DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
Old 27th July 2009
plexter plexter is offline
Shell Scout
 
Join Date: May 2008
Posts: 124
Default

Thanks for your replies.

Ugh. I think this conversation is starting to go beyond my original intent.

I used an example of "pulling the network cable" to indicate a disruption in the flow of traffic. DSL/PPPoE is not 100% reliable. Service interruptions are bound to happen beyond my control. When they do I don't want to have to worry about having to manually re: initiate the ppp process. That's all.

In the ppp.conf I have values for reconnect...etc which I had figured would reconnect when needed.

Code:
default:
...
 set redial 15 0
 set reconnect 15 10000

pppoe:
...
Routing

Yes I understand what a gateway is. How my ISP has configured their side I am unaware of. My IP always stays the same. My gateway does not (when not enforced) however the one assigned to me is contiguous.

Example:

MY address range: 192.168.20.2 SN 255.255.255.248
Gateway assigned is: 192.168.20.1
However if I don't manually set the gateway I seem to get other gateway's which are probably from one superblock owned by my ISP.

Regarding manually setting my IP/GW

Code:
set ifaddr 192.168.20.2 192.168.20.1 255.255.255.248
Routing looks something like:
Code:
 route -n show -inet | grep tun0
default            192.168.20.1       UGS        0      727     -     8 tun0
192.168.20.1       192.168.20.2       UH         1        2  1500     4 tun0
I cannot ping or access anything.

If I don't set the address/gateway
Code:
#set ifaddr 192.168.20.2 192.168.20.1 255.255.255.248
Code:
route -n show -inet | grep tun0
default            192.168.40.1        UGS        5      252     -     8 tun0
192.168.40.1        192.168.20.2       UH         1        0  1492     4 tun0
However keep in mind the gateway seems to change pretty much on each connect. Usually ranges between something like 191.x.x.x - 193.x.x.x

Also note if setting the same IP/Gateway on my hardware appliance the connection works fine.

PF Load Failure

Also note that after removing the dynamic identifiers in pf.conf for ($ext_if) my pf fails to load again when I restart since tun0 is not ready. I have added up to hostname.tun0.

I'm curious about implementing "kernel" level PPPoE as apposed to what I have now. What is required? It sound's like this may have more desired results.


Thanks for all your help!
Reply With Quote
 

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Need help with NAT setup Quaxo OpenBSD Installation and Upgrading 6 27th January 2009 08:03 PM
DJ Setup tad1214 FreeBSD General 8 21st July 2008 01:50 PM
Remote Access to File Server Oko OpenBSD Security 7 23rd June 2008 05:17 PM
How To Setup WPA? warriors OpenBSD General 8 15th June 2008 04:39 PM
postfix setup Demodog General software and network 12 11th June 2008 07:43 PM


All times are GMT. The time now is 12:55 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick