Networking :: How To Monitor The Traffic Of Tun0
Dec 18, 2010How will I monitor the traffic of tun0 ?
View 5 Replies
ADVERTISEMENT
Networking :: Route Internet Traffic Over Tun0?
Mar 28, 2010I have eth0 and tun0. tun0 is a VPN tunnel going over eth0. Everything on the other end is setup and working fine, when I type Code: traceroute 4.2.2.1 I see my the ping is going over 192.168.2.99 (eth0). When I then type Code: route add -net 4.2.2.1 netmask 255.255.255.255 dev tun0 traceroute 4.2.2.1 I see ping is going over 10.8.0.1 (tun0) instead of eth0, so that is working
What does not work however is when I do Code: route add -net 0.0.0.0 netmask 0.0.0.0 dev tun0 traceroute 4.2.2.1 I get no ping! I believe the problem is because all traffic is routing over tun0, which means even the VPN tun0 needs to go through eth0, it can no longer do this. Is there a way around this where I can route everything except for 114.77.31.26 (which is my VPN gateway for tun0)?
CentOS 5 :: Send Specific SIP Traffic Only Through Tun0-00?
Sep 20, 2010I got to establish an OpenVPN connection between two server and I have dhcpd on the client server which feeds a few SIP phones. All these phones are supposed to the register server through the tunnel.Here is the network structure:
Client CentOS:
eth0: 192.168.0.0/24
eth1:192.168.100.0/24
tun0:172.15.0.0/24
DHCPD: feeding above eth1 and all the phones with 192.168.100.0/24
If I ping 172.15.0.1 from the the Client CentOS it works all fine. Everything pings and I can even do SSH. However, the phones which obtain their ip through eth1 on the same server can not reach the 172.15.0.1. I think it's a route issue here. Can you please guide me to the right direction as to how to forward certain traffic through tun0 and leave the rest of the traffic to go through eth0?
I don't want to turn on IPTABLES as this is time consuming for me now and there is VPN setup. It has to do with setting up the routing but I am not sure.
CentOS 5 :: Tunnel DHCPd Traffic Through Tun0?
Sep 21, 2010Here is what I need to accomplish but somehow not getting where I need:
Server A:
-OpenVPN Server
-NIC1 = Internet (vnet - public IP address)
-Tun0 - 172.16.0.1
Server B:
-OpenVPN Client - Connects to Server A as a Client.
[Code]...
Ubuntu :: Internet Traffic Flow Monitor - Track Traffic Of Each Device
Apr 27, 2010We have something on our network that is reaking havoc with our content filter. I am trying to track it down, but so far I have been unsuccessful. We have approximately 500 devices in 100+ different locations spread across 9 states. Looking at each computer is not really feasible.
I need a machine that can sit in between our network and our internet connection and graphically monitor in real time and logs how much traffic each device is sending and receiving. It would need to sit inline so it has to have two nics and be able to pass traffic. The machine also needs to be transparent. Reconfiguration of our routers or workstations is not an option.
I have used ethereal and wireshark before. Ethereal may be a viable option, but wireshark seems to provide lots of information, but no practical way to make use of it. how to set up the box to be a transparent device on the network that will allow internet bound traffic to flow (freely)?
Networking :: Monitor A Router Traffic?
Jan 8, 2010is it possible to see the router traffic using a remote system? can those packet headers b modified for marking purpose?
View 5 Replies View RelatedFedora Networking :: Internet Traffic Monitor ?
Mar 9, 2009Is there a nice easy to use tool that displays (in KB/s) the internet traffic from every IP on a network?
Currently I'm using iptraf, but it's very hard to understand at times.
A little info on my network:
I'm using SNAT for internet sharing.
Ubuntu Networking :: Monitor Network Traffic ?
Jan 20, 2011Is there an easy way to monitor network traffic? I want to make sure my kids are surfing safe...
View 5 Replies View RelatedFedora Networking :: Monitor Broadband Internet Traffic Only ?
Aug 23, 2009I have a 2 machine LAN with both machines having an ethernet card and a wireless card. There is a Netgear router, both eth and WiFi, allowing both machines to access the internet.
On my Linux machine I am looking for some software that allows me to keep track of my broadband usage on that machine, excluding traffic between the two machines.
There are numerous such programmes for this in XP, which use Winpcap and a GUI frontend. The "other" machine on my LAN is XP and uses just such a program.
Ubuntu Networking :: Monitor Network Traffic (for All Computers)?
Sep 27, 2010what I want to achieve is just to be able to say to who ever is killing our relatively fast connect that they aren't the only person using the network. Everyone just says "I hardly download anything." which is obviously untruthful as normally I can download at 1.5 MB/s but now loading even google.com takes way too long (same with pinging and all other sites). Once I do this, I can determine whether or not I need to call my ISP and do the long 'on hold' dance and "have you tried rebooting the router" BS.
View 8 Replies View RelatedNetworking :: Monitor Current Network Traffic To A Give Host?
Oct 29, 2009is there a utility with which I can get the current traffice towards a given host, for example;
command 87.255.33.32
22000
Ubuntu Networking :: System Monitor Doesn't Show Internet Traffic?
Mar 8, 2011Ubuntu system monitor applet doesn't show internet traffic although my wireless is working just fine. I use a conky to monitor bandwidth through vnstat and had no problem till I upgraded to maverick.
**ifconfig
wlan0 Link encap:Ethernet HWaddr 00:24:d2:c4:3e:da
inet adr:192.168.0.100 Bcast:192.168.0.255 Masque:255.255.255.0
adr inet6: fe80::224:d2ff:fec4:3eda/64 Scope:Lien
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
[Code]...
Ubuntu Networking :: Unable To Separately Monitor The Download Traffic From Inside And Outside The Network
Sep 14, 2010I am connected to a network with free traffic inside it and post-paid outer traffic. So I need a way to be able to separately monitor the download traffic from inside and outside the network. All the solutions I`ve found for now offer monitoring of ALL up/down traffic.
So, I want to get separate statistics on these:
1 — 81.89.188.0/23, 217.197.9.0/24
2. — 81.89.186.0/23
3. — 81.89.178.0/23
4. — 81.89.176.0/23
5. — 81.89.180.0/24
9. — 217.197.12.0/24
[Code]...
UPD: I`m connected to the internet through the network`s gate, so all the traffic comes through eth0. I wish to separate traffic incoming from the IPs on top from all other traffic
Networking :: Why Tun0 On Client Is Not Getting An Ip Address
Apr 17, 2010why tun0 on my client is not getting an ip address?
client config:
Code:
client
dev tun
proto udp
remote 66.219.29.99 1194
resolv-retry infinite
[code]....
Ubuntu Networking :: How To Remove An Interface (tun0)
Sep 20, 2010i am using openvpn on my laptop. I had to give the laptop for repair so i swapped the hdd in another laptop.
Now i have a tun0 relict in my system, so openvpn creates a tun1 interface and messes up all the routes.
So i am wondering how can i delete the tun0 interface from my ubuntu?
Ubuntu Networking :: Traffic Monitor - How Much Data Downloaded/uploaded On An Interface This Month And Previous Month
Nov 20, 2010I'm looking for a powerful network traffic monitor that can do all of the following (or at least a combination of tools that can do the following):
Tell me how much data was downloaded/uploaded on an interface this month and the previous month tell me how the traffic was used throughout the monthshow which internal IPs (IPs in the 192.168.1.0/24 network) used how much traffic show which ports/protocols on those IPs used all that traffic
Hhow LIVE traffic flow statistics that can tell me total speed of traffic going through an interface as well asshow which internal IPs (IPs in the 192.168.1.0/24 network) are using how much of the traffic show which ports/protocols on those IPs are using that traffic
This tool will run on a linux router through which all my internal PCs are connected to the Internet. This means the tool(s) need to work with NAT (traffic being forwarded and not necessarily destined for the interfaced being monitored).
The distribution being run doesn't have a package manager so any packages or dependencies have to be manually compiled and SCPed over file by file. For this reason, the tool/tools need to be simple (things like vnstat, not things like ntop that have their own web interface).
I know that vnstat can tell me the first bullet point so it's only there incase there's a tool out there that can do everything. If there's a tool that can only do the second or third bullet point, that's great too - I'll just keep using vnstat and look for something else to do the other task.
Networking :: TUN - TAP Driver With IPv6 - Tun0 Does Not Deliver Info To User Space
Oct 26, 2010I use an application that encapsulates IPv4 packets in an IPv4 tunnel using the TUN/TAP driver in Linux. There is a fancy protocol used between the 2 layers. This software works like a charm.
I have started modifying the source code in order to send IPv6 packets in an IPv4 tunnel. So far, the software seems to work fine but the information (packets) does not seem to make their way back to the user space.
I initiate an ICMPv6 packet with ping6. It gets in the tun0 interface. The software makes the IPv4 encapsulation and sends the information out of the system. The ICMPv6 echo reply comes back to the system with the corresponding encapsulation. The software removes the encapsulation and writes the packet in the tun0 interface. The ping6 application never receives ICMPv6 echo reply.
I have confirmed the integrity of the transaction using tcpdump on the tun0 interface. The interface comes up with the "inet 6 addr" only. The interface has the flags "UP POINTOPOINT RUNNING". The RX/TX counters are incrementing and no drops are observed at the interface level.
How can I troubleshoot this problem? There seems to be a lost link between the tun0 driver and the user space applications. The system uses SuSE Linux Enterprise 10 SP1. This is based on kernel 2.6.16. This is quite old.
CentOS 5 Networking :: Configure Firewall - Allow And Forward All Traffic On Eth0 And Block All Traffic On Eth1 Except Ssh Ping
Sep 29, 2010I need to set up my centOS computer as a firewall in my home network. Ive got 2 interfaces, eth0 and eth1. I want to allow and forward all traffic on eth0 and block all traffic on eth1 except ssh, ping(icmp) and DNS. How do I do this? Ive tried some editing in /etc/sysconfig/iptables but no luck.
View 1 Replies View RelatedNetworking :: Set A Route For Eth1 - DHCP Clients - To Reach Tun0 - Openvpn Server - CentOS
Sep 21, 2010I have openvpn tunnel setup between two CentOS servers. One of the CentOS servers also acts as a DHCP server for some client computers.
Server A= OpenVPN server
Server B= OpenVPN client (connects to Server A with OpenVPN)
The two CentOS servers can ping each other (172.16.0.0/24) via the tun0.
However, client computer connected to Server B (DHCP server) can't reach 172.16.0.1 (which is the OpenVPN server).
I think I am missing some routing in my "ip route show". Following is the full picture:
What command can I issue to get this fixed? something along ip route add?
There is no firewall service on both end. service iptables stop! I can't bridge eth1 and tun0 as DHCP server might mess up the other side. I can't do a push of "redirect-gateway def1" because then clients loose their IP as they send DHCP requests to Server A.
Networking :: Server To Block All Traffic But US Only Traffic?
Mar 15, 2011I wanted to tell my server to block all traffic but US only traffic. So i followed this guide:[URL].. Now I know, it's the best way to help prevent hackers/crackers (doesn't matter to me what they are called. I just have to stop them). My server only deals with US clients anyways so might as well just start right there for my server's security before getting into the brute force and injection preventions. So I got it all done compiled everything moved to the proper directory. I then started to setup my iptables. Like so
Code: iptables -F INPUT
iptables -F OUTPUT
iptables -I INPUT 1 -s *.*.*.* -p tcp --dport 22 -j ACCEPT
iptables -I INPUT 2 -s *.*.*.* -p tcp -j ACCEPT
[Code]...
After seeing that i went digging in the code and figured it was something todo with memory allocation.
Ubuntu Servers :: How To Monitor LAN Web Traffic
May 24, 2010I have a number of computers on a LAN. There are 3 laptops and 1 desktop, all running windows. I also have a Ubuntu server in the garage which servers up files to all those on the LAN. The server is not visible outside of the LAN for security reasons. Now, I want to track all traffic from any computer in my house that is coming and going in and out from the inter-tubes. I do not want to add this as a service to my current server as (a) it is behind the LAN and (b) I don't want to mess with security issues with that server.
I think I could set up a computer (an extra) which is between the modem and the router with two ethernet cards which would be able to monitor all traffic coming and going. This computer would, obviously, be exposed to all potential attacks as it wouldn't be behind the router's firewall. I'm not sure exactly how that would like or what software to use.
Server :: PPTP Traffic - Gre Traffic Is Being Generated During The Browsing / Reduce Traffic
Sep 27, 2009Recently I notice that when I'm connected to an vpn server (pptpd) and I'm using it as a default gateway my download and upload speed decreases almost to the half of the usual speed. I made a test using iptables in order to count how much GRE packets are generated (except the real traffic itself) in that way:
Code:
iptables -I INPUT -p gre -j ACCEPT
iptables -I OUTPUT -p gre -j ACCEPT
iptables -I FORWARD -s 172.16.10.101 -j ACCEPT
iptables -I FORWARD -d 172.16.10.101 -j ACCEPT
The first 2 rules match all GRE packets between the pptpd server and client, and the next rules - the traffic between the server and the client.
When I turn the counters to zero and begin to generate traffic (to browse, to download etc.) I see that the GRE packets are even more than these in the FORWARD chain.
So, my question is first of all is my test correct and is it true that so much gre traffic is being generated during the browsing (it becames clear that the traffic is double than if the pptpd wasn't used as a gateway) and if yes - can that traffic be reduced?
General :: Monitor Interprocess Pipe Traffic?
Dec 14, 2010I have two Linux processes communicating via a nameless pipe. How can monitor the traffic in the pipe? How can I inject data into the pipe? I have root access and know the pipe inode.
View 2 Replies View RelatedGeneral :: Monitor Network Traffic Of Each Application?
Jan 22, 2010I am on a slow Internet connection and it really makes me mad if something gets downloaded in background (like automatic update of any software) without my knowledge.
How can I monitor my network traffic sorted according to the "which binary file is using how much"? I can find the total transfer rate in "System Monitor" in Gnome, but what if I want to find for individual process. There are softwares like netmonitor in Windows, but how can I achieve that in UBUNTU LINUX.
GUI application will be nice, command line software will also be fine..
Ubuntu :: Open Source Web Traffic Monitor?
Jan 20, 2010Does anyone knows of any open source proxy/web traffic monitoring application so I can run reports on users web browsing for Linux? Something equivalent to websense? but free I'm not really concern about blocking any traffic only running reports.
View 2 Replies View RelatedUbuntu Servers :: Machine To Monitor Traffic?
Feb 3, 2010What is the setup required in order for a 2 NIC machine to only forward traffic ?
I am planning to set up a machine between the LAN and Router like this:
LAN <--> machine <--> router <--> internet
This machine will only forward traffic. I will use it with ntop, squid, maybe snort
or maybe Untangle if I find it satisfactory.
Is my scenario fiable ?
I want to forward traffic, use ntop and squid on it.
General :: Graphic Tool To Monitor Traffic Over A USB Port?
Apr 19, 2011Is there a graphic tool that can monitor the traffic over a USB port?
ie like system monitor for network traffic but over a specific port?
Software :: Visual Real-time Traffic Monitor
Dec 26, 2008Does anyone maybe know of a client app for Windows/Linux that polls the Linux (Ubuntu) Gateway and checks (in almost real-time) what the bandwidth usage is? Something like KInternet (which is SuSE only as far as I know) where you can see a graph showing how much kbps is sent and received per second.
View 11 Replies View RelatedGeneral :: Finding A Traffic Monitor That Only Counts In A Specific Wireless Network
Jul 28, 2011I need a simple traffic monitor for Linux, that counts the traffic in a specific wireless network because I have volume restrictions on that one.I tried it using the following iptables rule:
[code]...
iptables -m mac -A INPUT -p all --mac-source <mac-address> ! -s 10.0.0.0/8
where <mac-address> is the router's one. 10.0.0.0/8 is the local subnet. What I actually want is something like --routed-through <mac-address>. Also, is there some way to gather iptables's statistics? Or is there maybe another tool that does what I want (reliable)?
Networking :: Route Eth2 TCP Packets To Tun0 With IPTABLES And IP RULE/ROUTE?
May 8, 2011I have 3 network interfaces on my Linux Router :
Interface - Gateway - Type
Code:
br0 - 192.168.0.1 - Internet
eth2 - 192.168.1.1 - LAN
tun0 - 10.0.0.2 - VPN (via br0)
What I'd like to do is to route all TCP packets coming from eth2 to tun0 where a VPN client is running on 10.0.0.2. If I delete all default routes and if I add a new route to tun0 like :
Code:
route del default
route add default gw 10.0.0.2
Everything is fine, and everyone on eth2 can reach the Internet using the VPN access. Now the problem is that my VPN client does not allow any other protocols other than TCP. And I also want to allow VPN access only to eth2, no other LAN nor the router itself. use iptables to filter any TCP packets and mark them, so they can be sent to tun0, while any other packets can reach the Internet via br0 (192.168.0.1). I found on the Internet that we can mark packets before they get routed. Using the following commands :
Code:
iptables -t mangle -A PREROUTING -j MARK --set-mark 85 -i eth2 -p tcp --dport 80
ip route add table 300 default via 10.0.0.2 dev tun0
ip rule add fwmark 0x55 table 300
First of all, --dport 80 never work... :/ I wanted to filter TCP 80 packets coming from eth2, but none of them seems to be HTTP packets... oO (very strange...). Nevermind, I decided to forget about the --dport option. I use the "iptables -L -v -t mangle" command to see how many packets are marked, and it is working fine, all TCP packets coming from eth2 are marked. Now the problem is that none of them are routed to tun0 they are all respecting the "route -n" rules... and not the "table 300" rule I have created.
