Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when promiscuous mode

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Willy Tarreau

Subject: Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when promiscuous mode

Date: Monday, November 12, 2007 - 4:15 pm

On Mon, Nov 12, 2007 at 02:57:16PM -0800, David Miller wrote:
quoted text> From: "Chris Friesen" <cfriesen@nortel.com>
> Date: Mon, 12 Nov 2007 16:43:24 -0600
> 
> > David Miller wrote:
> > 
> > > When you select VLAN, you by definition are asking for non-VLAN
> > > traffic to be elided.  It is like plugging the ethernet cable
> > > into one switch or another.
> > 
> > For max functionality it seems like the raw eth device should show 
> > everything on the wire in promiscuous mode.
> > 
> > If we want to sniff only the traffic for a specific vlan, we can sniff 
> > the vlan device.
> 
> VLAN settings are a filter of sorts, much like plugging into
> one switch or another filters traffic physically.
> 
> If you don't want that filter, turn the VLAN settings off.

I don't really agree with that view. Having spent a lot of time with
tcpdump on production systems, I can say that sometimes you'd like to
be aware that one of your VLANs is wrong and you'd simply like to
sniff the wire to guess the correct tag. And on production, you simply
cannot remove other VLANs, otherwise you disrupt the service.

Basically, what generally happens is that the guy responsible for the
switch tells you "it's OK now", but for you it isn't and you cannot
access the switch.

If the solution is to disable VLAN hardware acceleration, I agree that
it is very risky to do that without the user being aware of it. But at
least we should be able to do this by any means (eg: ethtool) without
disabling what's running.

And since you made the parallel with a switch, when you receive tagged
traffic on a switch port, you generally can mirror that port to another
one and catch all VLANs at once. A new feature that is starting to appear
is the ability to mirror tagged traffic to a VLAN on another port (which
means you get a double 802.1q tag). This is useful for inter-site links
between data-centers for instance.

Regards,
Willy

-
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when promis ..., Joonwoo Park, (Sat Nov 10, 5:51 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Kok, Auke, (Mon Nov 12, 10:12 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Patrick McHardy, (Mon Nov 12, 10:21 am)

Re: [E1000-devel] [PATCH 2/2] [e1000 VLAN] Disable vlan hw ..., Kok, Auke, (Mon Nov 12, 11:01 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., David Miller, (Mon Nov 12, 3:28 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., David Miller, (Mon Nov 12, 3:33 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Chris Friesen, (Mon Nov 12, 3:43 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Kok, Auke, (Mon Nov 12, 3:54 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., David Miller, (Mon Nov 12, 3:57 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Willy Tarreau, (Mon Nov 12, 4:15 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., David Miller, (Mon Nov 12, 4:19 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Willy Tarreau, (Mon Nov 12, 4:32 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Kok, Auke, (Mon Nov 12, 4:38 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., David Miller, (Mon Nov 12, 4:40 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Joonwoo Park, (Mon Nov 12, 6:21 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Patrick McHardy, (Tue Nov 13, 3:21 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Herbert Xu, (Tue Nov 13, 4:09 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., David Miller, (Tue Nov 13, 4:36 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Herbert Xu, (Tue Nov 13, 5:03 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., David Miller, (Tue Nov 13, 5:06 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Herbert Xu, (Tue Nov 13, 5:16 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Patrick McHardy, (Tue Nov 13, 5:18 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., David Miller, (Tue Nov 13, 5:32 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Kok, Auke, (Tue Nov 13, 9:41 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Patrick McHardy, (Tue Nov 13, 10:26 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Kok, Auke, (Tue Nov 13, 10:30 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Kok, Auke, (Tue Nov 13, 12:59 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Stephen Hemminger, (Tue Nov 13, 1:43 pm)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Patrick McHardy, (Wed Nov 14, 2:42 am)

Re: [PATCH 2/2] [e1000 VLAN] Disable vlan hw accel when pr ..., Kok, Auke, (Wed Nov 14, 4:30 pm)


linux-kernel:
Greg KH	Og dreams of kernels
Jens Axboe	[PATCH 31/33] Fusion: sg chaining support
Arnd Bergmann	Re: finding your own dead "CONFIG_" variables
Mark Brown	[PATCH 2/2] Subject: natsemi: Allow users to disable workaround for DspCfg reset
Tony Breeds	[LGUEST] Look in object dir for .config
git:
Brian Downing	Re: Git in a Nutshell guide
John Benes	Re: master has some toys
Matthias Lederhofer	[PATCH 4/7] introduce GIT_WORK_TREE to specify the work tree
Alexander Sulfrian	[RFC/PATCH] RE: git calls SSH_ASKPASS even if DISPLAY is not set
Junio C Hamano	Re: Rss produced by git is not valid xml?
git-commits-head:
Linux Kernel Mailing List	iSeries: fix section mismatch in iseries_veth
Linux Kernel Mailing List	ixbge: remove TX lock and redo TX accounting.
Linux Kernel Mailing List	ixgbe: fix several counter register errata
Linux Kernel Mailing List	b43: fix build with CONFIG_SSB_PCIHOST=n
Linux Kernel Mailing List	9p: block-based virtio client
linux-netdev:
Michael Breuer	Re: [PATCH] af_packet: Don't use skb after dev_queue_xmit()
Michael Breuer	Re: [PATCH] af_packet: Don't use skb after dev_queue_xmit()
David Daney	[PATCH 5/7] Staging: Octeon Ethernet: Convert to NAPI.
Wolfgang Grandegger	[PATCH net-next v4 1/3] can: mscan: fix improper return if dlc < 8 in start_xmi...
Amit Kumar Salecha	[PATCHv3 NEXT 2/2] NET: Add Qlogic ethernet driver for CNA devices
openbsd-misc:
Theo de Raadt	Re: Old IPSEC bug
Tomáš Bodžár	Problem with vpnc connection - check group password !
Insan Praja SW	Mandoc Compiling Error
Carl Roberso	Re: Cannot change MTU of carp interface?
Richard Daemon	Re: booting openbsd on eee without cd-rom