[Openswan Users] Is there any way to capture packets from a 3DES-SHA1 tunnel?
whit at transpect.com
Thu Mar 11 14:15:57 EST 2010
Trying to troubleshoot a strange problem where some machines can do RDP
across the tunnel from one LAN to the other but other's cannot. Using "ip
xfrm monitor" or "iptraf" it's easy enough to see the general flow of
packets, and iptraf even shows which LAN addresses are involved. But to see
the packet exchange itself, the most promising way I can find would be if
tcpdump with it's -E option supported the particular encryption protocol
used, and at least by its man page, in this case it doesn't.
Is there another method?
More information about the Users