arp_proxy: ignoring request

Mon Jan 19 03:43:54 PST 2009

> On 09.01.19 20:05, Luiz Otavio O Souza wrote:
>>> soekris 5501 8-current Jan 15 13:08 GMT, post arp changes
>>>
>>> FreeBSD soek0.psg.com 8.0-CURRENT FreeBSD 8.0-CURRENT #4: Thu Jan 15
>>> 14:15:24 UTC 2009 root at soek0.psg.com:/usr/obj/usr/src/sys/SOEK0 i386
>>>
>>> Jan 18 00:00:04 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:02:10 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:02:23 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:08:06 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.12 via wlan0, expecting bridge0
>>> Jan 18 00:08:10 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:12:22 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.30 via wlan0, expecting bridge0
>>> Jan 18 00:14:10 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:19:26 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:19:39 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.28 via vr3, expecting bridge0
>>> Jan 18 00:20:10 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>> Jan 18 00:23:13 soek0 kernel: arp_proxy: ignoring request from
>>> 192.168.0.10 via vr2, expecting bridge0
>>>
>>> .----------------.
>>> | |
>>> | b --wlan0|
>>> | r | 192.168.0.0/24
>>> ext iij | i --- vr1| LAN hosts,
>>> PPP/NAT ---|vr0--- d | DHCP Clients
>>> WAN | g --- vr2| pptp 200-209
>>> | e | ,..
>>> | 0 --- vr3|
>>> | |
>>> `----------------'
>>>
>>> wlans_ath0=wlan0
>>> create_args_wlan0="wlanmode hostap channel 11 ssid rgnet-aden wep
>>> wepkey yourekidding weptxkey 1 media autoselect mode 11g up"
>>> cloned_interfaces=bridge0
>>> ifconfig_bridge0="192.168.0.1 addm vr1 addm vr2 addm vr3 addm wlan0
>>> addm wlan1 up"
>>> ifconfig_vr1=up
>>> ifconfig_vr2=up
>>> ifconfig_vr3=up
>>> gateway_enable=YES
>>> pptpd_enable=YES
>>> arpproxy_all=YES
>>
>> Why are you using arpproxy with bridge ? the bridge shoudn't do it ?
>
> blindly following poptop instructions i found somewhere.  should i nuke 
> it?
>
> randy

Yeah, this is not need in an environment like yours.

You need the proxy arp only for pptp connections (vpns). this will make the 
peer address looks like it is on your local network.

As long as i know, the proxy arp for ppp(8) is broken, but you can use this 
as a workaround for this. This bug is on my todo list...

Create these two scripts:

# cat /usr/local/sbin/vpn_on.sh
#!/bin/sh

/usr/sbin/arp -s "${1}" 00:15:17:1c:91:a8 pub

# cat /usr/local/sbin/vpn_off.sh
#!/bin/sh

/usr/sbin/arp -d "${1}"

And set these two files:

# cat /etc/ppp/ppp.linkup
pptp:
 !bg /usr/local/sbin/vpn_on.sh HISADDR

# cat /etc/ppp/ppp.linkdown
pptp:
 !bg /usr/local/sbin/vpn_off.sh HISADDR

Set the correct label on ppp.linkup and ppp.linkdown files and the bridge0 
mac address on vpn_on. the 00:15:17:1c:91:a8 is my internal nic.

Anyway put the enable proxy on /etc/ppp.conf (it is not working now, but i 
expect to see this working soon).

Luiz
ps: redirecting to freebsd-net@ as this has nothing to do with current. 