Bug 196343 - ipsec gif0 setup missing netmask
Summary: ipsec gif0 setup missing netmask
Status: Open
Alias: None
Product: Documentation
Classification: Unclassified
Component: Books & Articles (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: freebsd-doc (Nobody)
URL: https://docs.freebsd.org/en/books/han...
Keywords: needs-qa
Depends on:
Blocks: handbook-2022
  Show dependency treegraph
 
Reported: 2014-12-29 00:14 UTC by ari
Modified: 2022-12-30 11:43 UTC (History)
2 users (show)

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description ari 2014-12-29 00:14:47 UTC
The IPSec documentation may contain a bug.

    https://www.freebsd.org/doc/handbook/ipsec.html

In particular, the command is given as:

    # ifconfig gif0 internal1 internal2

and then the resulting gif0 interface looks like

    inet 10.246.38.1 --> 10.0.0.5 netmask 0xffffff00

It would appear that the mask is missing from the command like so:

    # ifconfig gif0 internal1 netmask 255.255.255.0 internal2


Even better, since example IP addresses are used in these docs, write it like this:


    # ifconfig gif0 10.246.38.1 netmask 255.255.255.0 10.0.0.5

and it will be much clearer as to which IP address you are supposed to put where. The documentation never explains which end of the link is supposed to be internal1 and which is internal2. At the very least, rename them as external_remote and external_local.
Comment 1 Andrey V. Elsukov freebsd_committer freebsd_triage 2014-12-29 13:53:42 UTC
Also, it will be good to specify 'inet' or 'inet6' keyword in examples.
Comment 2 ari 2014-12-29 15:06:40 UTC
I've just now discovered that the whole gif interface thing is optional for ipsec and not really needed unless you are doing advanced routing things. It would be good if the documentation made that clear.
Comment 3 Pau Amma 2022-04-10 01:01:20 UTC
I think some of this at least was corrected already. I can't find "internal1" or "internal2" in https://docs.freebsd.org/en/books/handbook/security/#ipsec.
Comment 4 Graham Perrin freebsd_committer freebsd_triage 2022-12-08 03:17:36 UTC
Sorry, that error (the de-block) was whilst struggling with so many words in a single-line field in 263315 on an iPad.