|
|
well.... hope this'll make sense better than prev. messages )
(SIMPLIFIED CONFIGURATION INFO)
We have 2 gateways: Win GW an FreeBSD GW.
192.168.254.6 is Win GW tunnel endpoint (tun interface)
192.168.254.5 is FreeBSD GW tunnel endpoint (tun interface)
<I> Configuration details are in the attachment.
(STATE 1)
After arp table at the Win GW is flushed - I loose
ability to ping any of its interfaces from the FreeBSD gateway...
And got this strange output of "arp -a" at Win GW when I start pinging
from FreeBSD to Win:
<...>
Interface: 192.168.254.6 --- 0x100006
Internet Address Physical Address Type
192.168.254.5 00-00-00-00-00-00 invalid
<...>
<I> There is a "tcpdump" of both Win GW and FreeBSD GW tunnel endpoints
in the attachment.
(STATE 2)
Only after I ping from 192.168.254.6 to 192.168.254.5 I get
ability to ping from 192.168.254.5 to 192.168.254.6 ...
but just for a TTL of dynamic arp-record at the Win GW.
Routing tables at both gateways remain the same as in (1), so, I guess,
it is not an issue of routing...
After the arp-record at Win GW is flushed i return to state (1).
or, sometimes, go to the state (3) :]
(STATE 3)
Listen to Jethro Tull and have a cup of tea.
--// leonid.
<...>
19:29:46.568921 192.168.254.5 > 192.168.127.1: icmp: echo request
19:29:47.578993 192.168.254.5 > 192.168.127.1: icmp: echo request
<...> No. Time Source Destination Protocol Info
1 0.000000 192.168.254.5 192.168.254.6 ICMP Echo (ping) request
Frame 1 (98 bytes on wire, 98 bytes captured)
Ethernet II, Src: 00:ff:c2:05:91:35 (00:ff:c2:05:91:35), Dst: 00:ff:c1:05:91:35 (00:ff:c1:05:91:35)
Internet Protocol, Src: 192.168.254.5 (192.168.254.5), Dst: 192.168.254.6 (192.168.254.6)
Internet Control Message Protocol
No. Time Source Destination Protocol Info
2 0.000331 00:ff:c1:05:91:35 Broadcast ARP Who has 192.168.254.5? Tell 192.168.254.6
Frame 2 (42 bytes on wire, 42 bytes captured)
Ethernet II, Src: 00:ff:c1:05:91:35 (00:ff:c1:05:91:35), Dst: Broadcast (ff:ff:ff:ff:ff:ff)
Address Resolution Protocol (request)
No. Time Source Destination Protocol Info
3 0.000440 00:ff:c2:05:91:35 00:ff:c1:05:91:35 ARP 192.168.254.5 is at 00:ff:c2:05:91:35
Frame 3 (42 bytes on wire, 42 bytes captured)
Ethernet II, Src: 00:ff:c2:05:91:35 (00:ff:c2:05:91:35), Dst: 00:ff:c1:05:91:35 (00:ff:c1:05:91:35)
Address Resolution Protocol (reply)
No. Time Source Destination Protocol Info
4 0.987389 192.168.254.5 192.168.254.6 ICMP Echo (ping) request
<...>-----------------------------------------------------
FreeBSD GW
-----------------------------------------------------
WAN-IP: AA.AA.AA.AA
NET: 192.168.223.0/24
VPN-ENDPOINT: 192.168.254.5 ----> 192.168.254.6
GATEWAY-OS: FreeBSD
GATEWAY-LAN-IP: 192.168.223.1
-----------------------------------------------------
IFCONFIG
-----------------------------------------------------
<...>
xl1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet 192.168.223.1 netmask 0xffffff00 broadcast 192.168.223.255
ether 00:60:98:ef:2b:e5
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
<...>
tun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet 192.168.254.5 --> 192.168.254.6 netmask 0xffffffff
Opened by PID 1768
<...>
-----------------------------------------------------
OPENVPN CONFIG
-----------------------------------------------------
remote BB.BB.BB.BB
port 1194
user nobody
group nobody
proto udp
route 192.168.127.0 255.255.255.0 192.168.254.6
dev tun
tun-mtu 1500
mssfix 1400
ifconfig 192.168.254.5 192.168.254.6 255.255.255.252
secret openvpn.key.1
mlock
ping 10
comp-lzo
verb 4
mute 10
-----------------------------------------------------
Win GW
-----------------------------------------------------
WAN-IP: BB.BB.BB.BB
NET: 192.168.127.0/24, 192.168.0.0/24
VPN-ENDPOINT: 192.168.254.6 -----> 192.168.254.5
GATEWAY-OS: Windows server 2003
GATEWAY-LAN-IP: 192.168.127.1, 192.168.0.55
-----------------------------------------------------
IPCONFIG
-----------------------------------------------------
<...>
Ethernet adapter INT:
Connection-specific DNS Suffix . :
IP Address. . . . . . . . . . . . : 192.168.127.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : 192.168.0.55
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
<...>
Ethernet adapter kot:
Connection-specific DNS Suffix . :
IP Address. . . . . . . . . . . . : 192.168.254.6
Subnet Mask . . . . . . . . . . . : 255.255.255.252
Default Gateway . . . . . . . . . :
-----------------------------------------------------
OPENVPN CONFIG
-----------------------------------------------------
remote AA.AA.AA.AA
lport 1194
rport 1194
proto udp
dev tun
tun-mtu 1500
mssfix 1400
ifconfig 192.168.254.6 192.168.254.5 255.255.255.252
dev-node kot
secret key.txt
route-method exe
route-delay 9
route-gateway 192.168.254.5
route 192.168.223.0 255.255.255.0
ping 10
comp-lzo
verb 4
mute 10
-------------------------------------------------------
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 XX.XX.XX.XX BB.BB.BB.BB 1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.0.0 255.255.255.0 192.168.0.55 192.168.0.55 20
192.168.0.55 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.0.255 255.255.255.255 192.168.0.55 192.168.0.55 20
192.168.18.0 255.255.255.0 192.168.254.5 192.168.254.6 1
192.168.127.0 255.255.255.0 192.168.127.1 192.168.0.55 20
192.168.127.1 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.127.255 255.255.255.255 192.168.127.1 192.168.0.55 20
192.168.223.0 255.255.255.0 192.168.254.5 192.168.254.6 1
192.168.254.4 255.255.255.252 192.168.254.6 192.168.254.6 30
192.168.254.6 255.255.255.255 127.0.0.1 127.0.0.1 30
192.168.254.255 255.255.255.255 192.168.254.6 192.168.254.6 30
200.1.1.0 255.255.255.0 192.168.0.100 192.168.0.55 1
XX.XX.XX.NET 255.255.255.252 BB.BB.BB.BB BB.BB.BB.BB 30
BB.BB.BB.BB 255.255.255.255 127.0.0.1 127.0.0.1 30
217.13.208.255 255.255.255.255 BB.BB.BB.BB BB.BB.BB.BB 30
224.0.0.0 240.0.0.0 192.168.0.55 192.168.0.55 20
224.0.0.0 240.0.0.0 192.168.254.6 192.168.254.6 30
224.0.0.0 240.0.0.0 BB.BB.BB.BB BB.BB.BB.BB 30
255.255.255.255 255.255.255.255 192.168.0.55 192.168.0.55 1
255.255.255.255 255.255.255.255 192.168.127.1 100004 1
255.255.255.255 255.255.255.255 192.168.254.6 192.168.254.6 1
255.255.255.255 255.255.255.255 BB.BB.BB.BB BB.BB.BB.BB 1
Default Gateway: XX.XX.XX.XX
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users
Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-10/msg00068.html on line 368
Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-10/msg00068.html on line 368
|