[Openswan Users] How to see the outgoing decrypted packets with
kernel 2.6 ?
paul at xelerance.com
Wed Jun 29 15:57:54 CEST 2005
On Wed, 29 Jun 2005, Jacques Valot wrote:
>> You need to run tcpdump on the ipsec0 interface, not the ethX interface,
>> I assume tcpdump uses when no interface is specified.
> You have right.
> But, if I run the tcpdump command on the ipsec0 interface, I only see the
> icmp echo request packets.
> without the KLIPS kernel module loaded :
> - On eth0 interface, I see both ESP packets (incoming and outgoing) and
> incoming decrypted packets.
> - no ipsec interface
> - The ping is OK.
That is using NETKEY...
> with the KLIPS kernel module loaded before run ipsec :
> - On eth0 interface, I see both ESP packets (incoming and outgoing)
> - On ipsec0 interface, I see outgoing decrypted packets.
eh? You mean outgoing not-yet encrypted packets? Or incoming decrpyted
> - The ping doesn't worked.
Are the NETKEY modules unloaded properly when using KLIPS?
Did you disable NAT/MASQ? Check ip_forwarding? disable rp_filter?
Any other kernel messages in the log?
More information about the Users