Thanks for all answers,<br><br>I'm trying turn on GRE tunnel over IPSEC tunnel.<br>The IPSEC tunnel works fine, and GRE tunnel too, but bridge-utils dont supports gre interfaces...<br><br>My configuration:<br> - Turn on ipsec tunnel<br>
- execute these commands<br>ip tunnel add teste2 mode gre remote 20.20.20.2 local 192.168.170.38 ttl 255<br>ip link set teste2 up<br>ifconfig eth2 up promisc<br>brctl addbr br0<br>brctl addif br0 eth2<br>brctl addif br0 teste2<br>
<br>This error has occurred:<br>can't add teste2 to bridge br0: Invalid argument<br><br>I'm searching on internet about this problem...<br><br><br>Thanks,<br>Regards,<br clear="all">---<br>Sérgio Cioban Filho <br>
| Tecnólogo em Gestão de TI<br>| Linux Professional Institute Certified - Level 1<br>------------------------------------------------------------<br>| Linux - Servidores - Firewall - VPN<br>| Virtualização - VoIP - ShellScript - C - PHP <br>
| <a href="http://cioban.googlepages.com">http://cioban.googlepages.com</a><br>| +55 48 9989-8733<br>------------------------------------------------------------<br>..:: Seja livre, use LiNuX!! ::..<br>------------------------------------------------------------<br>
Vendo GOL G3 PLUS 1.0 8V - 4 P - 2002 - Branco - COMPLETÍSSIMO - R$ 20.200 (ou R$15.000 + 13x R$391,36)<br><a href="http://cioban.googlepages.com/vendogolg38v">http://cioban.googlepages.com/vendogolg38v</a><br>
<br><br><div class="gmail_quote">On Wed, Jan 14, 2009 at 16:57, <span dir="ltr"><<a href="mailto:openswan@thefeds.net">openswan@thefeds.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
You need to bridge eth2 and the ipsec tunnel. You may have to create a GRE tunnel over the ipsec tunnel to do this.<br>
<br>
The bridge will also copy packets from the ipsec/gre tunnel to eth2.<br>
<br>
Tim<div><div></div><div class="Wj3C7c"><br>
<br>
On Wed, 14 Jan 2009, Sergio Cioban Filho wrote:<br>
<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Hi all,<br>
<br>
I'm trying redirect all "promisc" trafic captured on eth2 interface over<br>
ipsec tunnel.<br>
That is my scenario:<br>
<br>
(HUB)<------>(eth2:Server:eth0=ipsec0)<---------->(eth0=ipsec0:Client)<br>
<br>
I want redirect (or mirroring) all traffic (sniffed) on eth2 server<br>
interface to client ipsec0 interface.<br>
When I run tcpdump on ipsec0 client interface, the result must be same of<br>
the eth2 server interface.<br>
<br>
Any idea?<br>
<br>
Thanks,<br>
Regards,<br>
---<br>
Sérgio Cioban Filho<br>
| Tecnólogo em Gestão de TI<br>
| Linux Professional Institute Certified - Level 1<br>
------------------------------------------------------------<br>
| Linux - Servidores - Firewall - VPN<br>
| Virtualização - VoIP - ShellScript - C - PHP<br>
| <a href="http://cioban.googlepages.com" target="_blank">http://cioban.googlepages.com</a><br>
| +55 48 9989-8733<br>
------------------------------------------------------------<br>
..:: Seja livre, use LiNuX!! ::..<br>
------------------------------------------------------------<br>
Vendo GOL G3 PLUS 1.0 8V - 4 P - 2002 - Branco - COMPLETÍSSIMO - R$ 20.200<br>
<a href="http://cioban.googlepages.com/vendogolg38v" target="_blank">http://cioban.googlepages.com/vendogolg38v</a><br>
</blockquote>
</div></div><br>_______________________________________________<br>
<a href="mailto:Users@openswan.org">Users@openswan.org</a><br>
<a href="http://lists.openswan.org/mailman/listinfo/users" target="_blank">http://lists.openswan.org/mailman/listinfo/users</a><br>
Building and Integrating Virtual Private Networks with Openswan:<br>
<a href="http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155" target="_blank">http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155</a><br>
<br></blockquote></div><br>