Precisa de conselhos para a interface de tap da ponte para executar o tráfego stp.
- criou a interface de toque e a ponte
- Descobri que o stp BPDU é consumido pela ponte.
- estou executando o scapy no host, porém não estou vendo o stp BPDU na ponte nem na interface tapB quando executo o tcppdump, por favor avise4.
- Minha intenção é enviar/injetar stp BPDU via tapA e receber no tapB ou em qualquer interface tap nessa ponte.
- Vejo pacotes com tcpdump no tapA, mas eles não passam para bridge nem interface tapB.
assustador
Enviou 1 pacotes.
send(Ether(dst="01:80:c2:00:00:00")/LLC()/STP(), iface="tapA")
AVISO: Endereço Mac para chegar ao destino não encontrado. Usando transmissão
sendp(Dot3(dst="01:80:c2:00:00:00",src="08:17:35:51:29:2e")/LLC(dsap=0xaa, ssap=0xaa)/SNAP( OUI=0x0c, código=0x010b)/STP(), iface="tapA1", contagem=1)
Enviou 1 pacotes.
Estou executando o tap listener onde abro os scokets e recupero/leio os dados nas interfaces tap para tapA e tapB
configuração:
root@santosh-virtualbox:/home/santosh#sudo brctl addbr testbridge
root@santosh-virtualbox:/home/santosh#sudo ip tuntap add mode tap tapA
oot@santosh-virtualbox:/home/santosh#sudo ip tuntap add mode tap tapB
root@santosh-virtualbox:/home/santosh#sudo brctl addif testbridge tapA
root@santosh-virtualbox:/home/santosh#sudo brctl addif testbridge tapB
root@santosh-virtualbox:/home/santosh#sudo brctl show
bridge name bridge id STP enabled interfaces
testbridge 8000.8207f065cdfb no tapA
tapB
root@santosh-virtualbox:/home/santosh#sudo ip addr add 192.168.67.1/24 dev tapA
root@santosh-virtualbox:/home/santosh#sudo ip addr add 192.168.67.2/24 dev tapB
ip link set dev tapA up
ip link set dev tapB up
ip link set dev testbridge up
Saída ifconfig.
santosh@santosh-virtualbox:~/linux_source$ ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: enp0s3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 08:00:27:26:cd:de brd ff:ff:ff:ff:ff:ff
inet 10.0.2.15/24 brd 10.0.2.255 scope global dynamic noprefixroute enp0s3
valid_lft 85637sec preferred_lft 85637sec
inet6 fe80::f7db:f963:8e15:157e/64 scope link noprefixroute
valid_lft forever preferred_lft forever
3: enp0s8: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 08:00:27:60:7a:a6 brd ff:ff:ff:ff:ff:ff
inet 192.168.1.6/24 brd 192.168.1.255 scope global dynamic noprefixroute enp0s8
valid_lft 234879sec preferred_lft 234879sec
inet6 2401:4900:1f26:12bd:ba44:a1f5:3a20:8b18/64 scope global dynamic noprefixroute
valid_lft 86317sec preferred_lft 86317sec
inet6 fe80::1475:613b:ad77:89ee/64 scope link noprefixroute
valid_lft forever preferred_lft forever
4: testbridge: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether c2:26:1a:8b:d9:d0 brd ff:ff:ff:ff:ff:ff
inet6 fe80::c026:1aff:fe8b:d9d0/64 scope link
valid_lft forever preferred_lft forever
5: tapA: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master testaux state UP group default qlen 1000
link/ether 72:1c:e2:96:9d:d4 brd ff:ff:ff:ff:ff:ff
inet 192.168.67.1/24 scope global tapA
valid_lft forever preferred_lft forever
inet6 fe80::701c:e2ff:fe96:9dd4/64 scope link
valid_lft forever preferred_lft forever
6: tapB: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master testaux state UP group default qlen 1000
link/ether ca:07:2e:eb:c5:12 brd ff:ff:ff:ff:ff:ff
inet 192.168.67.2/24 scope global tapB
valid_lft forever preferred_lft forever
inet6 fe80::c807:2eff:feeb:c512/64 scope link
valid_lft forever preferred_lft forever
Atenciosamente, Santosh