From owner-freebsd-questions Tue Feb 25 17: 4: 3 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 824B737B401 for ; Tue, 25 Feb 2003 17:04:01 -0800 (PST) Received: from skywalker.rogness.net (skywalker.rogness.net [64.251.173.102]) by mx1.FreeBSD.org (Postfix) with ESMTP id AE93A43FD7 for ; Tue, 25 Feb 2003 17:04:00 -0800 (PST) (envelope-from nick@rogness.net) Received: from skywalker.rogness.net (localhost [127.0.0.1]) by skywalker.rogness.net (8.12.5/8.12.5) with ESMTP id h1Q12tFH054918; Tue, 25 Feb 2003 18:02:55 -0700 (MST) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by skywalker.rogness.net (8.12.5/8.12.5/Submit) with ESMTP id h1Q12tec054915; Tue, 25 Feb 2003 18:02:55 -0700 (MST) X-Authentication-Warning: skywalker.rogness.net: nick owned process doing -bs Date: Tue, 25 Feb 2003 18:02:53 -0700 (MST) From: Nick Rogness To: Krassimir Slavchev Cc: questions@FreeBSD.ORG Subject: Re: gif tunnels? In-Reply-To: <20030225172530.E54509-100000@skywalker.rogness.net> Message-ID: <20030225180024.T54509-100000@skywalker.rogness.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Tue, 25 Feb 2003, Nick Rogness wrote: > On Fri, 21 Feb 2003, Krassimir Slavchev wrote: > > > Hello All, > > > > I have: > > > > Private Net 1 Firewall 1 Firewall 2 Private Net 2 > > --------------- ------------ ------------ --------------- > > | 10.1.0.0/24 |----| FBSD 4.7 |--//--| FBSD 4.7 |----| 10.2.0.0/24 | > > --------------- ------------ ------------ --------------- > > |______tunnel______| > > > > I want to configure tunnel between "Private Net 1" and "Private Net 2" > > and > > can not get tunnel to work when Public IP of "Firewall 1" and "Firewall > > 2" are > > from same subnet. If public IPs of my firewalls are from different > > subnets all works fine. > > > > On "Firewall 1" I do: > > # ifconfig gif0 create > > # gifconfig gif0 x.y.z.1 x.y.z.2 > > # ifconfig gif0 inet 10.255.255.1 10.255.255.2 netmask 255.255.255.252 > > # route add -net 10.2.0.0/24 10.255.255.2 > > > > On "Firewall 2" I do: > > # ifconfig gif0 create > > # gifconfig gif0 x.y.z.2 x.y.z.1 > > # ifconfig gif0 inet 10.255.255.2 10.255.255.1 netmask 255.255.255.252 > > # route add -net 10.1.0.0/24 10.255.255.1 > > > > Is there any way to get this to work? > > Your concept is right, I think your syntax is wrong. I use this > sytnax: > > > # ifconfig gif0 create > # gifconfig gif0 tunnel x.y.z.1 x.y.z.2 ^^^^^^^^^^ Sorry this line should be: # ifconfig gif0 tunnel x.y.z.1 x.y.z.2 gifconfig is depreciated. It's features have been built into the 'ifconfig' command. See man ifconfig > # ifconfig gif0 10.255.255.1 10.255.255.2 netmask 255.255.255.252 > # route add -net 10.2.0.0/24 10.255.255.2 > > Pay close attention to the "tunnel" keyword on line 2 above. > > Also, make sure gateway_enable="YES" is in /etc/rc.conf. Nick Rogness - How many people here have telekenetic powers? Raise my hand. -Emo Philips To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message