Re: [vpp-dev] use a single interface for SNAT

You can use tagged and untagged VLANs on one physical port and SNAT(-ing) VLANs sub-interfaces. As i know - this works well. -- Yours sincerely, Denis Lotarev ___ vpp-dev mailing list vpp-dev@lists.fd.io https://lists.fd.io/mailman/listinfo/vpp-dev

Re: [vpp-dev] IPv4 Option field

I want to know what this IPv4 Option field affects the end user? Are there any protocols or user programs that stop working without this? We, as a communication operator, need to know this issue, because we want to use VPP as high-loaded NAT instead of iptables. Thanks! -- Yours sincerely, Denis

[vpp-dev] VPP traffic shaper

Hi, VPP crew! As i know we can use VPP as traffic shaper (or not?). E.g. I need to restrict in/out speed to subscriber with private address 192.168.2.10 to 5mbps (local if GigabitEthernet0/5/0, external if GigabitEthernet0/6/0). How we can do it? Thanks! -- Yours sincerely, Denis

Re: [vpp-dev] ALG

Hi, Ole!PPTP connection working well via Hairpin NAT 1:1.Thanks! -- Yours sincerely, Denis Lotarev On Tuesday, June 20, 2017, 5:07:48 PM GMT+5, Ole Troan wrote: Denis, Matus found the issue with hairpinning. Merged fix in https://gerrit.fd.io/r/#/c/7200/ Please let

Re: [vpp-dev] Отв.: Re: ALG

Ole, so sorry, we are explored network problem in our infrastructure due testing with parallel connection to PPTP server B and PPTP server C. So 2nd scheme works well :) Sorry for my mismatch.But hairpining not working in 3rd scheme. I dumped traffic from Machine A, when Machine B trying to

Re: [vpp-dev] Отв.: Re: ALG

Im dumped traffic from second destination PPTP server, when Machine A connected to Machine C in 2nd scheme. So, Machine A with public IP 2.2.2.2 and destination PPTP server (Machine C) with public IP 5.5.5.5: IP (tos 0x0, ttl 61, id 15901, offset 0, flags [DF], proto TCP (6), length 60)     

Re: [vpp-dev] Отв.: Re: ALG

Hi, Ole!Today we are testing this patch by following schemes: 1st scheme: Machine A (inside VPP with 1:1 static mapping) running PPTP _server_.Machine B (outside VPP with 1:1 iptables static mapping) running PPTP client. This scheme works well. 2st scheme:Machine A (inside VPP with 1:1 static

[vpp-dev] Отв.: Re: Отв.: Re: ALG

blockquote, div.yahoo_quoted { margin-left: 0 !important; border-left:1px #715FFA solid !important; padding-left:1ex !important; background-color:white !important; } Yes, im already saw it in jenkins, try to test this tomorrow.Thanks, vpp crew! :) Отправлено из Yahoo Почты на iPhone

[vpp-dev] Отв.: Re: ALG

blockquote, div.yahoo_quoted { margin-left: 0 !important; border-left:1px #715FFA solid !important; padding-left:1ex !important; background-color:white !important; } Hi, Ole!Yeah, we are testing SNAT 1:1 static mapping without port forwarding. Only local and external addressing in

[vpp-dev] CentOS 7 make install-rpm not working

Hi, VPP Devs! Im begin to compile VPP from sources git from gerrit. cd vpp/build-root [build-root]#  ./bootstrap.sh [build-root]#  make V=0 PLATFORM=vpp TAG=vpp install-rpm make: *** No rule to make target `install-rpm'.  Stop. But install-deb working, how to fix it? Thanks! -- Yours sincerely,

Re: [vpp-dev] ALG

Hi, Ole!Today we are testing SNAT plugin and PPTP connection by public ip and this is not working.Both machines have a static mapping, we are testing pptp by snat hairpin.Even if one machine (in outside VPP netwrok) can trying to connect to machine in inside VPP network (with static mapping by

Re: [vpp-dev] ALG

Hi, Ole. We are trying to test SIP to asterisk (which outside VPP network) port 5060 UDP and its work normaly via SNAT plugin (static and dynamic nat working well).Also we are trying to test SIP to yate (minimal sip server) inside VPP network with SNAT hairpin and its work correctly too. And

Re: [vpp-dev] ALG

Hi! > Certainly cool if you could find a use for VPP this way. Yes, we will be glad to use VPP as hight perfomance NAT server in our infrastructure, if this will work stability :) Nowaday we are using six servers with double 10G NIC with 12 cpu cores every.This works on simple SNAT iptables

Re: [vpp-dev] ALG

And so for a "joke", we would like to replace six servers with double 10G NICs running on Linux Iptables by VPP (dpdk) solution, because linux netfilter is so old, and deprecated (but this supported ALG). -- Yours sincerely, Denis Lotarev On Tuesday, June 13, 2017, 6:23:14 PM GMT+5,

Re: [vpp-dev] ALG

Hi! Im working on Internet service provider, and ALG require for clients which connected to their offices via pptp, sip, etc.But current SNAT plugin in master (build #2482) doesnt support pptp proto inside (maybe sip also).   -- Yours sincerely, Denis

Re: [vpp-dev] SNAT problem between users

Im sorry im forget to add vpp version and host system.vpp 17.04 and vpp master 17.07, CentOS 7.3 x86_64 -- Yours sincerely, Denis Lotarev - Forwarded Message -From: Denis Lotarev To: "vpp-dev@lists.fd.io" Sent: Tuesday, May 30, 2017, 5:00:49

[vpp-dev] SNAT problem between users

Hi! We are testing VPP SNAT plugin, simple SNAT working wheel, but: In this example: Client A cannot ping and connect to client B by IP address 2.2.2.3. Client A can access to internet. Client B cannot ping and connect to client A by IP address 2.2.2.2. Client B can access to internet. Another

Re: [vpp-dev] SNAT and tap for SSH problem

So sorry for my formatting... "Machine A" 1.1.2.10/24 with default route 1.1.2.1 "VPP host" (linux machine) 1.1.1.10/24 with static route 1.1.2.0/24 via 1.1.1.1 On VPP side GigabitEthernet2/0/0 with ip 1.1.2.1/24 looking to Machine "A", tap-0 with ip 1.1.1.1/24 looking to "VPP host", and

[vpp-dev] SNAT and tap for SSH problem

Hi all! I have a problem when SNAT enable on VPP side. "Machine A" 1.1.2.10/24 with default route 10.2.1.1"VPP host" (linux machine) 1.1.1.10/24 with static route 1.1.2.0/24 via 1.1.1.1On VPP side GigabitEthernet2/0/0 with ip 1.1.2.1/24 looking to Machine "A", tap-0 with ip 1.1.1.1/24 looking