> "Narayanan" == Narayanan S RAMABHADRAN <[EMAIL PROTECTED]> writes:
Narayanan> Is there an option to tcpdump or windump to handle the IPSEC
Narayanan> authentication header (AH) appropriately? There is no
Narayanan> encryption, so the issue issimply whether this is an
Narayana
Hi
Is there an option to tcpdump or windump to handle the IPSEC
authentication header (AH) appropriately? There is no encryption, so the
issue issimply whether this is an option to skip the AH header and parse the
higher layer headers (e.g., TCP) as usual.
Any help is appreciated.
Thanks,
Sriram
You can use tcpdump -E to decrypt ESP headers. (The tcpdump man page is
also kind of cryptic at this point though. Contact me if you have
trouble.) For *-cbc (3des-cbc for example) encryption algorithms you
will need the patch I just sent to this list. See "tcpdump -E doesn't
work for 3des-cbc/
Hi
Is there a version of tcpdump that can parse IPsec headers ?
Thanks,
Sriram
Narayanan Sriram Ramabhadran
Graduate student
Dept. of Computer Science & Engg.
University of California San Diego
-
This is the tcpdump-workers list.
Visit https://lists.sandelman.ca/ to unsubsc
Hi,
I have quick question: Does TCPDUMP support
decrypting IPsec ESP (3des-cbc/hmac-md5) of IPv6 ? ... I have done some tests
but unfortunately no luck so far ...
Thanks in advance for your help,
Daniel Tyrode
