* [B.A.T.M.A.N.] Integrity checks for packets, who does it?
@ 2015-11-20 14:42 Patrick Bosch
2015-11-20 16:37 ` Sven Eckelmann
0 siblings, 1 reply; 2+ messages in thread
From: Patrick Bosch @ 2015-11-20 14:42 UTC (permalink / raw)
To: b.a.t.m.a.n
Hi everyone
I have a little uncertainty regarding integrity checks in batman
advanced. I was wondering which encapsulation does it.
The situation:
- Ping to a batman node
- Normal ping, no batman ping (nodes have an IP)
- WPA2 active
ICMP should be encapsulated by IP, which is encapsulated by the Wi-Fi
mac header. Now I know that batman advanced inserts it's own header.
The question is, where exactly? Does it encapsulate the Wi-Fi mac and
takes over the integrity check or not? Also, how does it behave in the
case of enabled encryption? WPA2 has it's own integrity check.
The reason I ask, is that in Wireshark, it appears as ICMP when I
sniff the traffic without encryption enabled.
It would be great, if someone could shed light in this affair! Thank
you in advance!
Kind regards
Patrick
--
Patrick Bosch, PhD Student
University of Antwerp - iMinds
Dept. Mathematics and Computer Science
MOSAIC research group
Middelheimlaan 1 - Room M.G.215
2020 Antwerpen - Belgium
Email: patrick.bosch@uantwerpen.be
Phone: +3232653858
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: [B.A.T.M.A.N.] Integrity checks for packets, who does it?
2015-11-20 14:42 [B.A.T.M.A.N.] Integrity checks for packets, who does it? Patrick Bosch
@ 2015-11-20 16:37 ` Sven Eckelmann
0 siblings, 0 replies; 2+ messages in thread
From: Sven Eckelmann @ 2015-11-20 16:37 UTC (permalink / raw)
To: b.a.t.m.a.n
[-- Attachment #1: Type: text/plain, Size: 940 bytes --]
On Friday 20 November 2015 15:42:36 Patrick Bosch wrote:
> ICMP should be encapsulated by IP, which is encapsulated by the Wi-Fi
> mac header. Now I know that batman advanced inserts it's own header.
> The question is, where exactly? Does it encapsulate the Wi-Fi mac and
> takes over the integrity check or not? Also, how does it behave in the
> case of enabled encryption? WPA2 has it's own integrity check.
Layers:
4. ICMP
3. IP
2.5: batman-adv + the original ethernet header
2. Eth/WiFi/...
1. ...
So it just doesn't know about the encryption because the encryption + MIC
happens at a lower layer.
> The reason I ask, is that in Wireshark, it appears as ICMP when I
> sniff the traffic without encryption enabled.
Wireshark (especially 2.0) can dissect/parse the batman-adv
headers/encapsulation. You should check the "Packet Details" view in wireshark
to see the different headers and the payload.
Kind regards,
Sven
[-- Attachment #2: This is a digitally signed message part. --]
[-- Type: application/pgp-signature, Size: 819 bytes --]
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2015-11-20 16:37 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2015-11-20 14:42 [B.A.T.M.A.N.] Integrity checks for packets, who does it? Patrick Bosch
2015-11-20 16:37 ` Sven Eckelmann
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.