* raw packet capture based on offset
@ 2005-09-22 3:29 colorchip
2005-09-22 19:25 ` Alexey Toptygin
0 siblings, 1 reply; 4+ messages in thread
From: colorchip @ 2005-09-22 3:29 UTC (permalink / raw)
To: netfilter
Hi,
I want to capture raw packets based on the ethernet source (mac) and a 16 bit identifier following the ethtype. I am unable to find a generic filter which gives me a freedom to filter the packet based on any bit length and offset from the beginning of the packet. Can anyone help?
-nks
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: raw packet capture based on offset
2005-09-22 3:29 raw packet capture based on offset colorchip
@ 2005-09-22 19:25 ` Alexey Toptygin
2005-09-23 1:57 ` PPTP/IPSec multiple clients behind iptables NAT Salim
0 siblings, 1 reply; 4+ messages in thread
From: Alexey Toptygin @ 2005-09-22 19:25 UTC (permalink / raw)
To: colorchip; +Cc: netfilter
On Thu, 22 Sep 2005 colorchip@sify.com wrote:
> I want to capture raw packets based on the ethernet source (mac) and a
> 16 bit identifier following the ethtype. I am unable to find a generic
> filter which gives me a freedom to filter the packet based on any bit
> length and offset from the beginning of the packet. Can anyone help?
I think you want the u32 match from POM-ng.
Alexey
^ permalink raw reply [flat|nested] 4+ messages in thread
* PPTP/IPSec multiple clients behind iptables NAT
2005-09-22 19:25 ` Alexey Toptygin
@ 2005-09-23 1:57 ` Salim
0 siblings, 0 replies; 4+ messages in thread
From: Salim @ 2005-09-23 1:57 UTC (permalink / raw)
To: netfilter
I am using iptables 1.3.3
I had some problems with multiple clients behind NAT(a simple MASQUERADE
rule is set) connecting to the same VPN server. ONly one client can connect
at a time.
I have enables the CONFIG_IP_NF_PPTP and CONFIG_IP_NF_CT_PROTO_GRE options
in kernel.
I have read a few posts about this issue in the list from as early as in
2003. But could not find a conclusion.
Could you guys please clarify? Is this scenario supported by iptables? If
not, is there a way to get around this issue?
thanks
Salim
^ permalink raw reply [flat|nested] 4+ messages in thread
* RE: raw packet capture based on offset
@ 2005-09-22 15:56 Harrison, Bruce (CXO)
0 siblings, 0 replies; 4+ messages in thread
From: Harrison, Bruce (CXO) @ 2005-09-22 15:56 UTC (permalink / raw)
To: colorchip, netfilter
Do you want to do packet capture or packet filtering? For packet
capture, have a look at tcpdump. I know it can capture based on source
and/or destination Ethernet address. Not sure if it can capture on the
other field that you are looking for.
Take care,
Bruce...
-----Original Message-----
From: netfilter-bounces@lists.netfilter.org
[mailto:netfilter-bounces@lists.netfilter.org] On Behalf Of
colorchip@sify.com
Sent: Wednesday, September 21, 2005 9:29 PM
To: netfilter@lists.netfilter.org
Subject: raw packet capture based on offset
Hi,
I want to capture raw packets based on the ethernet source (mac) and a
16 bit identifier following the ethtype. I am unable to find a generic
filter which gives me a freedom to filter the packet based on any bit
length and offset from the beginning of the packet. Can anyone help?
-nks
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2005-09-23 1:57 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-09-22 3:29 raw packet capture based on offset colorchip
2005-09-22 19:25 ` Alexey Toptygin
2005-09-23 1:57 ` PPTP/IPSec multiple clients behind iptables NAT Salim
-- strict thread matches above, loose matches on Subject: below --
2005-09-22 15:56 raw packet capture based on offset Harrison, Bruce (CXO)
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.