Solved

Debian Linix GRE protocol forwarding

Posted on 2007-03-18
6
2,974 Views
Last Modified: 2013-12-06
I'm using tcpdump to see if gre protocol is forwarding properly from my Debian linux box.

Here is the command I'm using
tcpdump -i eth0 proto 47 > /root/dump.txt
But the log file is empty I'm thinking because the protocol isn't even coming in, right?
When I look for protocol 6 (tcp) it fills up as I try and pptp in.  Any ideas?  Should I be seeing the gre protocol coming in?
0
Comment
Question by:MainStaySolutions
  • 2
  • 2
  • 2
6 Comments
 
LVL 8

Expert Comment

by:frashii
ID: 18855625
You might want to check to see that you are monitoring the correct interface... When I ran the following command on eth0, I got no packets... but when I ran it on ppp0 I did.

Do an ifconfig and see if there are other interfaces.

firewall:/root # tcpdump -i ppp0 proto 47
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on ppp0, link-type LINUX_SLL (Linux cooked), capture size 96 bytes
20:15:34.259140 IP xxxx.dyndns.org > xxxx.nwc.acsalaska.net: call 1039 ack 4294967295 no-payload
20:15:34.280656 IP xxx.dyndns.org > xxxx.nwc.acsalaska.net: call 1039 seq 0 gre-ppp-payload

2 packets captured
3 packets received by filter
0 packets dropped by kernel

firewall:/root # tcpdump -i eth0 proto 47
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes

0 packets captured
0 packets received by filter
0 packets dropped by kernel
0
 
LVL 8

Expert Comment

by:frashii
ID: 19006443
*ping* Did monitoring the ppp0 (or other encapsulated interface) show the GRE packets ?
0
 

Author Comment

by:MainStaySolutions
ID: 20728161
No it didnt.
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
LVL 19

Expert Comment

by:http:// thevpn.guru
ID: 20728231
try

iptables -A OUPUT -p tcp --dport 47 -j LOG
iptables -A FORWARD -p tcp --dport 47 -j LOG
iptables -A INPUT -p tcp --dport 47 -j LOG

or UDP ..and then
tail -f /var/log/syslog and you will see the packets being logged if they are incoming/outgoing or being forwarded by the system
0
 

Author Comment

by:MainStaySolutions
ID: 20733771
Thanks for the reply.  Interesting, I'm not seeing anything in the log files as I try to vpn through it.  I'm assuming that it means gre isn't passing through.
0
 
LVL 19

Accepted Solution

by:
http:// thevpn.guru earned 250 total points
ID: 20733797
Not necessarily in VPN is your traffic encrypted ?
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Rate limit for DNS queries 7 84
how to install java on RHEL image on EC2 4 41
ifconfig 4 69
CLI command keep running after close 7 36
If you use Debian 6 Squeeze and you are tired of looking at the childish graphical GDM login screen that is used by default, here's an easy way to change it. If you've already tried to change it you've probably discovered that none of the old met…
1. Introduction As many people are interested in Linux but not as many are interested or knowledgeable (enough) to install Linux on their system, here is a safe way to try out Linux on your existing (Windows) system. The idea is that you insta…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question