Project

General

Profile

Feature #7100

allow vnics to be unfiltered in promiscuous mode

Added by Robert Mustacchi over 4 years ago. Updated about 4 years ago.

Status:
Closed
Priority:
Normal
Category:
networking
Start date:
2016-06-09
Due date:
% Done:

100%

Estimated time:
Difficulty:
Medium
Tags:
Gerrit CR:

Description

Currently when a VNIC is put into promiscuous mode with a request for DL_PROMISC_PHYS it gets traffic as though it were a NIC on a switch. Basically it gets all multicast and broadcast packets, but it only gets unicast packets that are specific to its mac address, even if the underlying device that is in promiscuous mode gets more. This prevents you from having multiple devices with different MAC addresses (like vnics) inside of a KVM guest because while they can send when mac/ip-antispoof are turned off, the promiscuous vnic in the host will not pick up the packets.

To achieve this, we want to add a new option to dladm that will allow us to set a property on vnics that controls whether or not they are in unfiltered promiscuous mode. By default, they should be.

#1

Updated by Electric Monk about 4 years ago

  • Status changed from New to Closed

git commit 10a404923096d60a26c785c3cee15a5c364d51c0

commit  10a404923096d60a26c785c3cee15a5c364d51c0
Author: Robert Mustacchi <rm@joyent.com>
Date:   2016-10-17T20:52:20.000Z

    7100 allow vnics to be unfiltered in promiscuous mode
    Reviewed by: Dan McDonald <danmcd@nexenta.com>
    Reviewed by: Sebastien Roy <sebastien.roy@delphix.com>
    Approved by: Richard Lowe <richlowe@richlowe.net>

Also available in: Atom PDF