Port mirror (span): Difference between revisions
(Created page with " == To a VIRT (KVM) == I wanted to test out some software (ntop, manageengine netflow, prtg, pmacct, etc) using a port mirror on a switch. This required I be able to use the ...") |
|||
| Line 11: | Line 11: | ||
brctl setfd br2 0 | brctl setfd br2 0 | ||
</source> | </source> | ||
* Sadly you cannot set these in the ifcfg-br# configs. | |||
https://bugzilla.redhat.com/show_bug.cgi?id=662617 && http://bugs.centos.org/view.php?id=4675 | |||
Revision as of 00:38, 25 April 2013
To a VIRT (KVM)
I wanted to test out some software (ntop, manageengine netflow, prtg, pmacct, etc) using a port mirror on a switch. This required I be able to use the one mirror destination with multiple virts (kvm guests). It was simple enough as configuring the nic on the host OS as a bridge and giving the virts a second ethernet device in that bridge group. The only issue I ran into was that fact I could not see any traffic other than broadcast/multicast.
FIX use brctl setageingtime 0 to ensure no addresses are learned and all packets not destined to the bridge host are forwarded across the interfaces.
<source>
- Bridge Interface: br2
brctl setageing br2 0 brctl setfd br2 0 </source>
- Sadly you cannot set these in the ifcfg-br# configs.
https://bugzilla.redhat.com/show_bug.cgi?id=662617 && http://bugs.centos.org/view.php?id=4675