All networks same bridge, man in the middle attack?

TheNoob

New Member
Mar 13, 2020
7
0
1
33
If you have all your VMs on the same bridge (vmbr0) with different IP Addresses assigned can a man in the middle attack be performed to see what data is being sent throughout the entire network?
 
Bridges act like a Switch not a dump Network-Hub.
As long as the bridge ageing isn't set to 0 it's not that easy to get onto the traffic.
Especcially for the VM's wich are connected with their own tun-Device to the bridge.

On the other hand, one could monitor traffic of a VM with connecting to its tun-Device.
But one has to sit on the host, not within a VM.
 

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!