[FUG-BR] VPN
Willien Carvalho Fernandes
willien.fernandes em lidertel.com.br
Quinta Fevereiro 15 16:43:46 BRST 2007
Flavio Marcelo - TicoBSD.com.br wrote:
> On Wed, 2006-02-15 at 10:07 +0000, Willien Carvalho Fernandes wrote:
>
>> Ainda nao resolvi
>>
>> Matriz
>>
>> gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
>> tunnel inet 201.6.xx.xx --> 200.207.xx.xx
>> inet 130.2.1.147 --> 130.2.2.1 netmask 0xffffff00
>>
>>
>> Filial
>> gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
>> tunnel inet 200.207.xx.xx --> 201.6.xx.xx
>> inet 130.2.2.1 --> 130.2.1.147 netmask 0xffffff00
>>
>>
>> Tenho que mudar alguma coisa ?
>>
>> Att,
>>
>> Willien
>>
>>
>> Andres Alejandro Luengo Gonzalez wrote:
>>
>>> Já resolviste ? Se não manda os ifconfigs deste túnel para dar uma olhada ?
>>>
>>> Andrés
>>>
>>> Em 13/02/06, Willien Carvalho
>>> Fernandes<willien.fernandes em lidertel.com.br> escreveu:
>>>
>>>
>>>> Alessandro de Souza Rocha wrote:
>>>>
>>>>
>>>>> Em 12/02/06, Willien Carvalho
>>>>> Fernandes<willien.fernandes em lidertel.com.br> escreveu:
>>>>>
>>>>>
>>>>>
>>>>>> Nilson Debatin wrote:
>>>>>>
>>>>>>
>>>>>>
>>>>>>> Em Dom, 2006-02-12 às 15:40 +0000, Willien Carvalho Fernandes escreveu:
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>> Boa tarde.
>>>>>>>>
>>>>>>>> configurei um tunnel vi interface gif0.
>>>>>>>> funcionou 60%
>>>>>>>>
>>>>>>>> no lado do gateway da matriz consigo pingar qualquer maq da filial
>>>>>>>>
>>>>>>>> no lado da filial nao consigo pingar nenhuma maquina, somente o gateway
>>>>>>>> da matriz qdo diparo da matriz um ping pro gateway da filial
>>>>>>>>
>>>>>>>> firewall
>>>>>>>>
>>>>>>>> matriz
>>>>>>>> ipfw add allow all from any to any via gif0
>>>>>>>>
>>>>>>>> filial
>>>>>>>> ipfw add allow all from any to any keep-state
>>>>>>>>
>>>>>>>> Desde ja agradeco.
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>> Posso estar falando besteira mas a matrix tem gateway_enable?
>>>>>>>
>>>>>>> PS.: Seu relógio está com 1 ano de atraso, e tá ficando la na
>>>>>>> casa do chapeu na ordenação por datas do meu cliente. (Evolution)
>>>>>>>
>>>>>>> []s
>>>>>>> Nilson
>>>>>>>
>>>>>>>
>>>>>>> -------------------------
>>>>>>> Histórico: http://www.fug.com.br/historico/html/freebsd/
>>>>>>> Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>> Sim
>>>>>> no /etc/rc.conf
>>>>>> gateway_enable="YES"
>>>>>>
>>>>>> ta muito estranho
>>>>>>
>>>>>> vlw
>>>>>> -------------------------
>>>>>> Histórico: http://www.fug.com.br/historico/html/freebsd/
>>>>>> Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>> nao esta esquecendo do nat. rs
>>>>>
>>>>>
>>>>>
>>>>>
>>>> nao esqueci nao
>>>> ele ta no meu script de firewall
>>>>
>>>> killall -9 natd
>>>> /sbin/natd -s -m -n fxp0
>>>>
>>>> ${fw_cmd} -f flush
>>>> ${fw_cmd} add divert natd all from ${rede_local} to any via fxp0
>>>> ${fw_cmd} add divert natd all from any to ${ip_externo} in via fxp0
>>>>
>>>> ;-)
>>>> -------------------------
>>>> Histórico: http://www.fug.com.br/historico/html/freebsd/
>>>> Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd
>>>>
>>>>
>>>>
>>> -------------------------
>>> Histórico: http://www.fug.com.br/historico/html/freebsd/
>>> Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd
>>>
>>>
>>>
>> -------------------------
>> Histórico: http://www.fug.com.br/historico/html/freebsd/
>> Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd
>>
> Vc adcionou rotas as gif ?
> Exemplo:
>
> Matriz
>
> gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
> tunnel inet 201.6.xx.xx --> 200.207.xx.xx
> inet 130.2.1.147 --> 130.2.2.1 netmask 0xffffff00
> ** ( route add 130.2.2.0/24 -iface gif0 )
>
> Filial
> gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
> tunnel inet 200.207.xx.xx --> 201.6.xx.xx
> inet 130.2.2.1 --> 130.2.1.147 netmask 0xffffff00
> ** ( route add 130.2.1.0/24 -iface gif0 )
>
>
>
Matriz
/sbin/route add -net 130.2.2.0 -netmask 255.255.255.0 130.2.2.1
Filial
/sbin/route add -net 130.2.1.0 -netmask 255.255.255.0 130.2.1.147
Mais detalhes sobre a lista de discussão freebsd