[LARTC] qos inside ipsec tunnel
Marco Berizzi
pupilla at hotmail.com
Fri Nov 3 17:16:17 CET 2006
Hello everybody.
I would like to do some kind of shaping inside an
ipsec tunnel implemented by Openswan and linux
2.6.18.x with xfrm (no KLIPS): for example, to
limit outbound smtp traffic inside the tunnel.
Question: where should I attach the qdisc to? Eth0?
I'm asking this, because tcpdump only see the ESP
packet on the eth0 and not the 'clear' packet.
TIA
This is my simple network schema:
____ private lan A
/
|
|eth1
+---+----+
| |
| 2.6.18 |
|openswan| Ipsec gateway
| |
+---+----+
|eth0
|
I|
P|i
S|n
E|t
C|e
|r
T|n
U|e
N|t
N|
E|
L|eth0
+---+----+
| |
| 2.6.18 |
|openswan| Ipsec gateway
| |
+---+----+
|eth1
|
\____ private lan B
More information about the LARTC
mailing list