This chapter explains both IPv4 and IPv6 operations in the context of the C5 operating system. It explains how to set up a C5 system as an IPv4 gateway, also called a router. This allows a C5 system to connect to two or more separate subnetworks. It also explains IPv6 in the C5 operating system.
In order to behave as a gateway, a C5 system needs to be installed on a multi-homed host; namely, a host with at least two network interfaces.
The C5 system can act as a gateway in two different ways: either visibly using IP forwarding only (see Section 12.1, “IP Forwarding”) or transparently by acting as an ARP proxy, (Address Resolution Protocol), (see Section 12.1.1, “The C5 operating system as an ARP proxy”).
This section explains IPv4 datagrams, and includes procedural instructions for configuring the gateway, and for configuring the hosts on subnetworks.
One of the ways in which the C5 operating system can act as a gateway between separate subnetworks is through simply forwarding IP datagrams. A C5 host with two or more ethernet adapters can be configured to make a link between different network interfaces, as shown in Figure 12.1, “C5 as an IP Gateway” below.
In Figure 12.1, “C5 as an IP Gateway” above, the C5 system is a gateway bridging Subnetwork 1 to Subnetwork 2. In order to make this gateway:
For example, in order to send an IP datagram from Subnetwork 1 to Subnetwork 2, the ethernet interface IP addresses must to be created for ifeth0 and ifeth1 on the C5 host. Then, in order to reach Subnetwork 2, datagrams received on the ifeth0 interface must be redirected through the ifeth1 interface. The default behavior would be for a C5 system to drop silently the datagram after it is received at ifeth0, so a specific configuration is required to forward it between the two ethernet interfaces.
Procedure 12.1. Configuring the Gateway
In order to configure the two ethernet interfaces from Figure 12.1, “C5 as an IP Gateway” and to create the routing table to redirect the datagrams between the interfaces, add the following lines to the sysadm.ini file (see sysadm.ini(4CC) ) of the C5 gateway.
Create the network interfaces:
mkdev ifeth 0 mkdev ifeth 1
Configure the ifeth0 interface:
ifconfig ifeth0 129.158.111.111 netmask 0xffff0000 broadcast 129.158.255.255 ifwait ifeth0
Configure the ifeth1 interface:
ifconfig ifeth1 129.159.222.222 netmask 0xffff0000 broadcast 129.159.255.255 ifwait ifeth1
Set up the routes between ifeth0 and ifeth1:
route add -net 129.158 -iface ifeth0 route add -net 129.159 -iface ifeth1
Configure the C5 operating system to forward the incoming IP datagrams to the corresponding ethernet interface. You do this by activating the net.inet.ip.forwarding state in the microkernel, by adding the following line to the sysadm.ini file:
sysctl -w net.inet.ip.forwarding=1
Procedure 12.2. Configuring the Hosts on the Subnetworks
You must now configure the hosts on the different subnetworks so that they will use the gateway to send datagrams to each other. For example, assuming that Host A on Subnetwork 1 in Figure 12.1, “C5 as an IP Gateway” is running under a C5 system, define a route for it to send datagrams to Subnetwork 2 via the gateway. To do this, add the following lines to the sysadm.ini file for Host A.
Create the network interface:
mkdev ifeth 0
Configure this interface:
ifconfig ifeth0 129.158.333.333 netmask 0xffff0000 broadcast 129.158.255.255 ifwait ifeth0
Set up the routes. You can set up a simple route, which uses the network interface directly:
route add -net 129.158 -iface ifeth0
Or, you can specify a gateway explicitly, for example ifeth0 on the C5 gateway from Figure 12.1, “C5 as an IP Gateway”, as the route to take:
route add -net 129.159 129.158.111.111
As you can see, the gateway configuration using simple IP forwarding will only work if the hosts on the different subnetworks are correctly configured to send datagrams via the gateway. Since configuring all the hosts to use a specific machine as a gateway is not always possible, it is sometimes necessary to create a gateway between the subnetworks by configuring the C5 operating system to act as an ARP proxy.
The Address Resolution Protocol (ARP — see ARP(7P) ) maps IP addresses to specific machine addresses in a network. Where a C5 system is acting as a gateway between two or more subnetworks, configuring it as an ARP proxy allows you to handle all the different physical subnetworks as if they are the same network. In other words, creating an ARP proxy makes a single virtual network composed of several physical subnetworks. Consequently, the different hosts located on these networks can communicate without being aware of the presence of the gateway.
This type of configuration is desirable in the following circumstances:
To extend an ethernet segment beyond the physical limit of the ethernet transport used. The ARP proxy gateway can be used to join two or more subnetworks together to form a single ethernet segment with a single network configuration.
To boot a diskless machine via the network if the server providing the system image is located on the other side of a gateway. This situation requires the gateway to be transparent since the firmware code used to load the system image through the network is unaware of the gateway's existence.
A C5 host with two or more ethernet adapters can be configured as an ARP proxy linking different network interfaces to create a single, virtual network, as shown in Figure 12.2, “The C5 system as an ARP Proxy”.
Procedure 12.3. Configuring the Gateway as an ARP Proxy
To configure the C5 gateway to act as an ARP proxy, create the two network interfaces, set them up and create the routing table. To create the example shown in Figure 12.2, “The C5 system as an ARP Proxy”, you add the following to the sysadm.ini file of the C5 gateway:
Create the two network interfaces:
mkdev ifeth 0 mkdev ifeth 1
Configure interface ifeth0:
ifconfig ifeth0 129.158.110.111 netmask 0xffffff00 broadcast 129.158.110.255 ifwait ifeth0
Configure interface ifeth1
ifconfig ifeth1 129.158.112.222 netmask 0xffffff00 broadcast 129.159.112.255 ifwait ifeth1
Set up the routes:
route add -net 129.158.110 -iface ifeth0 route add -net 129.158.112 -iface ifeth1
Configure the C5 system to forward IP packets:
sysctl -w net.inet.ip.forwarding=1
Configure the C5 system to forward ARP requests by activating the net.ether.inet.proxyall microkernel state:
sysctl -w net.ether.inet.proxyall=1
Procedure 12.4. Configuring the Hosts on the Subnetworks
You must now configure the individual hosts on the virtual network so that they use the ARP proxy gateway. To configure Host A in Figure 12.2, “The C5 system as an ARP Proxy” you add the following lines to its sysadm.ini file:
As you can see, when configuring the hosts on the network you are required only to specify the IP address of that particular host and the IP address of the virtual network. There is no requirement to specify the exact IP address of the gateway, thus rendering the gateway transparent to all the individual hosts on the network.