allowing gif thru ipfw
Eugene Grosbein
eugen at grosbein.pp.ru
Wed Feb 1 14:23:46 UTC 2012
01.02.2012 21:12, Eric W. Bates пишет:
> On 2/1/2012 3:06 AM, Doug Barton wrote:
>> If it's a hurricane electric tunnel don't you want protocol 41?
>
> Well, it's a straight up gif. Right this second I'm trying to suss out
> which protocol gif's use. If it's documented, I can't find it. The
> closest bit I can find on the man page is:
>
> The behavior of gif is mainly based on RFC2893 IPv6-over-IPv4 configured
> tunnel.
>
> I tried to read the pertinent parts of the RFC, but it doesn't really
> discuss "type" or "protocol". It does talk about some header size issues.
>
> Since ipfw is obviously blocking something and I can't get a handle on
> it with tcpdump, I'm groping for an understanding of the shape of the
> gif packets.
Have you tried "tcpdump -i em_vlan5 -nnvvs0 host $he_tun and not tcp and not udp and not icmp" ?
I do not use IPv6 over IPv4 tunnels and not sure.
Perhaps, that is IPIP protocol (number 94 decimal)?
Eugene Grosbein
More information about the freebsd-net
mailing list