LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 04-16-2014, 04:02 AM   #1
KatrinAlec
Member
 
Registered: Feb 2012
Posts: 125

Rep: Reputation: 14
iptables wth tee


Hi,

I'm trying to use iptables with the parameter tee.
My host ist called 192.168.0.206/24 and I want to duplicate packets to 192.168.0.100.

I've used tee in iptables in the mangle chain.
Code:
Chain PREROUTING (policy ACCEPT 3 packets, 178 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 TEE        icmp --  *      *       192.168.0.210        0.0.0.0/0            TEE gw:192.168.0.100
    3   178 TEE        all  --  *      *       0.0.0.0/0            0.0.0.0/0            TEE gw:192.168.0.100

Chain INPUT (policy ACCEPT 1 packets, 78 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    1    78 TEE        all  --  *      *       0.0.0.0/0            0.0.0.0/0            TEE gw:192.168.0.100

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         

Chain OUTPUT (policy ACCEPT 4 packets, 256 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    4   256 TEE        all  --  *      *       0.0.0.0/0            0.0.0.0/0            TEE gw:192.168.0.100

Chain POSTROUTING (policy ACCEPT 4 packets, 256 bytes)
 pkts bytes target     prot opt in     out     source               destination
The 192.168.0.206/24 network is on eth3
But if I do
tcpdump -i eth3 host 192.168.0.100
I can't see anything going there.

Can anybody tell me my mistake?
 
Old 04-26-2014, 06:19 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
Both hosts seem to be within the same subnet (good) and packets seem to hit the PREROUTING chain. What happens if you drop the BPF filter?
 
Old 04-30-2014, 06:05 PM   #3
Lantzvillian
Member
 
Registered: Oct 2007
Location: BC, Canada
Distribution: Fedora, Debian
Posts: 210

Rep: Reputation: 41
Why are your trying to duplicate the packets? For monitoring or logging?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Problem wth '~' key gwydionus Debian 6 12-10-2013 02:03 AM
[SOLVED] iptables + TEE doesn't work correctly stosba Linux - Networking 6 01-31-2013 12:40 PM
Help me!! URGENT! WTH? Les Windoze LinuxQuestions.org Member Intro 2 08-10-2010 12:59 PM
Cant open any ports in iptables, WTH going crazy zonemikel Linux - Networking 9 05-18-2009 01:22 AM
Errr, WTH is going on with this???? fatgod Linux - General 5 09-10-2003 06:30 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 12:34 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration