FoObArf00@netscape.net wrote:
Neil,
Thanks for the response. I thought the MIRROR target only reverses the source/destination addresses. I need the packets that are being forwarded to be in both the eth0 and eql interfaces even if the route is only on eth0. So I think I need 2 instances of a packet or at least 2 instances of the headers. Thanks.
Neil Horman <nhorman@redhat.com> wrote:
Mmmm...You may be right about that. The mangle chain in iptables might
be the right thing for you then. Alternatively, you can just write a
userspace app that opens two PF_PACKET sockets, one bound to your source
interface, the other bound to your destination interface, and sit in a
tight loop reading and writing from one socket to the other.
Neil
<snip>
why don't you just use iptables to add a MIRROR target on the INPUT
chain for all packets arriving on the eql interface?
__________________________________________________________________
Switch to Netscape Internet Service.
As low as $9.95 a month -- Sign up today at http://isp.netscape.com/register
Netscape. Just the Net You Need.
New! Netscape Toolbar for Internet Explorer
Search from anywhere on the Web and block those annoying pop-ups.
Download now at http://channels.netscape.com/ns/search/install.jsp
-
: send the line "unsubscribe linux-net" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
--
/***************************************************
*Neil Horman
*Software Engineer
*Red Hat, Inc.
*nhorman@redhat.com
*gpg keyid: 1024D / 0x92A74FA1
*http://pgp.mit.edu
***************************************************/
-
: send the line "unsubscribe linux-net" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
