[Openswan Users] Confirm NetKey Traffic
Toby Chamberlain
tjchamberlain at hotmail.com
Thu Nov 3 01:42:56 CET 2005
Thanks Jacco,
I managed to find someone of IRC who said to use "tcpdump -n -s 1500 esp"
which seemed to do the trick.
Thanks
Toby
> Toby Chamberlain wrote:
>
>> Is there any way to prove that a packet is being sent via the VPN when
>> using netkey? With KLIPS a simple tcpdump would show whether it was IPSec
>> traffic, but with netkey I just get "Host1 --> Host2" - VPN and standard
>> traffic look the same.
>
> Use a separate system between Host1 and Host2 to listen in on the traffic:
>
> Host1 --> Host2
> ^
> |
> |
> Host3
>
> This is the most reliable method, even with KLIPS.
>
> Jacco
> --
> Jacco de Leeuw mailto:jacco2 at dds.nl
> Zaandam, The Netherlands http://www.jacco2.dds.nl
> Mosquitos suck
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
>
More information about the Users
mailing list