[Openswan Users] OpenSwan - Tunnel Traffic Monitoring
patrickn at xelerance.com
Wed May 7 15:27:23 EDT 2014
Rescued from the Spam bucket. Please remember to subscribe to the mailing list before posting to it.
From: David jones <david at proficienthealth.com>
Subject: Re: [Openswan Users] OpenSwan - Tunnel Traffic Monitoring
Date: May 7, 2014 at 3:25:05 PM EDT
To: Pizu <pizpower at gmail.com>
Cc: users at lists.openswan.org
I probably won’t be much help but maybe I can provoke a more intelligent response from the group since I am very new to OpenSwan.
But I typically run these commands…
This will tell you what connections are established between gateways
ipsec auto —status | grep "IPsec SA established"
Search for information about connections attempts
grep “connection name” /var/log/auth.log
I think you could use tcpdump to watch the traffic flow
tcpdump -i eth0 -n -p ip host 126.96.36.199
What is it that you want to monitor because by design the data is encrypted anyway?
On May 7, 2014, at 11:24 AM, Pizu <pizpower at gmail.com> wrote:
> Is it possible to monitor all the traffic passing from each tunnel?
> Users at lists.openswan.org
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
301 South Elm Street, Suite 905
Greensboro, NC 27401
phone: 336-389-6600 x713
fax: (877) 506-8443
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users