pktgen udp doesn't work over freebsd gateway
Hello everyone! I'm using 'pktgen' [1] under linux to generate packets. My topology looks like this: (linux-box #1) --- (em0 - freebsd-gateway - em1) --- (linux-box #2) I want to send packets from linux-box #1 to linux-box #2 over the free-bsd gateway. The problem is that I can see the packets on em0, but not on em1. I assume there's a configuration missing on the BSD machine, because it seems it just drops the packets hence doesn't forward them to linux-box #2. rc.conf: gateway_enable=YES keymap=german.iso sshd_enable=YES firewall_enable=YES firewall_type=OPEN firewall_logging=YES Default option for ipfw is to accept packets. tcpdump em0: 11:42:36.334798 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334802 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334805 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334807 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334810 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334813 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334816 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334819 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334821 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334824 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 tcpdump em1: nothing. Is there any sysctl variable that needs to be set? Connectivity between the boxes is definately working (tested with ping, iperf etc.). Regards, Sebastian [1] http://www.linuxfoundation.org/en/Net:Pktgen ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to freebsd-net-unsubscr...@freebsd.org
Re: ipfw dummynet queue size limitations
On Fri, 2009-05-29 at 08:52 -0700, Barney Cordoba wrote: --- On Fri, 5/29/09, Sebastian Mellmann sebastian.mellm...@net.t-labs.tu-berlin.de wrote: From: Sebastian Mellmann sebastian.mellm...@net.t-labs.tu-berlin.de Subject: ipfw dummynet queue size limitations To: freebsd-net@freebsd.org Date: Friday, May 29, 2009, 4:37 AM Hi everyone! I've already asked this one the ipfw list, but maybe someone here got a hint for me. I'm trying to configure the queue size in ipfw dummynet larger then 100 slots, but I can't do so since ipfw always tells me that the maximum is 100. Is there any chance to increase the queue size? I could only find a thread [1] from 2006 about this. Thanks a lot for any hints or help! Regards, Sebastian It looks to be hard-coded, so I'd suggest changing it to a variable or macro. There's only about 10 instances so its not much work. So I need to change ip_dummynet.c and ip_fw2.c? Cheers, Sebastian Barney ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to freebsd-net-unsubscr...@freebsd.org
Re: pktgen udp doesn't work over freebsd gateway
Is 192.168.7.1 the freebsd gateway? Because that would explain it. You need to send to the linux box's IP No, 192.168.7.1 is the linux box. Cheers, Sebastian On 2009-05-29, Sebastian Mellmann sebastian.mellm...@net.t-labs.tu-berlin.de wrote: Hello everyone! I'm using 'pktgen' [1] under linux to generate packets. My topology looks like this: (linux-box #1) --- (em0 - freebsd-gateway - em1) --- (linux-box #2) I want to send packets from linux-box #1 to linux-box #2 over the free-bsd gateway. The problem is that I can see the packets on em0, but not on em1. I assume there's a configuration missing on the BSD machine, because it seems it just drops the packets hence doesn't forward them to linux-box #2. rc.conf: gateway_enable=YES keymap=german.iso sshd_enable=YES firewall_enable=YES firewall_type=OPEN firewall_logging=YES Default option for ipfw is to accept packets. tcpdump em0: 11:42:36.334798 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334802 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334805 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334807 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334810 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334813 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334816 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334819 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334821 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 11:42:36.334824 IP (tos 0x0, ttl 32, id 129, offset 0, flags [none], proto UDP (17), length 46) 192.168.5.1.9 192.168.7.1.9: [no cksum] UDP, length 18 tcpdump em1: nothing. Is there any sysctl variable that needs to be set? Connectivity between the boxes is definately working (tested with ping, iperf etc.). Regards, Sebastian [1] http://www.linuxfoundation.org/en/Net:Pktgen ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to freebsd-net-unsubscr...@freebsd.org ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to freebsd-net-unsubscr...@freebsd.org
Not able to set 'bridge' mode
Hello everyone! I'm trying to set up a FreeBSD 7.2 machine with ipfw dummynet working as a bridge. I've tried this tutorial: http://www.scalabledesign.com/articles/dummynet.html But it seems that the 'BRIDGE' option for the kernel is deprecated (see http://lists.freebsd.org/pipermail/freebsd-questions/2008-May/175704.html) So my kernel config now looks like this: device if_bridge options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT options DUMMYNET options HZ=1000 I've compiled the kernel successfully, but I'm not able to set any bridge options. I've tried to enable bridge mode in ipfw with: sysctl net.link.ether.bridge_ipfw=1 and got sysctl: unknown oid 'net.link.ether.bridge_ipfw' Am I missing something? Regards, Sebastian ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to freebsd-net-unsubscr...@freebsd.org
ipfw firewall_type 'OPEN'
Hi everyone! I've set the following parameters in rc.conf: gateway_enable=YES firewall_enable=YES firewall_type=OPEN firewall_logging=YES When I took a look at the ruleset I see: 00010 allow ip from any to any via lo0 65000 allow ip from any to any 65535 deny ip from any to any The problem is, if I execute my own ipfw script and flush the rules via 'ipfw -q -f flush' and 'ipfw -q -f pipe flush' I'm loosing my ssh connection to that machine. Is there any chance to remove the rule 65535 or change it to allow instead of deny? I've got another FreeBSD machine here (7.0) where the default setting is '65535 allow ip from any to any', when using firwall_type OPEN. Both rc.conf files are the same! Regards, Sebastian ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to freebsd-net-unsubscr...@freebsd.org
