Login or Register to Ask a Question and Join Our Community


IP Networking

LAN traffic leaking on to WAN

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums IP Networking LAN traffic leaking on to WAN
# 1  
Old 12-13-2011
LAN traffic leaking on to WAN
Network map:

WAN external interface 192.0.0.0 network
|
WAN internal interface 192.0.3.0 network
|
192.0.3.0 LAN
|
wireless router 192.0.3.1
|
DSL modem 192.0.3.2

The problem I am having is that some traffic from the 192.0.3.0 LAN seems to be "leaking" onto the 192.0.0.0 WAN. I noticed this when I installed a NAS on the network. I mapped a drive on a pc to a NAS share. When the backup program starts running, the frame WAN (192.0.0.0) starts dropping packets and the ping times go ridiculous high. When I stop the backup, the WAN traffic and ping times normalize again...

I have a static route in the DSL modem that points 192.0.3.0 to 192.0.0.0 because I need SOME traffic to go over the WAN (a windows shared printer). The rest of the time the frame WAN is only used for some serial printers that our Unix server talks to over the WAN (192.0.0.0).

I have a VPN in place now, so I do not need the 192.0.3.0 traffic to go over the WAN at all now. However, when I remove the static route from the DSL modem my serial printers stop receiving jobs from our Unix server on the other side of the WAN??? Why do my serial printers need the 192.0.3.0 network to talk? Aren't they separate from the LAN? They don't even have network cards for christ sake.
Login or Register to Ask a Question

Previous Thread | Next Thread

8 More Discussions You Might Find Interesting

1. Red Hat

Memory leaking

Hi All Would someone help me to find the detailed report on memory leak. any commands to get detailed report for OS level and applications As we are using REDHAT LINUX 5.9 Thanks Murali Muppa (2 Replies)
Discussion started by: murali969
2 Replies

2. Red Hat

Wan on eth1 and Lan on eth0

I have a local network on dev eth0 Server has static IP of 10.0.0.1 Gateway is 10.0.0.1 and Dns is 10.0.0.1 I am using this network for imaging 500 plus computer... Now, Issue that I am having is that I need to update packages and I dont want to change the configuration on eth0 because I... (0 Replies)
Discussion started by: golpemortal
0 Replies

3. IP Networking

Routing traffic problem between 3G and Office Lan Network

Hi, I would like to ask some networking solution regarding my work LAN and 3G usb network problem. I want to route my internet traffic to the 3G network and sometimes connect to some of my work network for ssh to configure some workstation or print something. Currently my problem is i can't... (0 Replies)
Discussion started by: jao_madn
0 Replies

4. IP Networking

Local Lan, no-ip directed DNS forward, surf within lan

Hi, We have a website running on a local centos 5.4 surfer, static IP. The domain.com uses no-ip.com to take care of the DNS, it forwards all to my server. My router receives the port 80 call, routes it to my server and the world can see domain.com perfectly fine. However, we cannot see... (3 Replies)
Discussion started by: lawstudent
3 Replies

5. Web Development

Cannot access Apache web server from Wan side, only Lan side.

I have installed WAMPSERVER 2.0 on my windows vista x64 system but still am having issues with getting the webserver to be seen outside my local network. It is working fine within my local network. Been through several setup tutorials so far, no dice still. For testing purposes I have... (1 Reply)
Discussion started by: davidmanvell
1 Replies

6. UNIX for Dummies Questions & Answers

LAN traffic rerouting to web server

Hello. I am not sure where to post this and would appreciate any moderator help in moving this to the area where it is most applicable. Thank you. I've posted these questions in a couple different forums, but have not received any answers about what I am doing wrong. I would appreciate any... (3 Replies)
Discussion started by: J-Fal
3 Replies

7. Solaris

How to configure private LAN and coporate LAN on the same machine-Solaris10

Hi , I am trying to configure a private LAN and corporate LAN on the same machien on Solaris 10. How can I achieve this? Thanks (1 Reply)
Discussion started by: deedee
1 Replies

8. UNIX for Dummies Questions & Answers

Can someone please give me information about WAN and LAN

I just need to know the important concepts. I tried searching on the internet for information about this but got bombarded with too many un-neccessary details I find confusing and helpless. I just need to know WAN and LAN concerning how to monitor them and fix or (troubleshoot) basic problems (3 Replies)
Discussion started by: TRUEST
3 Replies
Login or Register to Ask a Question

LEARN ABOUT FREEBSD

if_vxlan

VXLAN(4)						   BSD Kernel Interfaces Manual 						  VXLAN(4)

NAME

     vxlan -- Virtual eXtensible LAN interface

SYNOPSIS

     To compile this driver into the kernel, place the following line in your kernel configuration file:

	   device vxlan

     Alternatively, to load the driver as a module at boot time, place the following line in loader.conf(5):

	   if_vxlan_load="YES"

DESCRIPTION

     The vxlan driver creates a virtual tunnel endpoint in a vxlan segment.  A vxlan segment is a virtual Layer 2 (Ethernet) network that is over-
     laid in a Layer 3 (IP/UDP) network.  vxlan is analogous to vlan(4) but is designed to be better suited for large, multiple tenant data center
     environments.

     Each vxlan interface is created at runtime using interface cloning.  This is most easily done with the ifconfig(8) create command or using
     the cloned_interfaces variable in rc.conf(5).  The interface may be removed with the ifconfig(8) destroy command.

     The vxlan driver creates a pseudo Ethernet network interface that supports the usual network ioctl(2)s and is thus can be used with
     ifconfig(8) like any other Ethernet interface.  The vxlan interface encapsulates the Ethernet frame by prepending IP/UDP and vxlan headers.
     Thus, the encapsulated (inner) frame is able to transmitted over a routed, Layer 3 network to the remote host.

     The vxlan interface may be configured in either unicast or multicast mode.  When in unicast mode, the interface creates a tunnel to a single
     remote host, and all traffic is transmitted to that host.	When in multicast mode, the interface joins an IP multicast group, and receives
     packets sent to the group address, and transmits packets to either the multicast group address, or directly the remote host if there is an
     appropriate forwarding table entry.

     When the vxlan interface is brought up, a UDP(4) socket(9) is created based on the configuration, such as the local address for unicast mode
     or the group address for multicast mode, and the listening (local) port number.  Since multiple vxlan interfaces may be created that either
     use the same local address or join the same group address, and use the same port, the driver may share a socket among multiple interfaces.
     However, each interface within a socket must belong to a unique vxlan segment.  The analogous vlan(4) configuration would be a physical
     interface configured as the parent device for multiple VLAN interfaces, each with a unique VLAN tag.  Each vxlan segment is identified by a
     24-bit value in the vxlan header called the ``VXLAN Network Identifier'', or VNI.

     When configured with the ifconfig(8) vxlanlearn parameter, the interface dynamically creates forwarding table entries from received packets.
     An entry in the forwarding table maps the inner source MAC address to the outer remote IP address.  During transmit, the interface attempts
     to lookup an entry for the encapsulated destination MAC address.  If an entry is found, the IP address in the entry is used to directly
     transmit the encapsulated frame to the destination.  Otherwise, when configured in multicast mode, the interface must flood the frame to all
     hosts in the group.  The maximum number of entries in the table is configurable with the ifconfig(8) vxlanmaxaddr command.  Stale entries in
     the table periodically pruned.  The timeout is configurable with the ifconfig(8) vxlantimeout command.  The table may be viewed with the
     sysctl(8) net.link.vxlan.N.ftable.dump command.

MTU

     Since the vxlan interface encapsulates the Ethernet frame with an IP, UDP, and vxlan header, the resulting frame may be larger than the MTU
     of the physical network.  The vxlan specification recommends the physical network MTU be configured to use jumbo frames to accommodate the
     encapsulated frame size.  Alternatively, the ifconfig(8) mtu command may be used to reduce the MTU size on the vxlan interface to allow the
     encapsulated frame to fit in the current MTU of the physical network.

EXAMPLES

     Create a vxlan interface in unicast mode with the vxlanlocal tunnel address of 192.168.100.1, and the vxlanremote tunnel address of
     192.168.100.2.

	   ifconfig vxlan create vxlanid 108 vxlanlocal 192.168.100.1 vxlanremote 192.168.100.2

     Create a vxlan interface in multicast mode, with the local address of 192.168.10.95, and the group address of 224.0.2.6.  The em0 interface
     will be used to transmit multicast packets.

	   ifconfig vxlan create vxlanid 42 vxlanlocal 192.168.10.95 vxlangroup 224.0.2.6 vxlandev em0

     Once created, the vxlan interface can be configured with ifconfig(8).

SEE ALSO

     inet(4), inet6(4), ifconfig(8), sysctl(8), vlan(8)

     M. Mahalingam and et al, Virtual eXtensible Local Area Network (VXLAN): A Framework for Overlaying Virtualized Layer 2 Networks over Layer 3
     Networks, August 2014, RFC 7348.

AUTHOR

     The vxlan driver was written by Bryan Venteicher <bryanv@freebsd.org>.

BSD
								 December 16, 2014							       BSD