[nos-bbs] ip-ip

Bob Tenty bobtenty at gmail.com
Wed Nov 24 15:28:41 EST 2010


Ctrl C interrupts it.

I always close it afterwards, but it's up to you.

You can also redirect it to a text file like,

tcpdump -i eth0 >   dump.txt

You can use "Wireshark" if you have a desktop.


DMZ is working for you with IPIP/IPENCAP  and I can also telnet to you.

Always use a firewall like shorewall, etc in Linux with your router in DMZ.



73,

Bob VE3TOK

On 10-11-24 09:49 AM, N0MR wrote:
> Thanks Bob,
>
> First, how do I shut off the tcpdump or does it not hurt to just leave 
> it run?
>
> I see the following:
>
> This came in when the encap RIP broadcast was sent.
>
> 04:33:25.795686 IP amprgw.sysnet.ucsd.edu > 192.168.0.76: IP
> gw.ampr.org.route > RIP2-ROUTERS.MCAST.NET.route: RIPv2, Response,
> length: 164 (ipip-proto-4)
>
> This is an AXIP broadcast.
>
> 04:30:38.889266 IP vci-113.dsl.onvoy.net > 192.168.0.76: IP
> kunk.n0qbj.ampr.org > n0mr.ampr.org:  ax.25 172 (ipip-proto-4)
>
> I did a telnet and this came in.
>
> 04:29:51.638836 IP 69.196.157.57 > 192.168.0.76: IP
> port.ve3mch.ampr.org.telnet > n0mr.ampr.org.4249: F 1659:1659(0) ack 48
> win 2048 (ipip-proto-4)
> 04:29:51.639707 IP 192.168.0.76 > 69.196.157.57: IP n0mr.ampr.org.4249 >
> port.ve3mch.ampr.org.telnet: F 48:48(0) ack 1660 win 2048 (ipip-proto-4)
>
> From the above information, it appears to me that my ip-ip tunnel 
> acitivity is working with DMZ open to JNOS. Comments?
>
> Jerry, N0MR
>
>
> ----- Original Message ----- From: "Bob Tenty" <bobtenty at gmail.com>
> To: "TAPR xNOS Mailing List" <nos-bbs at tapr.org>
> Sent: Tuesday, November 23, 2010 7:17 PM
> Subject: Re: [nos-bbs] ip-ip
>
>
>> Example:
>>
>> Linux shell command:  tcpdump -i eth0 |  grep ipip
>>
>> Incoming packet
>>
>> ipip packet arriving from a commercial address at Internet using 
>> ucsd.edu as gateway and addressed to amprnet.
>>
>> 00:50:46.081461 IP amprgw.sysnet.ucsd.edu > 69.196.157.57: IP 
>> 116.231.27.100.10105 > ve3ql.ampr.org.13491: UDP, length 30 
>> (ipip-proto-4)
>>
>>
>> Incoming packet
>>
>> ipip packet amprnet to amprnet using the relevant gateways
>>
>> 00:58:21.885056 IP sharon.esrac.ele.tue.nl > 69.196.157.57: IP 
>> pi1ehv.ampr.org > port.ve3mch.ampr.org: ICMP echo reply, id 161, seq 
>> 0, length 12 (ipip-proto-4)
>>
>>
>> Outgoing packet
>>
>> ipip packet amprnet to amprnet using the relevant gateways.
>>
>>
>>
>> 00:58:21.738032 IP 69.196.157.57 > sharon.esrac.ele.tue.nl: IP 
>> port.ve3mch.ampr.org > pi1ehv.ampr.org: ICMP echo request, id 161, 
>> seq 0, length 12 (ipip-proto-4)
>>
>>
>>
>> 73,
>>
>> Bob VE3TOK
>>
>> On 10-11-23 11:48 AM, N0MR wrote:
>>> Thanks to all for the words on ip-ip. There seems to be some 
>>> confusion on what works and what should work. Can someone put out a 
>>> test procedure that we can use to verify the ip-ip function. It 
>>> would be nice if there was a test for both outgoing and incoming 
>>> packets. Documentation with a screen dump would be nice.
>>>
>>> Jerry, N0MR
>>>
>>>
>>> _______________________________________________
>>> nos-bbs mailing list
>>> nos-bbs at tapr.org
>>> https://www.tapr.org/cgi-bin/mailman/listinfo/nos-bbs
>>
>>
>> _______________________________________________
>> nos-bbs mailing list
>> nos-bbs at tapr.org
>> https://www.tapr.org/cgi-bin/mailman/listinfo/nos-bbs
>>
>>
>
>
>
> _______________________________________________
> nos-bbs mailing list
> nos-bbs at tapr.org
> https://www.tapr.org/cgi-bin/mailman/listinfo/nos-bbs





More information about the nos-bbs mailing list