<< | Thread Index | >> ]    [ << | Date Index | >> ]

Subject: RE: IP Masq over CIPE tunnel.
From: "Les Mikesell" <lesmikesell,AT,home,DOT,com>
Date: Tue, 21 Aug 2001 20:11:04 +0200
In-reply-to: <3B825974.AE130A8F@ebbs.com.au>

I know it works with a 2.2.x kernel and ipchains.  I dropped
CIPE into an e-smith linux distribution (kind of a packaged
office-in-a-box based on RH 6.2) and had to figure out their
configuration scheme to undo the MASQ on everything.  In
my case I wanted the tunneled nets to be able to see
each other's private numbers.

   Les Mikesell

-----Original Message-----
From: owner-cipe-l,AT,inka,DOT,de [mailto:owner-cipe-l,AT,inka,DOT,de Behalf 
Robert Davidson
Sent: Tuesday, August 21, 2001 7:52 AM
To: cipe-l,AT,inka,DOT,de
Subject: IP Masq over CIPE tunnel.

Hi all,

Does anyone know of any reason why no matter what I do I can not get
IP Masquerading working over the CIPE tunnel (Kernel 2.4.8 and 2.4.9).

The default gateway points to the remove end of the cipe tunnel.

The iptables command I'm using to do the masquerading is:

  iptables -t nat -A POSTROUTING -o cipcb0 -s -j

Using tcpdump on the cipcb0 interface says the packets are coming from, which they are, but they're supposed to be getting

  tcpdump: listening on cipcb0
  22:46:53.068355 >  udp 10 [ttl
  22:46:58.066598 >  udp 10 [ttl
  22:47:03.066570 >  udp 10 [ttl

I'm using the traceroute command to specify the source address of the
packets, like so:

  traceroute -n -s

eth0 on the pc has an address of

I've also tried flushing all firewall rules with no success.

Any ideas?

Robert Davidson.

Message sent by the cipe-l,AT,inka,DOT,de mailing list.
Unsubscribe: mail majordomo,AT,inka,DOT,de, "unsubscribe cipe-l" in body
Other commands available with "help" in body to the same address.
CIPE info and list archive:

<< | Thread Index | >> ]    [ << | Date Index | >> ]