Can a TCP-PDU being tunneled within a UDP-packet be accepted ?

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Christian Riechmann <riechmann@fgan.de>
To: netfilter-devel@lists.netfilter.org
Cc: bussmann@fgan.de
Subject: Can a TCP-PDU being tunneled within a UDP-packet be accepted ?
Date: Tue, 6 Apr 2004 15:56:08 +0200	[thread overview]
Message-ID: <20040406135608.GA1625@rie.rie.priv> (raw)

Hello,

Here is what I want to do:
I would like to encapsulate a TCP-PDU within a new PDU, which shall be
transmitted as a UDP-PDU to the recipient. On the recipients site the
TCP-PDU shall be decapsulated out of the UDP-PDU and with the verdict
ACCEPTED shall begiven back to the kernel for further processing.

The software I am using:
I am using IPv6 with ip6tables 1.2.9 and Linux kernel 2.6.4.

What I can see:
On the sending host ipq_read shows the TCP-PDU, this TCP-PDU is encapsulated
and sent out as UDP-PDU (tcpdump shows the UDP-PDU).
On the receiving host the transmitted UDP-PDU is received, the encapsulated
TCP-PDU is decapsulated and this TCP-PDU is given to ipq_set_verdict with
the action-parameter set to ACCEPT.
Now the PROBLEM: This accepted TCP-PDU does not arrive at the application!

I should mention, that this problem does not occur when instead of
TCP-PDUs ICMP- or UDP-PDUs are encapsulated, transmitted and decapsulated.

Hoping somebody can give me a hint to solve this problem.

Thanks in advance

Christian
-- 
Christian Riechmann    E-Mail: riechmann@fgan.de
c/o FGAN/FKIE          Tel: (+49) 228/9435 345,378
Neuenahrer Strasse 20  Fax: (+49) 228/9435 685
D-53343 Wachtberg, Germany

                 reply	other threads:[~2004-04-06 13:56 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20040406135608.GA1625@rie.rie.priv \
    --to=riechmann@fgan.de \
    --cc=bussmann@fgan.de \
    --cc=netfilter-devel@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.