WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

RE: [Xen-users] traffic sniff problem

To: "Jonathan Tripathy" <jonnyt@xxxxxxxxxxx>, <xen-users@xxxxxxxxxxxxxxxxxxx>
Subject: RE: [Xen-users] traffic sniff problem
From: "Jonathan Tripathy" <jonnyt@xxxxxxxxxxx>
Date: Fri, 18 Jun 2010 14:46:26 +0100
Cc:
Delivery-date: Fri, 18 Jun 2010 06:50:01 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <AANLkTil4-Xjs42mUa3wuYC35TF5ZlTygORHobe7EcaAn@xxxxxxxxxxxxxx> <46C13AA90DB8844DAB79680243857F0F0AFD37@xxxxxxxxxxxxxxxxxxx> <46C13AA90DB8844DAB79680243857F0F0AFD38@xxxxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: AcsO5k0sSHb4MPsqRZG4n76+vS4E3wABVnihAAA5/cUAAAWscw==
Thread-topic: [Xen-users] traffic sniff problem
Opps.. I meant this for the rule directly below:
 
ebtables -I FORWARD -i $(vif) -s $(mac) -j ACCEPT


From: Jonathan Tripathy
Sent: Fri 18/06/2010 14:45
To: Jonathan Tripathy; xen-users@xxxxxxxxxxxxxxxxxxx
Subject: RE: [Xen-users] traffic sniff problem

Oh and of course the other way round as well:
 
ebtables -I FORWARD -i $(vif) -d $(mac) -j ACCEPT


From: xen-users-bounces@xxxxxxxxxxxxxxxxxxx on behalf of Jonathan Tripathy
Sent: Fri 18/06/2010 14:39
To: Jingyun He; xen-users@xxxxxxxxxxxxxxxxxxx
Subject: RE: [Xen-users] traffic sniff problem

Hi
 
I'm not sure if I've got the syntax correct, however I think you would add something like this to your vif script:
 
ebtables -I FORWARD -o $(vif) -d $(mac) -j ACCEPT
 
Of course you would have to have a default police of DROP first:
 
ebtables -P FORWARD DROP
 
Please someone correct me if i'm wrong
 
Thanks


From: xen-users-bounces@xxxxxxxxxxxxxxxxxxx on behalf of Jingyun He
Sent: Fri 18/06/2010 13:51
To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-users] traffic sniff problem

Hello,
I have xen node, it has a few VPSes, it used bridge network mode, and
we noticed that if one vps is restarted or a new vps is started, the
bridge will send all traffic to all interface during a few seconds,
and I did run a sniff program in one vps, it successful restrived some
password with these traffic.

Any solution?

Thanks.

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
<Prev in Thread] Current Thread [Next in Thread>