Newbie on tunnelling
Odhiambo Washington
wash at wananchi.com
Wed Dec 13 09:26:31 PST 2006
* On 13/12/06 15:48 +0000, Chris wrote:
| Loading a kernel module at boot time is done by editing (or creating)
| loader.conf in /boot. And adding [module_name]_load="YES" to load a module,
| so: if_gre_load="YES".
|
| Edit rc.conf for startup configurations. Take a look at "man rc.conf". The
| sections on network_interfaces and static_routes will be of some help.
|
| On 13/12/06, Odhiambo Washington <wash at wananchi.com > wrote:
| >
| >I need to create a VPN between two offices. Each has a LAN that is
| >behind a FreeBSD router/firewall.
| >
| >I have managed to do the following manually:
| >
| >hq-office:
| >kldload if_gre.ko
| >ifconfig gre0 create
| >ifconfig gre0 tunnel 62.8.68.94 62.8.82.142
| >ifconfig gre0 inet 10.0.0.1 10.0.0.2 netmask 255.255.255.252
| >route add -net 192.168.1.0/24 -interface gre0
| >
| >sub-office:
| >kldload if_gre.ko
| >ifconfig gre0 create
| >ifconfig gre0 tunnel 62.8.82.142 62.8.68.94
| >ifconfig gre0 inet 10.0.0.2 10.0.0.1 netmask 255.255.255.252
| >route add -net 192.168.0.0/24 -interface gre0
| >
| >Now my simple question is: How do I automate these commands during boot
| >time?
| >
So, if I compiled kernel with "device gre" (FreeBSD 5.5 here, sorry)
then there is no need to load the module via loader.conf, yes?
So in rc.conf. would the following suffice (for hq-office)?
cloned_interfaces="gre0"
ifconfig_gre0="inet 10.0.0.1 10.0.0.2 tunnel 62.8.68.94 62.8.82.142 up"
How about the static route portions? It's still not clear to me how to
take care of them in rc.conf.
TIA
-Wash
http://www.netmeister.org/news/learn2quote.html
DISCLAIMER: See http://www.wananchi.com/bms/terms.php
--
+======================================================================+
|\ _,,,---,,_ | Odhiambo Washington <wash at wananchi.com>
Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com
|,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922
'---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121
+======================================================================+
APL is a mistake, carried through to perfection. It is the language of
the future for the problems of the past: it creates a new generation of
coding bums.
More information about the freebsd-questions
mailing list