qos inside ipsec tunnel

Linux Advanced Routing and Traffic Control

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hello everybody.
I would like to do some kind of shaping inside an
ipsec tunnel implemented by Openswan and linux
2.6.18.x with xfrm (no KLIPS): for example, to
limit outbound smtp traffic inside the tunnel.
Question: where should I attach the qdisc to? Eth0?
I'm asking this, because tcpdump only see the ESP
packet on the eth0 and not the 'clear' packet.

TIA

This is my simple network schema:

        ____ private lan A
       /
       |
       |eth1
   +---+----+
   |        |
   | 2.6.18 |
   |openswan| Ipsec gateway
   |        |
   +---+----+
       |eth0
       |
      I|
      P|i
      S|n
      E|t
      C|e
       |r
      T|n
      U|e
      N|t
      N|
      E|
      L|eth0
   +---+----+
   |        |
   | 2.6.18 |
   |openswan| Ipsec gateway
   |        |
   +---+----+
       |eth1
       |
       \____ private lan B



_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
[Index of Archives]     [LARTC Home Page]     [Netfilter]     [Netfilter Development]     [Network Development]     [Bugtraq]     [GCC Help]     [Yosemite News]     [Linux Kernel]     [Fedora Users]
  Powered by Linux