Linux: Raw Sockets Sent Packets Not Received Locally Under KVM -


i've been trying send udp packets using raw socket, however, sent packets not received locally. same packets received if sent remote destination. test performed under kvm. same test seems working under parallels.

the socket set with:

raw_socket = socket (af_packet, sock_raw, htons (eth_p_all));

there's receive filter attached , set promiscuous. packets received correctly. sent packets received in wireshark , analysed correctly. however, local program (e.g. nc -l -u -p ...) not receive packet. if send same packet remote destination, packet received correctly. fact wireshark receives packet suggests not dropped iptables rules (i've checked drop rules counters , there no dropped packets).

it seems if packet routed not reprocessed network stack, if makes sense.

it's supposed example code in network course, , currently, i'm losing face in front of students. hope none of them on list ;-).

would appreciate help, yuval.

a few comments code. brevity, udp checksum set 0, ip checksum calculated header. both validated wireshark (and accepted remote machine on kvm well). code parses message , sends reply on buffer received. udp_hdr , ip_hdr point corresponding headers in packet buffer (buffer), while payload points start of l7 data.

here's code: { /* process request. */ ssize_t msg_len; int max_len = sizeof (buffer) - (payload - buffer); int tmp_port; in_addr_t tmp_ip; struct ether_addr tmp_ether;

        msg_len = parse_and_send (ctx, payload, size, max_len);         if (msg_len < 0)         {            /* error */            error_print (ctx, "failed parse , construct answer.");        continue;         }         if (msg_len == 0)         {            /* no message send. */            continue;         }          /* switch sources & destinations , update payload lengths. */         tmp_port = udp_hdr->dest;         udp_hdr->dest = udp_hdr->source;         udp_hdr->source = tmp_port;         udp_hdr->len = htons (msg_len +                               (payload - (const uint8_t*) udp_hdr));         tmp_ip = ip_hdr->daddr;         compute_udp_cksum (udp_hdr);          ip_hdr->daddr = ip_hdr->saddr;     ip_hdr->saddr = tmp_ip;         ip_hdr->tot_len = htons (msg_len +                                  (payload - (const uint8_t*) ip_hdr));         compute_ip_cksum (ip_hdr);          memcpy (tmp_ether.ether_addr_octet, ether_hdr->ether_dhost,                 sizeof (tmp_ether));         memcpy (ether_hdr->ether_dhost, ether_hdr->ether_shost, eth_alen);         memcpy (ether_hdr->ether_shost, tmp_ether.ether_addr_octet,                 sizeof (tmp_ether));          if (sendto (ctx->raw_socket,                     &buffer, msg_len + (payload - buffer), 0,                     (struct sockaddr*) &ll_addr, sizeof (ll_addr)) < 0)         {            error_system (ctx, "sending packet");            error_print (ctx, "failed send packet");        continue;         }      }

lets write down facts know:

1- told can see packets in packet capture programe (e.g wireshark)

2- told can not receive packets using netcat when send loopback interface.

3- told can receive packets when send them remote machine.

so problem either in code or local machine. have bunch of suggestions:

1- test code on machine, , send packets loopback interface , try capture them using netcat.

or

2- try send bunch of udp packets using netcat local interface , receive them using netcat instance , check if works; if worked know problem in code otherwise problem can because of local machine.


-

Comments

Post a Comment

Popular posts from this blog

how to proxy from https to http with lighttpd -

i have internal site (192.168.2.1) accessible http on different server run public web-server using lighttpd. can make internal site accessible outside work follows $http["host"] == "internal.example.com" { ... proxy.server = ( "" => ( "internal" => ( "host" => "192.168.2.1", "port" => 8000 ) ) } this works, use https outside world. question is, how can proxy going https http ? i've tried this: $server["socket"] == ":443" { $http["host"] == "internal.example.com" { ... proxy.server = ( "" => ( "internal" => ( "host" => "http://192.168.2.1", "port" => 8000 ) ) } } but doesn't seem wor...
Read more

android - Automated my builds -

i have multiple app , android project want automated in build , release sequence. have ant script build , create apk of app. want have 1 script or ant file start build sequence app. maybe don't konw search, can't find easy documentation on ant. the point of use jenkins ant (or maven, i'm not sure of difference between them now) automated build sequence when people commit on project. any int appreciated maven dependencies (over ant) don't need pass around jars. recommend maven on ant day. syntax , overall process easier understand, @ end of both build tools. if able to, more recommend upgrading gradle. easy create different build types , create them ./gradlew assemble here project jake wharton can see power of gradle. there release , debug build, can make lot more if like. https://github.com/jakewharton/u2020 here android docs gradle http://tools.android.com/tech-docs/new-build-system/user-guide . if can't find looking here, check out main grad...
Read more

python - Flask migration error -

i've got application build on flask , wanted create new migration today. when run $python manage.py db upgrade i got message raise util.commanderror('only single head supported. ' alembic.util.commanderror: single head supported. script directory has multiple heads (due branching), must resolved manually editing revision files form linear sequence. run alembic branches see divergence(s). so run command $alembic branches no config file 'alembic.ini' found, or file has no '[alembic]' section any clue on about? the error messages coming alembic, use command form alembic <command> , integrating flask coming flask-migrate, need use form python manage.py db branches . to resolve multiple branches, make 1 of branches point down other branch upgrade graph straight line. see alembic's docs on branches: http://alembic.readthedocs.org/en/latest/branches.html
Read more