oh god help me please naredu sm nek bizaren network config in ne razumem kaj se dogaja ``` [pametni switch]--+-tagged-----server b bridgea skupaj || +-vlanA------T2 internet uplink <|| +-vlanB------T2 innbox modem WAN port <|| +-vlanC------T2 innbox modem LAN port 192.168.64.0/24 +-vlanD------ostale naprave 10.69.69.0/24 ``` linux bridge ima torej notri interfejsa vlanA in vlanB in ta bridge ima nastavljen statični T2 ip naslov 188.230.215.50/17 t-2 modem dela NAT in ima dinamičen javni ip naslov 188.230.157.119/17 ... ampak for some obscure reason paketi ki pridejo iz T2 NATa dobijo moj statičen IP naslov namesto T2 innbox nat naslova in se duplicirajo na poti poganjanje PINGa na T2 wifiju pokaže DUP paketke ``` e:~[0]# ping f.4a.si PING f.4a.si (141.255.217.27) 56(84) bytes of data. 64 bytes from 141.255.217.27: icmp_seq=1 ttl=53 time=5.92 ms 64 bytes from 141.255.217.27: icmp_seq=1 ttl=52 time=6.19 ms (DUP!) ^C --- f.4a.si ping statistics --- 1 packets transmitted, 1 received, +1 duplicates, 0% packet loss, time 0ms rtt min/avg/max/mdev = 5.919/6.054/6.189/0.135 ms e:~[0]# ``` tcpdump na remote serverju ``` [root@f ~]# tcpdump -vvvveni any icmp tcpdump: WARNING: any: That device doesn't support promiscuous mode (Promiscuous mode not supported on the "any" device) tcpdump: listening on any, link-type LINUX_SLL2 (Linux cooked v2), snapshot length 262144 bytes 12:04:30.243096 ens18 In ifindex 2 1c:34:da:8e:a3:a6 ethertype IPv4 (0x0800), length 104: (tos 0x0, ttl 53, id 5036, offset 0, flags [DF], proto ICMP (1), length 84) 188.230.215.50 > 141.255.217.27: ICMP echo request, id 3, seq 1, length 64 12:04:30.243233 ens18 Out ifindex 2 bc:24:11:0a:57:77 ethertype IPv4 (0x0800), length 104: (tos 0x0, ttl 64, id 58999, offset 0, flags [none], proto ICMP (1), length 84) 141.255.217.27 > 188.230.215.50: ICMP echo reply, id 3, seq 1, length 64 ``` tcpdump na T2 innboxu ``` # tcpdump -vvvveni any host 141.255.217.27 tcpdump: listening on any, link-type LINUX_SLL (Linux cooked), capture size 65535 bytes 12:02:31.286790 P 30:f6:ef:71:1c:4a ethertype IPv4 (0x0800), length 100: (tos 0x0, ttl 64, id 5036, offset 0, flags [DF], proto ICMP (1), length 84) 192.168.64.110 > 141.255.217.27: ICMP echo request, id 3, seq 1, length 64 12:02:31.286857 In 30:f6:ef:71:1c:4a ethertype IPv4 (0x0800), length 100: (tos 0x0, ttl 64, id 5036, offset 0, flags [DF], proto ICMP (1), length 84) 192.168.64.110 > 141.255.217.27: ICMP echo request, id 3, seq 1, length 64 12:02:31.287072 Out 10:a3:b8:0e:5d:0b ethertype IPv4 (0x0800), length 100: (tos 0x0, ttl 63, id 5036, offset 0, flags [DF], proto ICMP (1), length 84) 188.230.157.119 > 141.255.217.27: ICMP echo request, id 3, seq 1, length 64 12:02:31.287111 Out 10:a3:b8:0e:5d:0b ethertype IPv4 (0x0800), length 100: (tos 0x0, ttl 63, id 5036, offset 0, flags [DF], proto ICMP (1), length 84) 188.230.157.119 > 141.255.217.27: ICMP echo request, id 3, seq 1, length 64 12:02:31.290571 In 88:e6:4b:e3:c1:c6 ethertype IPv4 (0x0800), length 100: (tos 0x0, ttl 54, id 58999, offset 0, flags [none], proto ICMP (1), length 84) 141.255.217.27 > 188.230.157.119: ICMP echo reply, id 3, seq 1, length 64 12:02:31.290794 Out 10:a3:b8:0e:5d:0b ethertype IPv4 (0x0800), length 100: (tos 0x0, ttl 53, id 58999, offset 0, flags [none], proto ICMP (1), length 84) 141.255.217.27 > 192.168.64.110: ICMP echo reply, id 3, seq 1, length 64 12:02:31.290900 Out 10:a3:b8:0e:5d:0b ethertype IPv4 (0x0800), length 100: (tos 0x0, ttl 53, id 58999, offset 0, flags [none], proto ICMP (1), length 84) 141.255.217.27 > 192.168.64.110: ICMP echo reply, id 3, seq 1, length 64 12:02:31.290991 In 00:1a:92:4b:00:40 ethertype IPv4 (0x0800), length 100: (tos 0x0, ttl 53, id 58999, offset 0, flags [none], proto ICMP (1), length 84) 141.255.217.27 > 188.230.157.119: ICMP echo reply, id 3, seq 1, length 64 12:02:31.291173 Out 10:a3:b8:0e:5d:0b ethertype IPv4 (0x0800), length 100: (tos 0x0, ttl 52, id 58999, offset 0, flags [none], proto ICMP (1), length 84) 141.255.217.27 > 192.168.64.110: ICMP echo reply, id 3, seq 1, length 64 12:02:31.291241 Out 10:a3:b8:0e:5d:0b ethertype IPv4 (0x0800), length 100: (tos 0x0, ttl 52, id 58999, offset 0, flags [none], proto ICMP (1), length 84) 141.255.217.27 > 192.168.64.110: ICMP echo reply, id 3, seq 1, length 64 ```