tcpdump仅在主机上运行保存时显示VRRP流量(Proto 112)
在我们的LAN中,我们有几个保存分组(当然使用了不同的Virtual_router_id) - 所有这些都在多播上运行。 问题是,在安装和运行在特定主机上的安装和运行之前,我无法通过tcpdump嗅探VRRP流量:
- 当我开始进行宣传时 -
- 我停止keeceAlive时,我会看到此LAN的所有VRRP多播 - TCPDUMP - TCPDUMP在VRRP中没有显示任何
内容net.ipv4.ip_nonlocal_bind-一切都可以。 OS -RHEL 8.0
在运行之前,需要查看VRRP流量是因为我们要在安装和运行keepalive之前通过检查已经采用的ID,在安装和运行keepalive之前生成唯一 virtual_router_id。
In our LAN we have several keepalived clasters (used different virtual_router_id of course) - all operating on multicast.
The issue is that before installing and running keepalived on particular host I cannot sniff vrrp traffic by tcpdump:
- when I started keepalived - I see ALL vrrp multicast of this LAN
- when I stopped keepalived - tcpdump shows nothing in vrrp
Already checked firewalld, iptabels and sysctl net.ipv4.ip_nonlocal_bind - everything is OK.
OS - RHEL 8.0
The need to see vrrp traffic before running keepalived is because we want to generate unique virtual_router_id before installing and running keepalived by checking what ids are already taken.
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
tcpdump -i eth0 net 224.0.0.0/8
or
tcpdump -i eth0 VRRP或AH
运行keepalived服务器:您可以执行 ip maddress show dev eth0 ,您会发现添加一些更改
链接01:00:5E:00:00:12
INET 224.0.0.18
因此,NIC运行混杂模式您仍然可以捕获数据包
tcpdump -i eth0 net 224.0.0.0/8
or
tcpdump -i eth0 vrrp or ah
run keepalived server: you can execute ip maddress show dev eth0,you will find add some change
link 01:00:5e:00:00:12
inet 224.0.0.18
so nic run promiscuity mode you can still capture packets