[Bug 261711] net/wireguard-kmod: Cannot send data over VXLAN / vtnet

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 28 Sep 2022 20:27:31 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=261711

Alfa <burak.sn@outlook.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |burak.sn@outlook.com

--- Comment #8 from Alfa <burak.sn@outlook.com> ---
Hi,

I had same issue,  vxlan traffic not passed thruogh wireguard kmod
on  FreeBSD 12.2 and 13.0 STABLE

I have found that the FreeBSD's wireguard kernel implementation is the problem
itself. I removed Kernel implementation and installed go user space
implementation it worked on FreeBSD 12.2 STABLE bot tried for 13.0.

Now i tried vxlan over wg on FreebSD 14 CURRENT 20220923 AMD64 build this time
both wireguard kmod & go implementation didn't work.



Configuration:

wireguard freebsd 14 machine wg0 interface ip :192.168.199.1/24
wireguard linux machine wg0 iface ip : 192.168.199.250/24

wireguard peers connected each other successfully and available to ping one by
one

but when i added vxlan like this :

ifconfig vxlan700 create vxlanid 700 vxlanlocal 192.168.199.1 vxlanremote
192.168.199.250

ifconfig vxlan700 192.168.88.1/24

and i configured linux machine to meet this vxlan700

there was no traffic enters vxlan700 on bsd side The traffic doesn't pass from
wireguard to vxlan 
when i listened wg interface "udp port vxlan unreachable" error occurs

here is FreeBSD side logs:

peer: >secret<
  endpoint: >secret<:10626
  allowed ips: 192.168.199.250/32
  latest handshake: Now
  transfer: 145.32 KiB received, 181.92 KiB sent
  persistent keepalive: every 25 seconds

root@freebsd14:~ # tcpdump -i vxlan700
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on vxlan700, link-type EN10MB (Ethernet), capture size 262144 bytes
>>> there is no traffic


root@freebsd14:~ # tcpdump -i wg0
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on wg0, link-type NULL (BSD loopback), capture size 262144 bytes
17:21:11.801802 IP 192.168.199.250.47705 > 192.168.199.1.vxlan: VXLAN, flags
[I] (0x08), vni 700
ARP, Request who-has 192.168.88.1 tell 192.168.88.2, length 46
17:21:11.801832 IP 192.168.199.1 > 192.168.199.250: ICMP 192.168.199.1 udp port
vxlan unreachable, length 104
17:21:12.825053 IP 192.168.199.250.47705 > 192.168.199.1.vxlan: VXLAN, flags
[I] (0x08), vni 700
ARP, Request who-has 192.168.88.1 tell 192.168.88.2, length 46

There was same problem for freebsd 12.2 and 13 stable versions wg kmod
implementations i have created a topic shown below . I was solved installing go
implementation but this not worked for freebsd 14 .


https://forums.freebsd.org/threads/vxlan-works-only-on-freebsd-11-2-but-not-works-on-12-2-and-13-stable.81833/#post-566850

i used latest freebsd 14 current image
https://download.freebsd.org/snapshots/amd64/amd64/ISO-IMAGES/14.0/FreeBSD-14.0-CURRENT-amd64-20220923-00d8a28f19b-258155-memstick.img.xz

-- 
You are receiving this mail because:
You are on the CC list for the bug.