2001-07-15 07:53:42 +00:00
|
|
|
.\"
|
1998-04-11 19:33:06 +00:00
|
|
|
.\" ----------------------------------------------------------------------------
|
|
|
|
.\" "THE BEER-WARE LICENSE" (Revision 42):
|
|
|
|
.\" <phk@FreeBSD.org> wrote this file. As long as you retain this notice you
|
|
|
|
.\" can do whatever you want with this stuff. If we meet some day, and you think
|
|
|
|
.\" this stuff is worth it, you can buy me a beer in return. Poul-Henning Kamp
|
|
|
|
.\" ----------------------------------------------------------------------------
|
2001-07-15 07:53:42 +00:00
|
|
|
.\"
|
1999-08-28 00:22:10 +00:00
|
|
|
.\" $FreeBSD$
|
2001-07-15 07:53:42 +00:00
|
|
|
.\"
|
1998-04-11 19:33:06 +00:00
|
|
|
.Dd April 11, 1998
|
|
|
|
.Dt NOS-TUN 8
|
2001-07-10 11:04:34 +00:00
|
|
|
.Os
|
1998-04-11 19:33:06 +00:00
|
|
|
.Sh NAME
|
|
|
|
.Nm nos-tun
|
1998-05-05 06:24:15 +00:00
|
|
|
.Nd implement ``nos'' or ``ka9q'' style IP over IP tunnel
|
1998-04-11 19:33:06 +00:00
|
|
|
.Sh SYNOPSIS
|
2000-11-20 16:52:27 +00:00
|
|
|
.Nm
|
1998-04-11 19:33:06 +00:00
|
|
|
.Fl t
|
|
|
|
.Ar tunnel
|
|
|
|
.Fl s
|
|
|
|
.Ar source
|
|
|
|
.Fl d
|
|
|
|
.Ar destination
|
1999-03-29 13:58:27 +00:00
|
|
|
.Fl p
|
|
|
|
.Ar protocol_number
|
2005-02-10 09:19:34 +00:00
|
|
|
.Op Ar source
|
1998-04-11 19:33:06 +00:00
|
|
|
.Ar target
|
|
|
|
.Sh DESCRIPTION
|
2002-07-06 19:34:18 +00:00
|
|
|
The
|
|
|
|
.Nm
|
|
|
|
utility is used to establish an
|
1998-04-11 19:33:06 +00:00
|
|
|
.Em nos
|
|
|
|
style tunnel, (also known as
|
|
|
|
.Em ka9q
|
|
|
|
or
|
|
|
|
.Em IP-IP
|
|
|
|
tunnel) using a
|
|
|
|
.Xr tun 4
|
|
|
|
kernel interface.
|
|
|
|
.Pp
|
1998-05-05 06:24:15 +00:00
|
|
|
.Ar Tunnel
|
1998-04-11 19:33:06 +00:00
|
|
|
is the name of the tunnel device
|
1998-05-05 06:24:15 +00:00
|
|
|
.Pa /dev/tun0
|
1998-04-11 19:33:06 +00:00
|
|
|
for example.
|
|
|
|
.Pp
|
1998-05-05 06:24:15 +00:00
|
|
|
.Ar Source
|
1998-04-11 19:33:06 +00:00
|
|
|
and
|
|
|
|
.Ar destination
|
|
|
|
are the addresses used on the tunnel device.
|
|
|
|
If you configure the tunnel against a cisco router, use a netmask of
|
|
|
|
.Dq 255.255.255.252
|
2004-07-02 21:45:06 +00:00
|
|
|
on the cisco.
|
|
|
|
This is because the tunnel is a point-to-point interface
|
1998-05-05 06:24:15 +00:00
|
|
|
in the
|
2000-01-23 01:30:05 +00:00
|
|
|
.Fx
|
2005-02-13 22:25:33 +00:00
|
|
|
end, a concept cisco does not really implement.
|
1998-04-11 19:33:06 +00:00
|
|
|
.Pp
|
1999-03-29 13:58:27 +00:00
|
|
|
.Ar Protocol number
|
2000-03-01 11:27:47 +00:00
|
|
|
sets tunnel mode.
|
2002-03-14 10:09:19 +00:00
|
|
|
Original KA9Q NOS uses 94 but many people use 4
|
|
|
|
on the worldwide backbone of ampr.org.
|
1999-03-29 13:58:27 +00:00
|
|
|
.Pp
|
1998-05-05 06:24:15 +00:00
|
|
|
.Ar Target
|
1998-04-11 19:33:06 +00:00
|
|
|
is the address of the remote tunnel device, this must match the source
|
|
|
|
address set on the remote end.
|
|
|
|
.Sh EXAMPLES
|
1998-05-05 06:24:15 +00:00
|
|
|
This end, a
|
2000-01-23 01:30:05 +00:00
|
|
|
.Fx
|
1998-05-05 06:24:15 +00:00
|
|
|
box on address 192.168.59.34:
|
2000-12-18 15:16:24 +00:00
|
|
|
.Bd -literal -offset indent
|
1998-04-11 19:33:06 +00:00
|
|
|
nos-tun -t /dev/tun0 -s 192.168.61.1 -d 192.168.61.2 192.168.56.45
|
|
|
|
.Ed
|
|
|
|
.Pp
|
|
|
|
Remote cisco on address 192.168.56.45:
|
2000-12-18 15:16:24 +00:00
|
|
|
.Bd -literal -offset indent
|
1998-04-11 19:33:06 +00:00
|
|
|
interface tunnel 0
|
|
|
|
ip address 192.168.61.2 255.255.255.252
|
|
|
|
tunnel mode nos
|
|
|
|
tunnel destination 192.168.59.34
|
|
|
|
tunnel source 192.168.56.45
|
|
|
|
.Ed
|
1998-05-05 06:24:15 +00:00
|
|
|
.Sh AUTHORS
|
2000-11-22 09:35:58 +00:00
|
|
|
.An -nosplit
|
1998-05-05 06:24:15 +00:00
|
|
|
.An Nickolay N. Dudorov Aq nnd@itfs.nsk.su
|
|
|
|
wrote the program,
|
|
|
|
.An Poul-Henning Kamp Aq phk@FreeBSD.org
|
|
|
|
wrote the man-page.
|
1999-03-29 13:58:27 +00:00
|
|
|
.An Isao SEKI Aq iseki@gongon.com
|
|
|
|
added a new flag, IP protocol number.
|
2005-01-18 10:09:38 +00:00
|
|
|
.Sh BUGS
|
2005-02-13 22:25:33 +00:00
|
|
|
We do not allow for setting our source address for multihomed machines.
|