>Thank you for this nice implementation. I've started some documentation
>on http://wiki.openwrt.org/doc/uci/network
Thx for documenting the gre options on the wiki
>
>A few comments after testing gre/gretap on BB-rc2 (with netifd 2014-07-30
>from trunk):
>
>1/ the firewall rules added by "zone" do no seem to be flushed when the
> interface goes down (e.g. by issuing "ifdown mygre")
This is standard behavior as fw3 is called with the reload option on
ifup and ifupdate hotplug events (see
/etc/hotplug.d/iface/20-firewall)
>
>2/ "tunlink" does not seem to work for anything else than "wan". When
> trying to set it to "lan" (which is properly defined in the network
> config), the tunnel is not created. There is no error in readlog.
Indeed this is caused by the hostdependency default route in the gre
script; I agree with your suggestions to make it dependent on the
remote peeraddr. Will create a patch for this in the next few days.
>
>3/ what is the method for configuring static IP addresses on the tunnel
> interface? Something like this seems to work:
>
>config interface tunnel
> option proto 'static'
> option ipaddr '10.0.0.217'
> option netmask '255.255.255.0'
>
>config interface mygre
> option proto 'gretap'
> option ipaddr '203.0.113.2'
> option peeraddr '192.0.2.42'
> option network 'tunnel'
>
>This works for "proto gretap", but not for "proto gre", as there is no
>"network" option in this case. Is there a reason for not providing the
>option? Of course, it makes no sense to bridge a tun GRE interface, but
>the above config doesn't involve any bridge and should work just fine for
>gre.
The network option has as use case being able to add the ethernet
gre(v6)tap interfaces to a bridge interface as hotplug interface; it
has no link to the configuration of a static IP address.
Did a quick check on the config proposed by Steven regarding config of
static IP addresses on top of a tunnel and it works in my setup
>
>If there is another way to configure addresses, I'm interested to know
>about it.
>
>On Wed, Jul 30, 2014 at 01:51:09PM +0200, Hans Dedecker wrote:
>> Following options are valid for gre and gretap kinds:
>> -ipaddr
>> -peeraddr
>> -df
>> -mtu
>> -ttl
>> -tunlink
>> -zone
>> -ikey
>> -okey
>> -icsum
>> -ocsum
>> -iseqno
>> -oseqno
>
>For the sake of completeness, the ToS field feels like missing :)
>(IFLA_GRE_TOS, see also tos/dsfield/tclass in iproute2).
Can add this option to make it complete but due to other commitments
it will be in one of the next weeks
>
>But otherwise, it's nice to have so much options.
>
>Thank you,
>Baptiste
Bye,
Hans
_______________________________________________
openwrt-devel mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
