Create a switch and bridge ports on BPI-R1

17 21879
I am trying about the same thing.
First I deleted configuration in /etc/network/if-pre-up.d/swconfig. And routing thought RPI don't fork. I confirm that IPTABLES is OK and
/proc/sys/net/ipv4/ip_forward is 1  (persisted configure is in /etc/sysctl.conf net.ipv4.ip_forward=1)
I don't understand where is true problem.
But I found clearer solution.
Here is my configuration for swconfig: All ports is in one vlan:
swconfig dev eth0 set reset 1
swconfig dev eth0 set enable_vlan 1
swconfig dev eth0 vlan 100 set ports '4 0 1 2 3 8t'

Hi Imsilva, in your setup are you able to sniff the traffic on any port?
Or are you limited to sniffing traffic from the WAN port and all ports on the switch?

What I would like to achieve is that I can sniff traffic per port (regardless of WAN or any switch port). It would even be nice to sniff traffic on port 1 with snort, traffic on port 2 with suricata, port 3 tcpdump etc... would this be possible?

anyone still got it to work?
I want to setup R1 as a simple WLANclients-4portETHclients-Accesspoint.
can anyone post the:
and declaration in wic port the esternal network is plugged?

Hi, about sniffing:
I don ' t tried it, but I thing, you can sniff only what go into the CPU A20. L2 switching is executed on Ethernet switch chip - Linux kernel don't see this traffic.
It is only my opinion, i am not a expert.

sorry for my English
Best regard

Edited by multi at Sun May 3, 2015 09:00

could you post a interfaces,swconfig,iptables-info ?
  1. swconfig dev eth0 vlan 100 set ports '4 0 1 2 3 8t'
Copy the Code
  1. cat /proc/sys/net/ipv4/ip_forward
Copy the Code
= 1
  1. iptables -P FORWARD ACCEPT
Copy the Code
My article in czech, it base on my experience: ... a-ethernet-switche/

lmsilva replied at Tue Feb 3, 2015 02:57
Ok, I think I finally got it to work! ))

Here's how I ended up configuring everything:Here's what ...

Even though your post has pass through a long time ,but i really think i should thanks for it.
You have really do a great favor to me!  thank you very much buddy!

Sorry I haven't been paying attention to this post guys...

Yes, by configuring the nic in "switch mode", I was able to sniff all traffic going through any port )

You have to log in before you can reply Login | Sign Up

Points Rules