vpn
Wiktor Wodecki
wodecki@wapme-systems.de
Tue, 10 Jul 2001 09:48:07 +0200
Hello,
Razvan Radu wrote:
> Is the traffic on the vpn interface reflected on the INPUT chain
> on the linux boxes ? (traffic forwarded between the 2 nets)
> In other words, in the kernel the tunnel code is before or after
> netfilter code. From what interface a packet reaches the netfilter
> code? (from the external one, from the tunnel one, from both?)
This depends whether the vpn traffic is for the machine or a network
behind the machine. As a rule of thumb, all traffic not directed to
localhost goes via FORWARD, traffic for a local ip via INPUT.
--
Regards,
Wiktor Wodecki, Unix Administration | Wapme-Systems AG
Tel.: +49-211-748450 | Muensterstrasse 248
Fax: +49-211-74845176 | 40470 Duesseldorf
E-Mail: wodecki@wapme-systems.de | http://www.wapme-systems.de
1024/E22253B9 084C 7950 4D65 0E92 46D1 48AF F3F7 3201 E222 53B9