<br><font size=2 face="sans-serif">Michael,</font>
<br>
<br><font size=2 face="sans-serif">I think what you want is a WINS-proxy
in the remote network rather than tunneling broadcast traffic.</font>
<br>
<br><font size=2 face="sans-serif">A quick "google" for "+WINS
+proxy" gave me this page</font>
<br><font size=2 face="sans-serif">http://www.mcmcse.com/microsoft/guides/winshints.shtml</font>
<br><font size=2 face="sans-serif">that seems to describe your setup (problem?)
exactly.</font>
<br>
<br><font size=2 face="sans-serif">And thanks for the link to that HowTo!</font>
<br>
<br><font size=2 face="sans-serif">Best Regards,</font>
<br><font size=2 face="sans-serif">Frank Mayer<br>
UNIX Systemadministration<br>
----------------------------------------------------<br>
KNAPP Systemintegration GmbH<br>
Waltenbachstrasse 9<br>
8700 Leoben, Austria<br>
----------------------------------------------------<br>
Phone: +43 3842 805-921<br>
Fax: +43 3842 82930-921<br>
frank.mayer@knapp-systems.com<br>
www.knapp.com</font>
<br>
<br>
<br>
<table width=100%>
<tr valign=top>
<td width=40%><font size=1 face="sans-serif"><b>Michael Jurney <mikej@datasynapse.com></b>
</font>
<p><font size=1 face="sans-serif">05.10.2005 19:52</font>
<td width=59%>
<table width=100%>
<tr>
<td>
<div align=right><font size=1 face="sans-serif">An</font></div>
<td valign=top><font size=1 face="sans-serif">Frank.Mayer@knapp-systems.com</font>
<tr>
<td>
<div align=right><font size=1 face="sans-serif">Kopie</font></div>
<td valign=top>
<tr>
<td>
<div align=right><font size=1 face="sans-serif">Thema</font></div>
<td valign=top><font size=1 face="sans-serif">Re: [Openswan Users] GRE
and routing</font></table>
<br>
<table>
<tr valign=top>
<td>
<td></table>
<br></table>
<br>
<br>
<br><font size=2><tt>Frank.Mayer@knapp-systems.com wrote:<br>
<br>
><br>
> Hello Michael,<br>
><br>
> are you really sure you want IP-Broadcast traffic crossing your <br>
> router/firewall? But that's not why I'm writing to you, though.<br>
<br>
I really don't, but it's the only solution to a problem that we're <br>
having with windows clients at the remote site. We use samba at the
<br>
central site to synchronize WINS and DNS, but clients have stopped <br>
announcing themselves to the WINS server on startup, so the exchange <br>
server is finding itself unable to update them. It's mainly a naming
<br>
system problem, but that's going to take much more time to disentangle
<br>
than I have to work with right now.<br>
<br>
Before I roll this into production I'll drop iptables rules down to <br>
restrict it to just udp{137,138,1229} to try and minimize the crosstalk.<br>
<br>
> Can you, please, point me to some HowTo on setting up GRE tunnels
on <br>
> Linux?<br>
> I'd like to know how I could - in case of need - our Cisco-router
<br>
> running GRE-over-IPSec to one of our customers by a Linux-Box.<br>
<br>
<br>
The most straightforward online resource I've found concerning GRE is here:<br>
<br>
http://lartc.org/howto/lartc.tunnel.gre.html<br>
<br>
The missing piece that it doesn't address is that the ipsec tunnel needs
<br>
to be between two /32s, which are also the local/remote endpoints of the
<br>
tunnel. You then add a static route for the target network pointing
to <br>
the gre tunnel interface.<br>
<br>
If you want to see the entire config that I'm currently using, let me <br>
know. I'll happily send it along.<br>
<br>
-- <br>
Michael D. Jurney<br>
Sysadmin, DataSynapse<br>
mikej@datasynapse.com<br>
p: 212.842.8860<br>
<br>
View the DataSynapse email disclaimer here:<br>
<http://www.datasynapse.com/legal/emailprivacy.jsp><br>
<br>
</tt></font>
<br>