similar to: GRE based attack?

Hi I have a trouble with my shorewall. I have 5 Ips adresses on my internet interface. I can ping any of these adresses, but the traffic take always the base adresse on my interface. All the traffic is on the same adress, but I what to know the traffric for each of these adresses. I search a lot to find the setting for do that, I don''t know what is wrog in my config, somebody can

Hi, I have the following setup. Two linux systems with two [test] external interfaces encrypted with ipsec [transport]. Two gre tunnels that pass 10.200.0.0/24 and 10.200.1.0/24 network traffic. Testing the balanced tunnels I would setup iptraf on one and ping from the other. The results would be as expected; traffic would be split between the two interfaces. Testing with an ftp transfer of

Hi! The netfilter project presents another development release of the conntrack-tools that includes support for all the protocol helpers available in 2.6.30 that were missing so far (SCTP, UDPlite, DCCP and GRE). The daemon updates includes a fix for a memory leak that can be triggered under heavy load and if you set a hashtable in user-space that is smaller than the one in the kernel. Moreover,

Hi Guys, Here is our patch to allow broadcast packets over a GRE tunnel. Hopefully it might be accepted into the source someday. You need to enabled bridging and GRE tunnels in your kernel. No other options are required. The gre patch determines what type of protocol type to put in the GRE header based on the whether the packet is forwarded from a bridge or not. To use the patch: # Create

Hi List, FYI. We have been using CentOS 6.4 and have 2 vpn/gre tunnels to separate cisco rtrs using ospf. with kernel 2.6.32-358.23.2 We have upgraded to 6.5 bit using kernel 2.6.32-431.5.1 and the exact same configuration scripts for our vpn/gre tunnels. What I see is the first gre tunnel works great and I get an ospf neighbor. The second tunnel comes up and I can ping across it and I see

Hi, I have the following setup. Two linux systems with two [test] external interfaces encrypted with ipsec [transport]. Two gre tunnels that pass 10.200.0.0/24 and 10.200.1.0/24 network traffic. Testing the balanced tunnels I would setup iptraf on one and ping from the other. The results would be as expected; traffic would be split between the two interfaces. Testing with an ftp transfer of

Hi, Does anyone tried to get ipip or gre tunnel behind NAT environments. ? i''m trying to make both side tunneling with ipip or gre with private address just like belows.. A -------------------FIRWWAL -------------------INET ------------------- B PRIVATE PUBLIC PUBLIC (10.100.0.1) (211.xxx.xxx.xxx) (

I am attempting to setup an IPSec protected GRE tunnel with a Cisco router. I believe the IPSec association is up, however I cannot move traffic over the tunnel. It is not clear how to integrate the tunnel interface (gre1) with firewall-cmd; adding the interface to trusted does not appear to 'stick'. [root at aqueduct ~]# firewall-cmd --add-interface=gre1 --zone=trusted The interface

Hello, I''ve set up a GRE tunnel between two Linux boxes and it''s working well, with or without IPSEC (under GRE). The problem is that when I have no traffic for some minutes, side A cannot communicate to side B any more, unless side B tries to communidate to side A. The same thing happens in the other direction. For example, side A pings side B. No reply. Keep pinging. Side B

Hi All, As it is written in the "Linux 2.4 Advanced Routing HOWTO" GRE tunneling has some benefits compare to IP-in-IP, on of it benefits is the ability to transport multicast traffic through a GRE tunnel. I used the mrouted daemon and I know that the daemon supports tunneling but I don''t want to use its tunneling method. Assuming I have gre0 as my tunneling device I did the

Hello, I'm preparing to prepare to take the Graduate Record Exam (GRE) this fall, and I downloaded the GRE PowerPrep software from www.gre.org. Unfortunately, I have not successfully set up the software yet - when I try to get a set of practice questions, the program gives me a Windows dialog box saying "Fatal Error". Then the program stops responding to mouse clicks completely and

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=74 Summary: protocols GRE and 47 are not handled as samekind of protocols Product: iptables userspace Version: 1.2.5 Platform: i386 OS/Version: SuSE Linux Status: NEW Severity: blocker Priority: P2 Component: iptables-save

I need to send multicast traffic through a GRE tunnel between two Linux routers. The tunnel works for normal IP packets, but I can''t see how to make it work for multicast. Here''s the setup: 10.10.10.0/24 LAN-B--------------RtrB-------------RtrC--------------LAN-C 192.168.2.0/24 192.168.1.0/24 RtrB interfaces: eth0

Hi All, Just joined the list to try and solve a problem. To show that I''ve read the rules I''ll start with the requested info os linux kernel-2.4.27 with latest netfilter pom for gre and pptp conntrack etc iptables is 1.3.0 - downloaded and compiled with the pom stuff and the 2.4.27 kernel shorewall version shorewall-2.2.1-2 from rpm ip addr show [root@squid3 root]# ip addr

Hi! Can I create the unnumbered GRE tunnel with iproute2 utility? Can someone provide me a link/howto/example_config how to do it? The topology is one tunnel between two linux boxes: -- eth1-|__|-eth0 <-------------> eth0-|__|-eth1 -- I''m trying now with: ip tu add tun1 mode gre local loc.IP remote rem.IP ttl 255 dev eth0 ip addr add tun1 0.0.0.0 ip link set tun1 up but it

Hi, I have two systems each with 2 two gre tunnels over ipsec. The tunnels are setup to loadbalance using ''ip route''. Using ping from one server to the other I get equal results via the two gre tunnels, but when I try a large ftp transfer the utilization of one tunnel is 90% and the other 10%. The two interfaces are both 100/full. What would be the reason for this, or would

Hi , I am trying to set up a GRE tunnel between two linux routers. The routers have a 400 MHz Processor. Linux .2 65.0.0.2 Linux LAN1 -------- Router -------- INTERNET ---- Router ---- LAN2 10.10.10.0 .1 208.1.0.1 (Simulated) .1 .1 192.168.2.0/24 /24 Scripts to Create the tunnel ip tunnel add tun0 mode gre remote 65.0.0.1 local

Hi All: I have a strange problem that was described in a previous mail but I have stripped the problem down to the following: I have a debian based router that I have setup IPSec with GRE over top. The tunnel addresses are 192.168.2.97 locally, the other side is 192.168.2.110. The tunnel is 192.168.2.96/28. The end points are locally 192.168.1.97(eth1) and 192.168.1.1 the other side''s

? ? ? Hi, all:? ? ? ? ? I'm playing with Gre Tunnel programming in centos 6. ? ? ? ?? ? ? ? ? I wrote my program in these steps:? ? ? ? ? a, open /dev/net/tun ?device and ioctl with?TUNSETIFF, get fd to tun device, say "tun0"; ? ? ? ? b, create one socket and use it to set tun0's ?ip address, namyly?SIOCSIFADDR and?SIOCSIFDSTADDR; and then turn it up; ? ? ? ? c, create one raw

Hello Lartc Mailing List: Been working on something the last week and a half and ALMOST have it working.., just need a few pointers from the wizards on this mailing list to nail it. Ok, my setup is a hub and spoke arrangement, hub is Cisco 2821 with IOS 12.4. Spokes are ruggencom RX1000 routers, Debian based with the following versions installed: rx1000test:~# uname -a Linux rx1000test