[strongSwan] Traffic Pauses to IKEv1 VPN with Juniper ISG 1000
Noel Kuntze
noel at familie-kuntze.de
Sun Dec 13 18:19:06 CET 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
>[...] but when I tried to do the tcpdump, I get this error:
# tcpdump -s 0 -n -i nflog:5tcpdump: NFULNL_CFG_CMD_PF_UNBIND: Operation not permitted
ifconfig doesn't show any nflog interface.
Hello Mahesh,
Looks like Ubuntu 14.04's tcpdump is not compiled with working NFLOG support.
NFLOG does not create any virtual network interface.
It's implemented as a multicast group reachable over netlink socket, which is a kernel interface.
If you can't use nflog to specify the filter, try using bpf syntax with tcpdump.
E.g.: tcpdump -s 0 -n -i eth0 'esp or udp and (port 500 or port 4500)'
- --
Mit freundlichen Grüßen/Kind Regards,
Noel Kuntze
GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=fwTz
-----END PGP SIGNATURE-----
More information about the Users
mailing list