Setting up a linux switch

networking linux

I have a C++ Program to sniff each and every packet that crosses my linux box. However i need to now get my linux box to listen to every traffic in my network. I could buy a managed switch and set up port spanning, but i aint paying 200+ £'s for a switch and plus gives me a chance to learn.

My Network

                                            +---------Computer A
                                            |
Internet-----Router------Switch-------------+---------Linux Box
                                            |
                                            +---------Computer B

Proposed Network

                                            +---------Computer A
                                            |
Internet-----Router------Linux Box--------Switch
                    eth0^         ^eth1     |
                                            +---------Computer B

How would i setup this in linux. Do i just configure both the ethernet on different IP Address on the same network. Or am i completelly on the wrong track

My System

  • Fedora 13.

Thanks


Solution 1:

I'm assuming your current network is on a private subnet and that your router performs NAT for external communication (i.e. to the outside world all your machines look to have the same IP address). You have two options here:

  1. set the machine up as a bridge
  2. set the machine up as a NAT router

To set it up as a router:

  • have eth0 setup as if it is a client to the current router
  • have eth1 on a different subnet
  • have the server configured to hand out addresses on this subnet to the other machines via DHCP
  • add the approptiate iptables rules so the box performs NAT for outgoing connections from the eth1 side
  • if you have any manual port forwarding setup on the router at the moment this will need to be set to point to the new box and the new box set to forward these connections further into the network

Exactly how you do some of the above perminantly (i.e. so it survives a reboot) depends on your Linux distribution and any other local network setup you need to respect. http://www.linuxjournal.com/article/8172 shows an example of a bridge setup using a RedHat/Fedora/CentOS style system, some minuor alterations may be needed for Debian/Ubuntu or Slackware or others.

Solution 2:

brctl addbr br0
ifconfig eth0 up
brctl addif br0 eth0
ifconfig eth1 up
brctl addif br0 eht1
ifconfig br0 <your.ip.address>

note that neither ethernet interface has an IP address; the single address is assigned to the bridge (br0).

Related

Trying to understand why VLANs need to be created on intermediate switches
Remove directories in Solaris
PostgreSQL database server virtualization, yay or nay?
Dynamic DNS for Shared Hosting - Does it exist?
Dead gateway detection on linux
What are some specific changes you make when hardening a new NetBSD install?
Need help diagnosing network performance issues
knowning how much time is left before cron weekly runs?
Does round-robin load balancing affect HTTPS performance?
Any function $f:\mathbb{F}_q \rightarrow \mathbb{C}$ has a unique representation $f(x)=f_{\delta}\delta(x)+\sum_{\chi} f_{\chi}\chi(x)$
Show that $||A-BC||_F^2 = ||A||_F^2+||BC||_F^2 - 2tr(C^TB^TA)$
Let $\phi:\Bbb{Z}_{20} \to \Bbb{Z}_{20}$ be an automorphism and $\phi(5)=5$. What are the possibilities of $\phi(x)$?