[LARTC] Classifying IPv6 tunnel traffic

[LARTC] Classifying IPv6 tunnel traffic

[Thilo Schulz]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Currently, I have got an ipv6 tunnel, that has sit0 as interface.
Since the Tunnel wrapping stuff is still ipv4 traffic that goes over the ppp0 
interface, i wondered whether I can classify this kind of traffic and put 
into a class. (i dont need to do any ipv6 shaping), So I wondered, whether 
someone here can give me the filter directive to match these tunnel packets.

- -- 
 - Thilo Schulz

My public GnuPG key is available at http://home.bawue.de/~arny/public_key.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)

iD8DBQE/U4D/Zx4hBtWQhl4RAig1AKChZ22l8wm9nGYMr2Lt99turSfp2QCglOiC
mmOC4ZF/GLkQhERPbMeHgY8=YHH6
-----END PGP SIGNATURE-----

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] Classifying IPv6 tunnel traffic

[Jose Luis Domingo Lopez]

On Monday, 01 September 2003, at 19:25:13 +0200,
Thilo Schulz wrote:

> Currently, I have got an ipv6 tunnel, that has sit0 as interface.
> Since the Tunnel wrapping stuff is still ipv4 traffic that goes over the ppp0 
> interface, i wondered whether I can classify this kind of traffic and put 
> into a class. (i dont need to do any ipv6 shaping), So I wondered, whether 
> someone here can give me the filter directive to match these tunnel packets.
> 
6to4 IP traffic (I think this is its name, IPv6 traffic encapsulated
into IPv4 packets) can be easily identified. They are regular IPv4
packets, with a "protocol" field of 0x29, or decimal 41.

So use iptables and match packets on protocol. What you can't do (to the
best of my knowledge) if going deeper into the packets, and see if IPv6
pakects inside the IPv4 ones are of some kind or another.

Regards,

-- 
Jose Luis Domingo Lopez
Linux Registered User #189436     Debian Linux Sid (Linux 2.6.0-test4-mm4)
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] Classifying IPv6 tunnel traffic

[Thilo Schulz]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Monday 01 September 2003 21:27, Jose Luis Domingo Lopez wrote:
> 6to4 IP traffic (I think this is its name, IPv6 traffic encapsulated
> into IPv4 packets) can be easily identified. They are regular IPv4
> packets, with a "protocol" field of 0x29, or decimal 41.

Thank you, that was exactly the information I needed, though I could probably 
also have consulted /etc/protocols myself d'oh ..

> So use iptables and match packets on protocol.

"u32 match ip protocol 41 0xff"  does the job pretty well :)

> What you can't do (to the
> best of my knowledge) if going deeper into the packets, and see if IPv6
> pakects inside the IPv4 ones are of some kind or another.

2. I wasn't planning on doing that ;)

- -- 
 - Thilo Schulz

My public GnuPG key is available at http://home.bawue.de/~arny/public_key.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)

iD8DBQE/VIe/Zx4hBtWQhl4RAp47AKCD8PdEO3b7Qmfe3wNN2B0/mpb/RACghi7C
j3QnJTzFhmp7WsbA/CmO15U=9QBS
-----END PGP SIGNATURE-----

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/