Date: Fri, 12 Feb 2010 14:32:55 -0700 From: Brett Glass <brett@lariat.net> To: "Li, Qing" <qing.li@bluecoat.com> Cc: net@freebsd.org Subject: RE: Routing problems on VPN servers running FreeBSD 8.0-RELEASE Message-ID: <201002122133.OAA16835@lariat.net>
next in thread | raw e-mail | index | archive | help
Qing: Last night, I updated an 8.0-RELEASE test machine to 8.0-RELENG using csup, and then rebuilt the world and the kernel. I then tested both ppp(8) (with PoPTop) and mpd 5.3 on the machine. (I did not recompile mpd, but ppp(8) was of course recompiled when I rebuilt the world.) Proxy ARP for users tunneling into the LAN via a PPTP VPN did not work. mpd produced no error message, but it did not create the proxy arp entry and the VPN connection was immediately broken. ppp(8) gave the error message Feb 12 14:16:02 <daemon.err> tester ppp[1078]: tun0: Error: Add proxy arp entry <address>: File exists and then disconnected. Connections for which firewall NAT (rather than proxy arp) was used seemed to function properly. Unfortunately, this isn't an acceptable workaround for machines that need full access when tunneling through a firewall. I've been told that the ARP and routing changes are new to 8.0-RELEASE. Therefore, we may abandon 8-STABLE and try 7.3-RELEASE (assuming that we can find drivers for our hardware) if we can't get routing and ARP to work with the various PPP implementations soon. Please let me know if you can implement changes that will help us use 8-STABLE. --Brett Glass
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201002122133.OAA16835>