Date: Wed, 17 Dec 2008 22:57:11 +0300 From: Lev Serebryakov <lev@serebryakov.spb.ru> To: freebsd-net@freebsd.org Subject: ifconfig <point-to-point-iface> <ip> <dest> add route "<dest> <ip>" to table -- why? Message-ID: <976792756.20081217225711@serebryakov.spb.ru>
next in thread | raw e-mail | index | archive | help
Hello, Freebsd-net. Why does adding address and destination for point-to-point interface add route for destination address? It is not always right. For example, many providers have VPN concentrator address same as "remote end" address and this default create loop -- VPN packets (TCP, UDP or GRE ones)goes into tunnel itself, ooops, host locked up... It could be fixed by deleting route right after tunnel creation via if-up script. But second problem doesn't have good solution, read ahead... Another problem, created by this default, is like this: if we have routing record for other tunnel end already (because it IS VPN server and we NEED routing to it to CREATE tunnel!), me can not assign tunnel interface address and connection fails :( I don't see any workaround for this :( --=20 // Black Lion AKA Lev Serebryakov <lev@serebryakov.spb.ru>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?976792756.20081217225711>