Hello,
I'm trying to configure my gateway to 44 net on my pfsense FW.
I configure GRE tunnel:
Remote tunnel endpoint IP address:169.228.66.251 Local tunnel IP address: 44.138.2.254 (my segment is 44.138.2.0 ) Remote tunnel IP address: 44.0.0.0/8 Mobile encapsulation: check (also try to unchecked)
The firewall is open but i cannot ping any address on 44 net. any idea?
Best Regards, Tal 4z7tal
Hi Tal,
This has been repeated a lot of times, but somehow this information gets lost: The AMPR network is a full mesch tunneled network. This means that, in order to interconnect 44 subnets, you need to set up a tunnel for each and every gateway. The ucsd ampr gateway only provides access to/from 44 addresses from/to the internet, and not between 44 subnets. In a Linux environment, the IPIP driver has this point to multipoint capability, being able to create this full mesh by defining specific specially crafted routes. For other operating sysyems and routers, including pfsense, you need to create a tunnel for each existing gateway in the portal, some 300 tunnels. The only way around this is for another gateway to offer you ampr connectivity via its gateway, which has to become your gateway, too.
Marius, YO2LOJ
Hi there May someone check Connectivity to 44.138.1.1 from NON AMPR address ? When i do it from external sources i get no response but doing so from a remote computer result in a success How can it be that two trace route show different results ? Please Advice Thanks Forward Ronen - 4Z4ZQ http://www.ronen.org
traceroute to 44.138.1.1 (44.138.1.1), 30 hops max, 60 byte packets 1 * * * 2 * * * 3 G1-7-3-3.WASHDC-LCR-22.verizon-gni.net (100.41.202.200) 3.879 ms 3.893 ms 3.880 ms 4 * * * 5 0.ae4.BR2.IAD8.ALTER.NET (140.222.227.197) 4.969 ms 5.332 ms 4.931 ms 6 dcp-brdr-03.inet.qwest.net (63.235.40.49) 5.936 ms 5.368 ms 5.294 ms 7 chp-edge-01.inet.qwest.net (67.14.38.86) 21.076 ms 20.982 ms 20.980 ms 8 208.44.38.174 (208.44.38.174) 20.660 ms 20.110 ms 20.411 ms 9 tge1-3.fr4.sjc.llnw.net (69.28.172.77) 66.377 ms 70.799 ms 69.980 ms 10 paix-px1--limelight-10ge.cenic.net (198.32.251.193) 71.210 ms 72.366 ms 72.331 ms 11 dc-lax-agg6--svl-agg4-100ge.cenic.net (137.164.11.0) 72.625 ms 72.806 ms 72.510 ms 12 dc-tus-agg3--lax-agg6-100ge.cenic.net (137.164.11.7) 72.619 ms 72.482 ms 73.082 ms 13 dc-sdg-agg4--tus-agg3-100ge.cenic.net (137.164.11.9) 74.871 ms 75.787 ms 76.440 ms 14 ucsd--sdg-agg4-10g-2.cenic.net (137.164.23.178) 96.412 ms dc-ucsd-1--sdg-agg4.cenic.net (137.164.23.54) 77.701 ms ucsd--sdg-agg4-10g-2.cenic.net (137.164.23.178) 95.955 ms 15 mcore-flow-bypass-mx0-p2p.ucsd.edu (132.239.254.61) 77.205 ms 78.291 ms 77.163 ms 16 ebu3b-6509-nodem-core-interconnect-vl910-bcast-255-131.ucsd.edu (132.239.255.131) 75.547 ms 75.472 ms 74.777 ms 17 amprgw.sysnet.ucsd.edu (169.228.66.251) 75.409 ms 74.962 ms 75.388 ms 18 * * * 19 * * * 20 * * * 21 * * * 22 * * * 23 * * * 24 * * * 25 * * * 26 * * * 27 * * * 28 * * * 29 * * * 30 * * *
traceroute to 44.138.1.1 (44.138.1.1), 30 hops max, 38 byte packets 1 r-bbone3.lim.thunderworx.net (217.27.32.1) 0.394 ms 0.402 ms 0.310 ms 2 primetel.j1.lim.nsp-transit.net (78.158.134.198) 0.317 ms 0.300 ms 0.365 ms 3 ae1-3033.j1.fra-nsp-transit.net (78.158.141.189) 52.652 ms ae0-3067-j1.lon.nsp-transit.net (194.154.142.65) 83.063 ms ae1-3033.j1.fra-nsp-transit.net (78.158.141.189) 52.649 ms 4 ffm-b10-link.telia.net (80.239.193.177) 69.462 ms ldn-b3-link.telia.net (80.239.193.173) 86.609 ms ffm-b10-link.telia.net (80.239.193.177) 61.000 ms 5 ldn-bb2-link.telia.net (80.91.251.238) 83.828 ms ffm-bb2-link.telia.net (80.91.247.188) 58.682 ms 135.585 ms 6 adm-bb3-link.telia.net (213.155.136.113) 86.012 ms adm-bb3-link.telia.net (80.91.245.216) 74.869 ms ffm-b12-link.telia.net (62.115.142.63) 54.563 ms 7 limelight-ic-308377-ffm-b12.c.telia.net (213.248.89.38) 69.680 ms limelight-ic-141253-ffm-b12.c.telia.net (213.248.95.146) 53.435 ms adm-b7-link.telia.net (80.91.245.243) 78.151 ms 8 tge10-3.fr3.ams.llnw.net (69.28.172.159) 84.885 ms tge1-1.fr4.fra1.llnw.net (178.79.240.10) 70.426 ms limelight-ic-314069-ffm-b7.c.telia.net (62.115.49.142) 96.802 ms 9 ve5.fr4.ams.llnw.net (69.28.172.114) 74.726 ms tge2-6.fr4.lga.llnw.net (69.28.189.49) 157.668 ms 152.541 ms 10 tge1-2.fr4.ord.llnw.net (69.28.172.198) 158.484 ms 183.659 ms tge2-6.fr4.lga.llnw.net (69.28.189.49) 155.879 ms 11 tge1-2.fr4.ord.llnw.net (69.28.172.198) 183.280 ms tge13-3.fr3.sjc.llnw.net (69.28.171.66) 220.438 ms tge1-3.fr4.sjc.llnw.net (69.28.172.77) 216.341 ms 12 paix-px1--limelight-10ge.cenic.net (198.32.251.193) 227.843 ms tge1-3.fr4.sjc.llnw.net (69.28.172.77) 235.993 ms 223.272 ms 13 paix-px1--limelight-10ge.cenic.net (198.32.251.193) 220.318 ms 214.463 ms 228.584 ms 14 dc-lax-agg6--svl-agg4-100ge.cenic.net (137.164.11.0) 214.906 ms 195.408 ms 209.215 ms 15 dc-sdg-agg4--tus-agg3-100ge.cenic.net (137.164.11.9) 244.769 ms dc-tus-agg3--lax-agg6-100ge.cenic.net (137.164.11.7) 218.096 ms dc-sdg-agg4--tus-agg3-100ge.cenic.net (137.164.11.9) 247.934 ms 16 * dc-sdg-agg4--tus-agg3-100ge.cenic.net (137.164.11.9) 254.081 ms dc-ucsd-1--sdg-agg4.cenic.net (137.164.23.54) 224.877 ms 17 mcore-flow-bypass-mx0-p2p.ucsd.edu (132.239.254.61) 235.633 ms ucsd--sdg-agg4-10g-2.cenic.net (137.164.23.178) 226.093 ms nodem-core-6807-vlan2767-gw.ucsd.edu (132.239.254.61) 233.687 ms 18 mcore-flow-bypass-mx0-p2p.ucsd.edu (132.239.254.61) 256.392 ms ebu3b-6509-720-vlan910-gw1.ucsd.edu (132.239.255.131) 219.833 ms nodem-core-6807-vlan2767-gw.ucsd.edu (132.239.254.61) 255.633 ms 19 amprgw.sysnet.ucsd.edu (169.228.66.251) 244.517 ms 232.006 ms 249.180 ms 20 amprgw.sysnet.ucsd.edu (169.228.66.251) 247.509 ms 226.438 ms 252.445 ms 21 * * * 22 * *
C:\Documents and Settings\Administrator>tracert 44.138.1.1
Tracing route to haifa-cisco-1005.ampr.org [44.138.1.1] over a maximum of 30 hops:
1 4 ms 3 ms 2 ms 10.0.0.138 2 18 ms 17 ms 18 ms bzq-179-37-1.cust.bezeqint.net [212.179.37.1] 3 20 ms 17 ms 17 ms cablep-179-14-182.cablep.bezeqint.net [212.179.1 4.182] 4 86 ms 79 ms 76 ms bzq-25-77-22.cust.bezeqint.net [212.25.77.22] 5 80 ms 79 ms 80 ms bzq-179-124-86.cust.bezeqint.net [212.179.124.86 ] 6 80 ms 79 ms 79 ms bzq-219-189-57.cablep.bezeqint.net [62.219.189.5 7] 7 80 ms 79 ms 80 ms bzq-179-72-242.cust.bezeqint.net [212.179.72.242 ] 8 108 ms 99 ms 99 ms tge1-4.fr3.lon.llnw.net [195.66.224.133] 9 113 ms 100 ms 99 ms tge1-5.fr6.lon.llnw.net [178.79.195.62] 10 152 ms 150 ms 153 ms tge8-5.fr4.lga.llnw.net [69.28.172.149] 11 183 ms 186 ms 195 ms tge1-2.fr4.ord.llnw.net [69.28.172.198] 12 233 ms 221 ms 223 ms tge1-3.fr4.sjc.llnw.net [69.28.172.77] 13 222 ms 221 ms 223 ms paix-px1--limelight-10ge.cenic.net [198.32.251.1 93] 14 227 ms 227 ms 228 ms dc-lax-agg6--svl-agg4-100ge.cenic.net [137.164.1 1.0] 15 227 ms 227 ms 226 ms dc-tus-agg3--lax-agg6-100ge.cenic.net [137.164.1 1.7] 16 234 ms 234 ms 234 ms dc-sdg-agg4--tus-agg3-100ge.cenic.net [137.164.1 1.9] 17 229 ms 230 ms 229 ms dc-ucsd-1--sdg-agg4.cenic.net [137.164.23.54] 18 230 ms 244 ms 230 ms nodem-core-6807-vlan2767-gw.ucsd.edu [132.239.25 4.61] 19 233 ms 233 ms 245 ms ebu3b-6509-720-vlan910-gw1.ucsd.edu [132.239.255 .131] 20 * * * Request timed out. 21 478 ms 481 ms 484 ms haifa-cisco-1005.ampr.org [44.138.1.1]
Trace complete.
C:\Documents and Settings\Administrator>
Le 22/02/2016 07:37, R P a écrit :
May someone check Connectivity to 44.138.1.1 from NON AMPR address ?
Hi,
Your address is pinggable from French operator Orange (see traceroute below).
Traceroutes can show different results depending on operator routing policies and network availability. Anyway, it seems that the last hop from Internet is not amprgw.sysnet.ucsd.edu anymore. Maybe there are some routing changes at UCSD ?
73 de TK1BI --
tracert 44.138.1.1
Détermination de l'itinéraire vers haifa-cisco-1005.ampr.org [44.138.1.1] avec un maximum de 30 sauts :
1 <1 ms <1 ms <1 ms 10.0.0.200 2 16 ms 16 ms 16 ms 80.10.115.230 3 16 ms 16 ms 16 ms 10.123.204.86 4 16 ms 17 ms 16 ms ae43-0.nimsr302.Paris.francetelecom.net [193.252.159.153] 5 17 ms 19 ms 19 ms 193.252.137.78 6 35 ms 17 ms 22 ms 81.52.186.25 7 39 ms 25 ms 24 ms tge8-6.fr4.lon.llnw.net [69.28.172.213] 8 93 ms 92 ms 99 ms tge8-5.fr4.lga.llnw.net [69.28.172.149] 9 131 ms 141 ms 132 ms tge1-2.fr4.ord.llnw.net [69.28.172.198] 10 177 ms 175 ms 181 ms tge1-3.fr4.sjc.llnw.net [69.28.172.77] 11 175 ms 176 ms 175 ms paix-px1--limelight-10ge.cenic.net [198.32.251.193] 12 173 ms 174 ms 174 ms dc-lax-agg6--svl-agg4-100ge.cenic.net [137.164.11.0] 13 170 ms 170 ms 171 ms dc-tus-agg3--lax-agg6-100ge.cenic.net [137.164.11.7] 14 179 ms 179 ms 179 ms dc-sdg-agg4--tus-agg3-100ge.cenic.net [137.164.11.9] 15 178 ms 179 ms 178 ms dc-ucsd-1--sdg-agg4.cenic.net [137.164.23.54] 16 174 ms 174 ms 174 ms nodem-core-6807-vlan2767-gw.ucsd.edu [132.239.254.61] 17 187 ms 179 ms 179 ms ebu3b-6509-720-vlan910-gw1.ucsd.edu [132.239.255.131] 18 * * * Délai d'attente de la demande dépassé. 19 445 ms 431 ms 431 ms haifa-cisco-1005.ampr.org [44.138.1.1]
Itinéraire déterminé.
Hi Ronen,
Works for me from public addresses
root@hosting:~# ping 44.138.1.1 PING 44.138.1.1 (44.138.1.1) 56(84) bytes of data. 64 bytes from 44.138.1.1: icmp_req=1 ttl=236 time=437 ms 64 bytes from 44.138.1.1: icmp_req=2 ttl=236 time=2580 ms 64 bytes from 44.138.1.1: icmp_req=3 ttl=236 time=1574 ms 64 bytes from 44.138.1.1: icmp_req=4 ttl=236 time=568 ms
From 44net it doesn't...
-----Original Message----- From: R P Sent: Monday, February 22, 2016 08:37 To: AMPRNet working group Subject: [44net] Connectivity check needed _______________________________________________ May someone check Connectivity to 44.138.1.1 from NON AMPR address ? When i do it from external sources i get no response but doing so from a remote computer result in a success How can it be that two trace route show different results ?
-
Brian Kantor -
Marius Petrescu -
marius@yo2loj.ro
-
R P -
Tal Raveh -
Toussaint OTTAVI