[LARTC] RE: Promisc routing

All of lore.kernel.org
 help / color / mirror / Atom feed

* [LARTC] RE: Promisc routing
@ 2004-08-28  7:28 Sumit Pandya
  2004-08-28  9:12 ` Bart De Schuymer
                   ` (3 more replies)
  0 siblings, 4 replies; 5+ messages in thread
From: Sumit Pandya @ 2004-08-28  7:28 UTC (permalink / raw)
  To: lartc

> From: "Roy" <roy@xxx.lt>
>
> I want to set interface to promisc mode and do all routing with iptables.
> Is it somehow possible? as I see now kernel do not pass everything to
> ipables.
>
> Basicaly I want to ignore ethernet addess and use only ip for routing.
>
> I suppose this may require writting special kernel driver or it
> is possible
> in other way?

	Probably you need only a kernel patched with ebtables/br-nf and use
iptables extensions ROUTE, TTL/ttl, TOS/tos, MARK/mark, multiport, mport,
etc.
	All the best,
-- Sumit

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [LARTC] RE: Promisc routing
  2004-08-28  7:28 [LARTC] RE: Promisc routing Sumit Pandya
@ 2004-08-28  9:12 ` Bart De Schuymer
  2004-08-28 14:13 ` Roy
                   ` (2 subsequent siblings)
  3 siblings, 0 replies; 5+ messages in thread
From: Bart De Schuymer @ 2004-08-28  9:12 UTC (permalink / raw)
  To: lartc

On Saturday 28 August 2004 09:16, Sumit Pandya wrote:
> > From: "Roy" <roy@xxx.lt>
> >
> > I want to set interface to promisc mode and do all routing with iptables.
> > Is it somehow possible? as I see now kernel do not pass everything to
> > ipables.
> >
> > Basicaly I want to ignore ethernet addess and use only ip for routing.
> >
> > I suppose this may require writting special kernel driver or it
> > is possible
> > in other way?
>
> 	Probably you need only a kernel patched with ebtables/br-nf and use
> iptables extensions ROUTE, TTL/ttl, TOS/tos, MARK/mark, multiport, mport,
> etc.

See http://ebtables.sourceforge.net/examples.html#easy "Making a brouter" and 
"Using the redirect target".

cheers,
Bart

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [LARTC] RE: Promisc routing
  2004-08-28  7:28 [LARTC] RE: Promisc routing Sumit Pandya
  2004-08-28  9:12 ` Bart De Schuymer
@ 2004-08-28 14:13 ` Roy
  2004-08-30 12:40 ` Dmitry Golubev
  2004-08-30 17:33 ` Roy
  3 siblings, 0 replies; 5+ messages in thread
From: Roy @ 2004-08-28 14:13 UTC (permalink / raw)
  To: lartc

Thanks,

but I I already found iptables promic chain patch.
Probably it will by  a bit simpler to use, and will  less space.
( need this for LinuxAP which ROM is only 1MB)

Probably I will install ebtables on my server.

By default linux aready have about as many limitations as windows.



----- Original Message ----- 
From: "Bart De Schuymer" <bdschuym@pandora.be>
To: "Sumit Pandya" <sumit@elitecore.com>; <lartc@mailman.ds9a.nl>
Cc: <roy@xxx.lt>
Sent: Saturday, August 28, 2004 12:12 PM
Subject: Re: [LARTC] RE: Promisc routing


> On Saturday 28 August 2004 09:16, Sumit Pandya wrote:
> > > From: '"'Roy'"' <roy@xxx.lt>
> > >
> > > I want to set interface to promisc mode and do all routing
> with iptables.
> > > Is it somehow possible? as I see now kernel do not pass
> everything to
> > > ipables.
> > >
> > > Basicaly I want to ignore ethernet addess and use only ip
> for routing.
> > >
> > > I suppose this may require writting special kernel driver
> or it
> > > is possible
> > > in other way?
> >
> > Probably you need only a kernel patched with ebtables/br-nf
> and use
> > iptables extensions ROUTE, TTL/ttl, TOS/tos, MARK/mark,
> multiport, mport,
> > etc.
> 
> See http://ebtables.sourceforge.net/examples.html#easy '"'Making a
> brouter'"' and 
> '"'Using the redirect target'"'.
> 
> cheers,
> Bart
> 
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
> 
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [LARTC] RE: Promisc routing
  2004-08-28  7:28 [LARTC] RE: Promisc routing Sumit Pandya
  2004-08-28  9:12 ` Bart De Schuymer
  2004-08-28 14:13 ` Roy
@ 2004-08-30 12:40 ` Dmitry Golubev
  2004-08-30 17:33 ` Roy
  3 siblings, 0 replies; 5+ messages in thread
From: Dmitry Golubev @ 2004-08-30 12:40 UTC (permalink / raw)
  To: lartc

Still I don't understand what are you trying to do - promisc mode is only 
useful for bridging/sniffing - just enable ip_forward, and that's all...

Dmitry

On Saturday 28 August 2004 17:13, "Roy" <roy@xxx.lt> wrote:
> Thanks,
>
> but I I already found iptables promic chain patch.
> Probably it will by  a bit simpler to use, and will  less space.
> ( need this for LinuxAP which ROM is only 1MB)
>
> Probably I will install ebtables on my server.
>
> By default linux aready have about as many limitations as windows.
>
>
>
> ----- Original Message -----
> From: "Bart De Schuymer" <bdschuym@pandora.be>
> To: "Sumit Pandya" <sumit@elitecore.com>; <lartc@mailman.ds9a.nl>
> Cc: <roy@xxx.lt>
> Sent: Saturday, August 28, 2004 12:12 PM
> Subject: Re: [LARTC] RE: Promisc routing
>
> > On Saturday 28 August 2004 09:16, Sumit Pandya wrote:
> > > > From: '"'Roy'"' <roy@xxx.lt>
> > > >
> > > > I want to set interface to promisc mode and do all routing
> >
> > with iptables.
> >
> > > > Is it somehow possible? as I see now kernel do not pass
> >
> > everything to
> >
> > > > ipables.
> > > >
> > > > Basicaly I want to ignore ethernet addess and use only ip
> >
> > for routing.
> >
> > > > I suppose this may require writting special kernel driver
> >
> > or it
> >
> > > > is possible
> > > > in other way?
> > >
> > > Probably you need only a kernel patched with ebtables/br-nf
> >
> > and use
> >
> > > iptables extensions ROUTE, TTL/ttl, TOS/tos, MARK/mark,
> >
> > multiport, mport,
> >
> > > etc.
> >
> > See http://ebtables.sourceforge.net/examples.html#easy '"'Making a
> > brouter'"' and
> > '"'Using the redirect target'"'.
> >
> > cheers,
> > Bart
> >
> > _______________________________________________
> > LARTC mailing list / LARTC@mailman.ds9a.nl
> > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [LARTC] RE: Promisc routing
  2004-08-28  7:28 [LARTC] RE: Promisc routing Sumit Pandya
                   ` (2 preceding siblings ...)
  2004-08-30 12:40 ` Dmitry Golubev
@ 2004-08-30 17:33 ` Roy
  3 siblings, 0 replies; 5+ messages in thread
From: Roy @ 2004-08-30 17:33 UTC (permalink / raw)
  To: lartc

I actualy want to make remote wlan sniffing-monitoring device
I will use linuxAP and redirect everything it captures to the main server.
also I can use this to use ap without even associating with it.

On ethernet it is not so much usefull, because of switches.
I dont know it they allow to have same mac on more than one port




----- Original Message ----- 
From: "Dmitry Golubev" <dmitry@mikrotik.com>
To: <lartc@mailman.ds9a.nl>
Sent: Monday, August 30, 2004 3:40 PM
Subject: Re: [LARTC] RE: Promisc routing


> Still I don't understand what are you trying to do - promisc
> mode is only
> useful for bridging/sniffing - just enable ip_forward, and that's all...
>
> Dmitry
>
> On Saturday 28 August 2004 17:13, '"'Roy'"' <roy@xxx.lt> wrote:
> > Thanks,
> >
> > but I I already found iptables promic chain patch.
> > Probably it will by  a bit simpler to use, and will  less
> space.
> > ( need this for LinuxAP which ROM is only 1MB)
> >
> > Probably I will install ebtables on my server.
> >
> > By default linux aready have about as many limitations as
> windows.
> >
> >
> >
> > ----- Original Message -----
> > From: '"'Bart De Schuymer'"'
> <bdschuym@pandora.be>
> > To: '"'Sumit Pandya'"' <sumit@elitecore.com>;
> <lartc@mailman.ds9a.nl>
> > Cc: <roy@xxx.lt>
> > Sent: Saturday, August 28, 2004 12:12 PM
> > Subject: Re: [LARTC] RE: Promisc routing
> >
> > > On Saturday 28 August 2004 09:16, Sumit Pandya
> wrote:
> > > > > From: ''"''Roy''"''
> <roy@xxx.lt>
> > > > >
> > > > > I want to set interface to promisc mode and do
> all routing
> > >
> > > with iptables.
> > >
> > > > > Is it somehow possible? as I see now kernel do
> not pass
> > >
> > > everything to
> > >
> > > > > ipables.
> > > > >
> > > > > Basicaly I want to ignore ethernet addess and
> use only ip
> > >
> > > for routing.
> > >
> > > > > I suppose this may require writting special
> kernel driver
> > >
> > > or it
> > >
> > > > > is possible
> > > > > in other way?
> > > >
> > > > Probably you need only a kernel patched with
> ebtables/br-nf
> > >
> > > and use
> > >
> > > > iptables extensions ROUTE, TTL/ttl, TOS/tos,
> MARK/mark,
> > >
> > > multiport, mport,
> > >
> > > > etc.
> > >
> > > See http://ebtables.sourceforge.net/examples.html#easy ''"''Making
> a
> > > brouter''"'' and
> > > ''"''Using the redirect target''"''.
> > >
> > > cheers,
> > > Bart
> > >
> > > _______________________________________________
> > > LARTC mailing list / LARTC@mailman.ds9a.nl
> > > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
> >
> > _______________________________________________
> > LARTC mailing list / LARTC@mailman.ds9a.nl
> > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
>

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

^ permalink raw reply	[flat|nested] 5+ messages in thread

end of thread, other threads:[~2004-08-30 17:33 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-08-28  7:28 [LARTC] RE: Promisc routing Sumit Pandya
2004-08-28  9:12 ` Bart De Schuymer
2004-08-28 14:13 ` Roy
2004-08-30 12:40 ` Dmitry Golubev
2004-08-30 17:33 ` Roy

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.