[strongSwan] Test framework not showing iptables rules in tables other than 'filter'
Andreas Steffen
andreas.steffen at strongswan.org
Wed Jun 15 09:53:28 CEST 2011
Hello Daniel,
I would rather opt for a new IPTABLES field in the test.conf file
of each UML scenario which would define which tables are output.
Thus -t mangle or -t nat would be added in those scenarios which
depend on such additional rules and also IPv6 and mixed IPv4/IPv6
scenarios that require ip6tables could be more elegantly handled.
Regards
Andreas
On 06/15/2011 06:57 AM, Daniel Mentz wrote:
> I'm looking at the config example at
>
> http://www.strongswan.org/uml/testresults45/ikev2/nat-two-rw-mark/index.html
>
> and I'm wondering where I can find a complete list of all iptables rules
> that are in effect.
>
> "iptables -L" only displays the rules in the filter table. The rules
> from the nat and mangle tables are missing.
>
> Wouldn't it make more sense to use "iptables-save" to dump the complete
> picture. AFAICT, it outputs the nat and mangle table as well as the
> filter table.
>
> Thanks
> -Daniel
======================================================================
Andreas Steffen andreas.steffen at strongswan.org
strongSwan - the Linux VPN Solution! www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
===========================================================[ITA-HSR]==
More information about the Users
mailing list