From max at boryspil.net.ua  Thu Oct  4 11:12:11 2018
From: max at boryspil.net.ua (Max)
Date: Thu, 4 Oct 2018 11:12:11 +0300
Subject: [freebsd] =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
	=?utf-8?b?0LLQtdGA?=
Message-ID: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>

?????? ????, ????????? ???,

??????????, ??????????, ??? ???????????? ???????? FreeBSD ????? 
????????? VPN ??????, ??????? ????? ??????????? ?? 500 ?? 1000 
????????????? ???????????.

??? ??????????? ??????? ? ???????? ???????????? ???????????.

???????.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.uafug.org.ua/pipermail/freebsd/attachments/20181004/8dc6f2e2/attachment.html>

From eugen at grosbein.net  Thu Oct  4 11:31:21 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Thu, 4 Oct 2018 15:31:21 +0700
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
Message-ID: <12de7e98-0a0b-d28a-6a8e-fd9b16cead23@grosbein.net>

04.10.2018 15:12, Max wrote:

> ?????? ????, ????????? ???,
> 
> ??????????, ??????????, ??? ???????????? ???????? FreeBSD ????? ????????? VPN ??????, ??????? ????? ??????????? ?? 500 ?? 1000 ????????????? ???????????.
> 
> ??? ??????????? ??????? ? ???????? ???????????? ???????????.

??????? ?? ?????? ?????????? VPN. ???? ??????? ? ???? PPtP/L2TP,
?? 64-?????? ?????? FreeBSD ?? ???? ??? 11.2 ? mpd5 ?? ?????? ??????/???????.

?? ???????? ????? ??? ?? ?????????????? ???? ?? ???? ??? ????????? ????????????:
https://bz-attachments.freebsd.org/attachment.cgi?id=183570

???? ???????????? IPv6 ? ??????? 6to4 (??????? stf), ?? ??? ???? ??? ????????? ????????????:
https://bz-attachments.freebsd.org/attachment.cgi?id=183569

???? ? ???? ???????????? ?????????? (????????, OSPF), ?? ??? ???? ??? ????????? ????????????:
https://bz-attachments.freebsd.org/attachment.cgi?id=183568

?? ???? ???? ???????? ????? ????????? ??????????? ? ????? ?????? ????????????? ???????????,
? ????????? ?? 3000 ? ??????, ?? ??? ??? ?????? ???????? ?????? (?????? ?????????? ?????????).
 

From max at boryspil.net.ua  Thu Oct  4 11:35:00 2018
From: max at boryspil.net.ua (Max)
Date: Thu, 4 Oct 2018 11:35:00 +0300
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <12de7e98-0a0b-d28a-6a8e-fd9b16cead23@grosbein.net>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <12de7e98-0a0b-d28a-6a8e-fd9b16cead23@grosbein.net>
Message-ID: <8d1d2995-dd84-1913-5246-85e7c0ddce64@boryspil.net.ua>

??????? ?? ?????.

????? ????? ? ????? ?????? ????????????


04.10.2018 11:31, Eugene Grosbein ?????:
> 04.10.2018 15:12, Max wrote:
>
>> ?????? ????, ????????? ???,
>>
>> ??????????, ??????????, ??? ???????????? ???????? FreeBSD ????? ????????? VPN ??????, ??????? ????? ??????????? ?? 500 ?? 1000 ????????????? ???????????.
>>
>> ??? ??????????? ??????? ? ???????? ???????????? ???????????.
> ??????? ?? ?????? ?????????? VPN. ???? ??????? ? ???? PPtP/L2TP,
> ?? 64-?????? ?????? FreeBSD ?? ???? ??? 11.2 ? mpd5 ?? ?????? ??????/???????.
>
> ?? ???????? ????? ??? ?? ?????????????? ???? ?? ???? ??? ????????? ????????????:
> https://bz-attachments.freebsd.org/attachment.cgi?id=183570
>
> ???? ???????????? IPv6 ? ??????? 6to4 (??????? stf), ?? ??? ???? ??? ????????? ????????????:
> https://bz-attachments.freebsd.org/attachment.cgi?id=183569
>
> ???? ? ???? ???????????? ?????????? (????????, OSPF), ?? ??? ???? ??? ????????? ????????????:
> https://bz-attachments.freebsd.org/attachment.cgi?id=183568
>
> ?? ???? ???? ???????? ????? ????????? ??????????? ? ????? ?????? ????????????? ???????????,
> ? ????????? ?? 3000 ? ??????, ?? ??? ??? ?????? ???????? ?????? (?????? ?????????? ?????????).
>   


From skeletor at lissyara.su  Thu Oct  4 11:50:56 2018
From: skeletor at lissyara.su (skeletor)
Date: Thu, 4 Oct 2018 11:50:56 +0300
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
Message-ID: <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>


04.10.2018 11:12, Max ?????:
> ?????? ????, ????????? ???,
> 
> ??????????, ??????????, ??? ???????????? ???????? FreeBSD ????? 
> ????????? VPN ??????, ??????? ????? ??????????? ?? 500 ?? 1000 
> ????????????? ???????????.
> 
> ??? ??????????? ??????? ? ???????? ???????????? ???????????.
> 
> ???????.
> 


????????, ??? GRE ????? ????? ????????????, ???????? ????????:

- l2tp: ??? ?? ???????????? ??? ipsec'a, ????? ????? ? ?????? ?????, 
????????? ??????? ????? ?? ????? ???????? ? ???
- openvpn: ?????????????? ? ????????? ? ?????????? ??????? ??? 
?????????? ?? (win/mac/linux/freebsd), ????? ? ????????? (? 1 ?????? 
????? ? ?????? ? ????? ?????????) + ????????? ????????? ?????????????? 
(?????, ??????, ?????+??????)
- ipsec: ?????? ? ?????????, ????? ???????? ?? ????? (???????? ?????, 
?????????????? ?????, ?????????)

??? ????? ??????? ?? ??, ??? ??? ?? ????, ? ??, ??? ?????? ???????????? 
?????: ???? ??? ????? ????? ?????? ??? ????? ?? ? ?????? ????? 100500 
???????? ??????? ? ??????? ?? ?????? ? ????? ??, ?? ?????? ????? VPN ?? 
????? ?????. ????, ???? ?????? ????, ? ?? ????? ?? ???????? (???-?? 
????????? ????? ???? ? ?????? ???????????? GRE), ?? ? ??? ?? ?????? 
????????? ????????.

From eugen at grosbein.net  Thu Oct  4 12:02:28 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Thu, 4 Oct 2018 16:02:28 +0700
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
Message-ID: <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>

04.10.2018 15:50, skeletor wrote:

> ????????, ??? GRE ????? ????? ????????????, ???????? ????????:

????????, ??? "GRE ????? ????? ????????????" - ??????, ??? ?? ?? ???????? ????? NAT
????????? ?????????? ????? (? ??? ? ?????????). ? ?????????? IP ? GRE ??? ???????.

> - l2tp: ??? ?? ???????????? ??? ipsec'a, ????? ????? ? ?????? ?????

?? ?????, ??????? ? Windows Vista ???? ????? ? ????????? VPN-???????????.

> - ????????? ??????? ????? ?? ????? ???????? ? ???
> - openvpn: ?????????????? ? ????????? ? ?????????? ??????? ??? ?????????? ?? (win/mac/linux/freebsd), ????? ? ????????? (? 1 ?????? ????? ? ?????? ? ????? ?????????) + ????????? ????????? ?????????????? (?????, ??????, ?????+??????)
> - ipsec: ?????? ? ?????????, ????? ???????? ?? ????? (???????? ?????, ?????????????? ?????, ?????????)
> 
> ??? ????? ??????? ?? ??, ??? ??? ?? ????, ? ??, ??? ?????? ???????????? ?????: ???? ??? ????? ????? ?????? ??? ????? ?? ? ?????? ????? 100500 ???????? ??????? ? ??????? ?? ?????? ? ????? ??, ?? ?????? ????? VPN ?? ????? ?????. ????, ???? ?????? ????, ? ?? ????? ?? ???????? (???-?? ????????? ????? ???? ? ?????? ???????????? GRE), ?? ? ??? ?? ?????? ????????? ????????.

L2TP/IPSEC ??? ??????? ??????? ????? ? ?????????, ??? ??? ?????? ?????
??????? ??????????? ?? ??? ????????? ?? ??????? ? ????? ????????? ??????
????? ???????, psk, ????? ? ?????? ??? PPP.

????????? ??????? (racoon) ??? ?????????? ?????? ??? ?? ???????? ?? ??????? ????????? openvpn.
??????????? ? ???????? ????? - ????????, ? IPSEC ???? ?????????????? ??????????? NAT
?? ???? ?????????? ???????????? ? UDP.

?????? ??? ??? ????????? ?? ?????? ????, ?????? ??? ????? ???? ???? ? ?????? ?????????????
?????????? - ????, ?????????, ? ??????????? ? ?????????????? ????, ? ??? openvpn ?????? ?? ? ????,
??? ??? ??????? ??? ????????????? ??????????? ??? ????, ? ??????? ?? PPPoE.




From eugen at grosbein.net  Thu Oct  4 12:04:58 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Thu, 4 Oct 2018 16:04:58 +0700
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <8d1d2995-dd84-1913-5246-85e7c0ddce64@boryspil.net.ua>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <12de7e98-0a0b-d28a-6a8e-fd9b16cead23@grosbein.net>
 <8d1d2995-dd84-1913-5246-85e7c0ddce64@boryspil.net.ua>
Message-ID: <55256cf4-4f5d-467d-f8c8-a7e7d01fb04e@grosbein.net>

04.10.2018 15:35, Max ?????:
> ??????? ?? ?????.
> 
> ????? ????? ? ????? ?????? ????????????

??????????. ??? ?????? ????????????? ??????, ??? ?????? ?????? ??????? ??????,
???? ????? ?????? ?????? 500, ??????????? ?????? ????.


From skeletor at lissyara.su  Thu Oct  4 13:35:18 2018
From: skeletor at lissyara.su (skeletor)
Date: Thu, 4 Oct 2018 13:35:18 +0300
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
Message-ID: <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>

04.10.2018 12:02, Eugene Grosbein ?????:
> 04.10.2018 15:50, skeletor wrote:
> 
>> ????????, ??? GRE ????? ????? ????????????, ???????? ????????:
> 
> ????????, ??? "GRE ????? ????? ????????????" - ??????, ??? ?? ?? ???????? ????? NAT
> ????????? ?????????? ????? (? ??? ? ?????????). ? ?????????? IP ? GRE ??? ???????.
> 

??????, ? NAT ? ???? ?????? (? ?? ?????? ? ????) ??? ?? ??? ???: ????? 
???? ? ? NAT'?? ? ??? NAT'a ? ?? ?????? ???????????.
???????? ??? ???? ???????????, ??? ????????? ???????? GRE, ?? ????? ???????.

>> - l2tp: ??? ?? ???????????? ??? ipsec'a, ????? ????? ? ?????? ?????
> 
> ?? ?????, ??????? ? Windows Vista ???? ????? ? ????????? VPN-???????????.
> 

? ?? 7-?? ?? ????? ??? ???????. ??????????, ??? ??? ????????/???????????

>> - ????????? ??????? ????? ?? ????? ???????? ? ???
>> - openvpn: ?????????????? ? ????????? ? ?????????? ??????? ??? ?????????? ?? (win/mac/linux/freebsd), ????? ? ????????? (? 1 ?????? ????? ? ?????? ? ????? ?????????) + ????????? ????????? ?????????????? (?????, ??????, ?????+??????)
>> - ipsec: ?????? ? ?????????, ????? ???????? ?? ????? (???????? ?????, ?????????????? ?????, ?????????)
>>
>> ??? ????? ??????? ?? ??, ??? ??? ?? ????, ? ??, ??? ?????? ???????????? ?????: ???? ??? ????? ????? ?????? ??? ????? ?? ? ?????? ????? 100500 ???????? ??????? ? ??????? ?? ?????? ? ????? ??, ?? ?????? ????? VPN ?? ????? ?????. ????, ???? ?????? ????, ? ?? ????? ?? ???????? (???-?? ????????? ????? ???? ? ?????? ???????????? GRE), ?? ? ??? ?? ?????? ????????? ????????.
> 
> L2TP/IPSEC ??? ??????? ??????? ????? ? ?????????, ??? ??? ?????? ?????
> ??????? ??????????? ?? ??? ????????? ?? ??????? ? ????? ????????? ??????
> ????? ???????, psk, ????? ? ?????? ??? PPP.
> 
> ????????? ??????? (racoon) ??? ?????????? ?????? ??? ?? ???????? ?? ??????? ????????? openvpn.
> ??????????? ? ???????? ????? - ????????, ? IPSEC ???? ?????????????? ??????????? NAT
> ?? ???? ?????????? ???????????? ? UDP.
> 
> ?????? ??? ??? ????????? ?? ?????? ????, ?????? ??? ????? ???? ???? ? ?????? ?????????????
> ?????????? - ????, ?????????, ? ??????????? ? ?????????????? ????, ? ??? openvpn ?????? ?? ? ????,
> ??? ??? ??????? ??? ????????????? ??????????? ??? ????, ? ??????? ?? PPPoE.
> 
> 
> 
> 

?? ????????? ? ????, ? ??? ??????: ????? ? ??? ? ??????? ????? ????????? 
IPsec ? ??????? ??? ????? ?????? 1-2 ?????????, ??? ?? ????????? ??? ??? 
??????. ??? ??!!! ? ?????? ?????? ikev2, ? ??????? ?????? ikev1, ? 
???????? ?????????????? ?????? ????????? cipher'?, ? ?????????? ?????? 
??????????, ? ? ?????? ?????? pre-shared key ? ??? ??? ????? ?????? 
?????? ????????? ?? ??????? ???????. ? ??????????? ??????? ??????? - ??? 
?????. ?, ? ??? ??? ?? ???! ??????? ???????? ???????? ?? NAT'??. ???? 
?????, ?? ? ???? ??? ?? ?????????? (?????? ?????????, ?? ????? 0). ????? 
?????-?? ??????? ???????? ? ??????? ?? NAT'??.
? ???, ????? - ?????? ?????, ??????-?? ??? ?? ???, ?? ?????? ?????, ? 
???? ? ?????, ?? ????????? ??? ??????.
????? ?????-?? ????? ??? ? ???? ??????, ????? ??? ???????? ?? ?????? 
???????, ?? ??????, ????, ??? ?????? ?? ??? ??????.

?????? OpenVPN. ???? ?????? ???????, ???? ????? ?? ?????? (??? ????? ?? 
cipher'?, ????? ?? ????????? ??????????, ????? ?? ?????? 
????????????,...) ???????. ???! ?? ?????? ??????? ??? ??????? ? ??????? 
?? ????? ??????? ?? ???????, ??? ? 99% ????? ????????. ???? ??????, 
openvpn ????????? ???????? ?? NAT'??, ??? ??????, ??? ? ??????. ????? 
????????? ???????? ??????????? ????, ??? ? IPSec'a. ????? ? ????? 
??????? ??????? ???????.

From alpha at rri.kiev.ua  Thu Oct  4 15:49:38 2018
From: alpha at rri.kiev.ua (Alexander Andreyev)
Date: Thu, 4 Oct 2018 15:49:38 +0300
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
Message-ID: <c60637fc-fc4b-ad3e-fa40-986d449b2fb2@rri.kiev.ua>

>>> ????????, ??? GRE ????? ????? ????????????, ??????7?? ????????:
>> ????????, ??? "GRE ????? ????? ????????????" - ??????, ??? ?? ?? 
>> ???????? ????? NAT
>> ????????? ?????????? ????? (? ??? ? ?????????). ? ?????????? IP ? GRE 
>> ??? ???????.
> ??????, ? NAT ? ???? ?????? (? ?? ?????? ? ????) ??? ?? ??? ???: ????? 
> ???? ? ? NAT'?? ? ??? NAT'a ? ?? ?????? ???????????.
> ???????? ??? ???? ???????????, ??? ????????? ???????? GRE, ?? ????? 
> ???????.

? ?? ???? ??????????? ??????? ??? ??????????? ??? ????? ?? ????????...
?????? ?????? ????????.
???? ????? ?????, ??? GRE ???????? ????? NAT ? ????? ??????????, ?.?. 
???? ???-?????? ?? ???-?? ???? ??? ?????????, ?? ??????? ?? ??????????.

? ???? ???????????? ?????????????? PPTP (? ???? ?? ?????? ???????, ??? 
????????????? ?? ?????, ????? ??? ?????????), ?? ? ???? ???????? ???? ? 
??????? ?? ???????? ????????. ?????? ????? ???? ???????? ???? ????? 
???????????? ?????????????.

From skeletor at lissyara.su  Thu Oct  4 17:02:25 2018
From: skeletor at lissyara.su (skeletor)
Date: Thu, 4 Oct 2018 17:02:25 +0300
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <c60637fc-fc4b-ad3e-fa40-986d449b2fb2@rri.kiev.ua>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <c60637fc-fc4b-ad3e-fa40-986d449b2fb2@rri.kiev.ua>
Message-ID: <d5a128ae-6061-f3f2-d9ca-b0f639c37191@lissyara.su>

04.10.2018 15:49, Alexander Andreyev ?????:
>>>> ????????, ??? GRE ????? ????? ????????????, ??????7?? ????????:
>>> ????????, ??? "GRE ????? ????? ????????????" - ??????, ??? ?? ?? 
>>> ???????? ????? NAT
>>> ????????? ?????????? ????? (? ??? ? ?????????). ? ?????????? IP ? GRE 
>>> ??? ???????.
>> ??????, ? NAT ? ???? ?????? (? ?? ?????? ? ????) ??? ?? ??? ???: ????? 
>> ???? ? ? NAT'?? ? ??? NAT'a ? ?? ?????? ???????????.
>> ???????? ??? ???? ???????????, ??? ????????? ???????? GRE, ?? ????? 
>> ???????.
> 
> ? ?? ???? ??????????? ??????? ??? ??????????? ??? ????? ?? ????????...
> ?????? ?????? ????????.
> ???? ????? ?????, ??? GRE ???????? ????? NAT ? ????? ??????????, ?.?. 
> ???? ???-?????? ?? ???-?? ???? ??? ?????????, ?? ??????? ?? ??????????.
> 
> ? ???? ???????????? ?????????????? PPTP (? ???? ?? ?????? ???????, ??? 
> ????????????? ?? ?????, ????? ??? ?????????), ?? ? ???? ???????? ???? ? 
> ??????? ?? ???????? ????????. ?????? ????? ???? ???????? ???? ????? 
> ???????????? ?????????????.
> _______________________________________________

???????? ?? ????? ?????? ?????? ??????. ??????: ????? ????? ??? 
????????? ????? ??????, ??????? ????????? ?????? ?? ???? ??????????? 
????? NAT? ??? ?? ????? ??????????? ? ????? ??????, ?????? ? ??? ?? 
???????? ???????????? ? ???????, ????? ?? ???-?? ??????? ?????? ??? ???? 
? ?????? ?? ???? ?????? ????????????, ?? ????? ????? ??? ??????? 500-1000?

From eugen at grosbein.net  Thu Oct  4 20:56:13 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Fri, 5 Oct 2018 00:56:13 +0700
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
Message-ID: <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>

04.10.2018 17:35, skeletor write:

>>> ????????, ??? GRE ????? ????? ????????????, ???????? ????????:
>> ????????, ??? "GRE ????? ????? ????????????" - ??????, ??? ?? ?? ???????? ????? NAT
>> ????????? ?????????? ????? (? ??? ? ?????????). ? ?????????? IP ? GRE ??? ???????.
> ??????, ? NAT ? ???? ?????? (? ?? ?????? ? ????) ??? ?? ??? ???: ????? ???? ? ? NAT'?? ? ??? NAT'a ? ?? ?????? ???????????.
> ???????? ??? ???? ???????????, ??? ????????? ???????? GRE, ?? ????? ???????.

? ?? ???? ? ??? ? ??? ??????: ? ?????????? NAT ?????? IP ? GRE ??????
??? ?????????????? ????? ?????? ?? ?????????? ?? ??????? IP ? TCP ??????
? ???????? ????? ??? ?? ? ????? ?? ??????, ?????????? ????? ?????????
?????????????? ???????? ????????? ?????, ?????? ??????? RFC 1812
Requirements for IP Version 4 Routers.

????? NAT, ? ???? ?????? ???? ???????? ???????, ????? ????? ????????????? ????? ????:
???? ?????? GRE ???? ?????????????????? ? ?? ???? ????? ????????????? ???????? ?????????? ??
?????????? ??????????? ?????? ????, ????? ???????????? ??????????? ASIC ?? ?????????? ????
Cisco 7600 - ? ? ????? ?????? GRE-????????? ????? ?????????, ?? ??? ???????? ???????
?? ??????? ??????? GRE (??????????? MTU), ????? ??? ?? ?????????????????.

?? ? ??, ??? ? ?????? ??????? Cisco IOS ???? ????, ??-?? ??????? ?????????? GRE
??? ???? ????????? ??-?? ????? ? CEF, ?? ??? ???? ????? ?????.
????? ????, ???? ????? ???? ??? ???????? ???????????? - ??? ????? ??? ?????
???????? ?????????? - GRE ??? NAT ???????? ????? ???????? ??? ???????.

>>> - l2tp: ??? ?? ???????????? ??? ipsec'a, ????? ????? ? ?????? ?????
>> ?? ?????, ??????? ? Windows Vista ???? ????? ? ????????? VPN-???????????.
> ? ?? 7-?? ?? ????? ??? ???????. ??????????, ??? ??? ????????/???????????

? ???? ??? ??? Vista ? ???????, ? ?? Win 8.1 ? ???? ?? ?? ?????.
????? ????, ? ?????? ?????? ????? ??? ????????? ? ??? ?????? ?? ????????? ??????,
?? ??? ? ??????? - l2tp/ipsec ????? ???????? ??? ???????.

>> L2TP/IPSEC ??? ??????? ??????? ????? ? ?????????, ??? ??? ?????? ?????
>> ??????? ??????????? ?? ??? ????????? ?? ??????? ? ????? ????????? ??????
>> ????? ???????, psk, ????? ? ?????? ??? PPP.
>>
>> ????????? ??????? (racoon) ??? ?????????? ?????? ??? ?? ???????? ?? ??????? ????????? openvpn.

> ?? ????????? ? ????, ? ??? ??????: ????? ? ??? ? ??????? ????? ????????? IPsec ? ??????? ??? ????? ?????? 1-2 ?????????,

?????? ?? ????? ?????? ????????.

> ??? ?? ????????? ??? ??? ??????. ??? ??!!! ? ?????? ?????? ikev2,

???????? ???????, ??????? ?? ???????????? l2tp/ipsec ? ikev1.

> ? ??????? ?????? ikev1,

??? l2tp/ipsec ??? ?????????.

> ? ???????? ?????????????? ?????? ????????? cipher'?,

? ????? ?????????? - ??????? ???? ?????? ???????? ??? ???????????.
??, ????? des (3des ????? ????????).

> ? ?????????? ?????? ??????????,

??? ? ??????.

> ? ? ?????? ?????? pre-shared key ? ??? ??? ????? ?????? ?????? ????????? ?? ??????? ???????.
> ? ??????????? ??????? ??????? - ??? ?????. ?, ? ??? ??? ?? ???! ??????? ???????? ???????? ?? NAT'??.
> ???? ?????, ?? ? ???? ??? ?? ?????????? (?????? ?????????, ?? ????? 0).

??? ??? ?????????? ??????????. ??????? ? FreeBSD 11.1, ??? ???????? ?? ???????.

> ????? ?????-?? ??????? ???????? ? ??????? ?? NAT'??.

??? ?????? ???????? ?????????????, ??????? ???? ????????????? ?????? (? ?? ???? ????????),
?? ? ????????? FreeBSD ?? ?????????????? ??? ?????? ?? ?????????.

> ? ???, ????? - ?????? ?????, ??????-?? ??? ?? ???, ?? ?????? ?????, ? ???? ? ?????, ?? ????????? ??? ??????.
> ????? ?????-?? ????? ??? ? ???? ??????, ????? ??? ???????? ?? ?????? ???????, ?? ??????, ????, ??? ?????? ?? ??? ??????.
> 
> ?????? OpenVPN. ???? ?????? ???????, ???? ????? ?? ??????
> (??? ????? ?? cipher'?, ????? ?? ????????? ??????????, ????? ?? ?????? ????????????,...)
> ???????. ???! ?? ?????? ??????? ??? ??????? ? ??????? ?? ????? ??????? ?? ???????,
> ??? ? 99% ????? ????????. ???? ??????, openvpn ????????? ???????? ?? NAT'??,
> ??? ??????, ??? ? ??????. ????? ????????? ???????? ??????????? ????, ??? ? IPSec'a. ????? ? ????? ??????? ??????? ???????.

??? ??? ????? ?????????????? ?????? - ?? ?????? ???????? openvpn (???? ????), ?? ?? ?????? ???????? IPSEC.
????? ??? ?????? ?? ??????.

????? ????, ? openvpn ???? ???? ??????????. ?? ?? ????????? ?? ? ???, ????? ?????? ????
(?????????? ????????? ??? ?? Cisco ASA, ????????; ? ??? IPSEC ??? ????) ? ??????
?? ????????? ? ???????????? ??????? ????????. ?? ?????? ?????? ????? userland
? ??????? ?? ??????? ??????? ????????? ?????????. ??? ?????? ????? ???????????
? ????? ? ??????? ????? ??? ???????????? ?????? ? ?????????? ??????? ?????????????.

????????? ????????? ???????????? ????????????? ????? ??????? openvpn,
????????????? ?? ? SNMP-?????????? ??-??????????? ??? ? ????? ?????? ???????
?????????? ???????? ???????????? ?????? ?????? ????????????? ? ? ?????????
??????? ?????? ?? ????????.





From eugen at grosbein.net  Thu Oct  4 21:00:56 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Fri, 5 Oct 2018 01:00:56 +0700
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <c60637fc-fc4b-ad3e-fa40-986d449b2fb2@rri.kiev.ua>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <c60637fc-fc4b-ad3e-fa40-986d449b2fb2@rri.kiev.ua>
Message-ID: <72035b5f-d2f6-fa54-bcd5-fcb8fd3ebbb9@grosbein.net>

04.10.2018 19:49, Alexander Andreyev ?????:

>>>> ????????, ??? GRE ????? ????? ????????????, ??????7?? ????????:
>>> ????????, ??? "GRE ????? ????? ????????????" - ??????, ??? ?? ?? ???????? ????? NAT
>>> ????????? ?????????? ????? (? ??? ? ?????????). ? ?????????? IP ? GRE ??? ???????.
>> ??????, ? NAT ? ???? ?????? (? ?? ?????? ? ????) ??? ?? ??? ???: ????? ???? ? ? NAT'?? ? ??? NAT'a ? ?? ?????? ???????????.
>> ???????? ??? ???? ???????????, ??? ????????? ???????? GRE, ?? ????? ???????.
> 
> ? ?? ???? ??????????? ??????? ??? ??????????? ??? ????? ?? ????????...
> ?????? ?????? ????????.
> ???? ????? ?????, ??? GRE ???????? ????? NAT ? ????? ??????????, ?.?. ???? ???-?????? ?? ???-?? ???? ??? ?????????, ?? ??????? ?? ??????????.
> 
> ? ???? ???????????? ?????????????? PPTP (? ???? ?? ?????? ???????, ??? ????????????? ?? ?????, ????? ??? ?????????),
> ?? ? ???? ???????? ???? ? ??????? ?? ???????? ????????. ?????? ????? ???? ???????? ???? ????? ???????????? ?????????????.

??-??????, ???????? PPtP ?????????? ???????????????? ???????? GRE ??? ????????? PPTPGRE
? ??? ????????? NAT-? ?????????? ??????? ?????? ??????????? ??????????? ??????????? PPtP,
? ??????? ?? "????????" GRE-???????. ??, ??????????, NAT ?????? ????? ????????????? PPTPGRE
? ??? libalias ??? ????? ???-?? ? ?????? FreeBSD2, ??????? ??? ????? ? natd, ? ????? ipfw nat.

??-??????, ??? "??????????????" PPtP ??????????? ?????? ? ???, ??? ????????? ??? ??????
??????? ?? ????????? ???????????? ??????? (? ?? ?????? ??). ???? ???????????? ?? ?????????
?????? ??? PPtP, ?? ??????? ?????????????? ? ??? ???.


From citrin at citrin.ru  Thu Oct  4 21:44:43 2018
From: citrin at citrin.ru (Anton Yuzhaninov)
Date: Thu, 4 Oct 2018 14:44:43 -0400
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <72035b5f-d2f6-fa54-bcd5-fcb8fd3ebbb9@grosbein.net>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <c60637fc-fc4b-ad3e-fa40-986d449b2fb2@rri.kiev.ua>
 <72035b5f-d2f6-fa54-bcd5-fcb8fd3ebbb9@grosbein.net>
Message-ID: <9140d73c-0767-785b-8703-b52d3d618a4e@citrin.ru>

On 10/4/18 2:00 PM, Eugene Grosbein wrote:
> ??-??????, ??? "??????????????" PPtP ??????????? ?????? ? ???, ??? ????????? ??? ??????
> ??????? ?? ????????? ???????????? ??????? (? ?? ?????? ??). ???? ???????????? ?? ?????????
> ?????? ??? PPtP, ?? ??????? ?????????????? ? ??? ???.

PPtP ?????????? MSCHAPv2 ??? ???????????. ??? ??? ?????? ??? ??? ????????????
? 2001? ????: https://penguin-breeder.org/pptp/download/pptp_mschapv2.pdf

On a system equipped with a 550MHz Intel Celeron,  we can test around 2^16
passwords per second.  At this speed, the remaining password space is searched in
2^36?2^?16 secs = 2^20 secs ? 2^14 mins ? 12 days

D pdf-?? ???? ???? ???? ??? ?????? ??????? ?? 8 ????????, ?? ?? ???????????
CPU (? ??? ????? GPU) ??? ????? ?????? ??????? ??? 2^16 ??????? ? ???????.

???? ???? online ??????, ??????? ????????? ??? ???????? DES ???????????? FPGA:
https://crack.sh/
https://crack.sh/pptp/
??? ??????? ?????: this means that it can exhaustively search the entire
56-bit DES keyspace in ... ? 26 hours

From skeletor at lissyara.su  Thu Oct  4 22:01:25 2018
From: skeletor at lissyara.su (skeletor)
Date: Thu, 4 Oct 2018 22:01:25 +0300
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
Message-ID: <829d7ba1-6037-f597-4fac-03406bc48f1d@lissyara.su>

04.10.2018 20:56, Eugene Grosbein ?????:
> 04.10.2018 17:35, skeletor write:
> 
>>>> ????????, ??? GRE ????? ????? ????????????, ???????? ????????:
>>> ????????, ??? "GRE ????? ????? ????????????" - ??????, ??? ?? ?? ???????? ????? NAT
>>> ????????? ?????????? ????? (? ??? ? ?????????). ? ?????????? IP ? GRE ??? ???????.
>> ??????, ? NAT ? ???? ?????? (? ?? ?????? ? ????) ??? ?? ??? ???: ????? ???? ? ? NAT'?? ? ??? NAT'a ? ?? ?????? ???????????.
>> ???????? ??? ???? ???????????, ??? ????????? ???????? GRE, ?? ????? ???????.
> 
> ? ?? ???? ? ??? ? ??? ??????: ? ?????????? NAT ?????? IP ? GRE ??????
> ??? ?????????????? ????? ?????? ?? ?????????? ?? ??????? IP ? TCP ??????
> ? ???????? ????? ??? ?? ? ????? ?? ??????, ?????????? ????? ?????????
> ?????????????? ???????? ????????? ?????, ?????? ??????? RFC 1812
> Requirements for IP Version 4 Routers.
> 
> ????? NAT, ? ???? ?????? ???? ???????? ???????, ????? ????? ????????????? ????? ????:
> ???? ?????? GRE ???? ?????????????????? ? ?? ???? ????? ????????????? ???????? ?????????? ??
> ?????????? ??????????? ?????? ????, ????? ???????????? ??????????? ASIC ?? ?????????? ????
> Cisco 7600 - ? ? ????? ?????? GRE-????????? ????? ?????????, ?? ??? ???????? ???????
> ?? ??????? ??????? GRE (??????????? MTU), ????? ??? ?? ?????????????????.
> 
> ?? ? ??, ??? ? ?????? ??????? Cisco IOS ???? ????, ??-?? ??????? ?????????? GRE
> ??? ???? ????????? ??-?? ????? ? CEF, ?? ??? ???? ????? ?????.
> ????? ????, ???? ????? ???? ??? ???????? ???????????? - ??? ????? ??? ?????
> ???????? ?????????? - GRE ??? NAT ???????? ????? ???????? ??? ???????.

? ?????? ??? ???????? ??? ? ????. ?? ????????, ?????? ?????. ???? - GRE 
?? ????????. ?????? ????? ???? ?????, ? ??????????? ? ?????? ???????? 
?????? ? ???? ?? ???????? GRE - ??? ?? ???????.
????? ??? ????????? ????? 2-? ??? ?????.

> 
>>>> - l2tp: ??? ?? ???????????? ??? ipsec'a, ????? ????? ? ?????? ?????
>>> ?? ?????, ??????? ? Windows Vista ???? ????? ? ????????? VPN-???????????.
>> ? ?? 7-?? ?? ????? ??? ???????. ??????????, ??? ??? ????????/???????????
> 
> ? ???? ??? ??? Vista ? ???????, ? ?? Win 8.1 ? ???? ?? ?? ?????.
> ????? ????, ? ?????? ?????? ????? ??? ????????? ? ??? ?????? ?? ????????? ??????,
> ?? ??? ? ??????? - l2tp/ipsec ????? ???????? ??? ???????.
> 

? ipsec ????? ? ??? ??????? ????????, ?? ??? ??? ???? (? ???????? ??? 
?????? ?? l2tp ??? ipsec) - ? ???? ???? ?? ????? ?????????. ????? ?????? 
? ???????? - ???????? ???? ??????.

>>> L2TP/IPSEC ??? ??????? ??????? ????? ? ?????????, ??? ??? ?????? ?????
>>> ??????? ??????????? ?? ??? ????????? ?? ??????? ? ????? ????????? ??????
>>> ????? ???????, psk, ????? ? ?????? ??? PPP.
>>>
>>> ????????? ??????? (racoon) ??? ?????????? ?????? ??? ?? ???????? ?? ??????? ????????? openvpn.
> 
>> ?? ????????? ? ????, ? ??? ??????: ????? ? ??? ? ??????? ????? ????????? IPsec ? ??????? ??? ????? ?????? 1-2 ?????????,
> 
> ?????? ?? ????? ?????? ????????.
> 
>> ??? ?? ????????? ??? ??? ??????. ??? ??!!! ? ?????? ?????? ikev2,
> 
> ???????? ???????, ??????? ?? ???????????? l2tp/ipsec ? ikev1.
> 
>> ? ??????? ?????? ikev1,
> 
> ??? l2tp/ipsec ??? ?????????.
> 
>> ? ???????? ?????????????? ?????? ????????? cipher'?,
> 
> ? ????? ?????????? - ??????? ???? ?????? ???????? ??? ???????????.
> ??, ????? des (3des ????? ????????).
> 
>> ? ?????????? ?????? ??????????,
> 
> ??? ? ??????.
> 

?????????? ?????????

>> ? ? ?????? ?????? pre-shared key ? ??? ??? ????? ?????? ?????? ????????? ?? ??????? ???????.
>> ? ??????????? ??????? ??????? - ??? ?????. ?, ? ??? ??? ?? ???! ??????? ???????? ???????? ?? NAT'??.
>> ???? ?????, ?? ? ???? ??? ?? ?????????? (?????? ?????????, ?? ????? 0).
> 
> ??? ??? ?????????? ??????????. ??????? ? FreeBSD 11.1, ??? ???????? ?? ???????.
> 

??, ? ???????? ?? FreeBSD 9.X/10.X, ??????????, ????? ????? ?????? ??? 
????? ? ??? ???????.

>> ????? ?????-?? ??????? ???????? ? ??????? ?? NAT'??.
> 
> ??? ?????? ???????? ?????????????, ??????? ???? ????????????? ?????? (? ?? ???? ????????),
> ?? ? ????????? FreeBSD ?? ?????????????? ??? ?????? ?? ?????????.
> 
>> ? ???, ????? - ?????? ?????, ??????-?? ??? ?? ???, ?? ?????? ?????, ? ???? ? ?????, ?? ????????? ??? ??????.
>> ????? ?????-?? ????? ??? ? ???? ??????, ????? ??? ???????? ?? ?????? ???????, ?? ??????, ????, ??? ?????? ?? ??? ??????.
>>
>> ?????? OpenVPN. ???? ?????? ???????, ???? ????? ?? ??????
>> (??? ????? ?? cipher'?, ????? ?? ????????? ??????????, ????? ?? ?????? ????????????,...)
>> ???????. ???! ?? ?????? ??????? ??? ??????? ? ??????? ?? ????? ??????? ?? ???????,
>> ??? ? 99% ????? ????????. ???? ??????, openvpn ????????? ???????? ?? NAT'??,
>> ??? ??????, ??? ? ??????. ????? ????????? ???????? ??????????? ????, ??? ? IPSec'a. ????? ? ????? ??????? ??????? ???????.
> 
> ??? ??? ????? ?????????????? ?????? - ?? ?????? ???????? openvpn (???? ????), ?? ?? ?????? ???????? IPSEC.
> ????? ??? ?????? ?? ??????.
> 
> ????? ????, ? openvpn ???? ???? ??????????. ?? ?? ????????? ?? ? ???, ????? ?????? ????
> (?????????? ????????? ??? ?? Cisco ASA, ????????; ? ??? IPSEC ??? ????) ? ??????
> ?? ????????? ? ???????????? ??????? ????????. ?? ?????? ?????? ????? userland
> ? ??????? ?? ??????? ??????? ????????? ?????????. ??? ?????? ????? ???????????
> ? ????? ? ??????? ????? ??? ???????????? ?????? ? ?????????? ??????? ?????????????.
> 
> ????????? ????????? ???????????? ????????????? ????? ??????? openvpn,
> ????????????? ?? ? SNMP-?????????? ??-??????????? ??? ? ????? ?????? ???????
> ?????????? ???????? ???????????? ?????? ?????? ????????????? ? ? ?????????
> ??????? ?????? ?? ????????.
> 
> 

?????????? ???? ? ?????, ?? ?????? ? ??? ??? ???????????? ??????????? 
???????????? ??? ??????????. ? ??? ?????? ?? ????????, ??? ??? ????? 
?????? ????? (??? ?? ?? ?????? ????????). ?????? ? ?????? ?????????, 
????, ?? ???????? ??????. ? ??'? ?? ???? ????? ?? ?????????? SNMP ??? 
???????????? ?????????????.

?????? ?????? ??????????????? - ?? ?????? ??????. ??? ????????? ????? 
???? ? ?????????????? ?????????, ??? ???????? ?????? ???????? ????? 
?????? ???????.

? ??, ??? ??? ? ?? ??????? ???????? IPsec ??? VPN ?????? ??? ????????? 
???????? (?????????? ?????-????? ????? *nix ????????? ? ?????????? 
???????? ??? ?? ????????? ???????), ???????? Windows. ???? ? ???? ????? 
????????? openvpn.

????????? ??? ???: ???? ?? ??? ????????? ?????? ??????? VPN ?????? ?? 
500-1000 ????????, ? ?? ?? ??????????? ?????? ?? openvpn, ??? ?? ????? 
?? ??????????? ?????? ? ????-?? ?? ????????.

From eugen at grosbein.net  Thu Oct  4 22:03:37 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Fri, 5 Oct 2018 02:03:37 +0700
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <9140d73c-0767-785b-8703-b52d3d618a4e@citrin.ru>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <c60637fc-fc4b-ad3e-fa40-986d449b2fb2@rri.kiev.ua>
 <72035b5f-d2f6-fa54-bcd5-fcb8fd3ebbb9@grosbein.net>
 <9140d73c-0767-785b-8703-b52d3d618a4e@citrin.ru>
Message-ID: <298fee63-ed46-904c-e541-a62fa646fc30@grosbein.net>

05.10.2018 1:44, Anton Yuzhaninov ?????:

> On 10/4/18 2:00 PM, Eugene Grosbein wrote:
>> ??-??????, ??? "??????????????" PPtP ??????????? ?????? ? ???, ??? ????????? ??? ??????
>> ??????? ?? ????????? ???????????? ??????? (? ?? ?????? ??). ???? ???????????? ?? ?????????
>> ?????? ??? PPtP, ?? ??????? ?????????????? ? ??? ???.
> 
> PPtP ?????????? MSCHAPv2 ??? ???????????. ??? ??? ?????? ??? ??? ????????????
> ? 2001? ????: https://penguin-breeder.org/pptp/download/pptp_mschapv2.pdf
> 
> On a system equipped with a 550MHz Intel Celeron,  we can test around 2^16
> passwords per second.  At this speed, the remaining password space is searched in
> 2^36?2^?16 secs = 2^20 secs ? 2^14 mins ? 12 days
> 
> D pdf-?? ???? ???? ???? ??? ?????? ??????? ?? 8 ????????, ?? ?? ???????????
> CPU (? ??? ????? GPU) ??? ????? ?????? ??????? ??? 2^16 ??????? ? ???????.

?????? ?? 8 ???????? ??? VPN? ? ??? ??? ??? ??? ? ???????, ????????? ??????
??????? ?? ????????? ???????, ? ?? ??????. ?? ???? ????????????.
???? ?????-?? ???????? ???????????? ??????? ????? ??????? ???????

> ???? ???? online ??????, ??????? ????????? ??? ???????? DES ???????????? FPGA:
> https://crack.sh/
> https://crack.sh/pptp/
> ??? ??????? ?????: this means that it can exhaustively search the entire
> 56-bit DES keyspace in ... ? 26 hours

? ? ?????. ?? ???????? ???????????? ???? ?????? ????????????.

The first thing you?ll need to do is obtain the network traffic for the PPTP VPN MS-CHAPv2 handshake you?d like to crack.
Next you?ll use chapcrack in order to parse and extract the PPTP VPN MS-CHAPv2 handshake.

MS-CHAPv2 handshake ?? ??????????? ?????? ???????. ????? ???? ????? ??????????? ???????
??????????? ? ?????, ????? ???????????? ????????????? ??????????, ???? ????? ???????????
??????????? ???????????? ??????????? ??????, ????? ??????? ?????? handshake.

?? ??, ????? ??? ???? ?????????????, ?? ??????? ?????? ?????? ??????? ? ???? ??? ????? ????,
?????????? ??? ????? ?????????????? ? ??????? ??????????? ??????? - ??, ????? PPtP ?? ????????????.
? ?????? ????? ????????????? ????????? ? ?????????? ? ??????????.

?? ??????? ?? ?????????? ???? WiFi-?????? ???????? ? ???????? ???? ??????? ?? ???????,
?????? ?????? ? ???????????? ??????????? ???? https/ssh/RDP ?????? - PPtP ??????????.


From citrin at citrin.ru  Thu Oct  4 22:53:53 2018
From: citrin at citrin.ru (Anton Yuzhaninov)
Date: Thu, 4 Oct 2018 15:53:53 -0400
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <298fee63-ed46-904c-e541-a62fa646fc30@grosbein.net>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <c60637fc-fc4b-ad3e-fa40-986d449b2fb2@rri.kiev.ua>
 <72035b5f-d2f6-fa54-bcd5-fcb8fd3ebbb9@grosbein.net>
 <9140d73c-0767-785b-8703-b52d3d618a4e@citrin.ru>
 <298fee63-ed46-904c-e541-a62fa646fc30@grosbein.net>
Message-ID: <f95c688f-124e-5e12-0cfc-b4e960e6fd34@citrin.ru>

On 10/4/18 3:03 PM, Eugene Grosbein wrote:
> MS-CHAPv2 handshake ?? ??????????? ?????? ???????. ????? ???? ????? ??????????? ???????
> ??????????? ? ?????, ????? ???????????? ????????????? ??????????, ???? ????? ???????????
> ??????????? ???????????? ??????????? ??????, ????? ??????? ?????? handshake.
> 
> ?? ??, ????? ??? ???? ?????????????, ?? ??????? ?????? ?????? ??????? ? ???? ??? ????? ????,
> ?????????? ??? ????? ?????????????? ? ??????? ??????????? ??????? - ??, ????? PPtP ?? ????????????.
> ? ?????? ????? ????????????? ????????? ? ?????????? ? ??????????.
> 
> ?? ??????? ?? ?????????? ???? WiFi-?????? ???????? ? ???????? ???? ??????? ?? ???????,
> ?????? ?????? ? ???????????? ??????????? ???? https/ssh/RDP ?????? - PPtP ??????????.
> 

??? ??? ???? ? ??????? ? WiFi ??????? handshake ???????? - ??????????
????????? ??????? ?? ???? ??? ?? ??????? ? ?????????? pptp ???????????. ??
???? ???? ? ????? - WiFi ????? ????????? ?? ????? ?????? ???????? pptp ??????,
?? ?????? ??? ? ????? ?????? ??????? ?? WiFi ???????????.

???? ???? ?????? ?????? ??????????? ???????? pptp-????????? ???????? ??????
??????, ??????? ????? ????? ???????????? ??? ??????? ?? ?????????? ???? (????
VPN ???????????? ??? ??????? ? ????? ?? ???????? ???????).

?? ? ????? ???????????? DES, ????? ???? ??????????? ????????????????.

From eugen at grosbein.net  Fri Oct  5 02:34:27 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Fri, 5 Oct 2018 06:34:27 +0700
Subject: [freebsd] =?utf-8?b?ZGgga2V5IHRvbyBzbWFsbCAoUmU6ICDQndCw0LPRgNGD?=
 =?utf-8?b?0LbQtdC90L3Ri9C5IFZQTiDRgdC10YDQstC10YAp?=
In-Reply-To: <c60637fc-fc4b-ad3e-fa40-986d449b2fb2@rri.kiev.ua>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <c60637fc-fc4b-ad3e-fa40-986d449b2fb2@rri.kiev.ua>
Message-ID: <e5a402ad-d1f5-eb06-0bdd-51cf358a32d0@grosbein.net>

04.10.2018 19:49, Alexander Andreyev ?????:

[skip]

?????????, ?? ? ?????, ??? ? ??? ?? @rri.kiev.ua ????? ????? ?? ???????

MX-?? ??? ????? ?????? ???????? smtp.dako.ua, ??????? ???????? ????????? TLS,
?? ??????????? ?????????? ? ?????? ?????? ????? ? 512 ???, ? ????????? ??? ????
????? https://www.openssl.org/news/secadv/20150611.txt ??? ????? ?????????
? ?????? ????????????? ????? ???????? ? ????? MX  ???????????? ???? ?????:

sm-mta[9199]: STARTTLS=client, error: connect failed=-1, reason=dh key too small, SSL_error=1, errno=0, retry=-1

????? ????? ??? SMTP ???????????? ?????????? ? ?????? ????? ??????? ? 1024 ????, ? ????? ? 2048 (? ???????).



From gmn at gmn.org.ua  Fri Oct  5 11:18:54 2018
From: gmn at gmn.org.ua (Mikhail Golub)
Date: Fri, 5 Oct 2018 11:18:54 +0300
Subject: [freebsd] spamassassin-3.4.2 and reload command
Message-ID: <e69c01b5-7b97-07da-fc4b-d0c8eda12b3c@gmn.org.ua>

??????? ??????? ?????.

??????????? ???????? - 
https://www.mail-archive.com/users at spamassassin.apache.org/msg102808.html

???????? ?? ?????????? ??????.
????? restart ???? reload ????????. ????? ??????.

?? ?????????? ?? ????????
(? ???? ?? ????? :( )



From vlad.shpolyanskiy at gmail.com  Fri Oct  5 15:32:59 2018
From: vlad.shpolyanskiy at gmail.com (Vlad Shpolyanskiy)
Date: Fri, 5 Oct 2018 15:32:59 +0300
Subject: [freebsd] spamassassin-3.4.2 and reload command
In-Reply-To: <e69c01b5-7b97-07da-fc4b-d0c8eda12b3c@gmn.org.ua>
References: <e69c01b5-7b97-07da-fc4b-d0c8eda12b3c@gmn.org.ua>
Message-ID: <CAEb_c1wxGhuPhJH0uwLg341x+cOBKmHXqouBq20C+2h_8oxa1A@mail.gmail.com>

??????!
???? ???? ??? ????? ?????:

===============
I would talk to the FreeBSD port maintainer.  That script is not all the
guts of how their system works and I'm not familiar with it.  I would
point out that one bug on the process name change.  I'd bet it has
something to do with it based on other distros.

-- 
Kevin A. McGrail
VP Fundraising, Apache Software Foundation
Chair Emeritus Apache SpamAssassin Project
https://www.linkedin.com/in/kmcgrail - 703.798.0171
=============

On Fri, Oct 5, 2018 at 11:19 AM Mikhail Golub <gmn at gmn.org.ua> wrote:

> ??????? ??????? ?????.
>
> ??????????? ???????? -
> https://www.mail-archive.com/users at spamassassin.apache.org/msg102808.html
>
> ???????? ?? ?????????? ??????.
> ????? restart ???? reload ????????. ????? ??????.
>
> ?? ?????????? ?? ????????
> (? ???? ?? ????? :( )
>
>
> _______________________________________________
> freebsd mailing list
> freebsd at uafug.org.ua
> http://mailman.uafug.org.ua/mailman/listinfo/freebsd
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.uafug.org.ua/pipermail/freebsd/attachments/20181005/edd9dab0/attachment.html>

From vsasjason at gmail.com  Fri Oct  5 17:40:27 2018
From: vsasjason at gmail.com (Anton Saietskii)
Date: Fri, 5 Oct 2018 17:40:27 +0300
Subject: [freebsd]
	=?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
	=?utf-8?b?0LLQtdGA?=
In-Reply-To: <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
Message-ID: <CAA2O=b_Zuzk09FT9g3FdezusaFOAmbLEGWUe+TinQPe=gCq88g@mail.gmail.com>

??, 4 ???. 2018 ?. ? 20:56, Eugene Grosbein <eugen at grosbein.net>:
> ???????? ???????, ??????? ?? ???????????? l2tp/ipsec ? ikev1.
??, ??? ?????? ??? "????????????", ??? ???? ???? ?????? StrongS/WAN
???????????? ?????, ??? ?????? DH ??? PFS ?????? 1024 ?? ?????,
SHA-256 ????????? ???? ?? ????? (?????? truncated SHA-256)...
???????????, ??? ?? ? ????? AEAD ? ???? ???.

From eugene at home.wdc.spb.ru  Fri Oct  5 18:00:53 2018
From: eugene at home.wdc.spb.ru (Eugene V. Boontseff)
Date: Fri, 5 Oct 2018 18:00:53 +0300
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
Message-ID: <abe8fcd5-3654-a1a8-9b71-d42ad9416293@home.wdc.spb.ru>

On 04.10.2018 20:56, Eugene Grosbein wrote:
>
>>> ?? ?????, ??????? ? Windows Vista ???? ????? ? ????????? VPN-???????????.
>> ? ?? 7-?? ?? ????? ??? ???????. ??????????, ??? ??? ????????/???????????
> ? ???? ??? ??? Vista ? ???????, ? ?? Win 8.1 ? ???? ?? ?? ?????.
> ????? ????, ? ?????? ?????? ????? ??? ????????? ? ??? ?????? ?? ????????? ??????,

????????, ?????? ??? ??? ?? "?????")

? ????????? ??????????? ?? ???????? "????????????" ???? ??????????? ???? 
"?????????? ??????".

??? ???? ??????? "?????????????? (???????????? ???? ??? ??????????)".

? ??????? ?????? ???????????? ?? l2tp ? ?????? ??? ipsec.


-- 
Eugene


From eugen at grosbein.net  Fri Oct  5 21:46:42 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Sat, 6 Oct 2018 01:46:42 +0700
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <CAA2O=b_Zuzk09FT9g3FdezusaFOAmbLEGWUe+TinQPe=gCq88g@mail.gmail.com>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
 <CAA2O=b_Zuzk09FT9g3FdezusaFOAmbLEGWUe+TinQPe=gCq88g@mail.gmail.com>
Message-ID: <091ebb2d-e2ad-08b6-cb63-595f8e7031dd@grosbein.net>

05.10.2018 21:40, Anton Saietskii ?????:
> ??, 4 ???. 2018 ?. ? 20:56, Eugene Grosbein <eugen at grosbein.net>:
>> ???????? ???????, ??????? ?? ???????????? l2tp/ipsec ? ikev1.
> ??, ??? ?????? ??? "????????????", ??? ???? ???? ?????? StrongS/WAN
> ???????????? ?????, ??? ?????? DH ??? PFS ?????? 1024 ?? ?????,
> SHA-256 ????????? ???? ?? ????? (?????? truncated SHA-256)...
> ???????????, ??? ?? ? ????? AEAD ? ???? ???.

?????? ???-?? ?????? StrongS/WAN?


From vsasjason at gmail.com  Sun Oct  7 14:21:50 2018
From: vsasjason at gmail.com (Anton Saietskii)
Date: Sun, 7 Oct 2018 14:21:50 +0300
Subject: [freebsd]
	=?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
	=?utf-8?b?0LLQtdGA?=
In-Reply-To: <091ebb2d-e2ad-08b6-cb63-595f8e7031dd@grosbein.net>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
 <CAA2O=b_Zuzk09FT9g3FdezusaFOAmbLEGWUe+TinQPe=gCq88g@mail.gmail.com>
 <091ebb2d-e2ad-08b6-cb63-595f8e7031dd@grosbein.net>
Message-ID: <CAA2O=b8Vf3YMO3VKo6KqzVxJXO6mxcc2hHNoS9dYCL+ZDQ3BAg@mail.gmail.com>

??, 5 ???. 2018 ?. ? 21:47, Eugene Grosbein <eugen at grosbein.net>:
>
> 05.10.2018 21:40, Anton Saietskii ?????:
> > ??, 4 ???. 2018 ?. ? 20:56, Eugene Grosbein <eugen at grosbein.net>:
> >> ???????? ???????, ??????? ?? ???????????? l2tp/ipsec ? ikev1.
> > ??, ??? ?????? ??? "????????????", ??? ???? ???? ?????? StrongS/WAN
> > ???????????? ?????, ??? ?????? DH ??? PFS ?????? 1024 ?? ?????,
> > SHA-256 ????????? ???? ?? ????? (?????? truncated SHA-256)...
> > ???????????, ??? ?? ? ????? AEAD ? ???? ???.
>
> ?????? ???-?? ?????? StrongS/WAN?
???:
1. ?? ???????? ?????? Android;
2. ?? ????? ? "always-on vpn";
3. ?? ????? ? ???????, ????????? ??????????.

From eugen at grosbein.net  Sun Oct  7 14:27:57 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Sun, 7 Oct 2018 18:27:57 +0700
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <CAA2O=b8Vf3YMO3VKo6KqzVxJXO6mxcc2hHNoS9dYCL+ZDQ3BAg@mail.gmail.com>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
 <CAA2O=b_Zuzk09FT9g3FdezusaFOAmbLEGWUe+TinQPe=gCq88g@mail.gmail.com>
 <091ebb2d-e2ad-08b6-cb63-595f8e7031dd@grosbein.net>
 <CAA2O=b8Vf3YMO3VKo6KqzVxJXO6mxcc2hHNoS9dYCL+ZDQ3BAg@mail.gmail.com>
Message-ID: <ee31f246-e4e9-7d8e-0757-ca7b6f6b693c@grosbein.net>

07.10.2018 18:21, Anton Saietskii ?????:

>> 05.10.2018 21:40, Anton Saietskii ?????:
>>> ??, 4 ???. 2018 ?. ? 20:56, Eugene Grosbein <eugen at grosbein.net>:
>>>> ???????? ???????, ??????? ?? ???????????? l2tp/ipsec ? ikev1.
>>> ??, ??? ?????? ??? "????????????", ??? ???? ???? ?????? StrongS/WAN
>>> ???????????? ?????, ??? ?????? DH ??? PFS ?????? 1024 ?? ?????,
>>> SHA-256 ????????? ???? ?? ????? (?????? truncated SHA-256)...
>>> ???????????, ??? ?? ? ????? AEAD ? ???? ???.
>>
>> ?????? ???-?? ?????? StrongS/WAN?
> ???:
> 1. ?? ???????? ?????? Android;

? ????? ??? ???? ?????? Android? ?? ??????? Android ?????? ???? ??????????? IPSEC.

> 2. ?? ????? ? "always-on vpn";

??? ????? "always-on vpn" ? ????????? IPSEC?

> 3. ?? ????? ? ???????, ????????? ??????????.

?? FreeBSD ???? ?????????? if_ipsec(4) ??? ?????, ??? ???????? ? ???? ? ??????? IKE.


From vsasjason at gmail.com  Sun Oct  7 14:37:26 2018
From: vsasjason at gmail.com (Anton Saietskii)
Date: Sun, 7 Oct 2018 14:37:26 +0300
Subject: [freebsd]
	=?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
	=?utf-8?b?0LLQtdGA?=
In-Reply-To: <ee31f246-e4e9-7d8e-0757-ca7b6f6b693c@grosbein.net>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
 <CAA2O=b_Zuzk09FT9g3FdezusaFOAmbLEGWUe+TinQPe=gCq88g@mail.gmail.com>
 <091ebb2d-e2ad-08b6-cb63-595f8e7031dd@grosbein.net>
 <CAA2O=b8Vf3YMO3VKo6KqzVxJXO6mxcc2hHNoS9dYCL+ZDQ3BAg@mail.gmail.com>
 <ee31f246-e4e9-7d8e-0757-ca7b6f6b693c@grosbein.net>
Message-ID: <CAA2O=b-op3MwwARzQQnjqhi-x7=d-Bqw9ekVHjkcGdjZziL9dg@mail.gmail.com>

??, 7 ???. 2018 ?. ? 14:28, Eugene Grosbein <eugen at grosbein.net>:
>
> 07.10.2018 18:21, Anton Saietskii ?????:
>
> >> 05.10.2018 21:40, Anton Saietskii ?????:
> >>> ??, 4 ???. 2018 ?. ? 20:56, Eugene Grosbein <eugen at grosbein.net>:
> >>>> ???????? ???????, ??????? ?? ???????????? l2tp/ipsec ? ikev1.
> >>> ??, ??? ?????? ??? "????????????", ??? ???? ???? ?????? StrongS/WAN
> >>> ???????????? ?????, ??? ?????? DH ??? PFS ?????? 1024 ?? ?????,
> >>> SHA-256 ????????? ???? ?? ????? (?????? truncated SHA-256)...
> >>> ???????????, ??? ?? ? ????? AEAD ? ???? ???.
> >>
> >> ?????? ???-?? ?????? StrongS/WAN?
> > ???:
> > 1. ?? ???????? ?????? Android;
>
> ? ????? ??? ???? ?????? Android? ?? ??????? Android ?????? ???? ??????????? IPSEC.
??-??????, ???-???? IPsec. ;-)
??-??????, ?? ?????? ????? ?????? ????? ???? ? ?????????:
> ?????? DH ??? PFS ?????? 1024 ?? ?????, SHA-256 ????????? ???? ?? ????? (?????? truncated SHA-256)...

> > 2. ?? ????? ? "always-on vpn";
> ??? ????? "always-on vpn" ? ????????? IPSEC?
? ????????? ????????. ??? ????? ???? ??????? ?? ?????, ???? ??????? ??
??????????.

> > 3. ?? ????? ? ???????, ????????? ??????????.
> ?? FreeBSD ???? ?????????? if_ipsec(4) ??? ?????, ??? ???????? ? ???? ? ??????? IKE.
?????? ??? ?? ????? ? ??????????? ????? ??????? ????? ???????, ?
??????? ?? L2TP, ????????.

From eugen at grosbein.net  Sun Oct  7 15:09:27 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Sun, 7 Oct 2018 19:09:27 +0700
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <CAA2O=b-op3MwwARzQQnjqhi-x7=d-Bqw9ekVHjkcGdjZziL9dg@mail.gmail.com>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
 <CAA2O=b_Zuzk09FT9g3FdezusaFOAmbLEGWUe+TinQPe=gCq88g@mail.gmail.com>
 <091ebb2d-e2ad-08b6-cb63-595f8e7031dd@grosbein.net>
 <CAA2O=b8Vf3YMO3VKo6KqzVxJXO6mxcc2hHNoS9dYCL+ZDQ3BAg@mail.gmail.com>
 <ee31f246-e4e9-7d8e-0757-ca7b6f6b693c@grosbein.net>
 <CAA2O=b-op3MwwARzQQnjqhi-x7=d-Bqw9ekVHjkcGdjZziL9dg@mail.gmail.com>
Message-ID: <94e98303-3e13-8c31-78eb-160fc5542506@grosbein.net>

07.10.2018 18:37, Anton Saietskii ?????:

> ??, 7 ???. 2018 ?. ? 14:28, Eugene Grosbein <eugen at grosbein.net>:
>> 07.10.2018 18:21, Anton Saietskii ?????:
>>>> 05.10.2018 21:40, Anton Saietskii ?????:
>>>>> ??, 4 ???. 2018 ?. ? 20:56, Eugene Grosbein <eugen at grosbein.net>:
>>>>>> ???????? ???????, ??????? ?? ???????????? l2tp/ipsec ? ikev1.
>>>>> ??, ??? ?????? ??? "????????????", ??? ???? ???? ?????? StrongS/WAN
>>>>> ???????????? ?????, ??? ?????? DH ??? PFS ?????? 1024 ?? ?????,
>>>>> SHA-256 ????????? ???? ?? ????? (?????? truncated SHA-256)...
>>>>> ???????????, ??? ?? ? ????? AEAD ? ???? ???.
>>>> ?????? ???-?? ?????? StrongS/WAN?
>>> ???:
>>> 1. ?? ???????? ?????? Android;
>>
>> ? ????? ??? ???? ?????? Android? ?? ??????? Android ?????? ???? ??????????? IPSEC.
> ??-??????, ???-???? IPsec. ;-)
> ??-??????, ?? ?????? ????? ?????? ????? ???? ? ?????????:
>> ?????? DH ??? PFS ?????? 1024 ?? ?????, SHA-256 ????????? ???? ?? ????? (?????? truncated SHA-256)...

???? ????????? ? ???? ?? ?????. ??? ????? ?????? 1024, ???? ??? ????????

>>> 2. ?? ????? ? "always-on vpn";
>> ??? ????? "always-on vpn" ? ????????? IPSEC?
> ? ????????? ????????. ??? ????? ???? ??????? ?? ?????, ???? ??????? ??
> ??????????.

? ??? ?? ?????, ? ???? ??? ????????? - ? ???????

>>> 3. ?? ????? ? ???????, ????????? ??????????.
>> ?? FreeBSD ???? ?????????? if_ipsec(4) ??? ?????, ??? ???????? ? ???? ? ??????? IKE.
> ?????? ??? ?? ????? ? ??????????? ????? ??????? ????? ???????, ?
> ??????? ?? L2TP, ????????.

??? ?? ???????????? ??????????, ?? ????? ????????? ?? script phase1_up



From admin at support.od.ua  Mon Oct  8 19:01:02 2018
From: admin at support.od.ua (Vladislav V. Prodan)
Date: Mon, 8 Oct 2018 19:01:02 +0300
Subject: [freebsd]
	=?utf-8?b?0J/QtdGA0LXQt9Cw0L/QuNGB0YwgZ3BhcnQg0YDQsNC3?=
	=?utf-8?b?0LTQtdC70L7QsiDQuCDQv9C+0YHQu9C10LTRg9GO0YnQtdC1INC40YUg?=
	=?utf-8?b?0LLQvtGB0YHRgtCw0L3QvtCy0LvQtdC90LjQtSwg0LrQsNC6Pw==?=
In-Reply-To: <CAH4R=3nGvAhPbJXcsDwg-8eDOim4EC_DZ-1sA=AYAy1eN+Wt6w@mail.gmail.com>
References: <CAH4R=3k+62c4SWRSZurddwvxy+MLCxfrOzEYqJRUdCr0jYWhEQ@mail.gmail.com>
 <53F15780.1090208@yandex.ru>
 <CAH4R=3kZGUoc9watX0otw-CNMYGW_23fcFyBVaxZ1eJfozQuew@mail.gmail.com>
 <53F17B9C.3070107@yandex.ru>
 <CAH4R=3k7LB6P8O_s9mPmNN12qZwREjd7weTM_B+pE8yQ=zuTrQ@mail.gmail.com>
 <53F25A53.8070905@yandex.ru>
 <CAH4R=3nGvAhPbJXcsDwg-8eDOim4EC_DZ-1sA=AYAy1eN+Wt6w@mail.gmail.com>
Message-ID: <CAH4R=3nqBzQ9jAdFEvd25N4FbFuTnSYNOQzYi3UbOFTgUBU3eg@mail.gmail.com>

??, 19 ???. 2014 ?. ? 1:29, Vladislav V. Prodan <admin at support.od.ua>:
>
>
>
>
> 18 ??????? 2014 ?., 22:56 ???????????? Andrey V. Elsukov <bu7cher at yandex.ru> ???????:
>>
>> On 18.08.2014 17:12, Vladislav V. Prodan wrote:
>> >
>> > 18 ??????? 2014 ?., 7:05 ???????????? Andrey V. Elsukov
>> > <bu7cher at yandex.ru <mailto:bu7cher at yandex.ru>> ???????:
>> >
>> >     ???? ?????? ?? ??????? ????? dd, ?? gpart destroy ? ???? ???? ?????? ??
>> >     ???????.
>> >
>> >
>> > ? ?????? ???????? ?????? MfsBSD.img ? ?????? ??? ?????? ? ?? ????????
>> > ?????? ????? ? ????????
>>
>> ?? ?????? ???????? ???? ????? ? ????,  ????? ???????? ??? freebsd-swap
>> ??????? ?? freebsd-ufs, ???????? ? freebsd-boot ?????? ?????
>> ???????????? ???? gptboot. ???????????? ?????? ???????????. ???????, ?
>> ?????? ????????? ?? UFS ??????, ? bsdlabel ? ????????, ?? ??????? ??? ??
>> ?????? ??????? ???????.
>> ????? ???? ??????????? ??????? ??????? gptzfsboot ? ??? freebsd-swap.
>>
>> --
>> WBR, Andrey V. Elsukov
>
>
> ????? ????????????? FreeBSD ?? ?????.
> ???????? ? rescue CD ?? Debian (???  ????-?????? ? ??).
> ??????? ?? ssh.
>
> ??? ????? ?????????????? ???????? ??????????
>

?????? ???????:
1) ???????? ? rescue CD ?? Debian (???  ????-?????? ? ??).
2) ? ?????? ??????? ?????? 500-1000?????
3) ?????? ???? iso ????? MfsBSD
4) ????????? vkvm  ? ????????? qemu ? ??????????? -
export image12="/mnt/mfsbsd-se-11.2-RELEASE-amd64.iso"

/tmp/qemu-system-x86_64 -net nic -net user,hostfwd=tcp::1022-:22 -m
4192M -localtime -enable-kvm -cpu host,+nx -M pc -smp 4 -vga std
-usbdevice tablet -k en-us -cdrom $image12 -hda /dev/sda -hdb /dev/sdb
-boot once=d -vnc :1

?????? ????????? -  -cdrom $image12 -hda /dev/sda -hdb /dev/sdb

5) ????? ??????? ? ????????? ?? VNC ( ???? 5901) ??? ?? ssh (????
1022). IPv4 ??? ipv6 ???????, ??????? ?? ????? ??? ???? ??????

--
 Vladislav V. Prodan
 System & Network Administrator
 support.od.ua

From vsasjason at gmail.com  Wed Oct 10 18:52:41 2018
From: vsasjason at gmail.com (Anton Saietskii)
Date: Wed, 10 Oct 2018 18:52:41 +0300
Subject: [freebsd]
	=?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
	=?utf-8?b?0LLQtdGA?=
In-Reply-To: <94e98303-3e13-8c31-78eb-160fc5542506@grosbein.net>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
 <CAA2O=b_Zuzk09FT9g3FdezusaFOAmbLEGWUe+TinQPe=gCq88g@mail.gmail.com>
 <091ebb2d-e2ad-08b6-cb63-595f8e7031dd@grosbein.net>
 <CAA2O=b8Vf3YMO3VKo6KqzVxJXO6mxcc2hHNoS9dYCL+ZDQ3BAg@mail.gmail.com>
 <ee31f246-e4e9-7d8e-0757-ca7b6f6b693c@grosbein.net>
 <CAA2O=b-op3MwwARzQQnjqhi-x7=d-Bqw9ekVHjkcGdjZziL9dg@mail.gmail.com>
 <94e98303-3e13-8c31-78eb-160fc5542506@grosbein.net>
Message-ID: <CAA2O=b-X3wKptBkZZxPSmUQBheWcEkn9nYkPwG+ZUS3-4BRnAA@mail.gmail.com>

??, 7 ???. 2018 ?. ? 15:09, Eugene Grosbein <eugen at grosbein.net>:
>
> 07.10.2018 18:37, Anton Saietskii ?????:
>
> > ??, 7 ???. 2018 ?. ? 14:28, Eugene Grosbein <eugen at grosbein.net>:
> >> 07.10.2018 18:21, Anton Saietskii ?????:
> >>>> 05.10.2018 21:40, Anton Saietskii ?????:
> >>>>> ??, 4 ???. 2018 ?. ? 20:56, Eugene Grosbein <eugen at grosbein.net>:
> >>>>>> ???????? ???????, ??????? ?? ???????????? l2tp/ipsec ? ikev1.
> >>>>> ??, ??? ?????? ??? "????????????", ??? ???? ???? ?????? StrongS/WAN
> >>>>> ???????????? ?????, ??? ?????? DH ??? PFS ?????? 1024 ?? ?????,
> >>>>> SHA-256 ????????? ???? ?? ????? (?????? truncated SHA-256)...
> >>>>> ???????????, ??? ?? ? ????? AEAD ? ???? ???.
> >>>> ?????? ???-?? ?????? StrongS/WAN?
> >>> ???:
> >>> 1. ?? ???????? ?????? Android;
> >>
> >> ? ????? ??? ???? ?????? Android? ?? ??????? Android ?????? ???? ??????????? IPSEC.
> > ??-??????, ???-???? IPsec. ;-)
> > ??-??????, ?? ?????? ????? ?????? ????? ???? ? ?????????:
> >> ?????? DH ??? PFS ?????? 1024 ?? ?????, SHA-256 ????????? ???? ?? ????? (?????? truncated SHA-256)...
>
> ???? ????????? ? ???? ?? ?????. ??? ????? ?????? 1024, ???? ??? ????????
?? ?????? ?? ?????? ?????????, ??? ? 3DES. *????_?????????_????????*

> >>> 2. ?? ????? ? "always-on vpn";
> >> ??? ????? "always-on vpn" ? ????????? IPSEC?
> > ? ????????? ????????. ??? ????? ???? ??????? ?? ?????, ???? ??????? ??
> > ??????????.
>
> ? ??? ?? ?????, ? ???? ??? ????????? - ? ???????
?????????? ???? ??????? ? ??? ????? ??-?? ???????????, ??? OpenVPN
???? ?????? ? ????? ????????, ? ??? ? ????????. IPsec ? ??????,
???????, ?? ?????? ????? ???????? ??? ????, ??? ??? ??????????????
??????? ?????????, ??? ??????? ?????? ciphersuite, ? ??? ??????-??????
common set ????????. ? OpenVPN ?? ?? ? ?????? ?????? ??????? ?????? ?
?? ?????? ????????, ? ?????? ?????? ???????? ?? ???????????? ?? ??????
?????????? ?????.

> >>> 3. ?? ????? ? ???????, ????????? ??????????.
> >> ?? FreeBSD ???? ?????????? if_ipsec(4) ??? ?????, ??? ???????? ? ???? ? ??????? IKE.
> > ?????? ??? ?? ????? ? ??????????? ????? ??????? ????? ???????, ?
> > ??????? ?? L2TP, ????????.
> ??? ?? ???????????? ??????????, ?? ????? ????????? ?? script phase1_up
?? ?????? ?????, ???? ?????? ??????.

From eugen at grosbein.net  Wed Oct 10 23:11:09 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Thu, 11 Oct 2018 03:11:09 +0700
Subject: [freebsd]
 =?utf-8?b?0J3QsNCz0YDRg9C20LXQvdC90YvQuSBWUE4g0YHQtdGA?=
 =?utf-8?b?0LLQtdGA?=
In-Reply-To: <CAA2O=b-X3wKptBkZZxPSmUQBheWcEkn9nYkPwG+ZUS3-4BRnAA@mail.gmail.com>
References: <1575edbc-b6f7-6d20-0981-f8f00b1f7aa2@boryspil.net.ua>
 <82c67af8-0ae2-fd1c-9662-b24561edacef@lissyara.su>
 <a8ac4aa0-812e-320d-f2d8-8e0ff49f6a71@grosbein.net>
 <18b22a26-d744-d178-46fe-cfa6a9899d4e@lissyara.su>
 <7da4a3a0-5138-8393-942c-efab7cb7782d@grosbein.net>
 <CAA2O=b_Zuzk09FT9g3FdezusaFOAmbLEGWUe+TinQPe=gCq88g@mail.gmail.com>
 <091ebb2d-e2ad-08b6-cb63-595f8e7031dd@grosbein.net>
 <CAA2O=b8Vf3YMO3VKo6KqzVxJXO6mxcc2hHNoS9dYCL+ZDQ3BAg@mail.gmail.com>
 <ee31f246-e4e9-7d8e-0757-ca7b6f6b693c@grosbein.net>
 <CAA2O=b-op3MwwARzQQnjqhi-x7=d-Bqw9ekVHjkcGdjZziL9dg@mail.gmail.com>
 <94e98303-3e13-8c31-78eb-160fc5542506@grosbein.net>
 <CAA2O=b-X3wKptBkZZxPSmUQBheWcEkn9nYkPwG+ZUS3-4BRnAA@mail.gmail.com>
Message-ID: <ddb20b18-8a46-55e8-1e12-18b8ffa2ba3b@grosbein.net>

10.10.2018 22:52, Anton Saietskii ?????:

>> ???? ????????? ? ???? ?? ?????. ??? ????? ?????? 1024, ???? ??? ????????
> ?? ?????? ?? ?????? ?????????, ??? ? 3DES. *????_?????????_????????*

??????? ???????? ?? ?????????? ?? ?????.

>>>>> 2. ?? ????? ? "always-on vpn";
>>>> ??? ????? "always-on vpn" ? ????????? IPSEC?
>>> ? ????????? ????????. ??? ????? ???? ??????? ?? ?????, ???? ??????? ??
>>> ??????????.
>> ? ??? ?? ?????, ? ???? ??? ????????? - ? ???????
> ?????????? ???? ??????? ? ??? ????? ??-?? ???????????, ??? OpenVPN
> ???? ?????? ? ????? ????????, ? ??? ? ????????.

?, ?????? ?? ?????? ? ?? ?????. ??????-??????? ??? ????????? ? ?????????
? ??? ?????????? ?? ??? ?? ????? ????????? ???? (?? ?? ?????? ??????? ? WAN)
??????? ?? ????????? ??? ?? ???????, ??? ??????? ??? ?????????? OpenVPN,
??? ????, ?? ?????? ????? ??????.

> IPsec ? ??????,
> ???????, ?? ?????? ????? ???????? ??? ????, ??? ??? ??????????????
> ??????? ?????????, ??? ??????? ?????? ciphersuite, ? ??? ??????-??????
> common set ????????. ? OpenVPN ?? ?? ? ?????? ?????? ??????? ?????? ?
> ?? ?????? ????????,

?? ???? ??????? ? ipsec-tools, ? ??? ?? ??????? racoon.conf ? ????? ???????
?? ?????? ? ?? ?????? ????????. ?? ??? ???, ??? ? ??? ???????, ? ?????
??????? ?????????????, ? ?????????. ??? ?????? ????????? ????? ?????????,
? ????? ??????? ????????? ????????????? ? ??????? ? ? ?????? ? OpenVPN
?? ????, ??? ?????? ?????????? ???????.

> ? ?????? ?????? ???????? ?? ???????????? ?? ?????? ?????????? ?????.

????.

>>>>> 3. ?? ????? ? ???????, ????????? ??????????.
>>>> ?? FreeBSD ???? ?????????? if_ipsec(4) ??? ?????, ??? ???????? ? ???? ? ??????? IKE.
>>> ?????? ??? ?? ????? ? ??????????? ????? ??????? ????? ???????, ?
>>> ??????? ?? L2TP, ????????.
>> ??? ?? ???????????? ??????????, ?? ????? ????????? ?? script phase1_up
> ?? ?????? ?????, ???? ?????? ??????.

??? ?? man racoon.conf
/phase1_up


From andrey at nskes.ru  Thu Oct 11 08:08:33 2018
From: andrey at nskes.ru (Andrey A Lyubimets)
Date: Thu, 11 Oct 2018 12:08:33 +0700
Subject: [freebsd] =?utf-8?b?0JzRg9C70YzRgtC40YXQvtC80LXQtCBpcHNlYyBWUE4=?=
Message-ID: <0f3c8f6c-4fb3-d502-7ceb-da2676579901@nskes.ru>

??????? ???????? ??????.

mpd5 ???????? ?? ??????? ???????????? ? ???? ??????????? - l2tp/ipsec 
????????????? ?????????? ?????? ?? ??? ?????????? ??? ?????????????.

????? ?? ???-?? ????????? ??? ???????? ?? ????? ???????????
??? ?? ???????? ? ???????

From eugen at grosbein.net  Thu Oct 11 08:41:55 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Thu, 11 Oct 2018 12:41:55 +0700
Subject: [freebsd]
 =?utf-8?b?0JzRg9C70YzRgtC40YXQvtC80LXQtCBpcHNlYyBWUE4=?=
In-Reply-To: <0f3c8f6c-4fb3-d502-7ceb-da2676579901@nskes.ru>
References: <0f3c8f6c-4fb3-d502-7ceb-da2676579901@nskes.ru>
Message-ID: <047a0d7e-e759-acb6-d190-d2470f432309@grosbein.net>

11.10.2018 12:08, Andrey A Lyubimets ?????:

> ??????? ???????? ??????.
> 
> mpd5 ???????? ?? ??????? ???????????? ? ???? ??????????? - l2tp/ipsec ????????????? ?????????? ?????? ?? ??? ?????????? ??? ?????????????.
> 
> ????? ?? ???-?? ????????? ??? ???????? ?? ????? ???????????
> ??? ?? ???????? ? ???????

??? ?? ???????? mpd5, ??? ?????????? ??? ????? ? ?? ? ???? ???????? ?? ?????????? ??????? ???????.

??? ???????? ?? ???????????? PBR ?? ??????? - ????? ?????? ?? ???????, ?????????
????? ??????????? ?????, ??????? ? ???? ??, ? ?? ?? ?????????? ???????.

??? ??????, ??????????? ??????????????? ?? ????? ???????, ???????? ????????
????? ?????????????? ???????? ipfw ???? ??????:

ipfw add 10 fwd $gw2 from $ip2 to any out xmit $if1

??? $if1 - ??? ?????????? ??????????, $gw2 - IP-????? ????? ??????? (????????????) ??????????,
$ip2 - IP-????? ?????? ??????? ?? ?????? ?????????? ???????.

?? ????, ??????? ????????????? ?????????? ? ?????? ????????????? ?????? ???????? ??????,
?????? ? ??????? ??????????, ???? ??? ?? ???????? ???????? ???? ? ???????????? ????????? $if1.

???? ?????, ????? ??????? ipfw ???? ??????? ?? ??????? ???????, ??????? ???? ????????? ????????.


From eugen at grosbein.net  Thu Oct 11 08:43:38 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Thu, 11 Oct 2018 12:43:38 +0700
Subject: [freebsd]
 =?utf-8?b?0JzRg9C70YzRgtC40YXQvtC80LXQtCBpcHNlYyBWUE4=?=
In-Reply-To: <047a0d7e-e759-acb6-d190-d2470f432309@grosbein.net>
References: <0f3c8f6c-4fb3-d502-7ceb-da2676579901@nskes.ru>
 <047a0d7e-e759-acb6-d190-d2470f432309@grosbein.net>
Message-ID: <8aa8adae-ac4b-6559-5533-5fe7297a8648@grosbein.net>

11.10.2018 12:41, Eugene Grosbein ?????:

>> mpd5 ???????? ?? ??????? ???????????? ? ???? ??????????? - l2tp/ipsec ????????????? ?????????? ?????? ?? ??? ?????????? ??? ?????????????.
>> ????? ?? ???-?? ????????? ??? ???????? ?? ????? ???????????
>> ??? ?? ???????? ? ???????
> 
> ??? ?? ???????? mpd5, ??? ?????????? ??? ????? ? ?? ? ???? ???????? ?? ?????????? ??????? ???????.
> ??? ???????? ?? ???????????? PBR ?? ??????? - ????? ?????? ?? ???????, ?????????
> ????? ??????????? ?????, ??????? ? ???? ??, ? ?? ?? ?????????? ???????.

s/?????????? ???????/?????????? ????????/

> ??? ??????, ??????????? ??????????????? ?? ????? ???????, ???????? ????????
> ????? ?????????????? ???????? ipfw ???? ??????:
> 
> ipfw add 10 fwd $gw2 from $ip2 to any out xmit $if1

ipfw add 10 fwd $gw2 ip from $ip2 to any out xmit $if1

> ??? $if1 - ??? ?????????? ??????????, $gw2 - IP-????? ????? ??????? (????????????) ??????????,
> $ip2 - IP-????? ?????? ??????? ?? ?????? ?????????? ???????.
> 
> ?? ????, ??????? ????????????? ?????????? ? ?????? ????????????? ?????? ???????? ??????,
> ?????? ? ??????? ??????????, ???? ??? ?? ???????? ???????? ???? ? ???????????? ????????? $if1.
> 
> ???? ?????, ????? ??????? ipfw ???? ??????? ?? ??????? ???????, ??????? ???? ????????? ????????.



From krylov at ukr.net  Thu Oct 11 08:54:09 2018
From: krylov at ukr.net (Alexey Krylov)
Date: Thu, 11 Oct 2018 08:54:09 +0300
Subject: [freebsd] =?cp1251?b?zPPr/PLo9e7s5eQgaXBzZWMgVlBO?=
Message-ID: <817035426.20181011085409@ukr.net>

????????????, Andrey.

1) ????? ????????????? ???? ? ?????????? ??????? ?????? ?????????????,
??????? ???????????.

2) ??????? ??????-?????? ? ?????? ??????? ???????????????? ??????????
????????,
setfib 1 route add default Y.Y.Y.Y

????? ???????? ??????? (?? ?????? mpd ? ? gninx, apache...) ? ????? ??????? ?????????????.
setfib 1 /usr/local/etc/rc.d/mpd start

??? ????, ????? ??? ??????? ???????? ????????????, ????? ????????
???????????? ??? ?????? ?????? (??????? ?????? ??????? IP) ? ?
rc.conf ??????? ?????? ? ??????? ?????????????, ? ??????? ?????? ?????????? ??????.
??????? ????? ??????????/????????????? ?? ???????????, ??? ????? ????? ?????? pid



-----------------
? ?????????,
?????? ???????
???. +38 (067) 725 95 54
email: krylov at ukr.net
skype: krylov_alexey

?? ?????? 11 ??????? 2018 ?., 8:08:33:

> ??????? ???????? ??????.

> mpd5 ???????? ?? ??????? ???????????? ? ???? ??????????? - l2tp/ipsec 
> ????????????? ?????????? ?????? ?? ??? ?????????? ??? ?????????????.

> ????? ?? ???-?? ????????? ??? ???????? ?? ????? ???????????
> ??? ?? ???????? ? ???????
> _______________________________________________
> freebsd mailing list
> freebsd at uafug.org.ua
> http://mailman.uafug.org.ua/mailman/listinfo/freebsd




From eugen at grosbein.net  Thu Oct 11 09:46:16 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Thu, 11 Oct 2018 13:46:16 +0700
Subject: [freebsd]
 =?utf-8?b?0JzRg9C70YzRgtC40YXQvtC80LXQtCBpcHNlYyBWUE4=?=
In-Reply-To: <817035426.20181011085409@ukr.net>
References: <817035426.20181011085409@ukr.net>
Message-ID: <5BBEF1B8.1080909@grosbein.net>

On 11.10.2018 12:54, Alexey Krylov wrote:
> ????????????, Andrey.
> 
> 1) ????? ????????????? ???? ? ?????????? ??????? ?????? ?????????????,
> ??????? ???????????.
> 
> 2) ??????? ??????-?????? ? ?????? ??????? ???????????????? ??????????
> ????????,
> setfib 1 route add default Y.Y.Y.Y
> 
> ????? ???????? ??????? (?? ?????? mpd ? ? gninx, apache...) ? ????? ??????? ?????????????.
> setfib 1 /usr/local/etc/rc.d/mpd start
> 
> ??? ????, ????? ??? ??????? ???????? ????????????, ????? ????????
> ???????????? ??? ?????? ?????? (??????? ?????? ??????? IP) ? ?
> rc.conf ??????? ?????? ? ??????? ?????????????, ? ??????? ?????? ?????????? ??????.
> ??????? ????? ??????????/????????????? ?? ???????????, ??? ????? ????? ?????? pid

????????? ? ?????? mpd5 ??????? ? ??????????? ????????? ?????????????
???????? ?? ?????, ????? ???? ?? ?????????, ?????? ??? mpd5 ??? ?????? ????????
??? ??????? ??????????? NETGRAPH ? ????????? ????? mpd5 ????????? ?? ??????,
? ???? ????? ????? ???????? ?????? ? ????? ???????? ?????????????.

?? ??? ? ?? ?????, ??? ??? ?????????? ?????? ??????? ????????? ???????.



From krylov at ukr.net  Thu Oct 11 10:03:11 2018
From: krylov at ukr.net (Alexey Krylov)
Date: Thu, 11 Oct 2018 10:03:11 +0300
Subject: [freebsd] =?koi8-r?b?7dXM2NTJyM/NxcQgaXBzZWMgVlBO?=
In-Reply-To: <5BBEF1B8.1080909@grosbein.net>
References: <817035426.20181011085409@ukr.net> <5BBEF1B8.1080909@grosbein.net>
Message-ID: <1122552234.20181011100311@ukr.net>

????????????, Eugene.

...
> ????????? ? ?????? mpd5 ??????? ? ??????????? ????????? ?????????????
> ???????? ?? ?????, ????? ???? ?? ?????????, ?????? ??? mpd5 ??? ?????? ????????
> ??? ??????? ??????????? NETGRAPH ? ????????? ????? mpd5 ????????? ?? ??????,
> ? ???? ????? ????? ???????? ?????? ? ????? ???????? ?????????????.

> ?? ??? ? ?? ?????, ??? ??? ?????????? ?????? ??????? ????????? ???????.

? ???????? ?? ??????? ?????? ?????? 2 ?????? ??????? mpd ? ?????? ???????? ?????????????
? ??? ????????? ????????. ???-?? ????? ??????????????????? ???????. ???? ????????? - ???? ????????.

?? ???? ?????? ????????? ??????? - ????????, ???? ???? ??????????? "????????" ??????,
??????? ???????? ?? ??????? ??????????, ????? ????? ?????? ??????? mpd5 "?????????" ???
?? ?????? ?????. ?? ??? ?? ipfw... ?? ????? ?? ?? ?????? ??????? ???????????, ????, ??? ????
connection state, ?? ??? ?????? ???? true/false. ???? ??? ?? ??? - ????????? ????, ??????????.

???? ???? ??????????? - ???????? ???? ?? ??????, ??? ???????? ?????? ????????
"????????-?????????" ???????. ?? ????, ??? ???, ? ??? ?? ????? ??????????.




-----------------
? ?????????,
?????? ???????
???. +38 (067) 725 95 54
email: krylov at ukr.net
skype: krylov_alexey


From eugen at grosbein.net  Thu Oct 11 10:19:34 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Thu, 11 Oct 2018 14:19:34 +0700
Subject: [freebsd]
 =?utf-8?b?0JzRg9C70YzRgtC40YXQvtC80LXQtCBpcHNlYyBWUE4=?=
In-Reply-To: <1122552234.20181011100311@ukr.net>
References: <817035426.20181011085409@ukr.net> <5BBEF1B8.1080909@grosbein.net>
 <1122552234.20181011100311@ukr.net>
Message-ID: <5BBEF986.7060803@grosbein.net>

On 11.10.2018 14:03, Alexey Krylov wrote:

>> ????????? ? ?????? mpd5 ??????? ? ??????????? ????????? ?????????????
>> ???????? ?? ?????, ????? ???? ?? ?????????, ?????? ??? mpd5 ??? ?????? ????????
>> ??? ??????? ??????????? NETGRAPH ? ????????? ????? mpd5 ????????? ?? ??????,
>> ? ???? ????? ????? ???????? ?????? ? ????? ???????? ?????????????.
> 
>> ?? ??? ? ?? ?????, ??? ??? ?????????? ?????? ??????? ????????? ???????.
> 
> ? ???????? ?? ??????? ?????? ?????? 2 ?????? ??????? mpd ? ?????? ???????? ?????????????
> ? ??? ????????? ????????. ???-?? ????? ??????????????????? ???????. ???? ????????? - ???? ????????.
> 
> ?? ???? ?????? ????????? ??????? - ????????, ???? ???? ??????????? "????????" ??????,
> ??????? ???????? ?? ??????? ??????????, ????? ????? ?????? ??????? mpd5 "?????????" ???
> ?? ?????? ?????. ?? ??? ?? ipfw... ?? ????? ?? ?? ?????? ??????? ???????????, ????, ??? ????
> connection state, ?? ??? ?????? ???? true/false. ???? ??? ?? ??? - ????????? ????, ??????????.
> 
> ???? ???? ??????????? - ???????? ???? ?? ??????, ??? ???????? ?????? ????????
> "????????-?????????" ???????. ?? ????, ??? ???, ? ??? ?? ????? ??????????.

?????? ?? ????? ???????? ? ??????, ????? mpd5 ???????? ??????????????? ?? ???????
? ???? ???? ??? l2tp/ipsec, ??????? ???????? ?????? IP. ? ???????? ????????
????? ?????????? ????? ??????? ??????? ??????? ???????? ??????????,
? ? ??????? ?? ?? ????? ??????? ?????????. ? ?????????? ?????? ???????:

ipfw fwd $gw2 ip from $ip2 to any out xmit $if1


From andrey at nskes.ru  Thu Oct 11 12:40:15 2018
From: andrey at nskes.ru (Andrey A Lyubimets)
Date: Thu, 11 Oct 2018 16:40:15 +0700
Subject: [freebsd]
 =?utf-8?b?0JzRg9C70YzRgtC40YXQvtC80LXQtCBpcHNlYyBWUE4=?=
In-Reply-To: <047a0d7e-e759-acb6-d190-d2470f432309@grosbein.net>
References: <0f3c8f6c-4fb3-d502-7ceb-da2676579901@nskes.ru>
 <047a0d7e-e759-acb6-d190-d2470f432309@grosbein.net>
Message-ID: <5d19784b-53b8-1952-7442-a6e872ea9d3b@nskes.ru>



11.10.2018 12:41, Eugene Grosbein ?????:
> 11.10.2018 12:08, Andrey A Lyubimets ?????:
> 
>> ??????? ???????? ??????.
>>
>> mpd5 ???????? ?? ??????? ???????????? ? ???? ??????????? - l2tp/ipsec ????????????? ?????????? ?????? ?? ??? ?????????? ??? ?????????????.
>>
>> ????? ?? ???-?? ????????? ??? ???????? ?? ????? ???????????
>> ??? ?? ???????? ? ???????
> 
> ??? ?? ???????? mpd5, ??? ?????????? ??? ????? ? ?? ? ???? ???????? ?? ?????????? ??????? ???????.
> 
> ??? ???????? ?? ???????????? PBR ?? ??????? - ????? ?????? ?? ???????, ?????????
> ????? ??????????? ?????, ??????? ? ???? ??, ? ?? ?? ?????????? ???????.
?????????, ??? ??????? ???????????, ?? ????? ? ???????????.

? ???? ???????? PBR ?????? ?????????? pf - pptp ???????? ?? ????? ???????

??????? pf ??? PBR ???????? ???:
pass in on $ext_if_1 reply-to ($ext_if_1 $gw_1) inet to ($ext_if_1) tag 
EXT_IF_A
pass in on $ext_if_1 inet from ($ext_if_1:network) to ($ext_if_1)

pass in on $ext_if_2 reply-to ($ext_if_2 $gw_2) inet to ($ext_if_2) tag 
EXT_IF_2
pass in on $ext_if_2 inet from ($ext_if_2:network) to ($ext_if_2)

pass in quick from ($ext_if_1:network) tagged EXT_IF_1 keep state
pass in quick reply-to ($ext_if_1 $gw_1) tagged EXT_IF_1 keep state

pass in quick from ($ext_if_2:network) tagged EXT_IF_2 keep state
pass in quick reply-to ($ext_if_2 $gw_2) tagged EXT_IF_2 keep state

pass out route-to ($ext_if_1 $gw_1) inet from $ext_addr_1 keep state
pass out route-to ($ext_if_2 $gw_2) inet from $ext_addr_2 keep state


pptp ???????? ?? ????? ???????, ?? ??? ????????? ipsec-??????????

????? ????????  ? ??????? ????, ? ???????? ipsec-??????? ???:

14:21:14.590034 IP 80.x.x.x.59690 > 212.y.y.y.500: isakmp: phase 1 I ident
14:21:14.597585 IP 212.y.y.y.500 > 80.x.x.x.59690: isakmp: phase 1 R ident
14:21:14.606945 IP 80.x.x.x.59690 > 212.y.y.y.500: isakmp: phase 1 I ident
14:21:14.614994 IP 212.y.y.y.500 > 80.x.x.x.59690: isakmp: phase 1 R ident
14:21:14.619311 IP 80.x.x.x.60052 > 212.y.y.y.4500: NONESP-encap: 
isakmp: phase 1 I ident[E]
14:21:14.627155 IP 212.y.y.y.4500 > 80.x.x.x.60052: NONESP-encap: 
isakmp: phase 1 R ident[E]
14:21:14.630252 IP 80.x.x.x.60052 > 212.y.y.y.4500: NONESP-encap: 
isakmp: phase 2/others I oakley-quick[E]
14:21:14.639471 IP 212.y.y.y.4500 > 80.x.x.x.60052: NONESP-encap: 
isakmp: phase 2/others R oakley-quick[E]
14:21:14.640948 IP 80.x.x.x.60052 > 212.y.y.y.4500: NONESP-encap: 
isakmp: phase 2/others I oakley-quick[E]
14:21:14.653265 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
ESP(spi=0x0d18e3ea,seq=0x1), length 164
14:21:15.649011 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
ESP(spi=0x0d18e3ea,seq=0x2), length 164
14:21:17.648743 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
ESP(spi=0x0d18e3ea,seq=0x3), length 164
14:21:21.648771 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
ESP(spi=0x0d18e3ea,seq=0x4), length 164
14:21:29.648306 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
ESP(spi=0x0d18e3ea,seq=0x5), length 164
14:21:34.616983 IP 80.x.x.x.60052 > 212.y.y.y.4500: isakmp-nat-keep-alive
14:21:39.647956 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
ESP(spi=0x0d18e3ea,seq=0x6), length 164

???? ??????? route change default 212.y.y.y ,?? ?????????? ???????????????.

> 
> ??? ??????, ??????????? ??????????????? ?? ????? ???????, ???????? ????????
> ????? ?????????????? ???????? ipfw ???? ??????:
> 
> ipfw add 10 fwd $gw2 from $ip2 to any out xmit $if1
> 
> ??? $if1 - ??? ?????????? ??????????, $gw2 - IP-????? ????? ??????? (????????????) ??????????,
> $ip2 - IP-????? ?????? ??????? ?? ?????? ?????????? ???????.
> 
> ?? ????, ??????? ????????????? ?????????? ? ?????? ????????????? ?????? ???????? ??????,
> ?????? ? ??????? ??????????, ???? ??? ?? ???????? ???????? ???? ? ???????????? ????????? $if1.
> 
> ???? ?????, ????? ??????? ipfw ???? ??????? ?? ??????? ???????, ??????? ???? ????????? ????????.
> 

From eugen at grosbein.net  Thu Oct 11 12:55:45 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Thu, 11 Oct 2018 16:55:45 +0700
Subject: [freebsd]
 =?utf-8?b?0JzRg9C70YzRgtC40YXQvtC80LXQtCBpcHNlYyBWUE4=?=
In-Reply-To: <5d19784b-53b8-1952-7442-a6e872ea9d3b@nskes.ru>
References: <0f3c8f6c-4fb3-d502-7ceb-da2676579901@nskes.ru>
 <047a0d7e-e759-acb6-d190-d2470f432309@grosbein.net>
 <5d19784b-53b8-1952-7442-a6e872ea9d3b@nskes.ru>
Message-ID: <5BBF1E21.7030500@grosbein.net>

On 11.10.2018 16:40, Andrey A Lyubimets wrote:

>> ??? ?? ???????? mpd5, ??? ?????????? ??? ????? ? ?? ? ???? ???????? ?? ?????????? ??????? ???????.
>>
>> ??? ???????? ?? ???????????? PBR ?? ??????? - ????? ?????? ?? ???????, ?????????
>> ????? ??????????? ?????, ??????? ? ???? ??, ? ?? ?? ?????????? ???????.
> ?????????, ??? ??????? ???????????, ?? ????? ? ???????????.
> 
> ? ???? ???????? PBR ?????? ?????????? pf - pptp ???????? ?? ????? ???????
> 
> ??????? pf ??? PBR ???????? ???:
> pass in on $ext_if_1 reply-to ($ext_if_1 $gw_1) inet to ($ext_if_1) tag 
> EXT_IF_A
> pass in on $ext_if_1 inet from ($ext_if_1:network) to ($ext_if_1)
> 
> pass in on $ext_if_2 reply-to ($ext_if_2 $gw_2) inet to ($ext_if_2) tag 
> EXT_IF_2
> pass in on $ext_if_2 inet from ($ext_if_2:network) to ($ext_if_2)
> 
> pass in quick from ($ext_if_1:network) tagged EXT_IF_1 keep state
> pass in quick reply-to ($ext_if_1 $gw_1) tagged EXT_IF_1 keep state
> 
> pass in quick from ($ext_if_2:network) tagged EXT_IF_2 keep state
> pass in quick reply-to ($ext_if_2 $gw_2) tagged EXT_IF_2 keep state
> 
> pass out route-to ($ext_if_1 $gw_1) inet from $ext_addr_1 keep state
> pass out route-to ($ext_if_2 $gw_2) inet from $ext_addr_2 keep state
> 
> 
> pptp ???????? ?? ????? ???????, ?? ??? ????????? ipsec-??????????
> 
> ????? ????????  ? ??????? ????, ? ???????? ipsec-??????? ???:
> 
> 14:21:14.590034 IP 80.x.x.x.59690 > 212.y.y.y.500: isakmp: phase 1 I ident
> 14:21:14.597585 IP 212.y.y.y.500 > 80.x.x.x.59690: isakmp: phase 1 R ident
> 14:21:14.606945 IP 80.x.x.x.59690 > 212.y.y.y.500: isakmp: phase 1 I ident
> 14:21:14.614994 IP 212.y.y.y.500 > 80.x.x.x.59690: isakmp: phase 1 R ident
> 14:21:14.619311 IP 80.x.x.x.60052 > 212.y.y.y.4500: NONESP-encap: 
> isakmp: phase 1 I ident[E]
> 14:21:14.627155 IP 212.y.y.y.4500 > 80.x.x.x.60052: NONESP-encap: 
> isakmp: phase 1 R ident[E]
> 14:21:14.630252 IP 80.x.x.x.60052 > 212.y.y.y.4500: NONESP-encap: 
> isakmp: phase 2/others I oakley-quick[E]
> 14:21:14.639471 IP 212.y.y.y.4500 > 80.x.x.x.60052: NONESP-encap: 
> isakmp: phase 2/others R oakley-quick[E]
> 14:21:14.640948 IP 80.x.x.x.60052 > 212.y.y.y.4500: NONESP-encap: 
> isakmp: phase 2/others I oakley-quick[E]
> 14:21:14.653265 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
> ESP(spi=0x0d18e3ea,seq=0x1), length 164
> 14:21:15.649011 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
> ESP(spi=0x0d18e3ea,seq=0x2), length 164
> 14:21:17.648743 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
> ESP(spi=0x0d18e3ea,seq=0x3), length 164
> 14:21:21.648771 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
> ESP(spi=0x0d18e3ea,seq=0x4), length 164
> 14:21:29.648306 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
> ESP(spi=0x0d18e3ea,seq=0x5), length 164
> 14:21:34.616983 IP 80.x.x.x.60052 > 212.y.y.y.4500: isakmp-nat-keep-alive
> 14:21:39.647956 IP 80.x.x.x.60052 > 212.y.y.y.4500: UDP-encap: 
> ESP(spi=0x0d18e3ea,seq=0x6), length 164
> 
> ???? ??????? route change default 212.y.y.y ,?? ?????????? ???????????????.

????? - pf ?? ???????????? ESP-?????? ?? ?????? ?????. ??????, ?????? ? ????????.
? ??????? ?? ??????????? pf ? ?? ??????? ??? ??????????, ??? ??? ????? ?? ????????,
?? ??????????, ??? ?????-?? ???????? ? ???????

pass out route-to ($ext_if_2 $gw_2) inet from $ext_addr_2 keep state

????? ?????? ????? keep state? ??????? ????????? ??? ?? ?????, ?????? ??? ???
?????????? - ???? ????? ? $ext_addr_2, ?? ?????????? ?????? ???? ? $ext_if_2
???? ?????? ???????. ??????????????, ? ??? ???????? ?????? ???? ??????? ?? ?????
???????????? ????????? - ?????? ???????? ?? CPU ? ????????? ?????? ????????? ?????????.

????????? ????? ??????????? ?????? ???? ????? ???????? NAT, ? ??? ??????????????
?? ????? ??????? ??????? ??? ??? ??????.



From andrey at nskes.ru  Fri Oct 19 07:20:19 2018
From: andrey at nskes.ru (Andrey A Lyubimets)
Date: Fri, 19 Oct 2018 11:20:19 +0700
Subject: [freebsd]
 =?utf-8?b?0JzRg9C70YzRgtC40YXQvtC80LXQtCBpcHNlYyBWUE4=?=
In-Reply-To: <5BBF1E21.7030500@grosbein.net>
References: <0f3c8f6c-4fb3-d502-7ceb-da2676579901@nskes.ru>
 <047a0d7e-e759-acb6-d190-d2470f432309@grosbein.net>
 <5d19784b-53b8-1952-7442-a6e872ea9d3b@nskes.ru>
 <5BBF1E21.7030500@grosbein.net>
Message-ID: <52953cea-410f-a43e-84c8-e8de43513782@nskes.ru>



11.10.2018 16:55, Eugene Grosbein ?????:
> On 11.10.2018 16:40, Andrey A Lyubimets wrote:
> 
>>> ??? ?? ???????? mpd5, ??? ?????????? ??? ????? ? ?? ? ???? ???????? ?? ?????????? ??????? ???????.
>>>
???? ???????? ? mpd: ???? ? mpd.conf ???????
set l2tp self  0.0.0.0  - mpd ?????????? ?????? ? ip-??????? ?????????? 
?????????? (????? ??????? ???????? ????????????).

?? ???? ??? ??? ??? ??? ????.

???????? ??????? ????????? ?????? l2tp_server ? ????????? ip-?????? 
??????? ???????????. PBR ?????? ???????? ??? ???? ? ????? pf ? ipfw.

PS ??????? 11.2-RELEASE-p4, mpd5-5.8_5 ?? ???????.


From vlad.shpolyanskiy at gmail.com  Tue Oct 23 19:17:59 2018
From: vlad.shpolyanskiy at gmail.com (Vlad Shpolyanskiy)
Date: Tue, 23 Oct 2018 19:17:59 +0300
Subject: [freebsd] spamassassin-3.4.2 and reload command
In-Reply-To: <be7bfc84-ce64-6a12-a15f-d996c1b0ca59@gmn.org.ua>
References: <e69c01b5-7b97-07da-fc4b-d0c8eda12b3c@gmn.org.ua>
 <CAEb_c1wxGhuPhJH0uwLg341x+cOBKmHXqouBq20C+2h_8oxa1A@mail.gmail.com>
 <be7bfc84-ce64-6a12-a15f-d996c1b0ca59@gmn.org.ua>
Message-ID: <CAEb_c1xKXb1N8ncG_zjVw3LHokf0=bs2nh6FDhb7KBA=TpZDxw@mail.gmail.com>

??????!
???, ???, ? ???????? ??????????? ???? ???? ?? ?????.
?? ?????? ?????? ????? restart ?????? reload.

Best regards,
Vlad Shpolyanskiy

??, 23 ???. 2018 ?., 13:39 Mikhail Golub <gmn at gmn.org.ua>:

> ?????? ????.
>
> ??????? ???? ???????? ?? ???????????
>
> ????????, ??????????? ?????????.
>
> http://spamassassin.1065346.n5.nabble.com/spamassassin-3-4-2-and-reload-command-td153168.html
>
>
>
> 05.10.2018 15:32, Vlad Shpolyanskiy ?????:
> > ??????!
> > ???? ???? ??? ????? ?????:
> >
> > ===============
> > I would talk to the FreeBSD port maintainer.  That script is not all the
> > guts of how their system works and I'm not familiar with it.  I would
> > point out that one bug on the process name change.  I'd bet it has
> > something to do with it based on other distros.
> >
> > --
> > Kevin A. McGrail
> > VP Fundraising, Apache Software Foundation
> > Chair Emeritus Apache SpamAssassin Project
> > https://www.linkedin.com/in/kmcgrail - 703.798.0171
> > =============
> >
> > On Fri, Oct 5, 2018 at 11:19 AM Mikhail Golub <gmn at gmn.org.ua
> > <mailto:gmn at gmn.org.ua>> wrote:
> >
> >     ??????? ??????? ?????.
> >
> >     ??????????? ???????? -
> >
> https://www.mail-archive.com/users at spamassassin.apache.org/msg102808.html
> >
> >     ???????? ?? ?????????? ??????.
> >     ????? restart ???? reload ????????. ????? ??????.
> >
> >     ?? ?????????? ?? ????????
> >     (? ???? ?? ????? :( )
> >
> >
> >     _______________________________________________
> >     freebsd mailing list
> >     freebsd at uafug.org.ua <mailto:freebsd at uafug.org.ua>
> >     http://mailman.uafug.org.ua/mailman/listinfo/freebsd
> >
> >
> >
> > _______________________________________________
> > freebsd mailing list
> > freebsd at uafug.org.ua
> > http://mailman.uafug.org.ua/mailman/listinfo/freebsd
> >
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.uafug.org.ua/pipermail/freebsd/attachments/20181023/fbcf4e9e/attachment.html>

From krylov at ukr.net  Wed Oct 24 14:25:29 2018
From: krylov at ukr.net (Alexey Krylov)
Date: Wed, 24 Oct 2018 14:25:29 +0300
Subject: [freebsd] =?cp1251?b?yu7s7/z+8uXw+yDiIPHl8uXi7uwg7urw8+bl7ejo?=
Message-ID: <975552822.20181024142529@ukr.net>

??????? ???.

?????? ?????, ?? ??????, ? ???????, ????? ? ??????? ?????????
????? ???????????? ??????????, ??????? ???????????? ????????.
? ???? ???? samba46-4.6.14, ? mpd5-5.8
?????? ?????? Wins, ? DHCP ???????? ??????? ????? ?????? ????????.
????? ??????????? ?????????? ??? ??, ??
? ??????? ????????? ?? ???????????? ??? ?????????? ???? ? ????? L2 ????
??????????/???????? ???????? - ?? ???????...
? ????????? ?????? ?????
c:\> net view
?????????? ?? ?? ??????????, ??????? ???? ? ??????? ?????????.

??????????, ??????? ?????????? ???????? ?? ????? ? ??????? ????????? ? ? ???
????????? ???? ???? ?? ?????.

??? ??????????? - ??????????, ??????????, ??? ????????? ?????????
?????/samb'?/mpd ????? ??? ?????????? ???? ????? ? ???? ?????.

????? ?????????????? ?????? ?? xp ?? 10. ???? ?? ????? ???? ?????-?? ??????.
??? ??????????? - ?????????? ?????????? ??????? ??? ????? ?????? ???????????.

-----------------
? ?????????,
?????? ???????
???. +38 (067) 725 95 54
email: krylov at ukr.net
skype: krylov_alexey

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: 2.6
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=kr4V
-----END PGP PUBLIC KEY BLOCK-----


From eugen at grosbein.net  Wed Oct 24 14:51:42 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Wed, 24 Oct 2018 18:51:42 +0700
Subject: [freebsd]
 =?utf-8?b?0JrQvtC80L/RjNGO0YLQtdGA0Ysg0LIg0YHQtdGC0LU=?=
 =?utf-8?b?0LLQvtC8INC+0LrRgNGD0LbQtdC90LjQuA==?=
In-Reply-To: <975552822.20181024142529@ukr.net>
References: <975552822.20181024142529@ukr.net>
Message-ID: <2053f11d-57dd-1ae7-5c9d-40b5a2925ac2@grosbein.net>

24.10.2018 18:25, Alexey Krylov ?????:
> ??????? ???.
> 
> ?????? ?????, ?? ??????, ? ???????, ????? ? ??????? ?????????
> ????? ???????????? ??????????, ??????? ???????????? ????????.
> ? ???? ???? samba46-4.6.14, ? mpd5-5.8
> ?????? ?????? Wins, ? DHCP ???????? ??????? ????? ?????? ????????.
> ????? ??????????? ?????????? ??? ??, ??
> ? ??????? ????????? ?? ???????????? ??? ?????????? ???? ? ????? L2 ????
> ??????????/???????? ???????? - ?? ???????...
> ? ????????? ?????? ?????
> c:\> net view
> ?????????? ?? ?? ??????????, ??????? ???? ? ??????? ?????????.
> 
> ??????????, ??????? ?????????? ???????? ?? ????? ? ??????? ????????? ? ? ???
> ????????? ???? ???? ?? ?????.
> 
> ??? ??????????? - ??????????, ??????????, ??? ????????? ?????????
> ?????/samb'?/mpd ????? ??? ?????????? ???? ????? ? ???? ?????.
> 
> ????? ?????????????? ?????? ?? xp ?? 10. ???? ?? ????? ???? ?????-?? ??????.
> ??? ??????????? - ?????????? ?????????? ??????? ??? ????? ?????? ???????????.

? Windows-????? ???? ??? ???? ? ?????????, ?? ????????? ???????:
????????? ???? ? ??????? ?????? - ???? ?????????? ?????? ???? WINS ??? DNS;
? ?????????? ?????????? ???????? ???? ????? ? ?? ???????? (??? ?????????? ? ??????) -
???? ?????????? ??? ?????????? computer browser service. ? ???? ??? ?????? ???????
????? ??????? ??? ????????? ???? ????????? ????????????? ?????????
????? ?????? ?????????????????? ???????? master browser ? ????? ?? ?????????
? ?????? ????? ?? ?????, ? ??? ?? ????? ???????? ?? ?????? ?????, ??????? ?????????
????????? ?? ?????? ????????, ????????, ??? ?????? ?? ??? ??? ?? master browser
?? ???????? ?????? ??????, ? ?? ?? ???????? ? ????????????? ?????? Windows
?????????? ?????????: ?????????? ?????? Computer Browser, ????? UPnP Device Host,
Server ? ???? SSDP Discovery.

???? ???? ????????? ????????? ?? ????? ??? ???? ????????????????? ??????? -
????????, ???????????? ????? mpd5 ????????? ????? ?????????? ???? ?? ???? ?????????
??????? ? ???????? ? ??? master browser - ?? ??? ??????????? ??????? ?? ??????????
master browser ? ???? ?????? ????? ????? ? ????? ?????? master browser ?????????????
????? ??????? ???? ?????? ??????????? ??????, ? ??? ??? ??????? ??? ???? ?????? ??????.
??? ???? ??????.


From rippya at gmail.com  Wed Oct 24 14:56:46 2018
From: rippya at gmail.com (rippya)
Date: Wed, 24 Oct 2018 15:56:46 +0400
Subject: [freebsd]
 =?utf-8?b?0JrQvtC80L/RjNGO0YLQtdGA0Ysg0LIg0YHQtdGC0LU=?=
 =?utf-8?b?0LLQvtC8INC+0LrRgNGD0LbQtdC90LjQuA==?=
In-Reply-To: <975552822.20181024142529@ukr.net>
References: <975552822.20181024142529@ukr.net>
Message-ID: <347115be-26b4-f686-f462-5697ffc1a1e7@gmail.com>

On 24.10.2018 15:25, Alexey Krylov wrote:
> ??????? ???.
>
> ?????? ?????, ?? ??????, ? ???????, ????? ? ??????? ?????????
> ????? ???????????? ??????????, ??????? ???????????? ????????.
> ? ???? ???? samba46-4.6.14, ? mpd5-5.8
> ?????? ?????? Wins, ? DHCP ???????? ??????? ????? ?????? ????????.
> ????? ??????????? ?????????? ??? ??, ??
> ? ??????? ????????? ?? ???????????? ??? ?????????? ???? ? ????? L2 ????
> ??????????/???????? ???????? - ?? ???????...
> ? ????????? ?????? ?????
> c:\> net view
> ?????????? ?? ?? ??????????, ??????? ???? ? ??????? ?????????.
>
> ??????????, ??????? ?????????? ???????? ?? ????? ? ??????? ????????? ? ? ???
> ????????? ???? ???? ?? ?????.
>
> ??? ??????????? - ??????????, ??????????, ??? ????????? ?????????
> ?????/samb'?/mpd ????? ??? ?????????? ???? ????? ? ???? ?????.
>
> ????? ?????????????? ?????? ?? xp ?? 10. ???? ?? ????? ???? ?????-?? ??????.
> ??? ??????????? - ?????????? ?????????? ??????? ??? ????? ?????? ???????????.
>
? ?????? SMB ????????? ?.?. ???? ? ????? ? ?????????? ????? \\a.b.c.d 
IP-?????????? ?????????? ? ?????? ? ? ???????

?????????? ? ?????? ????? ?? ????? ??, ?????? ??? ??? ?????? ?????? SMB 
? ???? ?????? ???? ??????????? ?? ?????? ??????? ??

--

??????? ???????


From krylov at ukr.net  Wed Oct 24 16:16:29 2018
From: krylov at ukr.net (Alexey Krylov)
Date: Wed, 24 Oct 2018 16:16:29 +0300
Subject: [freebsd] =?cp1251?b?yu7s7/z+8uXw+yDiIPHl8uXi7uwg7urw8+bl7ejo?=
In-Reply-To: <347115be-26b4-f686-f462-5697ffc1a1e7@gmail.com>
References: <975552822.20181024142529@ukr.net>
 <347115be-26b4-f686-f462-5697ffc1a1e7@gmail.com>
Message-ID: <712917044.20181024161629@ukr.net>

????????????, ???????.

SMB ????????, ???? ? ?????????? ????? \\a.b.c.d ??? ????????,
????? ????????? Wins ????? ???????? ? ??? \\workstation

??? ?????? ??? "??????? ?????????".
?? ??????? ? ??????????? ??????? ??? ?????????? ?????????? ?
??????? ??? ???????? ?? ?????.

???? ??? ??????????? ? ??????? ?????????, ??????????, ??????????,
????? ?? ???????? ??? ????????? ??? ??? ???????? ?? ??????

-----------------
? ?????????,
?????? ???????
???. +38 (067) 725 95 54
email: krylov at ukr.net
skype: krylov_alexey


?? ?????? 24 ??????? 2018 ?., 14:56:46:
> ? ?????? SMB ????????? ?.?. ???? ? ????? ? ?????????? ????? \\a.b.c.d
> IP-?????????? ?????????? ? ?????? ? ? ???????

> ?????????? ? ?????? ????? ?? ????? ??, ?????? ??? ??? ?????? ?????? SMB
> ? ???? ?????? ???? ??????????? ?? ?????? ??????? ??

> --

> ??????? ???????

> _______________________________________________
> freebsd mailing list
> freebsd at uafug.org.ua
> http://mailman.uafug.org.ua/mailman/listinfo/freebsd


> On 24.10.2018 15:25, Alexey Krylov wrote:
>> ??????? ???.
>>
>> ?????? ?????, ?? ??????, ? ???????, ????? ? ??????? ?????????
>> ????? ???????????? ??????????, ??????? ???????????? ????????.
>> ? ???? ???? samba46-4.6.14, ? mpd5-5.8
>> ?????? ?????? Wins, ? DHCP ???????? ??????? ????? ?????? ????????.
>> ????? ??????????? ?????????? ??? ??, ??
>> ? ??????? ????????? ?? ???????????? ??? ?????????? ???? ? ????? L2 ????
>> ??????????/???????? ???????? - ?? ???????...
>> ? ????????? ?????? ?????
>> c:\> net view
>> ?????????? ?? ?? ??????????, ??????? ???? ? ??????? ?????????.
>>
>> ??????????, ??????? ?????????? ???????? ?? ????? ? ??????? ????????? ? ? ???
>> ????????? ???? ???? ?? ?????.
>>
>> ??? ??????????? - ??????????, ??????????, ??? ????????? ?????????
>> ?????/samb'?/mpd ????? ??? ?????????? ???? ????? ? ???? ?????.
>>
>> ????? ?????????????? ?????? ?? xp ?? 10. ???? ?? ????? ???? ?????-?? ??????.
>> ??? ??????????? - ?????????? ?????????? ??????? ??? ????? ?????? ???????????.
>>




From gmn at gmn.org.ua  Wed Oct 24 16:23:32 2018
From: gmn at gmn.org.ua (Mikhail Golub)
Date: Wed, 24 Oct 2018 16:23:32 +0300
Subject: [freebsd]
 =?utf-8?b?0JrQvtC80L/RjNGO0YLQtdGA0Ysg0LIg0YHQtdGC0LU=?=
 =?utf-8?b?0LLQvtC8INC+0LrRgNGD0LbQtdC90LjQuA==?=
In-Reply-To: <712917044.20181024161629@ukr.net>
References: <975552822.20181024142529@ukr.net>
 <347115be-26b4-f686-f462-5697ffc1a1e7@gmail.com>
 <712917044.20181024161629@ukr.net>
Message-ID: <9769af17-b8f9-9793-5292-cc4e009d2843@gmn.org.ua>

? ???? "??????? ?????????" ????????? ????? ???????? ????????.
????? ?????????? ?? ? ???? ??????????? ???????, ????????, ?? ??? 
???????? ????? ? ?????????? ???? ??????????.

? ?? ?? ?????????????.

24.10.2018 16:16, Alexey Krylov ?????:
> ????????????, ???????.
> 
> SMB ????????, ???? ? ?????????? ????? \\a.b.c.d ??? ????????,
> ????? ????????? Wins ????? ???????? ? ??? \\workstation
> 
> ??? ?????? ??? "??????? ?????????".
> ?? ??????? ? ??????????? ??????? ??? ?????????? ?????????? ?
> ??????? ??? ???????? ?? ?????.
> 
> ???? ??? ??????????? ? ??????? ?????????, ??????????, ??????????,
> ????? ?? ???????? ??? ????????? ??? ??? ???????? ?? ??????
> 
> -----------------
> ? ?????????,
> ?????? ???????
> ???. +38 (067) 725 95 54
> email: krylov at ukr.net
> skype: krylov_alexey
> 
> 
> ?? ?????? 24 ??????? 2018 ?., 14:56:46:
>> ? ?????? SMB ????????? ?.?. ???? ? ????? ? ?????????? ????? \\a.b.c.d
>> IP-?????????? ?????????? ? ?????? ? ? ???????
> 
>> ?????????? ? ?????? ????? ?? ????? ??, ?????? ??? ??? ?????? ?????? SMB
>> ? ???? ?????? ???? ??????????? ?? ?????? ??????? ??
> 
>> --
> 
>> ??????? ???????
> 
>> _______________________________________________
>> freebsd mailing list
>> freebsd at uafug.org.ua
>> http://mailman.uafug.org.ua/mailman/listinfo/freebsd
> 
> 
>> On 24.10.2018 15:25, Alexey Krylov wrote:
>>> ??????? ???.
>>>
>>> ?????? ?????, ?? ??????, ? ???????, ????? ? ??????? ?????????
>>> ????? ???????????? ??????????, ??????? ???????????? ????????.
>>> ? ???? ???? samba46-4.6.14, ? mpd5-5.8
>>> ?????? ?????? Wins, ? DHCP ???????? ??????? ????? ?????? ????????.
>>> ????? ??????????? ?????????? ??? ??, ??
>>> ? ??????? ????????? ?? ???????????? ??? ?????????? ???? ? ????? L2 ????
>>> ??????????/???????? ???????? - ?? ???????...
>>> ? ????????? ?????? ?????
>>> c:\> net view
>>> ?????????? ?? ?? ??????????, ??????? ???? ? ??????? ?????????.
>>>
>>> ??????????, ??????? ?????????? ???????? ?? ????? ? ??????? ????????? ? ? ???
>>> ????????? ???? ???? ?? ?????.
>>>
>>> ??? ??????????? - ??????????, ??????????, ??? ????????? ?????????
>>> ?????/samb'?/mpd ????? ??? ?????????? ???? ????? ? ???? ?????.
>>>
>>> ????? ?????????????? ?????? ?? xp ?? 10. ???? ?? ????? ???? ?????-?? ??????.
>>> ??? ??????????? - ?????????? ?????????? ??????? ??? ????? ?????? ???????????.
>>>
> 
> 
> 
> _______________________________________________
> freebsd mailing list
> freebsd at uafug.org.ua
> http://mailman.uafug.org.ua/mailman/listinfo/freebsd
> 



From eugen at grosbein.net  Wed Oct 24 16:28:33 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Wed, 24 Oct 2018 20:28:33 +0700
Subject: [freebsd]
 =?utf-8?b?0JrQvtC80L/RjNGO0YLQtdGA0Ysg0LIg0YHQtdGC0LU=?=
 =?utf-8?b?0LLQvtC8INC+0LrRgNGD0LbQtdC90LjQuA==?=
In-Reply-To: <712917044.20181024161629@ukr.net>
References: <975552822.20181024142529@ukr.net>
 <347115be-26b4-f686-f462-5697ffc1a1e7@gmail.com>
 <712917044.20181024161629@ukr.net>
Message-ID: <2f9ffb9f-978e-7691-fc58-3fdebb01d173@grosbein.net>

24.10.2018 20:16, Alexey Krylov ?????:

> SMB ????????, ???? ? ?????????? ????? \\a.b.c.d ??? ????????,

??? ?? ????? ????????? ? ?????? ????

> ????? ????????? Wins ????? ???????? ? ??? \\workstation

? ??? ?? ????? ????????? ? ?????? ???? (???? ????? ? ?????????? ???? ?? ??????)

> ??? ?????? ??? "??????? ?????????".
> ?? ??????? ? ??????????? ??????? ??? ?????????? ?????????? ?
> ??????? ??? ???????? ?? ?????.
> 
> ???? ??? ??????????? ? ??????? ?????????, ??????????, ??????????,
> ????? ?? ???????? ??? ????????? ??? ??? ???????? ?? ??????

???? ??????? ????? - ????? ????????? ????? ????????,
?? ??????? ?? ??????? ??????? - ?????? Windows, ????????, ????????? ????.

From nikolay.kostirya at i11.co  Thu Oct 25 17:55:50 2018
From: nikolay.kostirya at i11.co (Nick Kostirya)
Date: Thu, 25 Oct 2018 17:55:50 +0300
Subject: [freebsd] mpd5, l2tp and routing
Message-ID: <20181025175550.7449c891@i11.co>

??????.
??????????, ??????????, ??? ????????? ???????.

? ??????? ?????????? ??? ???????.

ng0: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> metric 0 mtu 1500
        inet 192.168.11.1 --> 192.168.11.3  netmask 0xffffffff 
        nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
ng1: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> metric 0 mtu 1500
        inet 192.168.11.1 --> 192.168.11.2  netmask 0xffffffff 
        nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>


? ???? ? ??????? 192.168.11.3 ?? ssh ????? ?? ?????? (192.168.11.1), ? ? ???? ?? ??????? ??????? (192.168.11.2).
? ??? ??? ? 192.168.11.3 ????? ????? ?? 192.168.11.2 ?? ????.

netstat -rn ?? ???????

192.168.11.1       link#5             UHS         lo0
192.168.11.2       link#6             UH          ng1
192.168.11.3       link#5             UH          ng0

netstat -rn ?? ???????

192.168.11.1       link#3             UH          ng0
192.168.11.3       link#3             UHS         lo0

?????????? 
route add 192.168.11.2 192.168.11.1
?? ????????

?? ?????? ??????? ?????????? ???????? 
route add 192.168.11.3 192.168.11.1

????????? mpd5 ?? ???????

startup:

default:
		load l2tp

l2tp:
		create bundle template P
		set ipcp yes vjcomp
		set ipcp ranges 192.168.11.1 192.168.11.1/24

		create link template L1 l2tp
		set link action bundle P
		set l2tp secret "*****"
		set l2tp enable hidden
		set link enable incoming

		set link enable chap


?? ????????

startup:


default:
	load l2tp


l2tp:
	create bundle template P

	create link static L1 l2tp
	set link action bundle P
	set link max-redial 0
	set link disable incoming

	set l2tp peer ******* 
	set l2tp secret "*****"
	set l2tp enable hidden
	set l2tp enable outcall

	set auth authname "*****"
	set auth password "******"

	open

From eugen at grosbein.net  Thu Oct 25 18:42:20 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Thu, 25 Oct 2018 22:42:20 +0700
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <20181025175550.7449c891@i11.co>
References: <20181025175550.7449c891@i11.co>
Message-ID: <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>

25.10.2018 21:55, Nick Kostirya ?????:
> ??????.
> ??????????, ??????????, ??? ????????? ???????.
> 
> ? ??????? ?????????? ??? ???????.
> 
> ng0: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> metric 0 mtu 1500
>         inet 192.168.11.1 --> 192.168.11.3  netmask 0xffffffff 
>         nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
> ng1: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> metric 0 mtu 1500
>         inet 192.168.11.1 --> 192.168.11.2  netmask 0xffffffff 
>         nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
> 
> 
> ? ???? ? ??????? 192.168.11.3 ?? ssh ????? ?? ?????? (192.168.11.1), ? ? ???? ?? ??????? ??????? (192.168.11.2).
> ? ??? ??? ? 192.168.11.3 ????? ????? ?? 192.168.11.2 ?? ????.
> 
> netstat -rn ?? ???????
> 
> 192.168.11.1       link#5             UHS         lo0
> 192.168.11.2       link#6             UH          ng1
> 192.168.11.3       link#5             UH          ng0
> 
> netstat -rn ?? ???????
> 
> 192.168.11.1       link#3             UH          ng0
> 192.168.11.3       link#3             UHS         lo0
> 
> ?????????? 
> route add 192.168.11.2 192.168.11.1
> ?? ????????

??? ????? ???????????, ?? ?????? ????? ????????????.

> ?? ?????? ??????? ?????????? ???????? 
> route add 192.168.11.3 192.168.11.1

??? ???? ?????.

> ????????? mpd5 ?? ???????

[skip]

?? ??????? *?? ???????????? ????????* ? /etc/rc.conf ?????? ???? ?????????:
gateway_enable="YES"

??? ????? ??? ??????????, ????? ?????? ?????? ?????? ????? ?????????
? ???? ????? ??? ?? ????? ??????????? (????????), ?? ??? ????? ????????.



From nikolay.kostirya at i11.co  Fri Oct 26 10:26:43 2018
From: nikolay.kostirya at i11.co (Nick Kostirya)
Date: Fri, 26 Oct 2018 10:26:43 +0300
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
References: <20181025175550.7449c891@i11.co>
 <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
Message-ID: <20181026102643.7b86a2ac@i11.co>

On Thu, 25 Oct 2018 22:42:20 +0700
Eugene Grosbein <eugen at grosbein.net> wrote:


> ?? ??????? *?? ???????????? ????????* ? /etc/rc.conf ?????? ???? ?????????:
> gateway_enable="YES"
> 
> ??? ????? ??? ??????????, ????? ?????? ?????? ?????? ????? ?????????
> ? ???? ????? ??? ?? ????? ??????????? (????????), ?? ??? ????? ????????.


??????? ???????.
????? forwarding ???????? - ????? ?????, ??? ? ?? ?????!

???????? ????? ? ?????????? ???????? 
	set iface route 192.168.11.0/24
? 
	create bundle static P

? ??????, ??????????, ?? ????? ??????? ?????????? ? ?????????

From eugen at grosbein.net  Fri Oct 26 10:40:46 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Fri, 26 Oct 2018 14:40:46 +0700
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <20181026102643.7b86a2ac@i11.co>
References: <20181025175550.7449c891@i11.co>
 <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
 <20181026102643.7b86a2ac@i11.co>
Message-ID: <f60ac249-6344-d379-09f5-0baf61994aae@grosbein.net>

26.10.2018 14:26, Nick Kostirya ?????:

>> ?? ??????? *?? ???????????? ????????* ? /etc/rc.conf ?????? ???? ?????????:
>> gateway_enable="YES"
>>
>> ??? ????? ??? ??????????, ????? ?????? ?????? ?????? ????? ?????????
>> ? ???? ????? ??? ?? ????? ??????????? (????????), ?? ??? ????? ????????.
> 
> 
> ??????? ???????.
> ????? forwarding ???????? - ????? ?????, ??? ? ?? ?????!
> 
> ???????? ????? ? ?????????? ???????? 
> 	set iface route 192.168.11.0/24
> ? 
> 	create bundle static P
> 
> ? ??????, ??????????, ?? ????? ??????? ?????????? ? ?????????

? ????????? PPP ?? ????????????? ??????? ?????????? ? ????????.



From nikolay.kostirya at i11.co  Fri Oct 26 12:14:31 2018
From: nikolay.kostirya at i11.co (Nick Kostirya)
Date: Fri, 26 Oct 2018 12:14:31 +0300
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <f60ac249-6344-d379-09f5-0baf61994aae@grosbein.net>
References: <20181025175550.7449c891@i11.co>
 <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
 <20181026102643.7b86a2ac@i11.co>
 <f60ac249-6344-d379-09f5-0baf61994aae@grosbein.net>
Message-ID: <20181026121431.2777e92b@i11.co>

On Fri, 26 Oct 2018 14:40:46 +0700
Eugene Grosbein <eugen at grosbein.net> wrote:

> 26.10.2018 14:26, Nick Kostirya ?????:
> 
> >> ?? ??????? *?? ???????????? ????????* ? /etc/rc.conf ?????? ???? ?????????:
> >> gateway_enable="YES"
> >>
> >> ??? ????? ??? ??????????, ????? ?????? ?????? ?????? ????? ?????????
> >> ? ???? ????? ??? ?? ????? ??????????? (????????), ?? ??? ????? ????????.  
> > 
> > 
> > ??????? ???????.
> > ????? forwarding ???????? - ????? ?????, ??? ? ?? ?????!
> > 
> > ???????? ????? ? ?????????? ???????? 
> > 	set iface route 192.168.11.0/24
> > ? 
> > 	create bundle static P
> > 
> > ? ??????, ??????????, ?? ????? ??????? ?????????? ? ?????????  
> 
> ? ????????? PPP ?? ????????????? ??????? ?????????? ? ????????.
> 

? ????? ???????? ???????????
???????, ????? ??????? ?????? ?????????:
set link enable multilink
???????? ???????, ?? ??? ????? ? 7 ??? ??????, ??? ???????? ??? l2tp.

??? ? ?? ?? ?????????? ???? ?????? ????? ??????. 
???? ?????? (A) ? ????? IP ? ??? ??????? (B and C) ? ?????? ?????? ????? ? ?????? IP. ???? ? ?????? c B ??????? ?? C. ????? FreeBSD 11.

?????, ??? l2tp ?? mdp5 ????? ????? ??????? ???????, ??? ??? ?????, ??? ??? ? ????, ? ?? ? userspace.

From eugen at grosbein.net  Fri Oct 26 12:42:41 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Fri, 26 Oct 2018 16:42:41 +0700
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <20181026121431.2777e92b@i11.co>
References: <20181025175550.7449c891@i11.co>
 <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
 <20181026102643.7b86a2ac@i11.co>
 <f60ac249-6344-d379-09f5-0baf61994aae@grosbein.net>
 <20181026121431.2777e92b@i11.co>
Message-ID: <5BD2E191.3040703@grosbein.net>

On 26.10.2018 16:14, Nick Kostirya wrote:

> ? ????? ???????? ???????????

??????? ?? ??????? ???????.

> ???????, ????? ??????? ?????? ?????????:
> set link enable multilink
> ???????? ???????, ?? ??? ????? ? 7 ??? ??????, ??? ???????? ??? l2tp.

C??????? ???????? ????? ??? ? ????

> 
> ??? ? ?? ?? ?????????? ???? ?????? ????? ??????. 
> ???? ?????? (A) ? ????? IP ? ??? ??????? (B and C) ? ?????? ?????? ????? ? ?????? IP. ???? ? ?????? c B ??????? ?? C. ????? FreeBSD 11.
> 
> ?????, ??? l2tp ?? mdp5 ????? ????? ??????? ???????, ??? ??? ?????, ??? ??? ? ????, ? ?? ? userspace.

??? ? ????. ?? ?? ?? ???????? ???????? ???????? ?? ??????? A ? ??????? ?????? ??????? ??????? B-C.
????? ???? ?? ??????? ? ????? ? ????? ???? ?????????


From nikolay.kostirya at i11.co  Fri Oct 26 13:04:06 2018
From: nikolay.kostirya at i11.co (Nick Kostirya)
Date: Fri, 26 Oct 2018 13:04:06 +0300
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <5BD2E191.3040703@grosbein.net>
References: <20181025175550.7449c891@i11.co>
 <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
 <20181026102643.7b86a2ac@i11.co>
 <f60ac249-6344-d379-09f5-0baf61994aae@grosbein.net>
 <20181026121431.2777e92b@i11.co> <5BD2E191.3040703@grosbein.net>
Message-ID: <20181026130406.0196b04a@i11.co>

On Fri, 26 Oct 2018 16:42:41 +0700
Eugene Grosbein <eugen at grosbein.net> wrote:

> On 26.10.2018 16:14, Nick Kostirya wrote:
> 
> > ? ????? ???????? ???????????  
> 
> ??????? ?? ??????? ???????.
> 
> > ???????, ????? ??????? ?????? ?????????:
> > set link enable multilink
> > ???????? ???????, ?? ??? ????? ? 7 ??? ??????, ??? ???????? ??? l2tp.  
> 
> C??????? ???????? ????? ??? ? ????

??????? ????? ???????? ? ????????.
???????? ??????????? ???????? ????? ?? nginx ??? ?????? curl.

> 
> > 
> > ??? ? ?? ?? ?????????? ???? ?????? ????? ??????. 
> > ???? ?????? (A) ? ????? IP ? ??? ??????? (B and C) ? ?????? ?????? ????? ? ?????? IP. ???? ? ?????? c B ??????? ?? C. ????? FreeBSD 11.
> > 
> > ?????, ??? l2tp ?? mdp5 ????? ????? ??????? ???????, ??? ??? ?????, ??? ??? ? ????, ? ?? ? userspace.  
> 
> ??? ? ????. ?? ?? ?? ???????? ???????? ???????? ?? ??????? A ? ??????? ?????? ??????? ??????? B-C.
> ????? ???? ?? ??????? ? ????? ? ????? ???? ?????????

?? ?????? ??????? ?? ??????? time=91.949 ms ???????? ? ?? L2TP.
??? ??????? - ??????????.
????? ????????? - 157

From eugen at grosbein.net  Fri Oct 26 13:19:56 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Fri, 26 Oct 2018 17:19:56 +0700
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <20181026130406.0196b04a@i11.co>
References: <20181025175550.7449c891@i11.co>
 <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
 <20181026102643.7b86a2ac@i11.co>
 <f60ac249-6344-d379-09f5-0baf61994aae@grosbein.net>
 <20181026121431.2777e92b@i11.co> <5BD2E191.3040703@grosbein.net>
 <20181026130406.0196b04a@i11.co>
Message-ID: <5BD2EA4C.9080100@grosbein.net>

On 26.10.2018 17:04, Nick Kostirya wrote:
> On Fri, 26 Oct 2018 16:42:41 +0700
> Eugene Grosbein <eugen at grosbein.net> wrote:
> 
>> On 26.10.2018 16:14, Nick Kostirya wrote:
>>
>>> ? ????? ???????? ???????????  
>>
>> ??????? ?? ??????? ???????.
>>
>>> ???????, ????? ??????? ?????? ?????????:
>>> set link enable multilink
>>> ???????? ???????, ?? ??? ????? ? 7 ??? ??????, ??? ???????? ??? l2tp.  
>>
>> C??????? ???????? ????? ??? ? ????
> 
> ??????? ????? ???????? ? ????????.
> ???????? ??????????? ???????? ????? ?? nginx ??? ?????? curl.

?????????? ????? ? ??????? ????? ??????? l2tp ? 7 ??? ????????,
??? ?????????? ???? ?? ????? ? ???? ?? ??????? ??? ??????? l2tp?
??? ?????????? ???????????, ???? ??? ???????? ???????.

?????? mpd.conf ??????? ? ??????? ? ??????.
IPSEC ???????????? ??? ????

From nikolay.kostirya at i11.co  Fri Oct 26 17:10:51 2018
From: nikolay.kostirya at i11.co (Nick Kostirya)
Date: Fri, 26 Oct 2018 17:10:51 +0300
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <20181026130406.0196b04a@i11.co>
References: <20181025175550.7449c891@i11.co>
 <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
 <20181026102643.7b86a2ac@i11.co>
 <f60ac249-6344-d379-09f5-0baf61994aae@grosbein.net>
 <20181026121431.2777e92b@i11.co> <5BD2E191.3040703@grosbein.net>
 <20181026130406.0196b04a@i11.co>
Message-ID: <20181026171051.570dfe71@i11.co>

On Fri, 26 Oct 2018 13:04:06 +0300
Nick Kostirya <nikolay.kostirya at i11.co> wrote:

> On Fri, 26 Oct 2018 16:42:41 +0700
> Eugene Grosbein <eugen at grosbein.net> wrote:
> 
> > On 26.10.2018 16:14, Nick Kostirya wrote:
> >   
> > > ? ????? ???????? ???????????    
> > 
> > ??????? ?? ??????? ???????.
> >   
> > > ???????, ????? ??????? ?????? ?????????:
> > > set link enable multilink
> > > ???????? ???????, ?? ??? ????? ? 7 ??? ??????, ??? ???????? ??? l2tp.

?????? 
set link enable multilink
????????
set link mtu 1460
? ???????? ???????! ?? 33-40% ????, ??? ?? ??????.

From shuriku at shurik.kiev.ua  Sat Oct 27 10:32:07 2018
From: shuriku at shurik.kiev.ua (Alexandr Krivulya)
Date: Sat, 27 Oct 2018 10:32:07 +0300
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <20181026171051.570dfe71@i11.co>
References: <20181025175550.7449c891@i11.co>
 <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
 <20181026102643.7b86a2ac@i11.co>
 <f60ac249-6344-d379-09f5-0baf61994aae@grosbein.net>
 <20181026121431.2777e92b@i11.co> <5BD2E191.3040703@grosbein.net>
 <20181026130406.0196b04a@i11.co> <20181026171051.570dfe71@i11.co>
Message-ID: <35e105d8-ad00-c06a-e9a1-32047e4ef170@shurik.kiev.ua>

26.10.18 17:10, Nick Kostirya ????:
> On Fri, 26 Oct 2018 13:04:06 +0300
> Nick Kostirya <nikolay.kostirya at i11.co> wrote:
>
>> On Fri, 26 Oct 2018 16:42:41 +0700
>> Eugene Grosbein <eugen at grosbein.net> wrote:
>>
>>> On 26.10.2018 16:14, Nick Kostirya wrote:
>>>    
>>>> ? ????? ???????? ???????????
>>> ??????? ?? ??????? ???????.
>>>    
>>>> ???????, ????? ??????? ?????? ?????????:
>>>> set link enable multilink
>>>> ???????? ???????, ?? ??? ????? ? 7 ??? ??????, ??? ???????? ??? l2tp.
> ??????
> set link enable multilink
> ????????
> set link mtu 1460
> ? ???????? ???????! ?? 33-40% ????, ??? ?? ??????.

? tcpmssfix ?????????????
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.uafug.org.ua/pipermail/freebsd/attachments/20181027/b7bc74b1/attachment.html>

From nikolay.kostirya at i11.co  Sun Oct 28 06:18:43 2018
From: nikolay.kostirya at i11.co (Nick Kostirya)
Date: Sun, 28 Oct 2018 06:18:43 +0200
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <5BD2EA4C.9080100@grosbein.net>
References: <20181025175550.7449c891@i11.co>
 <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
 <20181026102643.7b86a2ac@i11.co>
 <f60ac249-6344-d379-09f5-0baf61994aae@grosbein.net>
 <20181026121431.2777e92b@i11.co> <5BD2E191.3040703@grosbein.net>
 <20181026130406.0196b04a@i11.co> <5BD2EA4C.9080100@grosbein.net>
Message-ID: <20181028061843.538fbcec@i11.co>

On Fri, 26 Oct 2018 17:19:56 +0700
Eugene Grosbein <eugen at grosbein.net> wrote:

> ?????????? ????? ? ??????? ????? ??????? l2tp ? 7 ??? ????????,
> ??? ?????????? ???? ?? ????? ? ???? ?? ??????? ??? ??????? l2tp?
> ??? ?????????? ???????????, ???? ??? ???????? ???????.

??? ? 2 ???? (????? ?????????? set link mtu 1460)

> 
> ?????? mpd.conf ??????? ? ??????? ? ??????.
> IPSEC ???????????? ??? ????

IPsec ?? ????????????.

??????.

l2tp: 
	create bundle template P 
	set ipcp yes vjcomp 
	set ipcp ranges 192.168.10.1 192.168.10.0/24 
 
	create link template L1 l2tp 
	set link action bundle P 
	set link mtu 1460 
	set l2tp secret "**************" 
	set l2tp enable hidden 
	set link enable incoming

	set link enable chap


??????.

l2tp:
	create bundle static P
	set iface route 192.168.10.0/24

	create link static L1 l2tp
	set link action bundle P
	set link max-redial 0
	set link disable incoming
	set link mtu 1460

	set l2tp peer ******** 
	set l2tp secret "********"
	set l2tp enable hidden
	set l2tp enable outcall

	set auth authname thinkpad
	set auth password "*****"

	open


From nikolay.kostirya at i11.co  Sun Oct 28 06:28:15 2018
From: nikolay.kostirya at i11.co (Nick Kostirya)
Date: Sun, 28 Oct 2018 06:28:15 +0200
Subject: [freebsd] mpd5, l2tp and routing
In-Reply-To: <35e105d8-ad00-c06a-e9a1-32047e4ef170@shurik.kiev.ua>
References: <20181025175550.7449c891@i11.co>
 <5dca76c1-607d-e402-6b21-14659ff4c330@grosbein.net>
 <20181026102643.7b86a2ac@i11.co>
 <f60ac249-6344-d379-09f5-0baf61994aae@grosbein.net>
 <20181026121431.2777e92b@i11.co> <5BD2E191.3040703@grosbein.net>
 <20181026130406.0196b04a@i11.co> <20181026171051.570dfe71@i11.co>
 <35e105d8-ad00-c06a-e9a1-32047e4ef170@shurik.kiev.ua>
Message-ID: <20181028062815.043a5f84@i11.co>

On Sat, 27 Oct 2018 10:32:07 +0300
Alexandr Krivulya <shuriku at shurik.kiev.ua> wrote:

> 26.10.18 17:10, Nick Kostirya ????:
> > On Fri, 26 Oct 2018 13:04:06 +0300
> > Nick Kostirya <nikolay.kostirya at i11.co> wrote:
> >  
> >> On Fri, 26 Oct 2018 16:42:41 +0700
> >> Eugene Grosbein <eugen at grosbein.net> wrote:
> >>  
> >>> On 26.10.2018 16:14, Nick Kostirya wrote:
> >>>      
> >>>> ? ????? ???????? ???????????  
> >>> ??????? ?? ??????? ???????.
> >>>      
> >>>> ???????, ????? ??????? ?????? ?????????:
> >>>> set link enable multilink
> >>>> ???????? ???????, ?? ??? ????? ? 7 ??? ??????, ??? ???????? ??? l2tp.  
> > ??????
> > set link enable multilink
> > ????????
> > set link mtu 1460
> > ? ???????? ???????! ?? 33-40% ????, ??? ?? ??????.  
> 
> ? tcpmssfix ?????????????

?????????????.

????????
set iface enable tcpmssfix
????????? ?? ???????.

?????????? ? ????????? ????, ?? ??? ??? ????????? ? ?????????? ??????????? ????? - ????????? ????????.

From nikolay.kostirya at i11.co  Wed Oct 31 15:57:36 2018
From: nikolay.kostirya at i11.co (Nick Kostirya)
Date: Wed, 31 Oct 2018 15:57:36 +0200
Subject: [freebsd] ESP Tunnel for VPN
Message-ID: <20181031155736.709c5f26@i11.co>

??????.
???????? ipsec ?????? ????? ????? IP (??????, freebsd) ? ????? (??????, freebsd).
??????????? racoon ? Hybrid RSA.
???? ???? ????????.

1.
??? ?????????, ??? ?? ???????? ???????? nat_traversal ? ??????? racoon?
?????? ?????? ????? ?????? (???????? ping ? http ???????), ? ?????? ?? ????? ???????. 
????? ???-?? ?? ????????? ??? ??? ? ?????? ?????

2.
???????? ????????? ???????? ??????????? ??-?? ?????? 
ERROR: failed to get subjectAltName
DEBUG: Discarding CERT: does not match ID.
????? ?? ????? ??? ??????????? racoon ??? ??? ?????? ???? ????? IP ? SAN?

3.
Android ??????? ?????????, ?? ??? ???? ? ???? ???????? ????????? ??????.
?? ????????, ??? ????? ????? ?????? ???????????? ? ???????.
????? ?? ????? ? ??? ??? ???????? ???? ????????.

From eugen at grosbein.net  Wed Oct 31 16:26:25 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Wed, 31 Oct 2018 21:26:25 +0700
Subject: [freebsd] ESP Tunnel for VPN
In-Reply-To: <20181031155736.709c5f26@i11.co>
References: <20181031155736.709c5f26@i11.co>
Message-ID: <5f71107d-0c4a-ea90-b4a5-2d8f73dd7417@grosbein.net>

31.10.2018 20:57, Nick Kostirya ?????:

> ??????.
> ???????? ipsec ?????? ????? ????? IP (??????, freebsd) ? ????? (??????, freebsd).
> ??????????? racoon ? Hybrid RSA.
> ???? ???? ????????.
> 
> 1.
> ??? ?????????, ??? ?? ???????? ???????? nat_traversal ? ??????? racoon?
> ?????? ?????? ????? ?????? (???????? ping ? http ???????), ? ?????? ?? ????? ???????. 
> ????? ???-?? ?? ????????? ??? ??? ? ?????? ?????

???, ??? ???????????. ???????????? ??? NAT-T ????? ??????? ????? ???????,
??????????? ??? ????? ????? ?????????????? ? ????????? ESP-??????? ? NAT.
????? ???????? NAT-T, ??? ??? ???? ? ?????????, ????? ????????? ?????????.

> 2.
> ???????? ????????? ???????? ??????????? ??-?? ?????? 
> ERROR: failed to get subjectAltName
> DEBUG: Discarding CERT: does not match ID.
> ????? ?? ????? ??? ??????????? racoon ??? ??? ?????? ???? ????? IP ? SAN?

???? ?????????? ?? ???????????, ????? ?? ?????? ??????
????????? ??????? PSK ?? ?????????????.

> 3.
> Android ??????? ?????????, ?? ??? ???? ? ???? ???????? ????????? ??????.
> ?? ????????, ??? ????? ????? ?????? ???????????? ? ???????.
> ????? ?? ????? ? ??? ??? ???????? ???? ????????.

?????? ?? ???????? ? DNS, ???????? ? ?????? ??????? ? ??? ???????.
????? ??? ??????? ??? ???????? - L2TP/IPSEC ??? IKEv2?



From nikolay.kostirya at i11.co  Wed Oct 31 17:01:58 2018
From: nikolay.kostirya at i11.co (Nick Kostirya)
Date: Wed, 31 Oct 2018 17:01:58 +0200
Subject: [freebsd] ESP Tunnel for VPN
In-Reply-To: <5f71107d-0c4a-ea90-b4a5-2d8f73dd7417@grosbein.net>
References: <20181031155736.709c5f26@i11.co>
 <5f71107d-0c4a-ea90-b4a5-2d8f73dd7417@grosbein.net>
Message-ID: <20181031170158.786c7bc6@i11.co>

On Wed, 31 Oct 2018 21:26:25 +0700
Eugene Grosbein <eugen at grosbein.net> wrote:

> 31.10.2018 20:57, Nick Kostirya ?????:
> 
> > ??????.
> > ???????? ipsec ?????? ????? ????? IP (??????, freebsd) ? ????? (??????, freebsd).
> > ??????????? racoon ? Hybrid RSA.
> > ???? ???? ????????.
> > 
> > 1.
> > ??? ?????????, ??? ?? ???????? ???????? nat_traversal ? ??????? racoon?
> > ?????? ?????? ????? ?????? (???????? ping ? http ???????), ? ?????? ?? ????? ???????. 
> > ????? ???-?? ?? ????????? ??? ??? ? ?????? ?????  
> 
> ???, ??? ???????????. ???????????? ??? NAT-T ????? ??????? ????? ???????,
> ??????????? ??? ????? ????? ?????????????? ? ????????? ESP-??????? ? NAT.
> ????? ???????? NAT-T, ??? ??? ???? ? ?????????, ????? ????????? ?????????.

???? ? ???, ??? ????? ?? ??????? (nat_traversal force; ? ????? ????????), ?? ?????? ?????? ?? ??????? ?? ????.
??? ????? ???????? ????? ???-?? ??? ???????? ?????????????.

> 
> > 2.
> > ???????? ????????? ???????? ??????????? ??-?? ?????? 
> > ERROR: failed to get subjectAltName
> > DEBUG: Discarding CERT: does not match ID.
> > ????? ?? ????? ??? ??????????? racoon ??? ??? ?????? ???? ????? IP ? SAN?  
> 
> ???? ?????????? ?? ???????????, ????? ?? ?????? ??????
> ????????? ??????? PSK ?? ?????????????.
????? ?? ??????? racoon ??? ????????? ? pre_shared_key ?????.
? ? ???????????? ?? ????? ????????? IP ???????.

> 
> > 3.
> > Android ??????? ?????????, ?? ??? ???? ? ???? ???????? ????????? ??????.
> > ?? ????????, ??? ????? ????? ?????? ???????????? ? ???????.
> > ????? ?? ????? ? ??? ??? ???????? ???? ????????.  
> 
> ?????? ?? ???????? ? DNS, ???????? ? ?????? ??????? ? ??? ???????.
> ????? ??? ??????? ??? ???????? - L2TP/IPSEC ??? IKEv2?

? ??? ? android IKEv2 ? ? ?????, ??? IKEv1, ????? ??? L2TP.
???? L2TP ???????. ????? ???????? ? ?????????????? ?????????? VPN ????????? 8.8.8.8.
??, ? ??????, ??? ????????? Android ????????? ????? Wifi, ?? ? ? ??????? DNS ?????? ??????????????? ? ??????, ? ?? ?? ???????? ????.
???????, ??-?? ??????????? ? ??-?? ?????????? NAT-T.

From eugen at grosbein.net  Wed Oct 31 17:11:30 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Wed, 31 Oct 2018 22:11:30 +0700
Subject: [freebsd] ESP Tunnel for VPN
In-Reply-To: <20181031170158.786c7bc6@i11.co>
References: <20181031155736.709c5f26@i11.co>
 <5f71107d-0c4a-ea90-b4a5-2d8f73dd7417@grosbein.net>
 <20181031170158.786c7bc6@i11.co>
Message-ID: <ae63404f-0aa2-1060-5dc3-786e7edb05e8@grosbein.net>

31.10.2018 22:01, Nick Kostirya ?????:

>>> ??????.
>>> ???????? ipsec ?????? ????? ????? IP (??????, freebsd) ? ????? (??????, freebsd).
>>> ??????????? racoon ? Hybrid RSA.
>>> ???? ???? ????????.
>>>
>>> 1.
>>> ??? ?????????, ??? ?? ???????? ???????? nat_traversal ? ??????? racoon?
>>> ?????? ?????? ????? ?????? (???????? ping ? http ???????), ? ?????? ?? ????? ???????. 
>>> ????? ???-?? ?? ????????? ??? ??? ? ?????? ?????  
>>
>> ???, ??? ???????????. ???????????? ??? NAT-T ????? ??????? ????? ???????,
>> ??????????? ??? ????? ????? ?????????????? ? ????????? ESP-??????? ? NAT.
>> ????? ???????? NAT-T, ??? ??? ???? ? ?????????, ????? ????????? ?????????.
> 
> ???? ? ???, ??? ????? ?? ??????? (nat_traversal force; ? ????? ????????), ?? ?????? ?????? ?? ??????? ?? ????.

?? ??? tcpdump ? ???? ? ??????. ??? ????? ?????????????? ??????? ? ??? ???? device enc,
?? ?????? ?????? ??????? ??????????????:

sysctl net.enc.in.ipsec_filter_mask=0
sysctl net.enc.out.ipsec_filter_mask=0
ifconfig enc0 up

? tcpdump -ni enc0 ????????? ??? -p.

>>> 2.
>>> ???????? ????????? ???????? ??????????? ??-?? ?????? 
>>> ERROR: failed to get subjectAltName
>>> DEBUG: Discarding CERT: does not match ID.
>>> ????? ?? ????? ??? ??????????? racoon ??? ??? ?????? ???? ????? IP ? SAN?  
>>
>> ???? ?????????? ?? ???????????, ????? ?? ?????? ??????
>> ????????? ??????? PSK ?? ?????????????.
> ????? ?? ??????? racoon ??? ????????? ? pre_shared_key ?????.

??????? ? ipsec-tools-0.8.2_6 ??? ?????? (???????? ?? ?????????),
???? ???? ?? ???? ????????????, ????? ?????? ????? ???????.

From eugen at grosbein.net  Wed Oct 31 17:16:03 2018
From: eugen at grosbein.net (Eugene Grosbein)
Date: Wed, 31 Oct 2018 22:16:03 +0700
Subject: [freebsd] ESP Tunnel for VPN
In-Reply-To: <20181031170158.786c7bc6@i11.co>
References: <20181031155736.709c5f26@i11.co>
 <5f71107d-0c4a-ea90-b4a5-2d8f73dd7417@grosbein.net>
 <20181031170158.786c7bc6@i11.co>
Message-ID: <c9a75475-85b3-fd3e-3c22-9dfe30fcabfb@grosbein.net>

31.10.2018 22:01, Nick Kostirya ?????:

>>> Android ??????? ?????????, ?? ??? ???? ? ???? ???????? ????????? ??????.
>>> ?? ????????, ??? ????? ????? ?????? ???????????? ? ???????.
>>> ????? ?? ????? ? ??? ??? ???????? ???? ????????.  
>>
>> ?????? ?? ???????? ? DNS, ???????? ? ?????? ??????? ? ??? ???????.
>> ????? ??? ??????? ??? ???????? - L2TP/IPSEC ??? IKEv2?
> 
> ? ??? ? android IKEv2 ? ? ?????, ??? IKEv1, ????? ??? L2TP.
> ???? L2TP ???????.

??? ???????? ????? ? ??????? ????? ???????????? L2TP/IPSEC.