help me. What i'm doing wrong? pkg_add xl2tpd (OK)
pf - disabled vi /etc/xl2tpd/xl2tpd.conf [lac beeline] lns = vpn.dzer.b2b.local redial = yes autodial = yes vi /etc/ppp/options name user vi /etc/ppp/chap-secrets user * password vi /etc/ppp/pap-secrets user * password vi /etc/rc.conf.local pkg_scripts="xl2tpd" route -n show -inet Routing tables Internet: Destination Gateway Flags Refs Use Mtu Prio Iface default 195.98.58.194 UGS 10 1509230 - 6 ppp0 default 10.55.254.65 UGS 1 1514844 - 8 em0 10.55.254.64/26 link#1 UC 1 0 - 4 em0 10.55.254.65 00:22:b0:2f:eb:34 UHLc 2 3109 - 4 em0 10.55.254.126 127.0.0.1 UG 0 0 33152 56 lo0 127/8 127.0.0.1 UGRS 0 0 33152 8 lo0 127.0.0.1 127.0.0.1 UH 3 2177215 33152 4 lo0 172.18.255.15 10.55.254.65 UGHS 0 2950 - 8 em0 192.168.10/24 link#2 UC 3 0 - 4 em1 192.168.10.50 f4:6d:04:dd:45:9a UHLc 3 11486133 - 4 em1 192.168.10.62 link#2 UHLc 1 94544 - 4 em1 192.168.10.255 link#2 UHLc 2 247 - 4 em1 195.98.58.194 XXX.XXX.XXX.XXX UH 1 3177 - 4 ppp0 224/4 127.0.0.1 URS 0 0 33152 8 lo0 # ifconfig em0: flags=8b43<UP,BROADCAST,RUNNING,PROMISC,ALLMULTI,SIMPLEX,MULTICAST> mtu 1500 lladdr 00:1e:8c:f2:13:7a priority: 0 media: Ethernet autoselect (100baseTX full-duplex) status: active inet6 fe80::21e:8cff:fef2:137a%em0 prefixlen 64 scopeid 0x1 inet 10.55.254.126 netmask 0xffffffc0 broadcast 10.55.254.127 em1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 lladdr 00:1b:21:39:84:fb priority: 0 media: Ethernet autoselect (1000baseT full-duplex,rxpause,txpause) status: active inet 192.168.10.1 netmask 0xffffff00 broadcast 192.168.10.255 inet6 fe80::21b:21ff:fe39:84fb%em1 prefixlen 64 scopeid 0x2 ppp0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1464 priority: 0 groups: ppp egress inet XXX.XXX.XXX.XXX --> 195.98.58.194 netmask 0xffffff00 Check link to gateway ISP(em0) and to vpn.dzer.b2b.local (172.18.255.15) - GOOD mtu (1472+28=1500) and when # ping -D -s 1472 10.55.254.65 PING 10.55.254.65 (10.55.254.65): 1472 data bytes 1480 bytes from 10.55.254.65: icmp_seq=0 ttl=255 time=2.028 ms 1480 bytes from 10.55.254.65: icmp_seq=1 ttl=255 time=2.225 ms 1480 bytes from 10.55.254.65: icmp_seq=2 ttl=255 time=2.060 ms 1480 bytes from 10.55.254.65: icmp_seq=3 ttl=255 time=2.073 ms # ping -D -s 1472 172.18.255.15 PING 172.18.255.15 (172.18.255.15): 1472 data bytes 1480 bytes from 172.18.255.15: icmp_seq=0 ttl=252 time=0.982 ms 1480 bytes from 172.18.255.15: icmp_seq=1 ttl=252 time=0.944 ms 1480 bytes from 172.18.255.15: icmp_seq=2 ttl=252 time=0.936 ms 1480 bytes from 172.18.255.15: icmp_seq=3 ttl=252 time=0.936 ms # tcpdump -i em0 icmp tcpdump: listening on em0, link-type EN10MB tcpdump: WARNING: compensating for unaligned libpcap packets 21:15:57.299040 10.55.254.126 > 10.55.254.65: icmp: echo request (DF) 21:15:57.301029 10.55.254.65 > 10.55.254.126: icmp: echo reply (DF) [tos 0x28] 21:15:58.303589 10.55.254.126 > 10.55.254.65: icmp: echo request (DF) 21:15:58.305759 10.55.254.65 > 10.55.254.126: icmp: echo reply (DF) [tos 0x28] 21:15:59.313555 10.55.254.126 > 10.55.254.65: icmp: echo request (DF) 21:15:59.315579 10.55.254.65 > 10.55.254.126: icmp: echo reply (DF) [tos 0x28] 21:16:00.323548 10.55.254.126 > 10.55.254.65: icmp: echo request (DF) 21:16:00.325562 10.55.254.65 > 10.55.254.126: icmp: echo reply (DF) [tos 0x28] 21:25:00.365887 10.55.254.126 > 172.18.255.15: icmp: echo request (DF) 21:25:00.366809 172.18.255.15 > 10.55.254.126: icmp: echo reply (DF) [tos 0x28] 21:25:01.368684 10.55.254.126 > 172.18.255.15: icmp: echo request (DF) 21:25:01.369586 172.18.255.15 > 10.55.254.126: icmp: echo reply (DF) [tos 0x28] 21:25:02.378666 10.55.254.126 > 172.18.255.15: icmp: echo request (DF) 21:25:02.379578 172.18.255.15 > 10.55.254.126: icmp: echo reply (DF) [tos 0x28] 21:25:03.388677 10.55.254.126 > 172.18.255.15: icmp: echo request (DF) 21:25:03.389563 172.18.255.15 > 10.55.254.126: icmp: echo reply (DF) [tos 0x28] =========================================================== Check link to gateway ISP(ppp0) - BAD mtu (1436+28=1464) mtu (972+28=1000) but some sites does not open or slow open. mtu (548+28=576) site open (which in mtu 1000 does not). But internet slow and some pockets lost(i think so) and when # ping -D -s 1436 195.98.58.194 PING 195.98.58.194 (195.98.58.194): 1436 data bytes # tcpdump -i ppp0 icmp tcpdump: listening on ppp0, link-type PPP 21:29:54.656277 XXX.XXX.XXX.XXX > 195.98.58.194: icmp: echo request (DF) 21:29:55.666047 XXX.XXX.XXX.XXX > 195.98.58.194: icmp: echo request (DF) 21:29:56.676027 XXX.XXX.XXX.XXX > 195.98.58.194: icmp: echo request (DF) 21:29:57.686021 XXX.XXX.XXX.XXX > 195.98.58.194: icmp: echo request (DF) # ping -D -s 972 195.98.58.194 PING 195.98.58.194 (195.98.58.194): 972 data bytes 980 bytes from 195.98.58.194: icmp_seq=0 ttl=255 time=0.907 ms 980 bytes from 195.98.58.194: icmp_seq=1 ttl=255 time=0.910 ms 980 bytes from 195.98.58.194: icmp_seq=2 ttl=255 time=0.837 ms 980 bytes from 195.98.58.194: icmp_seq=3 ttl=255 time=0.924 ms # tcpdump -ni ppp0 icmp tcpdump: listening on ppp0, link-type PPP 21:31:55.563806 XXX.XXX.XXX.XXX > 195.98.58.194: icmp: echo request (DF) 21:31:55.564660 195.98.58.194 > XXX.XXX.XXX.XXX: icmp: echo reply (DF) 21:31:56.564969 XXX.XXX.XXX.XXX > 195.98.58.194: icmp: echo request (DF) 21:31:56.565743 195.98.58.194 > XXX.XXX.XXX.XXX: icmp: echo reply (DF) 21:31:57.574947 XXX.XXX.XXX.XXX > 195.98.58.194: icmp: echo request (DF) 21:31:57.575743 195.98.58.194 > XXX.XXX.XXX.XXX: icmp: echo reply (DF) 21:31:58.584940 XXX.XXX.XXX.XXX > 195.98.58.194: icmp: echo request (DF) 21:31:58.585756 195.98.58.194 > XXX.XXX.XXX.XXX: icmp: echo reply (DF)
