From nobody Wed Sep 28 20:27:31 2022
X-Original-To: net@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Md7Mm1n4Jz4V0ss
	for <net@mlmmj.nyi.freebsd.org>; Wed, 28 Sep 2022 20:27:32 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4Md7Mm0kPPz4778
	for <net@FreeBSD.org>; Wed, 28 Sep 2022 20:27:32 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4Md7Ml6xFkzZsv
	for <net@FreeBSD.org>; Wed, 28 Sep 2022 20:27:31 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org ([127.0.1.5])
	by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 28SKRVih081895
	for <net@FreeBSD.org>; Wed, 28 Sep 2022 20:27:31 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
Received: (from www@localhost)
	by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 28SKRVG9081894
	for net@FreeBSD.org; Wed, 28 Sep 2022 20:27:31 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f
From: bugzilla-noreply@freebsd.org
To: net@FreeBSD.org
Subject: [Bug 261711] net/wireguard-kmod: Cannot send data over VXLAN / vtnet
Date: Wed, 28 Sep 2022 20:27:31 +0000
X-Bugzilla-Reason: CC
X-Bugzilla-Type: changed
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Ports & Packages
X-Bugzilla-Component: Individual Port(s)
X-Bugzilla-Version: Latest
X-Bugzilla-Keywords: needs-qa
X-Bugzilla-Severity: Affects Only Me
X-Bugzilla-Who: burak.sn@outlook.com
X-Bugzilla-Status: Open
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: ports-bugs@FreeBSD.org
X-Bugzilla-Flags: maintainer-feedback?
X-Bugzilla-Changed-Fields: cc
Message-ID: <bug-261711-7501-R75hUgVZ54@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-261711-7501@https.bugs.freebsd.org/bugzilla/>
References: <bug-261711-7501@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-net
List-Help: <mailto:freebsd-net+help@freebsd.org>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Subscribe: <mailto:freebsd-net+subscribe@freebsd.org>
List-Unsubscribe: <mailto:freebsd-net+unsubscribe@freebsd.org>
Sender: owner-freebsd-net@freebsd.org
MIME-Version: 1.0
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org;
	s=dkim; t=1664396852;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=8kxYsnv2aH3iF3CLS5ahSxojihJwKw6HfN03EzVEmO8=;
	b=TpW1WAD5U0tpzF5zOWwjgu5Ksr8qQbU/JQZTDPg/I5n7kvu7qwJT8IKMQaP21C/9hh7/lU
	KLYhzUSb4Ztll55AAa3Iufpk4PyDNp264rz246LCii04UhMb1GONFkEyBwZ7bF31QCpdKC
	9LPODiSUf4NaWB4Kc5txplh74Bli3K1bP/OHOSzbDO7TI1ZBPlMV/gzsrP8EG75erOzz7z
	xFwtwa0RDCRbUah0C9o0wn5P390l8HUpr5E0EoyJY0yaeU4GKg/DjAjBeUDjzRuJdZr3ho
	YSH95llbEv+EDF6MVxvxjfJl/zADK84xDEFprnOSIA6zXWX6y68+lcQwF2CJqg==
ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1664396852; a=rsa-sha256; cv=none;
	b=B+VjLLFUmOFnOS6mdaOas1oKPV7sFgW/j8P2YOrAYAkilcOK1IlJ+4dcTQMcA8K9spvi87
	oEkMagbcFRi6h5W8fyz1OS4hpaLIi5vLvGho8ycL8kQ/rqhOPhBqOil7xuk78C7qNjx+zf
	XqMxK0J8VzguDCxbTHl6pGkbqU1qvw9Kf21ftgOL7LEOU0Wl8Ordcm4gO6u+76v7rJ9di7
	Mp/s6/zFp4vYYYoj9CfjFD8JBRs7hFM6JKNQ+aGeZHLcFBvaRRnlLsLnOmDE5RBafmeHB7
	SQ2FVYL23Qz+ub1FVJjsdmaoIQ0YiT03B8JYv3seMiJN8hynmL+jHDcf3lqdpg==
ARC-Authentication-Results: i=1;
	mx1.freebsd.org;
	none
X-ThisMailContainsUnwantedMimeParts: N

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D261711

Alfa <burak.sn@outlook.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |burak.sn@outlook.com

--- Comment #8 from Alfa <burak.sn@outlook.com> ---
Hi,

I had same issue,  vxlan traffic not passed thruogh wireguard kmod
on  FreeBSD 12.2 and 13.0 STABLE

I have found that the FreeBSD's wireguard kernel implementation is the prob=
lem
itself. I removed Kernel implementation and installed go user space
implementation it worked on FreeBSD 12.2 STABLE bot tried for 13.0.

Now i tried vxlan over wg on FreebSD 14 CURRENT 20220923 AMD64 build this t=
ime
both wireguard kmod & go implementation didn't work.



Configuration:

wireguard freebsd 14 machine wg0 interface ip :192.168.199.1/24
wireguard linux machine wg0 iface ip : 192.168.199.250/24

wireguard peers connected each other successfully and available to ping one=
 by
one

but when i added vxlan like this :

ifconfig vxlan700 create vxlanid 700 vxlanlocal 192.168.199.1 vxlanremote
192.168.199.250

ifconfig vxlan700 192.168.88.1/24

and i configured linux machine to meet this vxlan700

there was no traffic enters vxlan700 on bsd side The traffic doesn't pass f=
rom
wireguard to vxlan=20
when i listened wg interface "udp port vxlan unreachable" error occurs

here is FreeBSD side logs:

peer: >secret<
  endpoint: >secret<:10626
  allowed ips: 192.168.199.250/32
  latest handshake: Now
  transfer: 145.32 KiB received, 181.92 KiB sent
  persistent keepalive: every 25 seconds

root@freebsd14:~ # tcpdump -i vxlan700
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on vxlan700, link-type EN10MB (Ethernet), capture size 262144 byt=
es
>>> there is no traffic


root@freebsd14:~ # tcpdump -i wg0
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on wg0, link-type NULL (BSD loopback), capture size 262144 bytes
17:21:11.801802 IP 192.168.199.250.47705 > 192.168.199.1.vxlan: VXLAN, flags
[I] (0x08), vni 700
ARP, Request who-has 192.168.88.1 tell 192.168.88.2, length 46
17:21:11.801832 IP 192.168.199.1 > 192.168.199.250: ICMP 192.168.199.1 udp =
port
vxlan unreachable, length 104
17:21:12.825053 IP 192.168.199.250.47705 > 192.168.199.1.vxlan: VXLAN, flags
[I] (0x08), vni 700
ARP, Request who-has 192.168.88.1 tell 192.168.88.2, length 46

There was same problem for freebsd 12.2 and 13 stable versions wg kmod
implementations i have created a topic shown below . I was solved installin=
g go
implementation but this not worked for freebsd 14 .


https://forums.freebsd.org/threads/vxlan-works-only-on-freebsd-11-2-but-not=
-works-on-12-2-and-13-stable.81833/#post-566850

i used latest freebsd 14 current image
https://download.freebsd.org/snapshots/amd64/amd64/ISO-IMAGES/14.0/FreeBSD-=
14.0-CURRENT-amd64-20220923-00d8a28f19b-258155-memstick.img.xz

--=20
You are receiving this mail because:
You are on the CC list for the bug.=