-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Currently, I have got an ipv6 tunnel, that has sit0 as interface. Since the Tunnel wrapping stuff is still ipv4 traffic that goes over the ppp0 interface, i wondered whether I can classify this kind of traffic and put into a class. (i dont need to do any ipv6 shaping), So I wondered, whether someone here can give me the filter directive to match these tunnel packets. - -- - Thilo Schulz My public GnuPG key is available at http://home.bawue.de/~arny/public_key.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE/U4D/Zx4hBtWQhl4RAig1AKChZ22l8wm9nGYMr2Lt99turSfp2QCglOiC mmOC4ZF/GLkQhERPbMeHgY8=YHH6 -----END PGP SIGNATURE----- _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
On Monday, 01 September 2003, at 19:25:13 +0200, Thilo Schulz wrote:> Currently, I have got an ipv6 tunnel, that has sit0 as interface. > Since the Tunnel wrapping stuff is still ipv4 traffic that goes over the ppp0 > interface, i wondered whether I can classify this kind of traffic and put > into a class. (i dont need to do any ipv6 shaping), So I wondered, whether > someone here can give me the filter directive to match these tunnel packets. >6to4 IP traffic (I think this is its name, IPv6 traffic encapsulated into IPv4 packets) can be easily identified. They are regular IPv4 packets, with a "protocol" field of 0x29, or decimal 41. So use iptables and match packets on protocol. What you can''t do (to the best of my knowledge) if going deeper into the packets, and see if IPv6 pakects inside the IPv4 ones are of some kind or another. Regards, -- Jose Luis Domingo Lopez Linux Registered User #189436 Debian Linux Sid (Linux 2.6.0-test4-mm4) _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Monday 01 September 2003 21:27, Jose Luis Domingo Lopez wrote:> 6to4 IP traffic (I think this is its name, IPv6 traffic encapsulated > into IPv4 packets) can be easily identified. They are regular IPv4 > packets, with a "protocol" field of 0x29, or decimal 41.Thank you, that was exactly the information I needed, though I could probably also have consulted /etc/protocols myself d''oh ..> So use iptables and match packets on protocol."u32 match ip protocol 41 0xff" does the job pretty well :)> What you can''t do (to the > best of my knowledge) if going deeper into the packets, and see if IPv6 > pakects inside the IPv4 ones are of some kind or another.2. I wasn''t planning on doing that ;) - -- - Thilo Schulz My public GnuPG key is available at http://home.bawue.de/~arny/public_key.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE/VIe/Zx4hBtWQhl4RAp47AKCD8PdEO3b7Qmfe3wNN2B0/mpb/RACghi7C j3QnJTzFhmp7WsbA/CmO15U=9QBS -----END PGP SIGNATURE----- _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/