From owner-FreeBSD-net-jp@jp.freebsd.org  Tue May 15 19:51:03 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id TAA40372;
	Tue, 15 May 2001 19:51:03 +0900 (JST)
	(envelope-from owner-FreeBSD-net-jp@jp.FreeBSD.org)
Received: from x20.i.nabechan.org (lab129.kddlabs.co.jp [202.255.45.129])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id TAA40365
	for <FreeBSD-net-jp@jp.freebsd.org>; Tue, 15 May 2001 19:51:03 +0900 (JST)
	(envelope-from nabe@nabechan.org)
Received: from x20.i.nabechan.org (localhost [127.0.0.1])
	by x20.i.nabechan.org (8.11.3/3.7W-01010411) with ESMTP id f4FAlqa03819
	for <FreeBSD-net-jp@jp.freebsd.org>; Tue, 15 May 2001 19:47:52 +0900 (JST)
Date: Tue, 15 May 2001 19:47:52 +0900
Message-ID: <87zocekhwn.wl@nabechan.org>
From: Shingo WATANABE / =?ISO-2022-JP?B?GyRCRU9KVRsoQiAbJEI/LThjGyhC?=
 <nabe@nabechan.org>
To: FreeBSD-net-jp@jp.freebsd.org
In-Reply-To: <004f01c0dd0d$3f8b9700$1101a8c0@kajita>
References: <004f01c0dd0d$3f8b9700$1101a8c0@kajita>
User-Agent: Wanderlust/2.5.5 (Smooth) XEmacs/21.1 (Channel Islands)
Organization: nabechan.org
X-Callsign: JG8OOM/1
X-OS: NetBSD 1.5V
MIME-Version: 1.0 (generated by NISEMI 1.14.0 - =?ISO-2022-JP?B?Ig==?=
 =?ISO-2022-JP?B?GyRCMGY4fUA/GyhCIg==?=)
Content-Type: text/plain; charset=ISO-2022-JP
Reply-To: FreeBSD-net-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+010328
X-Sequence: FreeBSD-net-jp 3101
Subject: [FreeBSD-net-jp 3101] Re: VPN Useing Vtun
Errors-To: owner-FreeBSD-net-jp@jp.freebsd.org
Sender: owner-FreeBSD-net-jp@jp.freebsd.org
X-Originator: nabe@nabechan.org

$B$o$?$J$Y$G$9!#(B

$B:Y$+$$$H$3$m$OA4A38+$F$J$$$1$I!#(B

>                             Vtun tunnel
>             -----------------------------
>       GW1|             The Internet               |GW2
>   |xxx.yyy.zzz.aaa|                        |bbb.ccc.ddd.eee|
>   |192.168.1.254  |                        |192.168.2.254   |
>             |                                             |
> |192.168.1.0/24$B%(%j%"(B|                |192.168.2.0/24$B%(%j%"(B|

$B$3$N%[%9%H$N$I$A$i$,$=$N8e$N@bL@$K=P$FMh$k(B client $B$G!"$I$C$A$,(B server $B$J(B
$B$s$G$7$g!)$J$s$H$J$/(B netstat $B$N7k2L$+$i?dB,$G$-$k$1$l$I=q$$$F$*$$$?J}$,(B
$BNI$$$H;W$$$^$9!#$"$H!"%$%s%?!<%U%'!<%9L>$b!#(B

> 192.168.1.*$B%(%j%"(B<->192.168.2.*$B%(%j%"$X$NDL?.7PO)3NJ](B
> 
> $B$G!"(Bvtun.conf$B$G$*$N$*$N$N%k!<%F%#%s%0%F!<%V%k$r:n@.$9$k$h$&$K(B
> $B;XDj$7$F$"$k$N$G$9$,!"$3$l$,$&$^$/$$$-$^$;$s!#(Btunnel device$B$r(B
> $B%$%s%?!<%U%'%$%9$K$7$F$N%k!<%F%#%s%0$,$G$-$J$$$N$G$9!#(B
> 
> GateWay$BF1;N$G$OLdBj$J$/DL?.$G$-$^$9!#(B
> 192.168.1.254<->192.168.2.254::OK

$B$C$F$3$H$J$i(B ip forwarding $B$,=PMh$F$J$$$@$1$G$O!)(B
$B$b$7$/$O!"%k!<%?0J30$N%3%s%T%e!<%?$N%k!<%F%#%s%0%F!<%V%k$NLdBj$8$c$J$$$+(B
$B$H!#(B

$BA0<T$G$"$l$P(B /etc/rc.conf $B$K(B gateway_enable="YES" $B$,I,MW$G!"(B
$B<jF0$G$d$k$J$i(B sysctl -w net.inet.ip.forwarding=1 $B$r<B9T$7$^$9!#(B

$B8e<T$G$"$l$P!"(Bdefault route $B$r%k!<%?(B PC $B$K8~$1$l$PNI$$$G$7$g$&!#(B


> routed$B$O(BOS$B5/F0;~$K(B-q option$B$GN)$A>e$,$C$F$^$9!#(B

RIP $B$G$bN.$9$N$G$J$1$l$P(B routed $B$OITMW$G$9!#(B
routed $B$O2?$r$9$k$?$a$N$b$N$+J,$+$C$F$$$FF0$+$7$F$$$^$9$+!)(B
