Re: question on tunnels (VPN)

• Previous message: Edwin Groothuis: "Re: question on tunnels (VPN)"
• In reply to: Edwin Groothuis: "Re: question on tunnels (VPN)"
• Next in thread: Paul Schenkeveld: "Re: question on tunnels (VPN)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

To: freebsd-net@freebsd.org
Date: Wed, 22 Sep 2004 23:51:09 +0000

On Wednesday 22 September 2004 23:18, Edwin Groothuis wrote:
> I have the same situation here and the solution was to let the ADSL
> router forward all unknown traffic to my router. How to do that is
> router specific, but it can be done.
>
> Then, with the tunnels:
>
> central# ifconfig gif1 inet
> gif1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
> š š š š tunnel inet 218.185.88.66 --> 203.111.122.8
> ššššššššinet 10.10.12.1 --> 10.10.12.2 netmask 0xffffffff
>
> remote# ifconfig gif1 inet
> gif1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
> š š š š tunnel inet 192.168.1.1 --> 218.185.88.66
> ššššššššinet 10.10.12.2 --> 10.10.12.1 netmask 0xffffff00
>
> 203.111.122.8 is my ADSL routers address.
> 192.168.1.1 is my computers RFC1918 address.
>
> Two static routes, one on each machine, and it works.
>

Thanks for pointer! I will check this with DSL router I have.
There, however, might be another problem - my DSL router could be also NAT'ed
(and most likely it is), so it draws us the following picture:

(LAN) <-NAT-> (FreeBSD) <-NAT-> DSL Router <- ??? -> ISP/Internet

Basically I'm unsure whether "???" is a normal, direct connection to internet
via ISP, or it is also NAT'ed.
I'm most sure that it is NAT, because I've been getting one IP (e.g. my public
IP on the net as I appear) for ~1 month (e.g. it never changed, although
there is DHCP of course).

Well, hell knows how many further NATs I have there - at least I know about
two already.

I guess time to visit ISP..

> Edwin

regards,
M.
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"

• Previous message: Edwin Groothuis: "Re: question on tunnels (VPN)"
• In reply to: Edwin Groothuis: "Re: question on tunnels (VPN)"
• Next in thread: Paul Schenkeveld: "Re: question on tunnels (VPN)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Re: How did they get behind my NAT? ... my previous ADSL provider, Telefonica Spain. ... NAT is implemented - is the ADSL device doing the NAT or do you have a ... Sorry I wasn't clear - the ADSL router is the NAT device. ... that use NAT to 1 IP, but they forward ALL ports inbound to that IP - so ... (alt.computer.security) Re: pix 506 config change help ... what a router is designed to do and that is routing. ... No need for NAT on the ISP router, ... currently configuring and the firewall. ... (comp.security.firewalls) Re: Remote Desktop to Internal Clients ... Firewalls than they ever resemble a "real" router. ... no NAT) and have them give you the real IP address. ... > "bridge" on their installation order, so if you tell the ISP you want the ... > as a bridge. ... (microsoft.public.isa) Re: Why is ADSL so finicky? ... Why is ADSL so finicky? ... Then it happened that the router would lose sync, ... Would asking my ISP to screw my line back down to 1Mb or 0.5Mb (if it is ... (uk.telecom.broadband) Re: pix 506 config change help ... what a router is designed to do and that is routing. ... No need for NAT on the ISP router, ... currently configuring and the firewall. ... (comp.security.firewalls)