DISQUS

Hello! Homo-Adminus Blog is using DISQUS, a powerful comment system, to manage its comments. Learn more.

Community Page

blog.kovyrin.net Jump to website »

Subscribe
- New Comments
Community
Top Commenters
- Scoundrel
  9 comments · 1 points
- dkubb
  3 comments · 1 points
- for you health
  3 comments · 1 points
- Johny
  2 comments · 2 points
- kuru
  2 comments · 1 points
Popular Threads
Recent Comments
- nice article! nice site. you're in my rss feed now ;-) keep it up
  5 months ago by for you health
  
  in Lighttpd Book from Packt - Great Thanksgiving Present
- nice article! nice site. you're in my rss feed now ;-) keep it up
  5 months ago by for you health
  
  in Dog-pile Effect and How to Avoid it with Ruby on Rails memcache-client Patch
- nice article! nice site. you're in my rss feed now ;-) keep it up
  5 months ago by for you health
  
  in ActiveMQ + Ruby Stomp Client: How to process elements one by one
- Top post. Thank you very much. :-)
  5 months ago by jamie
  
  in ActiveMQ Tips: Flow Control and Stalled Producers Problem
- Thanks for the info. May God have mercy on us all.
  5 months ago by Bulimia
  
  in Using Sphinx for Non-Fulltext Queries

Homo-Adminus Blog

Jump to original thread »

How to create IP-IP tunnel between FreeBSD and Linux

Started by Scoundrel · 9 months ago

Sometimes, I need to connect remote Unix servers with tunnels to provide some specific services or to get access to some internal networks. I was very surprised, when my friend, young system administrator, asked me about how to bring up IP-IP tunnel between different Unix operating systems % ... Continue reading »

9 comments

Thomas Anderson
3 years ago

# ifconfig tun0 10.0.0.1 netmask 255.255.255.252 \
> pointopoint 10.0.0.1

ошибочка - должно быть так:
ifconfig tun0 10.0.0.1 netmask 255.255.255.252 \
> pointopoint 10.0.0.2

reply

zenith
3 years ago

У меня вот возник вопрос: как быть если число серверов больше двух? Настраивать туннели попарно? Или можно это сделать по-другому? У меня 14 подсетей :)

reply

rcayenne
2 years ago

For which version of FreeBSD is this example intented? I tryed it on 5.2.1 and there is no gifconfig command.

reply

Scoundrel
2 years ago

I've tried it in 4.X, but I think, that this command should be in 5.X and 6.X. maybe they've changed its name... Try to use Google ;-)

reply

tunnel
2 years ago

In 5.x and 6.x the gifconfig command is included in the ifconfig command itself as an option "tunnel".

reply

jr
2 years ago

Very good, I've tested just the linux part and it works fine.
MAny Thanks

reply

Семён
1 year ago

Народ а расскажите можно ли теперь этот IP-тунель криптовать Racoon-ом???

reply

Алексей
1 year ago

можно и нужно :)

reply

Felipe Alfaro Solana
7 months ago

Using an MTU of 1,500 on the tun0 will likely cause fragmentation issues.

Typically, Ethernet maximum frame size is 1,500 bytes. MTU reflects the maximum payload that will fit in the Layer 2 without causing fragmentation. If you use an MTU of 1,500 for tun0, your encapsulating IP datagram will likely be fragmented because you are not accounting for the overhead of the encapsulation.

When using IP-over-IP, you need to discount 20 bytes for the encapsulating IP header. This means you should use an MTU of 1,480 and not 1,500. If you want to use GRE, you also need to deduct the size of the GRE header.

reply