需要有關橋接分接頭介面運行 stp 流量的建議。
- 建立了 Tap 介面和橋
- 曾經遇到 stp BPDU 被橋接器消耗的情況。
- 我正在主機上運行 scapy,但是當我運行 tcppdump 時,我沒有在網橋上或 TapB 介面上看到 stp BPDU,請告知4。
- 我的目的是透過 tapA 發送/注入 stp BPDU,並且應該在 tapB 或該網橋上的任何 Tap 介面上接收。
- 我在 TapA 上看到帶有 tcpdump 的資料包,但它們沒有傳遞到網橋或 TapB 介面。
斯卡比
發送了 1 個資料包。
send(Ether(dst="01:80:c2:00:00:00")/LLC()/STP(), iface="tapA")
警告:未找到到達目的地的 Mac 位址。使用廣播
寄(Dot3(dst =“01:80:c2:00:00:00”,src =“08:17:35:51:29:2e”)/ LLC(dsap = 0xaa,ssap = 0xaa)/ SNAP( OUI=0x0c,代碼=0x010b)/STP(),iface="tapA1",計數=1)
發送了 1 個資料包。
我正在運行 Tap 偵聽器,在其中打開 scoket 並接收/讀取 TapA 和 TapB 的 Tap 介面上的數據
配置:
root@santosh-virtualbox:/home/santosh#sudo brctl addbr testbridge
root@santosh-virtualbox:/home/santosh#sudo ip tuntap add mode tap tapA
oot@santosh-virtualbox:/home/santosh#sudo ip tuntap add mode tap tapB
root@santosh-virtualbox:/home/santosh#sudo brctl addif testbridge tapA
root@santosh-virtualbox:/home/santosh#sudo brctl addif testbridge tapB
root@santosh-virtualbox:/home/santosh#sudo brctl show
bridge name bridge id STP enabled interfaces
testbridge 8000.8207f065cdfb no tapA
tapB
root@santosh-virtualbox:/home/santosh#sudo ip addr add 192.168.67.1/24 dev tapA
root@santosh-virtualbox:/home/santosh#sudo ip addr add 192.168.67.2/24 dev tapB
ip link set dev tapA up
ip link set dev tapB up
ip link set dev testbridge up
ifconfig 輸出。
santosh@santosh-virtualbox:~/linux_source$ ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: enp0s3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 08:00:27:26:cd:de brd ff:ff:ff:ff:ff:ff
inet 10.0.2.15/24 brd 10.0.2.255 scope global dynamic noprefixroute enp0s3
valid_lft 85637sec preferred_lft 85637sec
inet6 fe80::f7db:f963:8e15:157e/64 scope link noprefixroute
valid_lft forever preferred_lft forever
3: enp0s8: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 08:00:27:60:7a:a6 brd ff:ff:ff:ff:ff:ff
inet 192.168.1.6/24 brd 192.168.1.255 scope global dynamic noprefixroute enp0s8
valid_lft 234879sec preferred_lft 234879sec
inet6 2401:4900:1f26:12bd:ba44:a1f5:3a20:8b18/64 scope global dynamic noprefixroute
valid_lft 86317sec preferred_lft 86317sec
inet6 fe80::1475:613b:ad77:89ee/64 scope link noprefixroute
valid_lft forever preferred_lft forever
4: testbridge: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether c2:26:1a:8b:d9:d0 brd ff:ff:ff:ff:ff:ff
inet6 fe80::c026:1aff:fe8b:d9d0/64 scope link
valid_lft forever preferred_lft forever
5: tapA: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master testaux state UP group default qlen 1000
link/ether 72:1c:e2:96:9d:d4 brd ff:ff:ff:ff:ff:ff
inet 192.168.67.1/24 scope global tapA
valid_lft forever preferred_lft forever
inet6 fe80::701c:e2ff:fe96:9dd4/64 scope link
valid_lft forever preferred_lft forever
6: tapB: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master testaux state UP group default qlen 1000
link/ether ca:07:2e:eb:c5:12 brd ff:ff:ff:ff:ff:ff
inet 192.168.67.2/24 scope global tapB
valid_lft forever preferred_lft forever
inet6 fe80::c807:2eff:feeb:c512/64 scope link
valid_lft forever preferred_lft forever
問候,桑托什