how to let network traffic mirror to guest os using linux bridge(port mirroring)？

[serveryang]

pve host：has network traffic.

vmid=102, guest os:

config bridge to vmbr4, but cant get network traffic.


why?

 

[Moayad]

Did you check if the firewall on your PVE are runnign?

 

[serveryang]

Did you check if the firewall on your PVE are runnign?

Datacenter: firewall -> disabled.
Node: firwall -> disabled.
VM: firewall -> disabled.

 

[serveryang]

Datacenter: firewall -> disabled.
Node: firwall -> disabled.
VM: firewall -> disabled.

 

[Moayad]

How looks your network config?

 

[serveryang]

How looks your network config?

network config:
ens15f2(nic) -> vmbr4(bridge) -> eth0(guest os).

network traffic from ens15f2 can't mirror to eth0.
using tcpdump -i eth0 got nothing, but tcpdump -i vmbr4 can got packets.
so how to mirror network traffic to eth0 like a switch?

 

[ALXG]

View attachment 38492
network config:
ens15f2(nic) -> vmbr4(bridge) -> eth0(guest os).

network traffic from ens15f2 can't mirror to eth0.
using tcpdump -i eth0 got nothing, but tcpdump -i vmbr4 can got packets.
so how to mirror network traffic to eth0 like a switch?

I heard there is a hidden tap device. You need to mirror from there. See this one, the author used ovs, but I guess the same applies to linux bridge.
https://codingpackets.com/blog/proxmox-enable-port-mirror/

 

[Clean_Thinking_Pigeon]

Did you ever figure this out?