|
|
On Thursday 01 April 2004 13:06, James Yonan wrote:
> Has anyone gotten mrouted to work over an OpenVPN tunnel using a tun
> interface?
>
> mrouted dies on startup because it doesn't like the fact that the tun
> interface has a subnet mask of 255.255.255.255.
>
> James
>
I've never used mrouted, but I see that the "man mrouted" of
FreeBSD says something related to tunnel configuration:
[...snipped...]
In order to support multicasting among subnets that are separated by
(unicast) routers that do not support IP multicasting, mrouted includes
support for "tunnels", which are virtual point-to-point links between
pairs of multicast routers located anywhere in an internet. IP multicast
packets are encapsulated for transmission through tunnels, so that they
look like normal unicast datagrams to intervening routers and subnets.
The encapsulation is added on entry to a tunnel, and stripped off on exit
from a tunnel. The packets are encapsulated using the IP-in-IP protocol
(IP protocol number 4).
[...snipped....]
[...snipped...]
The third section of the configuration file, also optional, describes the
configuration of any DVMRP tunnels this router might have.
tunnel local-addr|ifname remote-addr|remote-hostname
This command establishes a DVMRP tunnel between this host (on the
interface described by local-addr or ifname) and a remote host
(identified by remote-addr or remote-hostname). A remote host-
name may only be used if it maps to a single IP address. A tun-
nel must be configured on both routers before it can be used.
Be careful that the unicast route to the remote address goes out
the interface specified by the local-addr|ifname argument. Some
UNIX kernels rewrite the source address of mrouted's packets on
their way out to contain the address of the transmission inter-
face. This is best assured via a static host route.
[...snipped....]
Hope this helps.
> >>Here's the excerpt from mrouted:
> >>
> >>/*
> >> * Verify that a given subnet number and mask pair are credible.
> >> *
> >> * With CIDR, almost any subnet and mask are credible. mrouted still
> >> * can't handle aggregated class A's, so we still check that, but
> >> * otherwise the only requirements are that the subnet address is
> >> * within the [ABC] range and that the host bits of the subnet
> >> * are all 0.
> >> */
>
> -------------------------------------------------------
> This SF.Net email is sponsored by: IBM Linux Tutorials
> Free Linux tutorial presented by Daniel Robbins, President and CEO of
> GenToo technologies. Learn everything from fundamentals to system
> administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click
> _______________________________________________
> Openvpn-users mailing list
> Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
> https://lists.sourceforge.net/lists/listinfo/openvpn-users
--
******
JFRH
******
How doth the VAX's C-compiler
Improve its object code.
And even as we speak does it
Increase the system load.
How patiently it seems to run
And spit out error flags,
While users, with frustration, all
Tear all their clothes to rags.
|