[vpnc-devel] Problems going through NAT configured with ferm

Steinar Bang sb at dod.no
Sun Feb 3 18:22:34 CET 2008 

>>>>> Joerg Mayer <jmvpnc at loplof.de>:

[snip!]
> vpnc_connecting_not.pcap:

> Frame 1: internal address to external address
> END

> So it looks like the openwrt router isn't sending that packet to the
> outside world at all. Looks like some interesting bug in the kernel.

Yup.  Any idea of why the two implementations are treated differently?
The size of the initial package triggering a "should be fragmented"
thingy erronously?

> But just to be sure: Please send the output of ifconfig and if you wanto
> to anonymize things please replace the inside ip address by something
> like <inside-ip> and the outside address accordingly.

Well, I don't worry much about the outside world knowing I'm running a
10.10.10.* net at home.  I've anonymized the outside address (eth0 is
the inside NIC, eth1 is the outside NIC):

This is ifconfig from the gateway machine:
eth0      Link encap:Ethernet  HWaddr 00:50:DA:43:12:A8  
          inet addr:10.10.10.1  Bcast:10.10.10.255  Mask:255.255.255.0
          inet6 addr: fe80::250:daff:fe43:12a8/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:3463 errors:0 dropped:0 overruns:0 frame:0
          TX packets:4001 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:387258 (378.1 KiB)  TX bytes:2582866 (2.4 MiB)
          Interrupt:11 Base address:0x2800 

eth1      Link encap:Ethernet  HWaddr 00:00:F8:D9:3B:F1  
          inet addr:<outside-ip>  Bcast:255.255.255.255  Mask:255.255.192.0
          UP BROADCAST RUNNING MULTICAST  MTU:576  Metric:1
          RX packets:1090128 errors:0 dropped:0 overruns:0 frame:0
          TX packets:4339 errors:4 dropped:0 overruns:0 carrier:4
          collisions:0 txqueuelen:1000 
          RX bytes:70165654 (66.9 MiB)  TX bytes:404105 (394.6 KiB)
          Interrupt:11 Base address:0xec00 

lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:74 errors:0 dropped:0 overruns:0 frame:0
          TX packets:74 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:21998 (21.4 KiB)  TX bytes:21998 (21.4 KiB)

More information about the vpnc-devel mailing list