) Date: Thu, 17 Nov 2005 14:42:13 +0100 Message-ID: <86k6f74ci2.fsf@xps.des.no> User-Agent: Gnus/5.110002 (No Gnus v0.2) Emacs/21.3 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Cc: Subject: if_bridge broadcast X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 13:42:20 -0000 I have a box that amongst other tasks serves as a printer server and a wlan bridge. The wired and wireless interfaces are members of the bridge, and are unconfigured (except for ssid etc. on the wireless interface). The bridge itself has an IP address, is subject to packet filtering etc. There is a hitch, though: the bridge does not have the IFF_BROADCAST flag set, so CUPS browsing (which is based on sending printer status announcements to the broadcast address) doesn't work. Is there any reason why a bridge can't have the IFF_BROADCAST set - if not unconditionally, then at least when all its members have it? DES --=20 Dag-Erling Sm=F8rgrav - des@des.no From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 13:58:07 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 18B9716A41F for ; Thu, 17 Nov 2005 13:58:07 +0000 (GMT) (envelope-from tataz@tataz.chchile.org) Received: from smtp3-g19.free.fr (smtp3-g19.free.fr [212.27.42.29]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7EE6E43D45 for ; Thu, 17 Nov 2005 13:58:06 +0000 (GMT) (envelope-from tataz@tataz.chchile.org) Received: from tatooine.tataz.chchile.org (vol75-8-82-233-239-98.fbx.proxad.net [82.233.239.98]) by smtp3-g19.free.fr (Postfix) with ESMTP id B5435374C7; Thu, 17 Nov 2005 14:58:04 +0100 (CET) Received: by tatooine.tataz.chchile.org (Postfix, from userid 1000) id 31CD9405A; Thu, 17 Nov 2005 14:57:39 +0100 (CET) Date: Thu, 17 Nov 2005 14:57:39 +0100 From: Jeremie Le Hen To: Jon Otterholm Message-ID: <20051117135738.GH5197@obiwan.tataz.chchile.org> References: <1131541588.996.13.camel@localhost.localdomain> <20051110124903.GB67086@uk.tiscali.com> <1131629107.878.22.camel@localhost.localdomain> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1131629107.878.22.camel@localhost.localdomain> User-Agent: Mutt/1.5.11 Cc: freebsd-net@freebsd.org, Brian Candler Subject: Re: arp-proxy X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 13:58:07 -0000 Hi, Jon, Brian, > That depends... > > In all this - our role is similar to an ISP, but we are buying access to > our customers from an external part. Every customer is delivered on a > separate vlan trunked. > > - Our DSL customers cannot be set on the same VLAN i a single DSLAM > (don't ask me why - ask Alcatel). > - We cannot build a simple bridge because the Network service provider > can't handle when a MAC-address shows up on 2 different VLAN's. > > The arp-proxy should do the following: > - Forward any broadcast packets but rewrite src to its own mac. > - Forward unicast packets according to FDB but rewrite src to its own > mac. IIUC, you want to do some kind of NAT of MAC addresses, this is not an easy task, because you can't keep connection states only based on the (src MAC, dst MAC) tuple. You have to use at least IP addresses from the network layer or even TCP/UDP ports from the transport layer : Let's take B your bridge and I, J, K three customers. When I wants to talk to J, once the packets emitted from I are on J's VLAN, the tuple based only on MAC address would be (src: B, dst: J). If K also wants to talk to J, they would have the same tuple on J's VLAN. Therefore we won't know where to send back replies from J. This is the reason that requires upper layers to be taken into account. Anyway FreeBSD, as weel as other BSD flavors, can't do this. This is not implemented, and I'm not sure this is something we really want... A more elegant solution to this kind of problem is what Linux calls "pseudo bridge" [1]. The idea is to configure all your customers to let them believe they all live in the same physical network (IOW as if their trunks were bridged). The magic stands on the box linking them all together : you do not configure it as a bridge, but as a simple router which has one route for each customer pointing to the relevant VLAN. Then you set a sysctl named "proxy_arp" for each VLAN interface : this will ask the Linux kernel to check its routing table when it receives an ARP request. If the requested IP address doesn't live on the same VLAN as the request came from, the kernel will send an ARP reply claiming it owns the requested IP address. Therefore, the customer will believe he is talking directly to the computer whereas the packets will be routed, as if he was explicitely using a route. I hope I have been clear enough. IIRC the routing code and ARP code are currently rewritten in order to be splitted, it would maybe be worth to include this kind of functionnality at the same time. It seems to have useful and concrete applications for providers. Best regards, [1] http://www.sjdjweis.com/linux/proxyarp/ -- Jeremie Le Hen < jeremie at le-hen dot org >< ttz at chchile dot org > From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 14:57:34 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E0D6916A41F for ; Thu, 17 Nov 2005 14:57:34 +0000 (GMT) (envelope-from volker@vwsoft.com) Received: from gwfra.elbekies.net (tce71.tce85.de [195.145.102.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6C53C43D46 for ; Thu, 17 Nov 2005 14:57:34 +0000 (GMT) (envelope-from volker@vwsoft.com) Received-SPF: pass (gwfra.elbekies.net: domain of vwsoft.com designates 84.245.169.96 as permitted sender) client-ip=84.245.169.96; envelope-from=volker@vwsoft.com; helo=mail.vtec.ipme.de; Received: from mail.vtec.ipme.de (84-245-169-96.ipool.celox.de [84.245.169.96]) by gwfra.elbekies.net (Postfix) with ESMTP id C445D17028 for ; Thu, 17 Nov 2005 15:57:17 +0100 (CET) Received: from [127.0.0.1] (cesar.sz.vwsoft.com [192.168.16.3]) by mail.vtec.ipme.de (Postfix) with ESMTP id 08F7A5C0E; Thu, 17 Nov 2005 14:09:17 +0100 (CET) Message-ID: <437C808F.5070905@vwsoft.com> Date: Thu, 17 Nov 2005 14:07:27 +0100 From: Volker User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.10) Gecko/20050716 Thunderbird/1.0.6 Mnenhy/0.6.0.101 X-Accept-Language: en-us, en MIME-Version: 1.0 To: asko References: <20051117120044.4DB5516A434@hub.freebsd.org> In-Reply-To: <20051117120044.4DB5516A434@hub.freebsd.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-VWSoft-MailScanner: Found to be clean X-TarmacIntl-MailScanner: Found to be clean X-MailScanner-From: volker@vwsoft.com Cc: freebsd-net@freebsd.org Subject: Re: IPSEC, Watchguard SOHO 6tc and racoon X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 14:57:35 -0000 > > Hi, > > Has anyone successfully connected Watchguard SOHO 6tc to FreeBSD with > IPSEC. I am not able to get pass phase 1 during key exchange.. > [snip] > > $cat vpn1.sh > setkey -FP > setkey -F > # > # Configure the Policy > # > setkey -c << END > spdadd 192.168.8.185/32 192.168.3.0/24 any -P out ipsec > esp/tunnel/192.168.8.185-192.168.8.154/require; > spdadd 192.168.3.0/24 192.168.8.185/32 any -P in ipsec > esp/tunnel/192.168.8.154-192.168.185/require; > END > # > Asko, please correct your typo: > esp/tunnel/192.168.8.154-192.168.185/require; should be: esp/tunnel/192.168.8.154-192.168.8.185/require; ^^^^^^ Regards, Volker From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 15:06:09 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C43D116A41F for ; Thu, 17 Nov 2005 15:06:09 +0000 (GMT) (envelope-from jon.otterholm@ide.resurscentrum.se) Received: from mail1.cil.se (mail1.cil.se [217.197.56.125]) by mx1.FreeBSD.org (Postfix) with ESMTP id 248AD43D45 for ; Thu, 17 Nov 2005 15:06:08 +0000 (GMT) (envelope-from jon.otterholm@ide.resurscentrum.se) Received: from 192.168.2.10 ([192.168.2.10]) by edusrv05.edu.irc.local ([192.168.44.14]) with Microsoft Exchange Server HTTP-DAV ; Thu, 17 Nov 2005 15:06:03 +0000 Received: from by mail1.cil.se; 17 Nov 2005 15:06:03 +0000 From: Jon Otterholm To: Jeremie Le Hen In-Reply-To: <20051117135738.GH5197@obiwan.tataz.chchile.org> References: <1131541588.996.13.camel@localhost.localdomain> <20051110124903.GB67086@uk.tiscali.com> <1131629107.878.22.camel@localhost.localdomain> <20051117135738.GH5197@obiwan.tataz.chchile.org> Content-Type: text/plain Content-Transfer-Encoding: 7bit Date: Thu, 17 Nov 2005 16:06:03 +0100 Message-Id: <1132239963.819.18.camel@localhost.localdomain> Mime-Version: 1.0 X-Mailer: Evolution 2.2.3 FreeBSD GNOME Team Port Cc: freebsd-net@freebsd.org, Brian Candler Subject: Re: arp-proxy X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 15:06:10 -0000 The linux-soloution you are describeing is exactly what I want to do. Not a big fan of Linux though. I will have to wait for this to be ported to BSD. Anyone with info if this is being done? /Jon On Thu, 2005-11-17 at 14:57 +0100, Jeremie Le Hen wrote: > Hi, Jon, Brian, > > > That depends... > > > > In all this - our role is similar to an ISP, but we are buying access to > > our customers from an external part. Every customer is delivered on a > > separate vlan trunked. > > > > - Our DSL customers cannot be set on the same VLAN i a single DSLAM > > (don't ask me why - ask Alcatel). > > - We cannot build a simple bridge because the Network service provider > > can't handle when a MAC-address shows up on 2 different VLAN's. > > > > The arp-proxy should do the following: > > - Forward any broadcast packets but rewrite src to its own mac. > > - Forward unicast packets according to FDB but rewrite src to its own > > mac. > > IIUC, you want to do some kind of NAT of MAC addresses, this is not > an easy task, because you can't keep connection states only based on > the (src MAC, dst MAC) tuple. You have to use at least IP addresses > from the network layer or even TCP/UDP ports from the transport layer : > > Let's take B your bridge and I, J, K three customers. > When I wants to talk to J, once the packets emitted from I are on > J's VLAN, the tuple based only on MAC address would be > (src: B, dst: J). If K also wants to talk to J, they would have > the same tuple on J's VLAN. Therefore we won't know where to send > back replies from J. This is the reason that requires upper layers > to be taken into account. > > Anyway FreeBSD, as weel as other BSD flavors, can't do this. This is > not implemented, and I'm not sure this is something we really want... > > A more elegant solution to this kind of problem is what Linux calls > "pseudo bridge" [1]. The idea is to configure all your customers to > let them believe they all live in the same physical network (IOW as if > their trunks were bridged). The magic stands on the box linking > them all together : you do not configure it as a bridge, but as a > simple router which has one route for each customer pointing to the > relevant VLAN. > Then you set a sysctl named "proxy_arp" for each VLAN interface : this > will ask the Linux kernel to check its routing table when it receives > an ARP request. If the requested IP address doesn't live on the same > VLAN as the request came from, the kernel will send an ARP reply > claiming it owns the requested IP address. > > Therefore, the customer will believe he is talking directly to the > computer whereas the packets will be routed, as if he was explicitely > using a route. > > I hope I have been clear enough. IIRC the routing code and ARP code > are currently rewritten in order to be splitted, it would maybe be > worth to include this kind of functionnality at the same time. It > seems to have useful and concrete applications for providers. > > Best regards, > [1] http://www.sjdjweis.com/linux/proxyarp/ From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 15:24:02 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 960E216A41F for ; Thu, 17 Nov 2005 15:24:02 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from orb.pobox.com (orb.pobox.com [207.8.226.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1E82543D45 for ; Thu, 17 Nov 2005 15:24:02 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from orb (localhost [127.0.0.1]) by orb.pobox.com (Postfix) with ESMTP id 895E8704; Thu, 17 Nov 2005 10:24:51 -0500 (EST) Received: from mappit.local.linnet.org (212-74-113-67.static.dsl.as9105.com [212.74.113.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by orb.sasl.smtp.pobox.com (Postfix) with ESMTP id 3621289; Thu, 17 Nov 2005 10:24:49 -0500 (EST) Received: from brian by mappit.local.linnet.org with local (Exim 4.54 (FreeBSD)) id 1EclcD-00029D-DK; Thu, 17 Nov 2005 15:23:57 +0000 Date: Thu, 17 Nov 2005 15:23:57 +0000 From: Brian Candler To: Jon Otterholm Message-ID: <20051117152357.GA8209@uk.tiscali.com> References: <1131541588.996.13.camel@localhost.localdomain> <20051110124903.GB67086@uk.tiscali.com> <1131629107.878.22.camel@localhost.localdomain> <20051117135738.GH5197@obiwan.tataz.chchile.org> <1132239963.819.18.camel@localhost.localdomain> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1132239963.819.18.camel@localhost.localdomain> User-Agent: Mutt/1.4.2.1i Cc: freebsd-net@freebsd.org, Jeremie Le Hen Subject: Re: arp-proxy X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 15:24:02 -0000 On Thu, Nov 17, 2005 at 04:06:03PM +0100, Jon Otterholm wrote: > Not a big fan of Linux though. I will have to wait for this to be ported > to BSD. Anyone with info if this is being done? ... > > [1] http://www.sjdjweis.com/linux/proxyarp/ You can do proxyarp like that with FreeBSD now. However you can't assign the same range of IPs to multiple interfaces, for obvious reasons. I think the way you'll have to do it is to lie to your customers about the subnetting. For example, tell all your customers that they need a /16 (255.255.0.0 netmask). Then you can actually configure: ifconfig vlan0 192.168.0.1/28 ifconfig vlan1 192.168.0.17/28 ifconfig vlan2 192.168.0.33/28 ... ifconfig vlan4095 192.168.255.249/28 Now, the customer on vlan0 can use 192.168.0.2 to 192.168.0.14 with a /16 netmask. The customer on vlan1 can use 192.168.18 to 192.168.30 with a /16 netmask, and so on. When the FreeBSD machine sends a packet to the customer, that's fine. It knows which vlan interface to use, and hence ARPs for the customer down that interface, based on the fact that each customer is within their own /28 range. When the customer tries to send to another customer, you run choparp or a similar program so that if they ARP for 192.168.X.X the FreeBSD machine always responds with its own MAC address. However, I see virtually no benefit in going down this route. The customer might as well just set up a /28 netmask and point defaultroute at the relevant FreeBSD IP address (192.168.0.1 or 192.168.0.17 or ...), and then you do *proper* routing. After all, even with proxyARP, they will still see your router as an IP-level "hop" (it decrements TTL). And non-IP packets and broadcasts won't be forwarded between the subnets. Furthermore, if a customer decides to configure an IP address outside of their 'allowed' range, it won't work - and it will be hard to debug, as the FreeBSD box and the wrongly-configured box will *both* respond to the same ARP request, and so sometimes one will win and sometimes the other will win. So, I really don't think you want to do this :-) Regards, Brian. From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 15:52:05 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6F59016A41F for ; Thu, 17 Nov 2005 15:52:05 +0000 (GMT) (envelope-from jon.otterholm@ide.resurscentrum.se) Received: from mail1.cil.se (mail1.cil.se [217.197.56.125]) by mx1.FreeBSD.org (Postfix) with ESMTP id C46B743D45 for ; Thu, 17 Nov 2005 15:52:04 +0000 (GMT) (envelope-from jon.otterholm@ide.resurscentrum.se) Received: from 192.168.2.10 ([192.168.2.10]) by edusrv05.edu.irc.local ([192.168.44.14]) with Microsoft Exchange Server HTTP-DAV ; Thu, 17 Nov 2005 15:52:03 +0000 Received: from by mail1.cil.se; 17 Nov 2005 15:52:03 +0000 From: Jon Otterholm To: Brian Candler In-Reply-To: <20051117152357.GA8209@uk.tiscali.com> References: <1131541588.996.13.camel@localhost.localdomain> <20051110124903.GB67086@uk.tiscali.com> <1131629107.878.22.camel@localhost.localdomain> <20051117135738.GH5197@obiwan.tataz.chchile.org> <1132239963.819.18.camel@localhost.localdomain> <20051117152357.GA8209@uk.tiscali.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit Date: Thu, 17 Nov 2005 16:52:03 +0100 Message-Id: <1132242723.819.45.camel@localhost.localdomain> Mime-Version: 1.0 X-Mailer: Evolution 2.2.3 FreeBSD GNOME Team Port Cc: freebsd-net@freebsd.org, Jeremie Le Hen Subject: Re: arp-proxy X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 15:52:05 -0000 OK Scenario#1: -I have a range of ip's, for example 215.10.10.0 - 215.10.10.255. -I want to distrubute theese ip's to my customers via DHCP. -They are all atached to me via a VLAN-trunk on a unique VID -I have 200+ customers. If I was to subnet these addresses so that all the sustomers would get their own IF (with an IP) in my router and their own IP I could create a bunch of /30-nets but each customer would take up 4 IP's (net, G/W, CustomerIP, Broadcast) - and that is a big vaste of IP's in my opinion. If I instead could create a pseudo bridge with a "mother if" acting as gateway, distrute IP's via DHCP (ISC?) I could reduce the number of IP's and administration when adding new customers. Anyone with a souloution or revelation? /Jon On Thu, 2005-11-17 at 15:23 +0000, Brian Candler wrote: > On Thu, Nov 17, 2005 at 04:06:03PM +0100, Jon Otterholm wrote: > > Not a big fan of Linux though. I will have to wait for this to be ported > > to BSD. Anyone with info if this is being done? > ... > > > [1] http://www.sjdjweis.com/linux/proxyarp/ > > You can do proxyarp like that with FreeBSD now. However you can't assign the > same range of IPs to multiple interfaces, for obvious reasons. > > I think the way you'll have to do it is to lie to your customers about the > subnetting. For example, tell all your customers that they need a /16 > (255.255.0.0 netmask). Then you can actually configure: > > ifconfig vlan0 192.168.0.1/28 > ifconfig vlan1 192.168.0.17/28 > ifconfig vlan2 192.168.0.33/28 > ... > ifconfig vlan4095 192.168.255.249/28 > > Now, the customer on vlan0 can use 192.168.0.2 to 192.168.0.14 with a /16 > netmask. The customer on vlan1 can use 192.168.18 to 192.168.30 with a /16 > netmask, and so on. > > When the FreeBSD machine sends a packet to the customer, that's fine. It > knows which vlan interface to use, and hence ARPs for the customer down that > interface, based on the fact that each customer is within their own /28 > range. > > When the customer tries to send to another customer, you run choparp or a > similar program so that if they ARP for 192.168.X.X the FreeBSD machine > always responds with its own MAC address. > > However, I see virtually no benefit in going down this route. The customer > might as well just set up a /28 netmask and point defaultroute at the > relevant FreeBSD IP address (192.168.0.1 or 192.168.0.17 or ...), and then > you do *proper* routing. > > After all, even with proxyARP, they will still see your router as an > IP-level "hop" (it decrements TTL). And non-IP packets and broadcasts won't > be forwarded between the subnets. Furthermore, if a customer decides to > configure an IP address outside of their 'allowed' range, it won't work - > and it will be hard to debug, as the FreeBSD box and the wrongly-configured > box will *both* respond to the same ARP request, and so sometimes one will > win and sometimes the other will win. > > So, I really don't think you want to do this :-) > > Regards, > > Brian. From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 16:27:56 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BBD3316A41F for ; Thu, 17 Nov 2005 16:27:56 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from orb.pobox.com (orb.pobox.com [207.8.226.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1772043D60 for ; Thu, 17 Nov 2005 16:27:52 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from orb (localhost [127.0.0.1]) by orb.pobox.com (Postfix) with ESMTP id 9D55D739; Thu, 17 Nov 2005 11:28:42 -0500 (EST) Received: from mappit.local.linnet.org (212-74-113-67.static.dsl.as9105.com [212.74.113.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by orb.sasl.smtp.pobox.com (Postfix) with ESMTP id 489C98C; Thu, 17 Nov 2005 11:28:40 -0500 (EST) Received: from brian by mappit.local.linnet.org with local (Exim 4.54 (FreeBSD)) id 1Ecmc0-0002Dc-Ln; Thu, 17 Nov 2005 16:27:48 +0000 Date: Thu, 17 Nov 2005 16:27:48 +0000 From: Brian Candler To: Jon Otterholm Message-ID: <20051117162748.GA8417@uk.tiscali.com> References: <1131541588.996.13.camel@localhost.localdomain> <20051110124903.GB67086@uk.tiscali.com> <1131629107.878.22.camel@localhost.localdomain> <20051117135738.GH5197@obiwan.tataz.chchile.org> <1132239963.819.18.camel@localhost.localdomain> <20051117152357.GA8209@uk.tiscali.com> <1132242723.819.45.camel@localhost.localdomain> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1132242723.819.45.camel@localhost.localdomain> User-Agent: Mutt/1.4.2.1i Cc: freebsd-net@freebsd.org, Jeremie Le Hen Subject: Re: arp-proxy X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 16:27:56 -0000 On Thu, Nov 17, 2005 at 04:52:03PM +0100, Jon Otterholm wrote: > Scenario#1: > -I have a range of ip's, for example 215.10.10.0 - 215.10.10.255. > -I want to distrubute theese ip's to my customers via DHCP. > -They are all atached to me via a VLAN-trunk on a unique VID > -I have 200+ customers. > > If I was to subnet these addresses so that all the sustomers would get > their own IF (with an IP) in my router and their own IP I could create a > bunch of /30-nets but each customer would take up 4 IP's (net, G/W, > CustomerIP, Broadcast) - and that is a big vaste of IP's in my opinion. Albeit one that you can sensibly justify to a registry for your purpose. If you could get clients to run PPPoE, then you wouldn't need to allocate any /30 subnets to the VLANs, and you could give each customer a single /32 IP (either statically or from a pool). Multiple customers could share a VLAN which might be useful in future, e.g. if one VLAN serves a building with multiple users. > If I instead could create a pseudo bridge with a "mother if" acting as > gateway, distrute IP's via DHCP (ISC?) I could reduce the number of IP's > and administration when adding new customers. > > Anyone with a souloution or revelation? I think it's tricky, given the additional constraints you gave in your other E-mails. In particular, you said that MAC address xx:xx:xx:xx:xx:xx which originates on VLAN X must never appear as a source MAC address on any other VLAN, because that would confuse the switching infrastructure which links the bundle of VLANs to the customer sites. (i.e. the VLANs are not true VLANs because they are not properly isolated from each other) Given DHCP, you're not statically assigning a particular IP or range of IPs to a particular vlanN interface: so you can't "route add" to send traffic for IP address x.x.x.x down VLAN Y. Hence you need to do dynamic bridging, but with the MAC source address masquerading. Now, this is not the Linux proxy-arp solution described in the link you gave; it's something very different. I'm not aware of any implementation of this on any platform. If you're happy to hack code, the best I can suggest is you start with ng_bridge and modify it to fit. Regards, Brian. From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 17:35:45 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8099A16A41F for ; Thu, 17 Nov 2005 17:35:45 +0000 (GMT) (envelope-from baldur@foo.is) Received: from gremlin.foo.is (gremlin.foo.is [194.105.250.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id EAD8E43D46 for ; Thu, 17 Nov 2005 17:35:44 +0000 (GMT) (envelope-from baldur@foo.is) Received: from 127.0.0.1 (localhost.foo.is [127.0.0.1]) by injector.foo.is (Postfix) with SMTP id 2B1FD28448; Thu, 17 Nov 2005 17:35:40 +0000 (GMT) Received: by gremlin.foo.is (Postfix, from userid 1000) id 4053028441; Thu, 17 Nov 2005 17:35:35 +0000 (GMT) Date: Thu, 17 Nov 2005 17:35:35 +0000 From: Baldur Gislason To: Brian Candler Message-ID: <20051117173535.GF97528@gremlin.foo.is> References: <1131541588.996.13.camel@localhost.localdomain> <20051110124903.GB67086@uk.tiscali.com> <1131629107.878.22.camel@localhost.localdomain> <20051117135738.GH5197@obiwan.tataz.chchile.org> <1132239963.819.18.camel@localhost.localdomain> <20051117152357.GA8209@uk.tiscali.com> <1132242723.819.45.camel@localhost.localdomain> <20051117162748.GA8417@uk.tiscali.com> In-Reply-To: <20051117162748.GA8417@uk.tiscali.com> User-Agent: Mutt/1.4.2.1i X-Spam-Checker-Version: SpamAssassin 3.0.4 (2005-06-05) on gremlin.foo.is X-Spam-Level: X-Spam-Status: No, score=-5.9 required=6.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham version=3.0.4 X-Sanitizer: Foo MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Disposition: inline Cc: freebsd-net@freebsd.org, Jon Otterholm , Jeremie Le Hen Subject: Re: arp-proxy X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 17:35:45 -0000 On Thu, Nov 17, 2005 at 04:27:48PM +0000, Brian Candler wrote: > On Thu, Nov 17, 2005 at 04:52:03PM +0100, Jon Otterholm wrote: > > Scenario#1: > > -I have a range of ip's, for example 215.10.10.0 - 215.10.10.255. > > -I want to distrubute theese ip's to my customers via DHCP. > > -They are all atached to me via a VLAN-trunk on a unique VID > > -I have 200+ customers. > > > > If I was to subnet these addresses so that all the sustomers would get > > their own IF (with an IP) in my router and their own IP I could create a > > bunch of /30-nets but each customer would take up 4 IP's (net, G/W, > > CustomerIP, Broadcast) - and that is a big vaste of IP's in my opinion. > > Albeit one that you can sensibly justify to a registry for your purpose. > > If you could get clients to run PPPoE, then you wouldn't need to allocate > any /30 subnets to the VLANs, and you could give each customer a single /32 > IP (either statically or from a pool). Multiple customers could share a VLAN > which might be useful in future, e.g. if one VLAN serves a building with > multiple users. PPP has no home in a broadband network IMO. It's an ugly (telco) approach to things. An always-on connection shouldn't have a session based tunnel to make it work. > > > If I instead could create a pseudo bridge with a "mother if" acting as > > gateway, distrute IP's via DHCP (ISC?) I could reduce the number of IP's > > and administration when adding new customers. > > > > Anyone with a souloution or revelation? > > I think it's tricky, given the additional constraints you gave in your other > E-mails. In particular, you said that MAC address xx:xx:xx:xx:xx:xx which > originates on VLAN X must never appear as a source MAC address on any other > VLAN, because that would confuse the switching infrastructure which links > the bundle of VLANs to the customer sites. (i.e. the VLANs are not true > VLANs because they are not properly isolated from each other) > > Given DHCP, you're not statically assigning a particular IP or range of IPs > to a particular vlanN interface: so you can't "route add" to send traffic > for IP address x.x.x.x down VLAN Y. Hence you need to do dynamic bridging, > but with the MAC source address masquerading. > > Now, this is not the Linux proxy-arp solution described in the link you > gave; it's something very different. I'm not aware of any implementation of > this on any platform. I do know an implementation of this. Packetfront's ASR line of layer 3 switches does exactly this. It is a DHCP relay and ARP proxy, you can have multiple switches on the same distribution ring but it's all IP, using OSPF for managing the paths, no broadcast traffic makes it between different ports. These are specific switches designed for ethernet and fiber to the home networks. I think the routing approach in FreeBSD is brilliant, but it can be a little limiting in some aspects. It is a bit reluctant to break the rules of how routing is normally done. I have had situations where I wanted to make an ARP entry for a host that was not on a subnet I had configured on any interface (as in make a host route pointing to a mac address and a certain interface) I've also wanted to have multiple interfaces on the same physical network with different addresses on the same subnet. Now, these are both ugly hacks to which there are better approaches, but those approaches don't always apply. Baldur From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 18:02:45 2005 Return-Path: X-Original-To: net@FreeBSD.org Delivered-To: freebsd-net@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9A74E16A41F; Thu, 17 Nov 2005 18:02:45 +0000 (GMT) (envelope-from tataz@tataz.chchile.org) Received: from smtp5-g19.free.fr (smtp5-g19.free.fr [212.27.42.35]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4313D43D45; Thu, 17 Nov 2005 18:02:44 +0000 (GMT) (envelope-from tataz@tataz.chchile.org) Received: from tatooine.tataz.chchile.org (vol75-8-82-233-239-98.fbx.proxad.net [82.233.239.98]) by smtp5-g19.free.fr (Postfix) with ESMTP id 5423997F4; Thu, 17 Nov 2005 19:02:43 +0100 (CET) Received: by tatooine.tataz.chchile.org (Postfix, from userid 1000) id D8CDA405A; Thu, 17 Nov 2005 19:02:17 +0100 (CET) Date: Thu, 17 Nov 2005 19:02:17 +0100 From: Jeremie Le Hen To: Robert Watson Message-ID: <20051117180217.GM5197@obiwan.tataz.chchile.org> References: <20051110132309.A68007@fledge.watson.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051110132309.A68007@fledge.watson.org> User-Agent: Mutt/1.5.11 Cc: net@FreeBSD.org Subject: Re: TCP inflight (was: Re: Poor Samba throughput on 6.0 (fwd)) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 18:02:45 -0000 Hi, Robert, > I've seen a number of reports that TCP inflight data limiting is > substantially impacting performance on high bandwidth, low latency > networks. Not knowing much about it, I figured I'd post on net@ and see > if anyone here is interested in taking a look at some of the reports > (they're easy to find in the mailing list archives) and investigating how > to fix them. FWIW, Alexander Leidinger pointed out in this very thread [1] that Matt Dillon proposed a patch for DragonFlyBSD and that it would be interesting to test it, but nobody has taken care of this yet. Best regards, http://lists.freebsd.org/pipermail/freebsd-performance/2005-November/001654.html -- Jeremie Le Hen < jeremie at le-hen dot org >< ttz at chchile dot org > From owner-freebsd-net@FreeBSD.ORG Thu Nov 17 19:13:18 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 75D7616A41F for ; Thu, 17 Nov 2005 19:13:18 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from orb.pobox.com (orb.pobox.com [207.8.226.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1739E43D5D for ; Thu, 17 Nov 2005 19:13:17 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from orb (localhost [127.0.0.1]) by orb.pobox.com (Postfix) with ESMTP id 4DB1B6AC; Thu, 17 Nov 2005 14:14:05 -0500 (EST) Received: from mappit.local.linnet.org (212-74-113-67.static.dsl.as9105.com [212.74.113.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by orb.sasl.smtp.pobox.com (Postfix) with ESMTP id C640E89; Thu, 17 Nov 2005 14:14:01 -0500 (EST) Received: from brian by mappit.local.linnet.org with local (Exim 4.54 (FreeBSD)) id 1EcpC1-0002JT-Fu; Thu, 17 Nov 2005 19:13:09 +0000 Date: Thu, 17 Nov 2005 19:13:09 +0000 From: Brian Candler To: Baldur Gislason Message-ID: <20051117191309.GA8867@uk.tiscali.com> References: <1131541588.996.13.camel@localhost.localdomain> <20051110124903.GB67086@uk.tiscali.com> <1131629107.878.22.camel@localhost.localdomain> <20051117135738.GH5197@obiwan.tataz.chchile.org> <1132239963.819.18.camel@localhost.localdomain> <20051117152357.GA8209@uk.tiscali.com> <1132242723.819.45.camel@localhost.localdomain> <20051117162748.GA8417@uk.tiscali.com> <20051117173535.GF97528@gremlin.foo.is> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051117173535.GF97528@gremlin.foo.is> User-Agent: Mutt/1.4.2.1i Cc: freebsd-net@freebsd.org, Jon Otterholm , Jeremie Le Hen Subject: Re: arp-proxy X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Nov 2005 19:13:18 -0000 On Thu, Nov 17, 2005 at 05:35:35PM +0000, Baldur Gislason wrote: > I've also wanted to have multiple interfaces on the same physical network with > different addresses on the same subnet. That's a reasonable thing to want to do, and I remember seeing a statement saying that FreeBSD plans to allow that, by separating the ARP table from the forwarding table (which should never have been merged in the first place, really) Regards, Brian. From owner-freebsd-net@FreeBSD.ORG Fri Nov 18 00:38:40 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AA06316A41F for ; Fri, 18 Nov 2005 00:38:40 +0000 (GMT) (envelope-from r0ach@dreamisle.ca) Received: from dreamisle.ca (pitchfork.dreamisle.ca [142.179.101.124]) by mx1.FreeBSD.org (Postfix) with ESMTP id 347AE43D45 for ; Fri, 18 Nov 2005 00:38:40 +0000 (GMT) (envelope-from r0ach@dreamisle.ca) Received: from [10.0.0.43] (lappy.dreamisle.ca [10.0.0.43]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dreamisle.ca (Postfix) with ESMTP id CC86D80F8 for ; Thu, 17 Nov 2005 16:38:39 -0800 (PST) Message-ID: <437D227D.1030906@dreamisle.ca> Date: Thu, 17 Nov 2005 16:38:21 -0800 From: r0ach User-Agent: Thunderbird 1.5 (Windows/20051025) MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: bridge not receiving packets? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Nov 2005 00:38:40 -0000 im trying to setup a wireless access point using 6.0-release. i can associate with ath0, but packets sent out over the bridge arent returned. any ideas on whats causing packets to go astray? network: {Internet} | ------------- | DSL Modem | ------------- | ---------- | fw/ | | router | ---------- | 10.0.0.1 ---------- <..............> | Switch | ----- xl0 . FreeBSD . ---------- .251. Access Point . | <..............> ----------- ath0 (g520) ^ ^ ^ ^ pc1 pc2 pc3 ^^^^ .10 .11 .12 ^ .20 <....^.....> . windows . . wifi . . client . <..........> using tcpdump i watched for dhcp requests from the windows wireless client on my router, and then also watched for return packets on fbsd from the router, heres what i saw -------------- router, sniffing for wireless mac -------------------- $ sudo tcpdump -ttt -vv -n -i xl0 ether host 00:13:46:48:65:87 tcpdump: listening on xl0, link-type EN10MB Nov 17 16:05:55.885661 arp who-has 10.0.0.1 tell 10.0.0.20 Nov 17 16:05:55.885699 arp reply 10.0.0.1 is-at 0:1:3:e6:8d:2e Nov 17 16:05:56.077521 0.0.0.0.68 > 255.255.255.255.67: xid:0xcf5ec32c flags:0x8000 [|bootp] (ttl 128, id 11092, len 328) Nov 17 16:05:56.084988 0.0.0.0.68 > 255.255.255.255.67: xid:0xcf5ec32c flags:0x8000 [|bootp] (ttl 128, id 11094, len 334) Nov 17 16:05:56.298105 arp who-has 10.0.0.20 tell 10.0.0.20 Nov 17 16:05:56.362580 arp who-has 10.0.0.20 tell 10.0.0.20 Nov 17 16:05:56.885508 arp who-has 10.0.0.1 tell 10.0.0.20 Nov 17 16:05:56.885543 arp reply 10.0.0.1 is-at 0:1:3:e6:8d:2e Nov 17 16:05:57.362950 arp who-has 10.0.0.20 tell 10.0.0.20 Nov 17 16:05:57.885822 arp who-has 10.0.0.1 tell 10.0.0.20 Nov 17 16:05:57.885852 arp reply 10.0.0.1 is-at 0:1:3:e6:8d:2e Nov 17 16:05:58.450359 0.0.0.0.68 > 255.255.255.255.67: xid:0xbcafa65b [|bootp] (ttl 128, id 11102, len 328) Nov 17 16:05:58.451643 10.0.0.1.67 > 10.0.0.20.68: xid:0xbcafa65b Y:10.0.0.20 [|bootp] [tos 0x10] (ttl 16, id 0, len 328) Nov 17 16:06:02.504384 0.0.0.0.68 > 255.255.255.255.67: xid:0xbcafa65b secs:1024 [|bootp] (ttl 128, id 11385, len 328) Nov 17 16:06:02.505653 10.0.0.1.67 > 10.0.0.20.68: xid:0xbcafa65b secs:1024 Y:10.0.0.20 [|bootp] [tos 0x10] (ttl 16, id 0, len 328) Nov 17 16:06:09.446029 0.0.0.0.68 > 255.255.255.255.67: xid:0xbcafa65b secs:2816 [|bootp] (ttl 128, id 11386, len 328) Nov 17 16:06:09.447343 10.0.0.1.67 > 10.0.0.20.68: xid:0xbcafa65b secs:2816 Y:10.0.0.20 [|bootp] [tos 0x10] (ttl 16, id 0, len 328) Nov 17 16:06:26.381724 0.0.0.0.68 > 255.255.255.255.67: xid:0xbcafa65b secs:7168 [|bootp] (ttl 128, id 11391, len 328) Nov 17 16:06:26.383041 10.0.0.1.67 > 10.0.0.20.68: xid:0xbcafa65b secs:7168 Y:10.0.0.20 [|bootp] [tos 0x10] (ttl 16, id 0, len 328) Nov 17 16:06:59.394232 arp who-has 10.0.0.20 tell 10.0.0.20 Nov 17 16:07:00.292830 arp who-has 10.0.0.20 tell 10.0.0.20 Nov 17 16:07:01.293211 arp who-has 10.0.0.20 tell 10.0.0.20 Nov 17 16:07:02.359144 10.0.0.20.1638 > 239.255.255.250.1900: udp 133 [ttl 1] (id 11407, len 161) Nov 17 16:07:02.371328 10.0.0.20.137 > 10.255.255.255.137: udp 68 (ttl 128, id 11409, len 96) Nov 17 16:07:02.392301 10.0.0.20 > 224.0.0.22: igmp-2 [v2] [ttl 1] (id 11410, len 40, optlen=4 IPOPT-148{4}) Nov 17 16:07:02.425039 10.0.0.20.1642 > 239.255.255.250.1900: udp 133 [ttl 1] (id 11411, len 161) Nov 17 16:07:02.943800 10.0.0.20 > 224.0.0.22: igmp-2 [v2] [ttl 1] (id 11413, len 40, optlen=4 IPOPT-148{4}) Nov 17 16:07:03.121578 10.0.0.20.137 > 10.255.255.255.137: udp 68 (ttl 128, id 11414, len 96) Nov 17 16:07:03.871996 10.0.0.20.137 > 10.255.255.255.137: udp 68 (ttl 128, id 11415, len 96) ------------ fbsd6.0-release sniffing for router mac ----------------- # tcpdump -tttt -vv -n -i xl0 ether host 0:1:3:e6:8d:2e tcpdump: listening on xl0, link-type EN10MB (Ethernet), capture size 96 bytes 2005-11-17 16:05:40.481359 IP (tos 0x10, ttl 16, id 0, offset 0, flags [none], proto: UDP (17), length: 328) 10.0.0.1.67 > 255.255.255.255.68: BOOTP/DHCP, Reply, length: 300, xid:0xcf5ec32c, flags: [Broadcast] (0x8000) Your IP: 10.0.0.20 Client Ethernet Address: 00:13:46:48:65:87 [|bootp] 2005-11-17 16:05:40.633816 IP (tos 0x10, ttl 16, id 0, offset 0, flags [none], proto: UDP (17), length: 347) 10.0.0.1.67 > 255.255.255.255.68: BOOTP/DHCP, Reply, length: 319, xid:0xcf5ec32c, flags: [Broadcast] (0x8000) Your IP: 10.0.0.20 Client Ethernet Address: 00:13:46:48:65:87 [|bootp] from windows client, if i tried to ping router id see this in routers tcpdump... Nov 17 16:08:49.436712 arp who-has 10.0.0.1 tell 10.0.0.20 Nov 17 16:08:49.436753 arp reply 10.0.0.1 is-at 0:1:3:e6:8d:2e Nov 17 16:08:54.602269 arp who-has 10.0.0.1 tell 10.0.0.20 Nov 17 16:08:54.602304 arp reply 10.0.0.1 is-at 0:1:3:e6:8d:2e but nothing on fbsd, here is some more system info # kldstat Id Refs Address Size Name 1 10 0xc0400000 63070c kernel 2 1 0xc0a31000 d828 ipfw.ko 3 1 0xc0a3f000 80b0 bridge.ko 4 1 0xc0a48000 10840 if_ath.ko 5 2 0xc0a59000 26b60 ath_hal.ko 6 2 0xc0a80000 2c7c ath_rate.ko # ipfw show 00100 28069 9436537 allow ip from any to any 65535 8 1598 deny ip from any to any # sysctl -a | grep "ether.bridge" net.link.ether.bridge_cfg: ath0:1,xl0:1 net.link.ether.bridge_ipfw: 1 net.link.ether.bridge_ipf: 0 net.link.ether.bridge.config: ath0:1,xl0:1 net.link.ether.bridge.enable: 1 net.link.ether.bridge.predict: 4818 net.link.ether.bridge.dropped: 0 net.link.ether.bridge.packets: 27839 net.link.ether.bridge.ipfw_collisions: 0 net.link.ether.bridge.ipfw_drop: 0 net.link.ether.bridge.copy: 0 net.link.ether.bridge.ipfw: 1 net.link.ether.bridge.ipf: 0 net.link.ether.bridge.debug: 0 net.link.ether.bridge.version: 031224 # arp -a router.dreamisle.ca (10.0.0.1) at 00:01:03:e6:8d:2e on xl0 [ethernet] lappy.dreamisle.ca (10.0.0.20) at 00:13:46:48:65:87 on xl0 [ethernet] # ifconfig -a xl0: flags=8943 mtu 1500 options=9 inet6 fe80::201:2ff:fee8:8346%xl0 prefixlen 64 scopeid 0x1 inet 10.0.0.251 netmask 0xff000000 broadcast 10.255.255.255 ether 00:01:02:e8:83:46 media: Ethernet autoselect (100baseTX ) status: active ath0: flags=8943 mtu 1500 inet6 fe80::211:95ff:fee4:c861%ath0 prefixlen 64 scopeid 0x2 ether 00:11:95:e4:c8:61 media: IEEE 802.11 Wireless Ethernet OFDM/54Mbps mode 11g status: associated ssid amishg channel 11 bssid 00:11:95:e4:c8:61 authmode OPEN privacy OFF txpowmax 29 protmode OFF dtimperiod 1 bintval 100 # dmesg Copyright (c) 1992-2005 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 6.0-RELEASE #0: Thu Nov 3 09:36:13 UTC 2005 root@x64.samsco.home:/usr/obj/usr/src/sys/GENERIC Timecounter "i8254" frequency 1193182 Hz quality 0 CPU: Pentium II/Pentium II Xeon/Celeron (266.44-MHz 686-class CPU) Origin = "GenuineIntel" Id = 0x634 Stepping = 4 Features=0x80f9ff real memory = 167772160 (160 MB) avail memory = 154660864 (147 MB) ath_hal: 0.9.14.9 (AR5210, AR5211, AR5212, RF5111, RF5112, RF2413) npx0: [FAST] npx0: on motherboard npx0: INT 16 interface cpu0 on motherboard pcib0: pcibus 0 on motherboard pir0: on motherboard pci0: on pcib0 agp0: mem 0x44000000-0x47ffffff at d evice 0.0 on pci0 pcib1: at device 1.0 on pci0 pci1: on pcib1 pci1: at device 0.0 (no driver attached) xl0: <3Com 3c905B-TX Fast Etherlink XL> port 0x2000-0x207f mem 0x42000000-0x4200 007f irq 11 at device 13.0 on pci0 miibus0: on xl0 xlphy0: <3Com internal media interface> on miibus0 xlphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto xl0: Ethernet address: 00:01:02:e8:83:46 ath0: mem 0x42100000-0x4210ffff irq 11 at device 15.0 on pci0 ath0: Ethernet address: 00:11:95:e4:c8:61 ath0: mac 7.9 phy 4.5 radio 5.6 isab0: at device 20.0 on pci0 isa0: on isab0 atapci0: port 0x1f0-0x1f7,0x3f6,0x170-0x177,0x37 6,0x20a0-0x20af at device 20.1 on pci0 ata0: on atapci0 ata1: on atapci0 uhci0: port 0x2080-0x209f irq 11 at de vice 20.2 on pci0 uhci0: [GIANT-LOCKED] usb0: on uhci0 usb0: USB revision 1.0 uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered pci0: at device 20.3 (no driver attached) pmtimer0 on isa0 orm0: at iomem 0xc0000-0xc7fff,0xe0000-0xe7fff on isa0 atkbdc0: at port 0x60,0x64 on isa0 atkbd0: irq 1 on atkbdc0 kbd0 at atkbd0 atkbd0: [GIANT-LOCKED] fdc0: at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on isa0 fdc0: [FAST] fd0: <1440-KB 3.5" drive> on fdc0 drive 0 ppc0: at port 0x378-0x37f irq 7 on isa0 ppc0: SMC-like chipset (ECP/EPP/PS2/NIBBLE) in COMPATIBLE mode ppc0: FIFO with 16/16/8 bytes threshold ppbus0: on ppc0 plip0: on ppbus0 lpt0: on ppbus0 lpt0: Interrupt-driven port ppi0: on ppbus0 sc0: at flags 0x100 on isa0 sc0: VGA <16 virtual consoles, flags=0x300> sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0 sio0: type 16550A sio1 at port 0x2f8-0x2ff irq 3 on isa0 sio1: type 16550A vga0: at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0 unknown: can't assign resources (port) unknown: can't assign resources (port) unknown: can't assign resources (port) unknown: can't assign resources (port) unknown: can't assign resources (memory) unknown: can't assign resources (port) unknown: can't assign resources (port) Timecounter "TSC" frequency 266444180 Hz quality 800 Timecounters tick every 1.000 msec ipfw2 (+ipv6) initialized, divert loadable, rule-based forwarding disabled, defa ult to deny, logging disabled ad0: 3077MB at ata0-master UDMA33 acd0: CDROM at ata1-master PIO4 Trying to mount root from ufs:/dev/ad0s1a bridge_off: n_clusters 0 parse_bdg_cfg: found ath0:1 next c 44 parse_bdg_cfg: found xl0:1 next c 0 xl0: promiscuous mode enabled bridge_on: xl0 promisc ON if_flags 0x8903 bdg_flags 0x5 ath0: promiscuous mode enabled bridge_on: ath0 promisc ON if_flags 0x8903 bdg_flags 0x5 bridge_in: new addr 00.13.46.48.65.87 at 975 for ath0 From owner-freebsd-net@FreeBSD.ORG Fri Nov 18 14:50:48 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B3F3316A424 for ; Fri, 18 Nov 2005 14:50:48 +0000 (GMT) (envelope-from ucsaba@freemail.hu) Received: from fmx11.freemail.hu (fmx11.freemail.hu [195.228.245.61]) by mx1.FreeBSD.org (Postfix) with SMTP id D1AC543D45 for ; Fri, 18 Nov 2005 14:50:47 +0000 (GMT) (envelope-from ucsaba@freemail.hu) Received: (qmail 76096 invoked from network); 18 Nov 2005 15:50:45 +0100 Received: from fm12.freemail.hu (195.228.245.112) by fmx11.freemail.hu with SMTP; 18 Nov 2005 15:50:45 +0100 Received: (qmail 52211 invoked by uid 227048); 18 Nov 2005 15:50:42 +0100 Date: Fri, 18 Nov 2005 15:50:42 +0100 (CET) From: Csaba Urban To: freebsd-net@freebsd.org Message-ID: X-Originating-IP: [85.159.48.68] X-HTTP-User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; CHARSET=ISO-8859-2 Content-Transfer-Encoding: QUOTED-PRINTABLE X-Freemail: message scanned Subject: PF rule on bridged interface won't match X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Nov 2005 14:50:48 -0000 Hi, I can't have packets match on PF rules on a member of if_bridge if it is=20 not bridged but comes from an other IP interface. Bridged packets=20 match correctly. bridge0: flags=3D8041 mtu 1500 inet 192.168.1.1 netmask 0xffffffe0 ether ac:de:48:af:bc:8f priority 32768 hellotime 2 fwddelay 15 maxage 20 member: vlan3 flags=3D3 member: vlan2 flags=3D3 member: vlan1 flags=3D3 PF rule: pass in on vlan1 all pass out on vlan1 all This rule matches only if traffic is bridged (goes directly layer2 from=20 vlan1 to vlan2 or vlan3). If it is delivered to the IP layer or it comes fr= om=20 there then it won't match. The appropriate sysctls (net.link.bridge.pfil_member and=20 net.link.bridge.pfil_bridge) are set. Any ideas? csaba =0A=0A_____________________________________________________________________= __=0ARendelj k=E9pet =E9s nyerj=E9l g=E9pet a T-Online Fot=F3t=E1r=E1val de= cember 15-ig.=0Ahttp://www.t-online.hu=0A=0A From owner-freebsd-net@FreeBSD.ORG Sat Nov 19 07:21:53 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3378216A41F for ; Sat, 19 Nov 2005 07:21:53 +0000 (GMT) (envelope-from nobody@ecn.cz) Received: from ecn4.ecn.cz (ecnd.ecn.cz [62.44.10.8]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7955443D46 for ; Sat, 19 Nov 2005 07:21:52 +0000 (GMT) (envelope-from nobody@ecn.cz) Received: from ecn1.ecn.cz (ecna.ecn.cz [62.44.10.7]) by ecn4.ecn.cz (8.12.11/8.12.11) with ESMTP id jAJ7LnTe023906 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sat, 19 Nov 2005 08:21:50 +0100 Received: from ecn1.ecn.cz (ecn1-new [127.0.0.1]) by ecn1.ecn.cz (8.13.1/8.12.8) with ESMTP id jAJ7LisM008395; Sat, 19 Nov 2005 08:21:44 +0100 Received: (from nobody@localhost) by ecn1.ecn.cz (8.13.1/8.13.1/Submit) id jAJ7LiDf008392; Sat, 19 Nov 2005 08:21:44 +0100 Date: Sat, 19 Nov 2005 08:21:44 +0100 Message-Id: <200511190721.jAJ7LiDf008392@ecn1.ecn.cz> To: freebsd-net@freebsd.org From: Best Postcards X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0b3 (ecn4.ecn.cz [62.44.10.8]); Sat, 19 Nov 2005 08:21:50 +0100 (CET) X-Virus-Scanned: ClamAV version 0.87, clamav-milter version 0.87 on ecn8.ecn.cz X-Virus-Status: Clean MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: postcard@postcard.com Subject: You have received an electronic postcard. X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Nov 2005 07:21:53 -0000 Hello friend ! You have just received a postcard from someone who cares about you! This is a part of the message: "Hy there! It has been a long time since I haven´t heared about you! I´ve just found out about this service from Claire, a friend of mine who also told me that..." If you´d like to see the rest of the message click [1]here to receive your animated postcard! =================== Thank you for using www.postcard1000.com ´s services !!! Please take this opportunity to let your friends hear about us by sending them a postcard from our collection ! ================== References 1. http://www.yourpostcard.home.ro/postcard.gif.exe From owner-freebsd-net@FreeBSD.ORG Sat Nov 19 10:23:25 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0006316A41F for ; Sat, 19 Nov 2005 10:23:24 +0000 (GMT) (envelope-from alan@cuhk.edu.hk) Received: from messenger.itsc.cuhk.edu.hk (messenger.itsc.cuhk.edu.hk [137.189.11.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4F6BF43D46 for ; Sat, 19 Nov 2005 10:23:23 +0000 (GMT) (envelope-from alan@cuhk.edu.hk) Received: from messenger.itsc.cuhk.edu.hk (localhost.localdomain [127.0.0.1]) by messenger.itsc.cuhk.edu.hk (8.13.1/8.13.1) with ESMTP id jAJANMkB030792 for ; Sat, 19 Nov 2005 18:23:22 +0800 Received: from cuhk80e75bd78d (pn-205-188.itsc.cuhk.edu.hk [137.189.205.188]) by messenger.itsc.cuhk.edu.hk (8.13.1/8.13.1) with SMTP id jAJANLk8030770 for ; Sat, 19 Nov 2005 18:23:22 +0800 Message-ID: <000501c5ecf3$43f27b60$bb00a8c0@cuhk80e75bd78d> From: "alan" To: Date: Sat, 19 Nov 2005 18:23:15 +0800 MIME-Version: 1.0 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.2180 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Content-Type: text/plain; charset="big5" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Alpine4Linux X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Nov 2005 10:23:25 -0000 Hi, Neel I search though the internet for a user tcp/ip stack. And I = heard that you have managed to have the FreeBSD networking stack running = on top of Linux kernel. Could I have a copy of your program. regards, Alan From owner-freebsd-net@FreeBSD.ORG Sat Nov 19 16:05:23 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8690416A41F for ; Sat, 19 Nov 2005 16:05:23 +0000 (GMT) (envelope-from kaakun@highway.ne.jp) Received: from mx.highway.ne.jp (pip7.gate01.com [61.122.117.245]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2F26D43D45 for ; Sat, 19 Nov 2005 16:05:22 +0000 (GMT) (envelope-from kaakun@highway.ne.jp) Received: from [219.0.96.106] (helo=[192.168.11.18]) by pop12.isp.us-com.jp with esmtp (Mail 4.20) id 1EdVDN-0000VU-B7 for freebsd-net@freebsd.org; Sun, 20 Nov 2005 01:05:21 +0900 Message-ID: <437F4D18.9030003@highway.ne.jp> Date: Sun, 20 Nov 2005 01:04:40 +0900 From: Kazuaki Oda User-Agent: Mozilla Thunderbird 1.0.6 (X11/20050731) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-2022-JP Content-Transfer-Encoding: 7bit Subject: gratuitous ARP from CARP backup host X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Nov 2005 16:05:23 -0000 Hi, I reported a problem a few days ago that CARP backup host replies ARP request. This problem has been fixed, thanks. But I found one more problem. 1) master host and backup host are connected to the same layer 3 switch. 2) at master host, I run the following command: # ifconfig carp2 create # ifconfig carp2 vhid 22 advskew 10 pass xxxx 192.168.1.7/24 3) master host sends gratuitous ARP. 4) at backup host, I run the following command: # ifconfig carp2 create # ifconfig carp2 vhid 22 advskew 100 pass xxxx 192.168.1.7/24 5) backup host sends gratuitous ARP. And so, layer 3 switch sends packets addressed for 192.168.1.7 to the port connected to backup host, sigh... I don't know how to fix it. Is there any reason why CARP backup host sends gratuitous ARP? -------------------- Kazuaki Oda From owner-freebsd-net@FreeBSD.ORG Sat Nov 19 17:31:17 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9642516A41F for ; Sat, 19 Nov 2005 17:31:17 +0000 (GMT) (envelope-from dunstan@freebsd.czest.pl) Received: from freebsd.czest.pl (freebsd.czest.pl [80.48.250.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id D24CB43D45 for ; Sat, 19 Nov 2005 17:31:16 +0000 (GMT) (envelope-from dunstan@freebsd.czest.pl) Received: from freebsd.czest.pl (freebsd.czest.pl [80.48.250.4]) by freebsd.czest.pl (8.12.10/8.12.9) with ESMTP id jAJHWaPx076051 for ; Sat, 19 Nov 2005 17:32:36 GMT (envelope-from dunstan@freebsd.czest.pl) Received: (from dunstan@localhost) by freebsd.czest.pl (8.13.4/8.12.9/Submit) id jAJHWZ4v076048 for freebsd-net@freebsd.org; Sat, 19 Nov 2005 17:32:35 GMT (envelope-from dunstan) Date: Sat, 19 Nov 2005 17:32:35 +0000 From: "Wojciech A. Koszek" To: freebsd-net@freebsd.org Message-ID: <20051119173235.GA75949@freebsd.czest.pl> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-2 Content-Disposition: inline User-Agent: Mutt/1.4.2.1i Subject: [CALL FOR TESTERS] ng_bridge(4) multithreaded X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Nov 2005 17:31:17 -0000 Hello, With Gleb's help I've written patch for ng_bridge(4) which makes it ready for running multithreaded. I think it would be better to let more people test it. Patch is here: http://freebsd.czest.pl/dunstan/FreeBSD/ng_bridge_locking.2 Comments and eventual reports from anyone who uses ng_bridge(4) on MP machine are welcome. Cheers, -- * Wojciech A. Koszek && dunstan@FreeBSD.czest.pl From owner-freebsd-net@FreeBSD.ORG Sat Nov 19 20:33:42 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DD9D416A41F for ; Sat, 19 Nov 2005 20:33:42 +0000 (GMT) (envelope-from thompsa@freebsd.org) Received: from heff.fud.org.nz (60-234-149-201.bitstream.orcon.net.nz [60.234.149.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6C66243D70 for ; Sat, 19 Nov 2005 20:33:38 +0000 (GMT) (envelope-from thompsa@freebsd.org) Received: by heff.fud.org.nz (Postfix, from userid 1001) id 869E12841A; Sun, 20 Nov 2005 09:33:37 +1300 (NZDT) Date: Sun, 20 Nov 2005 09:33:37 +1300 From: Andrew Thompson To: Csaba Urban Message-ID: <20051119203337.GA804@heff.fud.org.nz> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.11 Cc: freebsd-net@freebsd.org Subject: Re: PF rule on bridged interface won't match X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Nov 2005 20:33:43 -0000 On Fri, Nov 18, 2005 at 03:50:42PM +0100, Csaba Urban wrote: > Hi, > > I can't have packets match on PF rules on a member of if_bridge if it is > not bridged but comes from an other IP interface. Bridged packets > match correctly. > > bridge0: flags=8041 mtu 1500 > inet 192.168.1.1 netmask 0xffffffe0 > ether ac:de:48:af:bc:8f > priority 32768 hellotime 2 fwddelay 15 maxage 20 > member: vlan3 flags=3 > member: vlan2 flags=3 > member: vlan1 flags=3 > > PF rule: > pass in on vlan1 all > pass out on vlan1 all > > This rule matches only if traffic is bridged (goes directly layer2 from > vlan1 to vlan2 or vlan3). If it is delivered to the IP layer or it comes from > there then it won't match. This is how its currently implemented. You can match locally generated packets on the bridge0 interface, is that sufficient for your setup? Andrew