![]() ![]() The input, which arrives encrypted is looped back as plaintext payload: tcpdump captures both, but its icmp filter will match on the second passage. The output cannot be captured as plaintext by tcpdump: it's already encrypted before tcpdump has a chance to see it and its icmp filter will not match. Tcpdump: verbose output suppressed, use -v or -vv for full protocol decode ![]() The TCPDUMP: # tcpdump -nn 'icmp and (src a.b.0.1 or dst a.b.0.1)' This later shows echo replies packets but it doesn't show echo request packets. I initiate a ping from a.b.0.1 to x.y.130.100 and started a tcpdump. ![]() I have two network segments connected using a IPSEC-VPN tunnel : ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
January 2023
Categories |