RE: [Xen-users] traffic sniff problem

["Jonathan Tripathy" <jonnyt@xxxxxxxxxxx>]

Opps.. I meant this for the rule directly below:

 

ebtables -I FORWARD -i $(vif) -s $(mac) -j ACCEPT

---

From: Jonathan Tripathy
Sent: Fri 18/06/2010 14:45
To: Jonathan Tripathy; xen-users@xxxxxxxxxxxxxxxxxxx
Subject: RE: [Xen-users] traffic sniff problem

Oh and of course the other way round as well:

 

ebtables -I FORWARD -i $(vif) -d $(mac) -j ACCEPT

---

From: xen-users-bounces@xxxxxxxxxxxxxxxxxxx on behalf of Jonathan Tripathy
Sent: Fri 18/06/2010 14:39
To: Jingyun He; xen-users@xxxxxxxxxxxxxxxxxxx
Subject: RE: [Xen-users] traffic sniff problem

Hi

 

I'm not sure if I've got the syntax correct, however I think you would add something like this to your vif script:

 

ebtables -I FORWARD -o $(vif) -d $(mac) -j ACCEPT

 

Of course you would have to have a default police of DROP first:

 

ebtables -P FORWARD DROP

 

Please someone correct me if i'm wrong

 

Thanks

---

From: xen-users-bounces@xxxxxxxxxxxxxxxxxxx on behalf of Jingyun He
Sent: Fri 18/06/2010 13:51
To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-users] traffic sniff problem

Hello,
I have xen node, it has a few VPSes, it used bridge network mode, and
we noticed that if one vps is restarted or a new vps is started, the
bridge will send all traffic to all interface during a few seconds,
and I did run a sniff program in one vps, it successful restrived some
password with these traffic.

Any solution?

Thanks.

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users