All of lore.kernel.org
 help / color / mirror / Atom feed
From: Rick Marshall <rjm@zenucom.com>
To: lartc@vger.kernel.org
Subject: Re: [LARTC] vpn control
Date: Mon, 05 Jan 2004 06:15:56 +0000	[thread overview]
Message-ID: <1073283356.5018.5.camel@znote.zenucom.com> (raw)
In-Reply-To: <1073275438.3942.61.camel@znote.zenucom.com>

linux-linux using ip tunnels - modprobe ip_gre

eg

ip tunnel add china mode gre remote xxx.xxx.xxx.xxx local \
xxx.xxx.xxx.xxx ttl 255
ip link set china up
ip addr add 192.168.1.11 dev china
ip route add 192.168.5.0/24 dev china
 
ps - any hackers - don't bother - the firewalls will only accept
connections from specific ip addresses


On Mon, 2004-01-05 at 16:24, Damion de Soto wrote:
> Hi Rick,
> > can i now put rules in for the tunnels to control traffic within each
> > tunnel (that's where our video conferencing etc runs)?
> What type of VPNs are you using? IPSec ?
> You can put htb rules on ipsecX interfaces and they will work.
> the pppX interfaces for pptp and l2tp VPNs should work just as well.
> 
> > control the real interface (eth1 in our setup)? if not can i somehow see
> > the packets inside the vpn packets and then control them?
> With some clever kernel hackery, you probably could do this, I don't think it would 
> be any fun at all though.
> 
> regards,

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

  parent reply	other threads:[~2004-01-05  6:15 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2004-01-05  4:03 [LARTC] vpn control Rick Marshall
2004-01-05  5:24 ` Damion de Soto
2004-01-05  6:15 ` Rick Marshall [this message]
2004-01-05  6:46 ` Damion de Soto

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1073283356.5018.5.camel@znote.zenucom.com \
    --to=rjm@zenucom.com \
    --cc=lartc@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.