logo

oasis-root

Compiled tree of Oasis Linux based on own branch at <https://hacktivis.me/git/oasis/> git clone https://anongit.hacktivis.me/git/oasis-root.git

ip-tunnel.8 (5592B)


  1. .TH IP\-TUNNEL 8 "20 Dec 2011" "iproute2" "Linux"
  2. .SH "NAME"
  3. ip-tunnel - tunnel configuration
  4. .SH "SYNOPSIS"
  5. .sp
  6. .ad l
  7. .in +8
  8. .ti -8
  9. .B ip tunnel help
  10. .sp
  11. .ti -8
  12. .BR "ip "
  13. .RI "[ " OPTIONS " ]"
  14. .BR "tunnel" " { " add " | " change " | " del " | " show " | " prl " | " 6rd " }"
  15. .RI "[ " NAME " ]"
  16. .br
  17. .RB "[ " mode
  18. .IR MODE " ] [ "
  19. .B remote
  20. .IR ADDR " ] [ "
  21. .B local
  22. .IR ADDR " ]"
  23. .br
  24. .RB "[ [" i "|" o "]" seq " ] [ [" i "|" o "]" key
  25. .IR KEY " ] [ "
  26. .RB "[" i "|" o "]" csum " ] ]"
  27. .br
  28. .RB "[ " encaplimit
  29. .IR ELIM " ]"
  30. .RB "[ " ttl "|" hoplimit
  31. .IR TTL " ]"
  32. .br
  33. .RB "[ " tos
  34. .IR TOS " ] [ "
  35. .B flowlabel
  36. .IR FLOWLABEL " ]"
  37. .br
  38. .RB "[ " prl-default
  39. .IR ADDR " ] [ "
  40. .B prl-nodefault
  41. .IR ADDR " ] [ "
  42. .B prl-delete
  43. .IR ADDR " ]"
  44. .br
  45. .RB "[ " 6rd-prefix
  46. .IR ADDR " ] ["
  47. .B 6rd-relay_prefix
  48. .IR ADDR " ] [
  49. .BR 6rd-reset " ]"
  50. .br
  51. .RB "[ [" no "]" pmtudisc " ]"
  52. .RB "[ [" no "]" ignore-df " ]"
  53. .RB "[ [" no "]" allow-localremote " ]"
  54. .br
  55. .RB "[ " dev
  56. .IR PHYS_DEV " ]"
  57. .ti -8
  58. .IR MODE " := "
  59. .RB " { " ipip " | " gre " | " sit " | " isatap " | " vti " | " ip6ip6 " | " ipip6 " | " ip6gre " | " vti6 " | " any " }"
  60. .ti -8
  61. .IR ADDR " := { " IP_ADDRESS " |"
  62. .BR any " }"
  63. .ti -8
  64. .IR TOS " := { " STRING " | " 00 ".." ff " |"
  65. .BR inherit " |"
  66. .BI "inherit/" STRING
  67. .RB "|"
  68. .BI "inherit/" 00 ".." ff
  69. .RB "}"
  70. .ti -8
  71. .IR ELIM " := {"
  72. .BR none " | "
  73. .IR 0 ".." 255 " }"
  74. .ti -8
  75. .ti -8
  76. .IR TTL " := { " 1 ".." 255 " | "
  77. .BR inherit " }"
  78. .ti -8
  79. .IR KEY " := { " DOTTED_QUAD " | " NUMBER " }"
  80. .SH DESCRIPTION
  81. .B tunnel
  82. objects are tunnels, encapsulating packets in IP packets and then
  83. sending them over the IP infrastructure.
  84. The encapsulating (or outer) address family is specified by the
  85. .B -f
  86. option. The default is IPv4.
  87. .TP
  88. .B ip tunnel add
  89. add a new tunnel
  90. .TP
  91. .B ip tunnel change
  92. change an existing tunnel
  93. .TP
  94. .B ip tunnel delete
  95. destroy a tunnel
  96. .RS
  97. .TP
  98. .BI name " NAME " (default)
  99. select the tunnel device name.
  100. .TP
  101. .BI mode " MODE"
  102. set the tunnel mode. Available modes depend on the encapsulating address family.
  103. .br
  104. Modes for IPv4 encapsulation available:
  105. .BR ipip ", " sit ", " isatap ", " vti ", and " gre "."
  106. .br
  107. Modes for IPv6 encapsulation available:
  108. .BR ip6ip6 ", " ipip6 ", " ip6gre ", " vti6 ", and " any "."
  109. .TP
  110. .BI remote " ADDRESS"
  111. set the remote endpoint of the tunnel.
  112. .TP
  113. .BI local " ADDRESS"
  114. set the fixed local address for tunneled packets.
  115. It must be an address on another interface of this host.
  116. .TP
  117. .BI ttl " N"
  118. .TP
  119. .BI hoplimit " N"
  120. set a fixed TTL (IPv4) or hoplimit (IPv6)
  121. .I N
  122. on tunneled packets.
  123. .I N
  124. is a number in the range 1--255. 0 is a special value
  125. meaning that packets inherit the TTL value.
  126. The default value for IPv4 tunnels is:
  127. .BR "inherit" .
  128. The default value for IPv6 tunnels is:
  129. .BR "64" .
  130. .TP
  131. .BI tos " T"
  132. .TP
  133. .BI dsfield " T"
  134. .TP
  135. .BI tclass " T"
  136. set the type of service (IPv4) or traffic class (IPv6) field on
  137. tunneled packets, which can be specified as either a two-digit
  138. hex value (e.g. c0) or a predefined string (e.g. internet).
  139. The value
  140. .B inherit
  141. causes the field to be copied from the original IP header. The
  142. values
  143. .BI "inherit/" STRING
  144. or
  145. .BI "inherit/" 00 ".." ff
  146. will set the field to
  147. .I STRING
  148. or
  149. .IR 00 ".." ff
  150. when tunneling non-IP packets. The default value is 00.
  151. .TP
  152. .BI dev " NAME"
  153. bind the tunnel to the device
  154. .I NAME
  155. so that tunneled packets will only be routed via this device and will
  156. not be able to escape to another device when the route to endpoint
  157. changes.
  158. .TP
  159. .B nopmtudisc
  160. disable Path MTU Discovery on this tunnel.
  161. It is enabled by default. Note that a fixed ttl is incompatible
  162. with this option: tunneling with a fixed ttl always makes pmtu
  163. discovery.
  164. .TP
  165. .B ignore-df
  166. enable IPv4 DF suppression on this tunnel.
  167. Normally datagrams that exceed the MTU will be fragmented; the presence
  168. of the DF flag inhibits this, resulting instead in an ICMP Unreachable
  169. (Fragmentation Required) message. Enabling this attribute causes the
  170. DF flag to be ignored.
  171. .TP
  172. .BI key " K"
  173. .TP
  174. .BI ikey " K"
  175. .TP
  176. .BI okey " K"
  177. .RB ( " only GRE tunnels " )
  178. use keyed GRE with key
  179. .IR K ". " K
  180. is either a number or an IP address-like dotted quad.
  181. The
  182. .B key
  183. parameter sets the key to use in both directions.
  184. The
  185. .BR ikey " and " okey
  186. parameters set different keys for input and output.
  187. .TP
  188. .BR csum ", " icsum ", " ocsum
  189. .RB ( " only GRE tunnels " )
  190. generate/require checksums for tunneled packets.
  191. The
  192. .B ocsum
  193. flag calculates checksums for outgoing packets.
  194. The
  195. .B icsum
  196. flag requires that all input packets have the correct
  197. checksum. The
  198. .B csum
  199. flag is equivalent to the combination
  200. .BR "icsum ocsum" .
  201. .TP
  202. .BR seq ", " iseq ", " oseq
  203. .RB ( " only GRE tunnels " )
  204. serialize packets.
  205. The
  206. .B oseq
  207. flag enables sequencing of outgoing packets.
  208. The
  209. .B iseq
  210. flag requires that all input packets are serialized.
  211. The
  212. .B seq
  213. flag is equivalent to the combination
  214. .BR "iseq oseq" .
  215. .B It doesn't work. Don't use it.
  216. .TP
  217. .BI encaplimit " ELIM"
  218. .RB ( " only IPv6 tunnels " )
  219. set a fixed encapsulation limit. Default is 4.
  220. .TP
  221. .BI flowlabel " FLOWLABEL"
  222. .RB ( " only IPv6 tunnels " )
  223. set a fixed flowlabel.
  224. .TP
  225. .BI allow-localremote
  226. .RB ( " only IPv6 tunnels " )
  227. allow remote endpoint on the local host.
  228. .RE
  229. .TP
  230. .B ip tunnel prl
  231. potential router list (ISATAP only)
  232. .RS
  233. .TP
  234. .BI dev " NAME"
  235. mandatory device name.
  236. .TP
  237. .BI prl-default " ADDR"
  238. .TP
  239. .BI prl-nodefault " ADDR"
  240. .TP
  241. .BI prl-delete " ADDR"
  242. .RB "Add or delete " ADDR
  243. as a potential router or default router.
  244. .RE
  245. .TP
  246. .B ip tunnel show
  247. list tunnels
  248. This command has no arguments.
  249. .SH SEE ALSO
  250. .br
  251. .BR ip (8)
  252. .SH AUTHOR
  253. Original Manpage by Michail Litvak <mci@owl.openwall.com>