User Tools
hardware:shimtunnel
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
hardware:shimtunnel [2019/01/11 11:14] veera [The setup] |
hardware:shimtunnel [2019/01/11 12:46] (current) veera |
||
|---|---|---|---|
| Line 19: | Line 19: | ||
| <note warning> | <note warning> | ||
| **Pre-check** | **Pre-check** | ||
| - | * ensure IP Forwarding is disabled `echo 0 > /proc/sys/net/ipv4/ip_forward` | + | * ensure IP Forwarding is disabled ''echo 0 > /proc/sys/net/ipv4/ip_forward'' |
| - | * local iptables firewall rules allow the UDP port `iptables -A INPUT -p udp -m udp --dport 5111 -j ACCEPT | + | * local iptables firewall rules allow the UDP port ''iptables -A INPUT -p udp -m udp --dport 5111 -j ACCEPT'' |
| </note> | </note> | ||
| ===== Download the Shim software ===== | ===== Download the Shim software ===== | ||
| Line 73: | Line 73: | ||
| - | ===== Optional : Use Source NAT ===== | + | ===== Extra reference : Use Source NAT ===== |
| - | If the above steps still do not work and a different source IP address is seen for the Shim tunnel use iptables to create a SNAT. | + | In the very unlikely scenario the above steps dont work and the desired source IP is not seen on the outgoing packets, use SNAT (Source NAT).This example NATs the source IP for udp packets to 5111 (custom netflow) to be the Shim end point. |
| - | + | ||
| - | This example NATs the source IP for udp packets to 5111 (custom netflow) to be the Shim end point. | + | |
| <code> | <code> | ||
hardware/shimtunnel.1547205277.txt.gz · Last modified: 2019/01/11 11:14 by veera
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
