PDA

View Full Version : [ubuntu] iptables + ulogd + mirror port = server does not match packets



Salivan
November 21st, 2009, 08:54 PM
I configured mirroring at border router from uplink interface to interface which is connected to server.
I would like to match at server all packets which go through uplink interface.

I tried
"-A PREROUTING -p tcp -m tcp --tcp-flags SYN SYN -j ULOG --ulog-nlgroup 3 "
at raw, mangle and nat.

Server match only packets with dest. MAC address of this server.

What I made wrong?

yapakmoi
January 2nd, 2013, 04:32 PM
That's exactly what I am trying to do. I've been unable to find a solution. If someone can have a solution 3 years later.