Discussion:
[strongSwan] How is to view "initial" packets within ikev2 packets by tcpdump ?
CpServiceSPb .
2015-02-02 14:47:48 UTC
Permalink
I have Ubuntu 14.04 lts (no "x" ) with strongswan installed and set up with
ikev2 connections also.
I need to see what are in outgoing and incoming within ikev2 packets by
tcpdump locally at the server.
That is I need "initial" packet, for example, I ping road-warrior, so I
need see these icmp packets.
How is it possible ?
Noel Kuntze
2015-02-03 20:02:18 UTC
Permalink
Hello,

You can leverage the nflog iptables module and tcpdump/dumpcap to
dump traffic in *mangle PREROUTING, *mangle POSTROUTING and *mangle OUTPUT.

Read the manpage of dumpcap/tcpdump/wireshark/whatever you want to use to
see how to capture from an nflog interface.

Mit freundlichen Grüßen/Regards,
Noel Kuntze

GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
I have Ubuntu 14.04 lts (no "x" ) with strongswan installed and set up with ikev2 connections also.
I need to see what are in outgoing and incoming within ikev2 packets by tcpdump locally at the server.
That is I need "initial" packet, for example, I ping road-warrior, so I need see these icmp packets.
How is it possible ?
_______________________________________________
Users mailing list
https://lists.strongswan.org/mailman/listinfo/users
Loading...