Hello Aron,
I simply connected two machines, on which one has that code running and applied
the iptable rule for the prerouting chain
sudo
iptables –t mangle –A PREROUTING -p tcp -j NFQUEUE --queue-num
0
and from the another machine replayed the traffic with tcpreplay,
i have included the entire tcp handshake too in the pcap file too. But still
the problem persists the same.
________________________________
From: Aaron Turner <synfina...@gmail.com>
To: Main forum for tcpreplay <tcpreplay-users@lists.sourceforge.net>
Sent: Sunday, February 5, 2012 4:44 AM
Subject: Re: [Tcpreplay-users] Hello there
On Sat, Feb 4, 2012 at 4:48 PM, Prosiac Akin <cramped_ga...@yahoo.com> wrote:
> Hello Everyone,
>
> Does replying the pcap files through tcpreplay initiates the connection
> tracking based on 5-tuples of the packet????
I'm not really sure I can answer that question without more
information... what exactly would be tracking state or looking at the
5-tuple?
> I tried to check whether the pcap files when being replayed was getting into
> the queue or not with the code attached in the mail.
If you're running netfilter on your tcpreplay box you'll be horribly
disappointed. You need to run tcpreplay on a different system as the
one running netfilter.
> But, on the real scenario, when there is active internet and when we run
> that code, it is clearly
seen that the packets are getting
into the queue.
> However, while replaying it, no such active queue is seen.
Two likely possibilities:
1. You didn't capture the entire TCP 3-way handshake and netfilter is
ignoring the incomplete session
2. You're running tcpreplay on the same box as netfilter.
> In both the above cases, the packets are seen in the wireshark.
>
> A small help is also highly appreciated.
More information about your network setup and your pcap file would be
necessary for me to provide any useful answers or advice.
--
Aaron Turner
http://synfin.net/%C2%A0 - Pcap editing and replay tools for Unix & Windows
Those who would give up essential Liberty, to purchase a little temporary
Safety, deserve neither Liberty nor Safety.
-- Benjamin
Franklin
"carpe diem quam minimum credula postero"
------------------------------------------------------------------------------
Try before you buy = See our experts in action!
The most comprehensive online learning library for Microsoft developers
is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3,
Metro Style Apps, more. Free future releases when you subscribe now!
http://p.sf.net/sfu/learndevnow-dev2
_______________________________________________
Tcpreplay-users mailing list
Tcpreplay-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/tcpreplay-users
Support Information:
http://tcpreplay.synfin.net/trac/wiki/Support
------------------------------------------------------------------------------
Virtualization & Cloud Management Using Capacity Planning
Cloud computing makes use of virtualization - but cloud computing
also focuses on allowing computing to be delivered as a service.
http://www.accelacomm.com/jaw/sfnl/114/51521223/
_______________________________________________
Tcpreplay-users mailing list
Tcpreplay-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/tcpreplay-users
Support Information: http://tcpreplay.synfin.net/trac/wiki/Support
