similar to: Libreswan IPSec Protected GRE Tunnel & firewall-cmd

Hi Devik/Patrik, In setting up IMQ/HTB with a GRE Tunnel I''m constantly getting kernel errors: [root@linux /root]# dmesg ... ... ... NET: XXX messages suppressed. Dead loop on virtual device gre1, fix it urgently! ... ... ... This I get only if I''m going to start cross device b/w control. If I remove iptables rule iptables -t mangle -D POSTROUTING -j IMQ then no such warning

Hi List, FYI. We have been using CentOS 6.4 and have 2 vpn/gre tunnels to separate cisco rtrs using ospf. with kernel 2.6.32-358.23.2 We have upgraded to 6.5 bit using kernel 2.6.32-431.5.1 and the exact same configuration scripts for our vpn/gre tunnels. What I see is the first gre tunnel works great and I get an ospf neighbor. The second tunnel comes up and I can ping across it and I see

Hi Guys, Here is our patch to allow broadcast packets over a GRE tunnel. Hopefully it might be accepted into the source someday. You need to enabled bridging and GRE tunnels in your kernel. No other options are required. The gre patch determines what type of protocol type to put in the GRE header based on the whether the packet is forwarded from a bridge or not. To use the patch: # Create

I want to send a multicast packet to multiple gre tunnel, but the packet only went to where the routing table configured to. ex. when use ip route add 224.0.0.0/4 via gre0 then the packet go to gre0 when use ip route add 224.0.0.0/4 via gre1 then the packet go to gre1 when use ip route add 224.0.0.0/4 nexthop via gre1 nexthop via gre0 then the packet go to either gre or gre1

On 12/29/2017 3:59 AM, Wojciech ?ysiak wrote: > firstly check which zone are your interface in : > > bash> firewall-cmd --get-active-zones > > then all you have to do is add a service to the firewall > > firewall-cmd --zone=<INSERT YOUR ZONE> --add-service=openvpn --permanent > > assuming that your Openvpn is running on standard port 1194/tcp|udp, > If not

Hi, I have the following setup. Two linux systems with two [test] external interfaces encrypted with ipsec [transport]. Two gre tunnels that pass 10.200.0.0/24 and 10.200.1.0/24 network traffic. Testing the balanced tunnels I would setup iptraf on one and ping from the other. The results would be as expected; traffic would be split between the two interfaces. Testing with an ftp transfer of

Hi, I have the following setup. Two linux systems with two [test] external interfaces encrypted with ipsec [transport]. Two gre tunnels that pass 10.200.0.0/24 and 10.200.1.0/24 network traffic. Testing the balanced tunnels I would setup iptraf on one and ping from the other. The results would be as expected; traffic would be split between the two interfaces. Testing with an ftp transfer of

Hi, Does anyone tried to get ipip or gre tunnel behind NAT environments. ? i''m trying to make both side tunneling with ipip or gre with private address just like belows.. A -------------------FIRWWAL -------------------INET ------------------- B PRIVATE PUBLIC PUBLIC (10.100.0.1) (211.xxx.xxx.xxx) (

Hello, I''ve set up a GRE tunnel between two Linux boxes and it''s working well, with or without IPSEC (under GRE). The problem is that when I have no traffic for some minutes, side A cannot communicate to side B any more, unless side B tries to communidate to side A. The same thing happens in the other direction. For example, side A pings side B. No reply. Keep pinging. Side B

Hi All, As it is written in the "Linux 2.4 Advanced Routing HOWTO" GRE tunneling has some benefits compare to IP-in-IP, on of it benefits is the ability to transport multicast traffic through a GRE tunnel. I used the mrouted daemon and I know that the daemon supports tunneling but I don''t want to use its tunneling method. Assuming I have gre0 as my tunneling device I did the

I need to send multicast traffic through a GRE tunnel between two Linux routers. The tunnel works for normal IP packets, but I can''t see how to make it work for multicast. Here''s the setup: 10.10.10.0/24 LAN-B--------------RtrB-------------RtrC--------------LAN-C 192.168.2.0/24 192.168.1.0/24 RtrB interfaces: eth0

Hi! Can I create the unnumbered GRE tunnel with iproute2 utility? Can someone provide me a link/howto/example_config how to do it? The topology is one tunnel between two linux boxes: -- eth1-|__|-eth0 <-------------> eth0-|__|-eth1 -- I''m trying now with: ip tu add tun1 mode gre local loc.IP remote rem.IP ttl 255 dev eth0 ip addr add tun1 0.0.0.0 ip link set tun1 up but it

Hey all, Anybody been successful running DHCPD on a GRE tunnel? When I tell DHCPD to listen on cisco1 I see this in the log Jul 23 16:21:03 atlantis dhcpd: cisco1: unknown hardware address type 778 Here is the output of ifconfig cisco1 Link encap:UNSPEC HWaddr 8B-8E-28-32-00-00-00-00-00-00-00-00-00-00-00-00 inet addr:10.199.0.2 P-t-P:10.199.0.2

Hi All: I have a strange problem that was described in a previous mail but I have stripped the problem down to the following: I have a debian based router that I have setup IPSec with GRE over top. The tunnel addresses are 192.168.2.97 locally, the other side is 192.168.2.110. The tunnel is 192.168.2.96/28. The end points are locally 192.168.1.97(eth1) and 192.168.1.1 the other side''s

/-----------------------\ | | |eth0 |eth0 |-------| |-------| | |eth1 eth1 | | -------- A |____ _______| B |----- | | \ / | | --------| | | --------| | | | |

I am trying to setup GRE between two CentOS 4.5 boxes. I have tried several variations of what''s listed below, but none of them work. box1: modprobe ip_gre ip link set gre0 up ip tunnel add gretun mode gre local 66.1.1.161 remote 66.1.2.161 ttl 20 dev eth0 ip addr add dev gretun 10.253.253.1 peer 10.253.253.2/24 ip link set dev gretun up ip route add 10.2.0.0/16 via 10.253.253.2 box2:

Hello, I am doing some tests in my local network to test a GRE tunnel configuration. I can established a tunnel but if I stop send packets trough the tunnel , the tunnel goes down. I need to make ping from one side of the tunnel to the another side to wake up the tunnel. What could be my problem ?? Could be the VirtualBox ?? Thank you!

Hello Lartc Mailing List: Been working on something the last week and a half and ALMOST have it working.., just need a few pointers from the wizards on this mailing list to nail it. Ok, my setup is a hub and spoke arrangement, hub is Cisco 2821 with IOS 12.4. Spokes are ruggencom RX1000 routers, Debian based with the following versions installed: rx1000test:~# uname -a Linux rx1000test

Hi everybody, I want to do the following setup : | | Tun1 - Link 1 | Tun1 | | Router A | teql | INTERNET Link - | | teql |router B | | Tun2 - Link 2 | Tun2 | | This should permit to agregate Link 1 and Link 2 (less the cost of the encapsulation). The two tunnels are GRE ip tunnel. It seems to work fine

Hi, I got a problem similar to this one (http://mailman.ds9a.nl/pipermail/lartc/2005q4/017614.html), GRE tunnel can forward normal IP packets such as ICMP but failed to tunnel multicast traffics. Here''s the setup: 192.168.20.0/24 LAN-A--------------RtrA-------------RtrB--------------LAN-B 192.168.50.0/24 192.168.60.0/24 RtrA