[j-nsp] ethernet promisc mode
Avram Dorfman
avram at juniper.net
Wed Oct 8 11:40:39 EDT 2003
Richard,
Getting the ethernet into promiscuous mode wouldn't solve your problem.
If the packets it picks up don't have the RE as a destination IP
address on them, they're just going to get forwarded according to the
forwarding table anyway (presumable back out that interface, and get
picked up again, causing a forwarding loop).
This is a dangerous idea anyway, because there is only a fast-e between
the FE and the RE. It would be extremely easy to saturate it, and that
can break things, and put a dangerous load on the CPU (I assume this is
an active router).
-Avram
On Wednesday, October 8, 2003, at 11:30 AM, Richard A Steenbergen
wrote:
> On Wed, Oct 08, 2003 at 08:56:12AM +0200, Josef Buchsteiner wrote:
>> Richard,
>> the only item which comes in my mind is if you
>> configure
>> ethernet-ccc encaps which needs to turn of the DA CAM
>> filter..
>> whether this helps you is another question since it
>> effects arp
>> resolution and your current traffic flow.
>
> Good idea, but its still doesn't help me pick anything up in a tcpdump
> off
> the RE. I suppose I could setup a a CCC bridge to another port with a
> sniffer box, but it rather defeats the purpose in terms of convenience.
>
> --
> Richard A Steenbergen <ras at e-gerbil.net>
> http://www.e-gerbil.net/ras
> GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1
> 2CBC)
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/juniper-nsp
More information about the juniper-nsp
mailing list