From mboxrd@z Thu Jan  1 00:00:00 1970
From: Damion de Soto <damion@snapgear.com>
Date: Mon, 05 Jan 2004 05:24:14 +0000
Subject: Re: [LARTC] vpn control
Message-Id: <3FF8F4FE.3000702@snapgear.com>
List-Id: <lartc.vger.kernel.org>
References: <1073275438.3942.61.camel@znote.zenucom.com>
In-Reply-To: <1073275438.3942.61.camel@znote.zenucom.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

Hi Rick,
> can i now put rules in for the tunnels to control traffic within each
> tunnel (that's where our video conferencing etc runs)?
What type of VPNs are you using? IPSec ?
You can put htb rules on ipsecX interfaces and they will work.
the pppX interfaces for pptp and l2tp VPNs should work just as well.

> control the real interface (eth1 in our setup)? if not can i somehow see
> the packets inside the vpn packets and then control them?
With some clever kernel hackery, you probably could do this, I don't think it would 
be any fun at all though.

regards,

-- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Damion de Soto - Software Engineer  email:     damion@snapgear.com
SnapGear - A CyberGuard Company ---    ph:         +61 7 3435 2809
  | Custom Embedded Solutions          fax:         +61 7 3891 3630
  | and Security Appliances            web: http://www.snapgear.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  ---  Free Embedded Linux Distro at   http://www.snapgear.org  ---

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/