Send mirrored traffic into guest vm

Discussion in 'Proxmox VE: Networking and Firewall' started by geminux, Oct 16, 2018.

  1. geminux

    geminux New Member

    Joined:
    Oct 16, 2018
    Messages:
    2
    Likes Received:
    0
    Hi everyone,

    I try to send mirrored traffic from another physical system to a guest vm.
    The whole stack to achieve this is dedicated (switch port, physical nic, vmbr, guest nic).

    I can see the mirrored traffic with tcpdump in the physical nic and the bridge.
    But nothing from the tap interface or the guest nic.

    notes:
    • I tried with and without promiscuous mode on each nic/bridge/tap.
    • I know I could achieve this with SR-IOV but I'd like to avoid modifying the whole setup for now (And it will be great to make it work on non-SR-IOV capable hardware)
    EDIT : pve-manager/5.1-41/0b958203 (running kernel: 4.13.13-2-pve)

    Here is a small diagram
    proxm.png

    Any thoughts/help about this ?
    Thanks
     
    #1 geminux, Oct 16, 2018
    Last edited: Oct 16, 2018
  2. geminux

    geminux New Member

    Joined:
    Oct 16, 2018
    Messages:
    2
    Likes Received:
    0
    OK guys it works :)

    If anyone need the same functionnality, you just need to make the bridge act as a hub.
    Code:
    brctl setageing vmbr99 0
    If you want to make it persistent, put this in /etc/network/interfaces
    Code:
    auto vmbrXX
    iface vmbrXX inet manual
            bridge_ports nic0
            bridge_stp off
            bridge_fd 0
            bridge_ageing 0
    
    I strongly recommand to do it ONLY on a dedicated vmbr/nic with ONLY few tap interfaces attached to avoid unnecessary congestion
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice