FreeBSD makes linux think other subet is in same lan.

Martin Larsson martin.larsson2 at gmail.com
Wed May 6 19:30:52 UTC 2015 

Yes.

root at fjuttsi:~ #  setkey -D
85.230.59.213 194.41.121.12
        esp mode=tunnel spi=1120293717(0x42c65355) reqid=1(0x00000001)
        E: rijndael-cbc  41c6cbe5 4de2a11f e6e57092 58251b2c b51272ba
90f5a84a b9a121db eaf79bb0
        A: hmac-sha2-256  5ca5b365 4ca57b11 239d2487 6def4b97 e6bf2949
ea198f6a 97bf5165 4076f66a
        seq=0x000000b6 replay=4 flags=0x00000000 state=mature
        created: May  6 21:00:03 2015   current: May  6 21:29:01 2015
        diff: 1738(s)   hard: 3600(s)   soft: 3057(s)
        last: May  6 21:28:48 2015      hard: 0(s)      soft: 0(s)
        current: 26296(bytes)   hard: 0(bytes)  soft: 0(bytes)
        allocated: 182  hard: 0 soft: 0
        sadb_seq=1 pid=9279 refcnt=2
194.41.121.12 85.230.59.213
        esp mode=tunnel spi=3371580414(0xc8f63bfe) reqid=1(0x00000001)
        E: rijndael-cbc  69c241be 9465927f a3204ccb 806ee040 69296c1c
1851459a 49d1bba0 fa479454
        A: hmac-sha2-256  5621f6ec 85027965 e20f7db0 279c2085 4a2c7061
561afcc2 f4a843d1 cffaf27f
        seq=0x00000076 replay=4 flags=0x00000000 state=mature
        created: May  6 21:00:03 2015   current: May  6 21:29:01 2015
        diff: 1738(s)   hard: 3600(s)   soft: 2560(s)
        last: May  6 21:28:45 2015      hard: 0(s)      soft: 0(s)
        current: 10940(bytes)   hard: 0(bytes)  soft: 0(bytes)
        allocated: 118  hard: 0 soft: 0
        sadb_seq=0 pid=9279 refcnt=1
root at fjuttsi:~ # setkey -DP
10.11.12.0/24[any] 192.168.1.0/24[any] any
        in ipsec
        esp/tunnel/194.41.121.12-85.230.59.213/unique:1
        created: May  6 21:00:03 2015  lastused: May  6 21:00:03 2015
        lifetime: 9223372036854775807(s) validtime: 0(s)
        spid=2198 seq=1 pid=9282
        refcnt=1
192.168.1.0/24[any] 10.11.12.0/24[any] any
        out ipsec
        esp/tunnel/85.230.59.213-194.41.121.12/unique:1
        created: May  6 21:00:03 2015  lastused: May  6 21:29:07 2015
        lifetime: 9223372036854775807(s) validtime: 0(s)
        spid=2197 seq=0 pid=9282
        refcnt=1
root at fjuttsi:~ # netstat -rnf inet
Routing tables

Internet:
Destination        Gateway            Flags      Netif Expire
default            85.230.56.1        UGS         re0
10.11.12.0/24      192.168.1.1        UGS         em0
85.230.56.0/22     link#2             U           re0
85.230.59.213      link#2             UHS         lo0
127.0.0.1          link#3             UH          lo0
192.168.1.0/24     link#1             U           em0
192.168.1.1        link#1             UHS         lo0
192.168.1.3        link#1             UHS         lo0



On Wed, May 6, 2015 at 7:08 PM, Andrey V. Elsukov <ae at freebsd.org> wrote:

> On 06.05.2015 15:51, Martin Larsson wrote:
> > This is a small summary of
> >
> https://forums.freebsd.org/threads/routing-issue-with-ipsec-windows-works-linux-doesnt.51201/
>
> Can you provide run-time configuration from your FreeBSD gateway?
>
> # setkey -D
> # setkey -DP
> # netstat -rnf inet
>
> --
> WBR, Andrey V. Elsukov
>
>

More information about the freebsd-net mailing list