Userland PPP/PPTP tunneling problem
Chris Luke
chrisy at flix.net
Fri Apr 18 15:22:13 PDT 2003
Brett Glass wrote (on Apr 18):
> Yes, but broadcast is needed for ARP. To tunnel effectively,
> you need to be able to ARP (for example) the printer on the
> LAN you're tunneling into.
Tunnels are point-to-point connections. Each end of the link
has an address, even if inherited from another interface,
and these addresses are either known in advance, or exchanged or
negotiated by a higher-level protocol, such as the negotiation
stuff in PPP. Thus the address of the far end is known, and is
entered as a route into the forwarding table.
eg:
chrisy at brae[~]> ifconfig ng1
ng1: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> mtu 1500
inet 207.162.200.1 --> 207.162.200.2 netmask 0xffffffff
The "-->" notation denotes a point-to-point interface where the
address is known ahead of time. There's no need to map a layer2
address - there isn't one, in any case. The interface driver
just sends the packets blindly down the line (virtual or not.)
There's no MAC addresses involved, ergo no ARP, no need to
broadcast. Generally, avoiding anything broadcast-like over
any sort of wan-like interface is a good thing.
Chris.
--
== chrisy at flix.net
More information about the freebsd-net
mailing list