RE: IP Masq over CIPE tunnel.|
"Les Mikesell" <lesmikesell,AT,home,DOT,com>|
Tue, 21 Aug 2001 20:11:04 +0200|
I know it works with a 2.2.x kernel and ipchains. I dropped
CIPE into an e-smith linux distribution (kind of a packaged
office-in-a-box based on RH 6.2) and had to figure out their
configuration scheme to undo the MASQ on everything. In
my case I wanted the tunneled nets to be able to see
each other's private numbers.
From: owner-cipe-l,AT,inka,DOT,de [mailto:owner-cipe-l,AT,inka,DOT,de Behalf
Sent: Tuesday, August 21, 2001 7:52 AM
Subject: IP Masq over CIPE tunnel.
Does anyone know of any reason why no matter what I do I can not get
IP Masquerading working over the CIPE tunnel (Kernel 2.4.8 and 2.4.9).
The default gateway points to the remove end of the cipe tunnel.
The iptables command I'm using to do the masquerading is:
iptables -t nat -A POSTROUTING -o cipcb0 -s 192.168.1.0/24 -j
Using tcpdump on the cipcb0 interface says the packets are coming from
192.168.1.1, which they are, but they're supposed to be getting
tcpdump: listening on cipcb0
22:46:53.068355 192.168.1.1.33646 > 126.96.36.199.33435: udp 10 [ttl
22:46:58.066598 192.168.1.1.33646 > 188.8.131.52.33436: udp 10 [ttl
22:47:03.066570 192.168.1.1.33646 > 184.108.40.206.33437: udp 10 [ttl
I'm using the traceroute command to specify the source address of the
packets, like so:
traceroute -n -s 192.168.1.1 220.127.116.11
eth0 on the pc has an address of 192.168.1.1.
I've also tried flushing all firewall rules with no success.
Message sent by the cipe-l,AT,inka,DOT,de mailing list.
Unsubscribe: mail majordomo,AT,inka,DOT,de, "unsubscribe cipe-l" in body
Other commands available with "help" in body to the same address.
CIPE info and list archive: