Re: Port Mirroring in Linux
- From: आशीष Ashish <wahjava@xxxxxxxxx>
- Date: Thu, 01 Nov 2007 01:55:18 +0530
Pascal Hambourg wrote:
Markus Rehbach a écrit :
Pascal Hambourg wrote:
As far as I can see from a quick test, setting the bridge
ageing time to zero (brctl setageingtime <brname> 0) seems to disable
learning, but the bridge still knows its own MAC addresses, so traffic
received on a port destined to one of these MAC address won't be
forwarded to other ports.
True but you could do thomething like this:
ebtables -t nat -A PREROUTING -i eth3 -p 0x0800 -j dnat --to-destination
00:01:12:12:12:12 --dnat-target ACCEPT
How is this supposed to help ?
That'll will redirect all IP (0x0800) traffic to MAC 00:01:12:12:12:12 (which
will be the MAC of other NIC), similar to the DNAT in iptables. But won't this
kill the communication, I mean instead of letting packets go to their preset
destination, this command will alter the destination. So this won't help.
HTH
--
Ashish Shukla
http://wahjava.wordpress.com/
.
- References:
- Port Mirroring in Linux
- From: jeniffer
- Re: Port Mirroring in Linux
- From: david
- Re: Port Mirroring in Linux
- From: jeniffer
- Re: Port Mirroring in Linux
- From: David Schwartz
- Re: Port Mirroring in Linux
- From: Pascal Hambourg
- Re: Port Mirroring in Linux
- From: David Schwartz
- Re: Port Mirroring in Linux
- From: Pascal Hambourg
- Re: Port Mirroring in Linux
- From: Markus Rehbach
- Re: Port Mirroring in Linux
- From: Pascal Hambourg
- Port Mirroring in Linux
- Prev by Date: Re: Port Mirroring in Linux
- Next by Date: Re: iptables problem with port translation
- Previous by thread: Re: Port Mirroring in Linux
- Next by thread: Re: Port Mirroring in Linux
- Index(es):
Relevant Pages
|
