Allgemein
Schaubild
Tests
- root@fw1
- ~# ping -c 3 -I 10.82.243.1 10.82.244.1
PING 10.82.244.1 (10.82.244.1) from 10.82.243.1 : 56(84) bytes of data.
64 bytes from 10.82.244.1: icmp_seq=1 ttl=64 time=0.923 ms
64 bytes from 10.82.244.1: icmp_seq=2 ttl=64 time=0.978 ms
64 bytes from 10.82.244.1: icmp_seq=3 ttl=64 time=0.767 ms
--- 10.82.244.1 ping statistics ---
- root@fw2
- ~# tcpdump -ni eth0 esp
tcpdump: verbose output suppressed, use -v[v]... for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), snapshot length 262144 bytes
08:55:33.436945 IP 10.82.227.12 > 10.82.227.22: ESP(spi=0xc4de821a,seq=0x10), length 136
08:55:33.437107 IP 10.82.227.22 > 10.82.227.12: ESP(spi=0xcef198fc,seq=0x10), length 136
08:55:34.438319 IP 10.82.227.12 > 10.82.227.22: ESP(spi=0xc4de821a,seq=0x11), length 136
08:55:34.438501 IP 10.82.227.22 > 10.82.227.12: ESP(spi=0xcef198fc,seq=0x11), length 136
08:55:35.439782 IP 10.82.227.12 > 10.82.227.22: ESP(spi=0xc4de821a,seq=0x12), length 136
08:55:35.439970 IP 10.82.227.22 > 10.82.227.12: ESP(spi=0xcef198fc,seq=0x12), length 136
Beispiele
![Bearbeiten](javascript:editDrawio("1762440298", "strongswan-workshop-1.drawio.png", "png", false, false, false, true, "https://embed.diagrams.net")){kind=link}