I see some reference to vxlan in your sysctls, you confirm that the tap interfaces are in the same bridge ?
Also is it a normal bridge or an ovs bridge ? (not sure what commands to use, maybe "ovs-vsctl show")
Some more commands
ebtables-save
ip l
bridge vlan show
ovs-vsctl show
Also can you test with `ra = Ether()/Dot1AD(vlan=0)/Dot1AD(vlan=0)` ?
I need to understand why it's not going through the bridge, because I don't see any major differences with LXD for now, and LXD was definitely vulnerable.
Hi Slavek,
Thanks again for your tests.
I see some reference to vxlan in your sysctls, you confirm that the tap interfaces are in the same bridge ?
Also is it a normal bridge or an ovs bridge ? (not sure what commands to use, maybe "ovs-vsctl show")
Some more commands
ebtables-save
ip l
bridge vlan show
ovs-vsctl show
Also can you test with `ra = Ether() /Dot1AD( vlan=0) /Dot1AD( vlan=0) ` ?
I need to understand why it's not going through the bridge, because I don't see any major differences with LXD for now, and LXD was definitely vulnerable.