Netdev Archive on lore.kernel.org
 help / Atom feed
* How to set promiscuous mode
@ 2019-02-09 20:22 William Flanagan
  2019-02-11  9:14 ` Phil Sutter
  0 siblings, 1 reply; 5+ messages in thread
From: William Flanagan @ 2019-02-09 20:22 UTC (permalink / raw)
  To: netdev



Hi,

Working with iproute2 for a task with Wireshark.  I don't see the 
command in 'ip' to put an Ethernet port into promiscuous mode.  A reply 
from the openSuse forum (below) tells me how.

I'm wondering if this should be in the 'MAN ip' page.

Regards,

Bill Flanagan


-------- Forwarded Message --------


Dear konsultor,

tsu2 has just replied to a thread you have subscribed to entitled - LEAP 
15 how to set promiscuous mode on eth0? - in the Network/Internet forum 
of openSUSE Forums.

This thread is located at:
https://forums.opensuse.org/showthread.php/534881-how-to-set-promiscuous-mode-on-eth0?goto=newpost

Here is the message that has just been posted:
***************

---Quote (Originally by konsultor)---
Thanks, Tsu. Double 'atta boy" for sure.
What I find odd is that neither 'promisc' nor 'promiscuous' appears in 
the 'MAN ip" document. Is that a reportable bug?
---End Quote---
MAN authors are typically listed in the document, best to write them 
directly.

TSU
***************


There may also be other replies, but you will not receive any more 
notifications until you visit the forum again.

All the best,
openSUSE Forums

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Unsubscription information:

To unsubscribe from this thread, please visit this page:
https://forums.opensuse.org/subscription.php?do=removesubscription&type=thread&subscriptionid=189629&auth=887f2c6151997a4244524bdac85ff08b

To unsubscribe from ALL threads, please visit this page:
https://forums.opensuse.org/subscription.php?do=viewsubscription&folderid=all

-- 
Flanagan Consulting

Creative Network Solutions
 From Desktop to Data Center

3800 Concorde Parkway, Suite 1500, Chantilly, Virginia 20151 USA
Ph:  +1.703.242.8381    Fx:  +1.703.242.8391
www.Flanagan-Consulting.com
Flanagan Consulting is a Service Mark of W. A. Flanagan, Inc.

"Beware of false knowledge; it is more dangerous than ignorance."
                                        --George Bernard Shaw



^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: How to set promiscuous mode
  2019-02-09 20:22 How to set promiscuous mode William Flanagan
@ 2019-02-11  9:14 ` Phil Sutter
  2019-02-11  9:17   ` [iproute PATCH] man: ip-link: Describe promisc mode Phil Sutter
  0 siblings, 1 reply; 5+ messages in thread
From: Phil Sutter @ 2019-02-11  9:14 UTC (permalink / raw)
  To: William Flanagan; +Cc: netdev

Hi,

On Sat, Feb 09, 2019 at 03:22:33PM -0500, William Flanagan wrote:
> Working with iproute2 for a task with Wireshark.  I don't see the 
> command in 'ip' to put an Ethernet port into promiscuous mode.  A reply 
> from the openSuse forum (below) tells me how.
> 
> I'm wondering if this should be in the 'MAN ip' page.

Please have a look at ip-link(8), its synopsis section at least lists
'promisc' option for 'ip link set' command. I'll follow-up with a patch
adding a little description, though.

Cheers, Phil

^ permalink raw reply	[flat|nested] 5+ messages in thread

* [iproute PATCH] man: ip-link: Describe promisc mode
  2019-02-11  9:14 ` Phil Sutter
@ 2019-02-11  9:17   ` Phil Sutter
  2019-02-11 19:36     ` Stephen Hemminger
  0 siblings, 1 reply; 5+ messages in thread
From: Phil Sutter @ 2019-02-11  9:17 UTC (permalink / raw)
  To: Stephen Hemminger; +Cc: netdev, William Flanagan

Briefly explain what it is and where it's typically used.

Signed-off-by: Phil Sutter <phil@nwl.cc>
---
 man/man8/ip-link.8.in | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/man/man8/ip-link.8.in b/man/man8/ip-link.8.in
index 73d37c190fffa..5c327f01b6b45 100644
--- a/man/man8/ip-link.8.in
+++ b/man/man8/ip-link.8.in
@@ -1780,6 +1780,14 @@ flag on the device. Indicates that address can change when interface goes down (
 .B NOT
 used by the Linux).
 
+.TP
+.BR "promisc on " or " promisc off"
+change the
+.B PROMISC
+flag on the device. This requests receipt of all packets arriving at the NIC
+irrespective of their destination MAC address. It is typically used by traffic
+sniffers and also set by Linux bridges for their ports.
+
 .TP
 .BI name " NAME"
 change the name of the device. This operation is not
-- 
2.20.1


^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [iproute PATCH] man: ip-link: Describe promisc mode
  2019-02-11  9:17   ` [iproute PATCH] man: ip-link: Describe promisc mode Phil Sutter
@ 2019-02-11 19:36     ` Stephen Hemminger
  2019-02-12 15:42       ` Phil Sutter
  0 siblings, 1 reply; 5+ messages in thread
From: Stephen Hemminger @ 2019-02-11 19:36 UTC (permalink / raw)
  To: Phil Sutter; +Cc: netdev, William Flanagan

On Mon, 11 Feb 2019 10:17:06 +0100
Phil Sutter <phil@nwl.cc> wrote:

> Briefly explain what it is and where it's typically used.
> 
> Signed-off-by: Phil Sutter <phil@nwl.cc>
> ---
>  man/man8/ip-link.8.in | 8 ++++++++
>  1 file changed, 8 insertions(+)
> 
> diff --git a/man/man8/ip-link.8.in b/man/man8/ip-link.8.in
> index 73d37c190fffa..5c327f01b6b45 100644
> --- a/man/man8/ip-link.8.in
> +++ b/man/man8/ip-link.8.in
> @@ -1780,6 +1780,14 @@ flag on the device. Indicates that address can change when interface goes down (
>  .B NOT
>  used by the Linux).
>  
> +.TP
> +.BR "promisc on " or " promisc off"
> +change the
> +.B PROMISC
> +flag on the device. This requests receipt of all packets arriving at the NIC
> +irrespective of their destination MAC address. It is typically used by traffic
> +sniffers and also set by Linux bridges for their ports.

This added sentence is confusing. The Linux bridge enables it by default,
and if a sniffer wants to enable it then it is best done from the application.
In either case the user should not need to directly set this through ip commands.

Yes, there are a lots of incorrect web pages out there that say you need to
set an interface into promiscious mode (with ifconfig) before adding it to a bridge.
That might have been true 20 years ago, but hasn't been needed since Linux 2.4

Bottom line, adding this to the documentation is not going to be helpful.

^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [iproute PATCH] man: ip-link: Describe promisc mode
  2019-02-11 19:36     ` Stephen Hemminger
@ 2019-02-12 15:42       ` Phil Sutter
  0 siblings, 0 replies; 5+ messages in thread
From: Phil Sutter @ 2019-02-12 15:42 UTC (permalink / raw)
  To: Stephen Hemminger; +Cc: netdev, William Flanagan

Hi,

On Mon, Feb 11, 2019 at 11:36:10AM -0800, Stephen Hemminger wrote:
> On Mon, 11 Feb 2019 10:17:06 +0100
> Phil Sutter <phil@nwl.cc> wrote:
[...]
> > diff --git a/man/man8/ip-link.8.in b/man/man8/ip-link.8.in
> > index 73d37c190fffa..5c327f01b6b45 100644
> > --- a/man/man8/ip-link.8.in
> > +++ b/man/man8/ip-link.8.in
> > @@ -1780,6 +1780,14 @@ flag on the device. Indicates that address can change when interface goes down (
> >  .B NOT
> >  used by the Linux).
> >  
> > +.TP
> > +.BR "promisc on " or " promisc off"
> > +change the
> > +.B PROMISC
> > +flag on the device. This requests receipt of all packets arriving at the NIC
> > +irrespective of their destination MAC address. It is typically used by traffic
> > +sniffers and also set by Linux bridges for their ports.
> 
> This added sentence is confusing. The Linux bridge enables it by default,
> and if a sniffer wants to enable it then it is best done from the application.
> In either case the user should not need to directly set this through ip commands.

Well, "used by traffic sniffers" does not imply they don't set it by
themselves (at least not in the German accent I'm reading it :). And
there probably are ones that don't.

> Yes, there are a lots of incorrect web pages out there that say you need to
> set an interface into promiscious mode (with ifconfig) before adding it to a bridge.
> That might have been true 20 years ago, but hasn't been needed since Linux 2.4

In this case ip-link.8 would become a resource pointing out that bridges
do that by themselves nowadays.

> Bottom line, adding this to the documentation is not going to be helpful.

OK, so I'll send a v2 with that last sentence removed?

Thanks, Phil

^ permalink raw reply	[flat|nested] 5+ messages in thread

end of thread, back to index

Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-02-09 20:22 How to set promiscuous mode William Flanagan
2019-02-11  9:14 ` Phil Sutter
2019-02-11  9:17   ` [iproute PATCH] man: ip-link: Describe promisc mode Phil Sutter
2019-02-11 19:36     ` Stephen Hemminger
2019-02-12 15:42       ` Phil Sutter

Netdev Archive on lore.kernel.org

Archives are clonable:
	git clone --mirror https://lore.kernel.org/netdev/0 netdev/git/0.git
	git clone --mirror https://lore.kernel.org/netdev/1 netdev/git/1.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 netdev netdev/ https://lore.kernel.org/netdev \
		netdev@vger.kernel.org netdev@archiver.kernel.org
	public-inbox-index netdev


Newsgroup available over NNTP:
	nntp://nntp.lore.kernel.org/org.kernel.vger.netdev


AGPL code for this site: git clone https://public-inbox.org/ public-inbox