From owner-FreeBSD-net-jp@jp.FreeBSD.org Thu Sep  2 14:42:22 2004
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) id i825gM295870;
	Thu, 2 Sep 2004 14:42:22 +0900 (JST)
	(envelope-from owner-FreeBSD-net-jp@jp.FreeBSD.org)
Received: from smtp.uquest.jp ([61.123.236.3])
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) with ESMTP/inet id i825gL895865
	for <FreeBSD-net-jp@jp.FreeBSD.org>; Thu, 2 Sep 2004 14:42:21 +0900 (JST)
	(envelope-from kuramoto@uquest.jp)
Received: from KuramotoPC (unknown [10.18.76.211])
	by smtp.uquest.jp (Postfix) with ESMTP id B3CA12B2A62
	for <FreeBSD-net-jp@jp.FreeBSD.org>; Thu,  2 Sep 2004 14:40:44 +0900 (JST)
From: =?iso-2022-jp?B?GyRCQVJLXDJtO0sbKEI=?= <kuramoto@uquest.jp>
To: <FreeBSD-net-jp@jp.FreeBSD.org>
Message-ID: <003f01c490af$9b0e03c0$d34c120a@KuramotoPC>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-2022-jp"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook, Build 10.0.6626
Importance: Normal
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441
Reply-To: FreeBSD-net-jp@jp.FreeBSD.org
Precedence: list
Date: Thu, 2 Sep 2004 14:42:16 +0900
X-Sequence: FreeBSD-net-jp 4098
Subject: [FreeBSD-net-jp 4098] About tunnel mode.
Sender: owner-FreeBSD-net-jp@jp.FreeBSD.org
X-Originator: kuramoto@uquest.jp
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+040816

$B$O$8$a$^$7$F!"ARK\$H?=$7$^$9!#(B

$B2f!9$,3+H/Cf$N%[%9%H$H(BFreeBSD 5.1$B%k!<%?$H$K(BIPv4$B%H%s%M%k$rD%$C$F!"$=$NCf(B
$B$r(BESP$B2=$5$l$?(BIPv6$B%Q%1%C%H$rDL$=$&$H$7$F$$$^$9$,!"$&$^$/$$$-$^$;$s!#$I$J$?$+(B
$B=u8@D:$1$J$$$G$7$g$&$+!#(B

$B9=@.$H$7$F$O!"(B

WindowsXP
      |       3ffe:501:ffff:1::/64
FreeBSD 5.1 ( 192.168.1.20 )
      |
      |       3ffe:501:ffff::/64
      |
Target ( 192.168.1.100 )

$B$G$9!#$3$l$KBP$7!"(BFreeBSD$B$K0J2<$N@_Dj$r9T$$$^$7$?!#(B

ifconfig :
rl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        inet6 3ffe:501:ffff::2 prefixlen 64
        inet6 fe80::290:99ff:feba:c446%rl0 prefixlen 64 scopeid 0x1
        ether 00:90:99:ba:c4:46
        media: Ethernet autoselect (10baseT/UTP)
        status: active
vr0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        inet6 3ffe:501:ffff:1::2 prefixlen 64
        inet6 fe80::290:feff:fe0f:47ab%vr0 prefixlen 64 scopeid 0x2
        inet 10.18.76.23 netmask 0xffffff00 broadcast 10.18.76.255
        ether 00:90:fe:0f:47:ab
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active
lp0: flags=8851<UP,POINTOPOINT,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
        inet6 ::1 prefixlen 128
        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4
        inet 127.0.0.1 netmask 0xff000000
gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
        tunnel inet 192.168.1.20 --> 192.168.1.100
        inet6 fe80::290:99ff:feba:c446%gif0 prefixlen 64 scopeid 0x5

setkey:
add 192.168.1.100 192.168.1.20 esp 0x1000 -E rijndael-cbc
"fedcba9876543210";
add 192.168.1.20 192.168.1.100 esp 0x1001 -E rijndael-cbc
"0123456789abcdef";

spdadd fe80::290:99ff:feba:c446%rl0 fe80::200:e1ff:fe6b:1efc%rl0 icmp6 -P
out no
ne;
spdadd fe80::200:e1ff:fe6b:1efc%rl0 fe80::290:99ff:feba:c446%rl0 icmp6 -P in
non
e;

spdadd 3ffe:501:ffff:1::/32 3ffe:501:ffff:0::/32 any -P out ipsec
esp/tunnel/::
192.168.1.20-::192.168.1.100/require;
spdadd 3ffe:501:ffff:0::/64 3ffe:501:ffff:1::/64 any -P in ipsec
esp/tunnel/::19
2.168.1.100-::192.168.1.20/require;

$B$3$N@_Dj$G(BTarget$B$+$i(BWindowsXP$B$K(B

ping6 3ffe:501:ffff:1:20c:f1ff:fefa:7b1c

$B$r<B9T$7$?$H$3$m!"(BTarget->FreeBSD$B4V$O(BESP$B2=$5$l$?(BIPv4$B$,!"(BFreeBSD->
WindowsXP$B4V$O(BICMPv6$B!J(BEchoRequest)$B$,FO$-!"1~Ez$G$"$k(BICMPV6(EchoReply)
$B$,(BFreeBSD$B$^$GFO$$$F$$$k$3$H$O3NG'$7$^$7$?!#(B

FreeBSD$B$G8!:w$G$-$k2a5n$N%a!<%j%s%0%j%9%H$r;29M$K$d$C$F$_$?$N$G$9$,!"(B
$B$@$a$G$7$?!#(B

$B62$i$/!"(Bgif0$B$X$N@_Dj!"(BSPD$B$X$N@_Dj$,B-$j$J$$$H;W$&$N$G$9$,!#(B

$B$A$J$_$K!"(B

route change -inet6 3ffe:501:ffff:: -interface gif0

$B$H$d$C$F$_$^$7$?$,!"BLL\$G$7$?!#(B

$B$I$&$+$h$m$7$/$*4j$$$7$^$9!#(B

