From owner-freebsd-net@FreeBSD.ORG Thu Oct 20 00:28:47 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DD73616A41F for ; Thu, 20 Oct 2005 00:28:47 +0000 (GMT) (envelope-from dionch@freemail.gr) Received: from smtp.freemail.gr (smtp.freemail.gr [213.239.180.35]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5364843D5A for ; Thu, 20 Oct 2005 00:28:47 +0000 (GMT) (envelope-from dionch@freemail.gr) Received: by smtp.freemail.gr (Postfix, from userid 101) id C34DCBC047; Thu, 20 Oct 2005 03:28:45 +0300 (EEST) Received: from [10.0.0.1] (vdp1003.ath03.dsl.hol.gr [62.38.168.4])by smtp.freemail.gr (Postfix) with ESMTP id 18E14BC037; Thu, 20 Oct 2005 03:28:44 +0300 (EEST) Message-ID: <4356E47D.605@freemail.gr> Date: Thu, 20 Oct 2005 03:27:41 +0300 From: Chris Dionissopoulos User-Agent: Mozilla Thunderbird 1.0.6 (Windows/20050716) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Shawn Saunders References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-7; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: Trying to make a Host into a gigabit hub for testing X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: dionch@freemail.gr List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Oct 2005 00:28:48 -0000 SS>I am setting up a test environment with multiple IDS's. ngctl looks like a solution but it is not broadcasting all packets to all interfaces as the documentation appears to state it should. I've probably made some error in configuration. SS> SS>My goal is to put em0 into a spanned port in promiscuous mode and broadcast all traffic from that port out the other network interfaces. I plan on having em0 (gigabit) and 6 other gigabit interfaces. Each will then echo the same traffic to six other machines (IDS's) for testing. SS> SS>The proof of concept with a gigabit (EM0) and 4 10/100 ethernets (sfx). The 10/100's will be replaced for implementation. SS> SS>Any help would be appreciated. My config follows: Hi, Why to use ng_fec and ng_one2many together? how about something simplier, like: +----------+ -->-sf0:lower--->wire wire>--em:lower->| one2many | -->-sf1:lower--->wire | | -->-sf2:lower--->wire +----------+ -->sf3:lower--->wire ngctl mkpeer em0: one2many lower one ngctl name em0:lower o2m ngctl connect sf0: o2m lower many0 ngctl connect sf1: o2m lower many1 ngctl connect sf2: o2m lower many2 ngctl connect sf3: o2m lower many3 ngctl msg o2m setconfig "{ xmitAlg=2 failAlg=1 enabledLinks=[1 1 1 1 1] }" ngctl msg sf0: setpromisc 1 ngctl msg sf0: setautosrc 0 ngctl msg sf1: setpromisc 1 ngctl msg sf1: setautosrc 0 ngctl msg sf2: setpromisc 1 ngctl msg sf2: setautosrc 0 ngctl msg sf3: setpromisc 1 ngctl msg sf3: setautosrc 0 ngctl msg em0: setpromisc 1 ngctl msg em0: setautosrc 0 This keeps kernel-stack isolated from traffic, I think (and all interfaces involved layer2 unreachable from outsiders). Just tell us if its working for you. Chris. ____________________________________________________________________ http://www.freemail.gr - δωρεάν υπηρεσία ηλεκτρονικού ταχυδρομείου. http://www.freemail.gr - free email service for the Greek-speaking.