On Mon, Jul 09, 2001 at 04:30:37PM +0200, Franck BALAZOT wrote: > Hi all, > > I want to make bandwidth management with CBQ (iproute2) > There is no problem to manage service like FTP, HTTP,... > We have an IPSEC VPN here, and I don't know how to reconignize IPSEC > packets to manage the VPN bandwith. > Is there a special port or something in the IP packet header that tells > "here is an IPSEC packet" ? > Yep, ipsec normally uses IP Protocol 50 or 51 depending on other factors... These numbers aren't ports, but protocols on the same level of tcp and udp. ipchains -A input -m 1 -p 50 (or some such...) Mike
