[Sis-SCPS-INTEREST] something wrong

Feighery, Patrick D. feighery at mitre.org
Wed Aug 16 15:00:58 EDT 2006 

 
If the TCP PROXY process is not running, can you ping/ssh end to end?

Best Regards

	Pat

>>-----Original Message-----
>>From: sis-scps-interest-bounces at mailman.ccsds.org 
>>[mailto:sis-scps-interest-bounces at mailman.ccsds.org] On 
>>Behalf Of Roublev Sergey
>>Sent: Wednesday, August 16, 2006 7:58 AM
>>To: sis-scps-interest at mailman.ccsds.org
>>Subject: [Sis-SCPS-INTEREST] something wrong
>>
>>Hi, all
>>
>>I'm trying to test SCPS gateyay in such way:
>>
>>(A) - (B) - (C) - (D)
>>
>>B, C - gateways, connected via ethernet
>>A, B - single computers
>>
>>A:  eth0 172.19.1.185
>>    default gateway 172.19.8.1
>>
>>B:  eth0 172.19.8.1
>>    eth1 172.20.8.1
>>
>>C:  eth0 172.16.0.1
>>    eth1 172.20.1.191
>>
>>D:  eth0 172.16.0.2
>>    default gateway 172.16.0.1
>>
>>on (A) I type:  ssh 172.16.0.2
>>
>>on (B) By tcpdump I capture packets on eth0, but on eth1 I saw
nothing
>>
>>my rfile on both gateways :
>>
>>AIF_NAME        eth0
>>AIF_RATE        10000000
>>AIF_BUF         32768
>>AIF_CC          1
>>AIF_TCPONLY     1
>>AIF_MTU         1500
>>AIF_TUN_NAME    tun0
>>
>>
>># interface B info
>>BIF_NAME        eth1
>>BIF_BUF         1000000
>>BIF_RATE        1000000
>>BIF_CC          0
>>BIF_MINRTO      600000
>>BIF_TUN_NAME    tun1
>>
>># IPFW info
>>C_DIVPORT       52000
>>C_TUN_NAME      tun2
>>
>>both gateways are seems to start normaly
>>
>># ./gateway
>>
>>READ RSC FILE #0
>>-----------------
>> A-Interface eth0:
>>   Buf size is 32768.
>>   Receive buf size is 0.
>>   Rate is 10000000.
>>   Minimum Rate is 10000000.
>>   Congestion control is 1.
>>   Divert port is 53000.
>>   MTU is 1500.
>>   Sending MTU is 1500.
>>   Minimum RTO is 250000.
>>   Maximum RTO is 64000000.
>>   Protocol Layering is 0.
>>   Default network layer is 1.
>>   Timestamps is 1.
>>   SNACKS is 1.
>>   nodelay is is 0.
>>   Only offer TCP is 1.
>> B-Interface eth1:
>>   Buf size is 1000000.
>>   Receive buf size is 0.
>>   Rate is 1000000.
>>   Minimum Rate is 1000000.
>>   Divert port is 53001.
>>   MTU is 1500.
>>   Sending MTU is 1500.
>>   Minimum RTO is 600000.
>>   Maximum RTO is 64000000.
>>   Protocol Layering is 0.
>>   Default network layer is 1.
>>   Timestamps is 1.
>>   SNACKS is 1.
>>   nodelay is is 0.
>>Port C is 52000.
>>   SCPS local UDP port is 7168.
>>   SCPS remote UDP port is 7167.
>>
>>Trying to Open up tun
>> Trying to Open up tun
>> Trying to Open up tun
>> Got eth0 interface address:  172.19.8.1
>>Got eth1 interface address:  172.20.8.1
>>RTNETLINK answers: No such process
>>RTNETLINK answers: No such process
>>RTNETLINK answers: No such process
>>Nothing to flush.
>>Nothing to flush.
>>Nothing to flush.
>>sh: XШЪШЪ©: command not found
>>iptables:: iptables -A PREROUTING -t mangle -s 172.19.8.1 -j ACCEPT
>>iptables:: iptables -A PREROUTING -t mangle -d 172.19.8.1 -j ACCEPT
>>iptables:: iptables -A PREROUTING -t mangle -s 172.20.8.1 -j ACCEPT
>>iptables:: iptables -A PREROUTING -t mangle -d 172.20.8.1 -j ACCEPT
>>iptables:: iptables -A PREROUTING -t mangle --protocol tcp 
>>--syn -i eth0 -j MARK --set-mark 1
>>iptables:: iptables -A PREROUTING -t mangle --protocol tcp 
>>--syn -i eth0 -j ACCEPT
>>iptables:: iptables -A PREROUTING -t mangle --protocol tcp 
>>--syn -i eth1 -j MARK --set-mark 2
>>iptables:: iptables -A PREROUTING -t mangle --protocol tcp 
>>--syn -i eth1 -j ACCEPT
>>iptables:: iptables -A PREROUTING -t mangle --protocol tcp  
>>-i eth0 -j MARK --set-mark 3
>>iptables:: iptables -A PREROUTING -t mangle --protocol tcp  
>>-i eth0 -j ACCEPT
>>iptables:: iptables -A PREROUTING -t mangle --protocol tcp  
>>-i eth1 -j MARK --set-mark 3
>>iptables:: iptables -A PREROUTING -t mangle --protocol tcp  
>>-i eth1 -j ACCEPT
>>iptables:: iptables -A PREROUTING -t mangle --protocol 105  
>>-i eth0 -j MARK --set-mark 3
>>iptables:: iptables -A PREROUTING -t mangle --protocol 105  
>>-i eth0 -j ACCEPT
>>iptables:: iptables -A PREROUTING -t mangle --protocol 105  
>>-i eth1 -j MARK --set-mark 3
>>iptables:: iptables -A PREROUTING -t mangle --protocol 105  
>>-i eth1 -j ACCEPT
>>iptables:: ip rule add fwmark 1 table 200
>>iptables:: ip rule add fwmark 2 table 201
>>iptables:: ip rule add fwmark 3 table 202
>>iptables:: ip addr add 10.99.99.1 peer 10.99.99.2 dev tun0
>>iptables:: ip addr add 10.99.98.1 peer 10.99.98.2 dev tun1
>>iptables:: ip addr add 10.99.97.1 peer 10.99.97.2 dev tun2
>>iptables:: ip link set dev tun0 up
>>iptables:: ip link set dev tun1 up
>>iptables:: ip link set dev tun2 up
>>iptables:: ip route add default dev tun0 table 200
>>iptables:: ip route add default dev tun1 table 201
>>iptables:: ip route add default dev tun2 table 202
>>
>>I can't understand where is the problem and do my gateways work
>>properly
>>
>>I'm using CRUX linux on 2.6.15.6 kernel
>>
>>
>>
>>Best regards
>> Roublev Sergey
mailto:roublev at mediasputnik.ru
>>
>>
>>_______________________________________________
>>Sis-SCPS-INTEREST mailing list
>>Sis-SCPS-INTEREST at mailman.ccsds.org
>>http://mailman.ccsds.org/cgi-bin/mailman/listinfo/sis-scps-interest
>>

More information about the Sis-SCPS-INTEREST mailing list