Newbie on tunnelling

[Chad Gross]

On 12/13/06, Odhiambo Washington <wash at wananchi.com> wrote:
>
> * On 13/12/06 15:48 +0000, Chris wrote:
> | Loading a kernel module at boot time is done by editing (or creating)
> | loader.conf in /boot. And adding [module_name]_load="YES" to load a
> module,
> | so: if_gre_load="YES".
> |
> | Edit rc.conf for startup configurations. Take a look at "man rc.conf".
> The
> | sections on network_interfaces and static_routes will be of some help.
> |
> | On 13/12/06, Odhiambo Washington <wash at wananchi.com > wrote:
> | >
> | >I need to create a VPN between two offices. Each has a LAN that is
> | >behind a FreeBSD router/firewall.
> | >
> | >I have managed to do the following manually:
> | >
> | >hq-office:
> | >kldload if_gre.ko
> | >ifconfig gre0 create
> | >ifconfig gre0 tunnel 62.8.68.94 62.8.82.142
> | >ifconfig gre0 inet 10.0.0.1 10.0.0.2 netmask 255.255.255.252
> | >route add -net 192.168.1.0/24 -interface gre0
> | >
> | >sub-office:
> | >kldload if_gre.ko
> | >ifconfig gre0 create
> | >ifconfig gre0 tunnel 62.8.82.142 62.8.68.94
> | >ifconfig gre0 inet 10.0.0.2 10.0.0.1 netmask 255.255.255.252
> | >route add -net 192.168.0.0/24 -interface gre0
> | >
> | >Now my simple question is: How do I automate these commands during boot
> | >time?
> | >
>
>
>
> So, if I compiled kernel with "device gre" (FreeBSD 5.5 here, sorry)
> then there is no need to load the module via loader.conf, yes?
>
> So in rc.conf. would the following suffice (for hq-office)?
>
> cloned_interfaces="gre0"
> ifconfig_gre0="inet 10.0.0.1 10.0.0.2 tunnel 62.8.68.94 62.8.82.142 up"
>
> How about the static route portions? It's still not clear to me how to
> take care of them in rc.conf.
>
> TIA
>
> -Wash


As I believe you were previously instructed, read the manual (it's all in
there):

http://www.freebsd.org/cgi/man.cgi?query=rc.conf&apropos=0&sektion=0&manpath=FreeBSD+6.1-RELEASE&format=html