Bananian

Create a switch and bridge ports on BPI-R1

17 18591
multi  
Hi,
I am trying about the same thing.
First I deleted configuration in /etc/network/if-pre-up.d/swconfig. And routing thought RPI don't fork. I confirm that IPTABLES is OK and
/proc/sys/net/ipv4/ip_forward is 1  (persisted configure is in /etc/sysctl.conf net.ipv4.ip_forward=1)
I don't understand where is true problem.
But I found clearer solution.
Here is my configuration for swconfig: All ports is in one vlan:
swconfig dev eth0 set reset 1
swconfig dev eth0 set enable_vlan 1
swconfig dev eth0 vlan 100 set ports '4 0 1 2 3 8t'


Humbala  
Hi Imsilva, in your setup are you able to sniff the traffic on any port?
Or are you limited to sniffing traffic from the WAN port and all ports on the switch?

What I would like to achieve is that I can sniff traffic per port (regardless of WAN or any switch port). It would even be nice to sniff traffic on port 1 with snort, traffic on port 2 with suricata, port 3 tcpdump etc... would this be possible?

schasch  
Hi,
anyone still got it to work?
I want to setup R1 as a simple WLANclients-4portETHclients-Accesspoint.
can anyone post the:
interface
swconfig
iptables
and declaration in wic port the esternal network is plugged?
regards

multi  
Hi, about sniffing:
I don ' t tried it, but I thing, you can sniff only what go into the CPU A20. L2 switching is executed on Ethernet switch chip - Linux kernel don't see this traffic.
It is only my opinion, i am not a expert.

sorry for my English
Best regard

multi  
Edited by multi at Sun May 3, 2015 09:00


schasch:
could you post a interfaces,swconfig,iptables-info ?
  1. swconfig dev eth0 vlan 100 set ports '4 0 1 2 3 8t'
Copy the Code
  1. cat /proc/sys/net/ipv4/ip_forward
Copy the Code
= 1
  1. iptables -P FORWARD ACCEPT
Copy the Code
My article in czech, it base on my experience:
http://www.root.cz/clanky/banana ... a-ethernet-switche/

HiveMe  
lmsilva replied at Tue Feb 3, 2015 02:57
Ok, I think I finally got it to work! ))

Here's how I ended up configuring everything:Here's what ...

Even though your post has pass through a long time ,but i really think i should thanks for it.
You have really do a great favor to me!  thank you very much buddy!

lmsilva  
Sorry I haven't been paying attention to this post guys...

Yes, by configuring the nic in "switch mode", I was able to sniff all traffic going through any port )

You have to log in before you can reply Login | Sign Up

Points Rules