Re: [Openvpn-users] Is ethernet bridging possible on FreeBSD via OpenVPN?

[Alex K <alex@xxxxxxx>]

hi Tom, thanks for the quick reply.

I do not have any ip address set on the tap device.  I do not know what 
address I would even pick.

Because i've set up boxes with multiple ethernet cards that i've 
bridged (and used ipfw/dummynet making the box do traffic shaping).  
And in neither of those cases do the bridging interfaces need (or have) 
ip addresses.  They take everything arriving on one ethernet card, pass 
it by ipfw, and dump it onto the other network card.

It took me a while to even come up with the idea of using the same 
concept with a tunnel, via the tap interface as the "other network 
card".

The real network card doesn't have an IP address set either.  Would it 
need one too?

Are there any other tests I can do to figure out what's going on? I've 
set verbosity level of openvpn to 9 and i see the pings going through 
both ways.

Alex

On Wednesday, September 3, 2003, at 09:25 PM, Tom Bin wrote:

> Hi, Alex
>
>
> I am doing totally the same thing with you.
> My OS is FreeBSD 4.4 and running bridged mode.
> Openvpn on FreeBSD with bridged mode is working fine for me.
> My XP can even get an IP address from FreeBSD via DHCP.
>
> After reviewing your configuration, the only one question I want to 
> know
> is that if you explicitly set an IP address for your tap interface on
> FreeBSD?
>
> It seems not let IP traffice thru the bridged interface if you didn't 
> assign
> an IP address for the tap interface on BSD.
>
>
> Tom
>
>
> ----- Original Message -----
> From: "Alex K" <alex@xxxxxxx>
> To: <openvpn-users@xxxxxxxxxxxxxxxxxxxxx>
> Sent: Thursday, September 04, 2003 9:12 AM
> Subject: [Openvpn-users] Is ethernet bridging possible on FreeBSD via
> OpenVPN?
>
>
> > I've looked through all the documentation and the majority of it seems
> > Linux specific.  I however am using FreeBSD and can't seem to figure
> > out how to get ethernet bridging working.
> >
> > Here's what i've done so far.
> >
> > - Using OpenVPN 1.4.3 (compiled from source) on both machines (FreeBSD
> > 4.8)
> > - Using the if_tap.o module (installed from the ports)
> > - Compiled BRIDGE support into the kernel, rebooted
> > - Ran OpenVPN to create the tap0 interface
> > - Set bridging via sysctl:
> >
> > net.link.ether.bridge_cfg: fxp0:1,tap0:1
> > net.link.ether.bridge: 1
> >
> > Both interfaces are now promiscuous (fxp & tap), but when doing a
> > tcpdump on either fxp or tap (can a tcpdump be done on tap?), traffic
> > does not seem to be crossing over from the other end of the tunnel.
> > What am I doing wrong??
> >
> > Here's the openvpn.conf i am using:
> >
> > dev tap
> > remote 10.32.253.46
> > secret /usr/local/etc/static.key
> > port 5000
> > comp-lzo
> >
> > I know that 10.32.253 is a private ip, but I'm working with a weird
> > network topology and i've ensured both machines can reach each other
> > (at least via ping).  They seem to report pinging events on either 
> > side
> > of the tunnel when they occur on the tunnel so they are seeing each
> > other.


____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users