On Wed, Aug 05, 2015 at 06:53:17PM -0400, lleachii--- via 44Net wrote:
But...exactly HOW do BGPed networks forward packets to IPENCAP gateways via AMPRGW...since they are not directly adjacent to AMPRGW (without a IPENCAP tunnel)???
AMPRGW would have to masquerade (or encapsulate, meaning the BGPed subnet still needs an IPENCAP tunnel) for us, right???
Any internet host (including a non-encap host like hamwan) trying to get to 44-net non-BGP'd hosts send their packets to UCSD where they get routed to amprgw. Amprgw looks up the gateway for the destination host and encapsulates the packet and forwards it to the gateway. The sending host doesn't have to be adjacent to UCSD; the Internet backbone takes care of the routing to UCSD.
Any encapped packet sent to amprgw from a host on a known gateway will be de-capsulated and placed on the Internet with the source address that of the sending host. In that sense, amprgw is masquerading as the sending host. Reply packets come back as above.
When troubleshooting routing problems, traceroute can be a lot more helpful than ping. Often you can see how far the packet got. - Brian