[NETVIRT-415] IPv6 Service :Rogue Neighbor Advertisement packets are not dropping at table=40 - OpenDaylight JIRA

XML

Word

Printable

Details

Type: Bug
Status: Resolved
Priority: Medium
Resolution: Won't Do
Affects Version/s: Boron
Fix Version/s: None
Component/s: General
Labels:
None
Environment:

Operating System: All
Platform: All

External issue ID:
7503

Description

Steps followed :
1.Sending the Rogue NA packets from VM1 to VM2 using scapy tool and packets are not dropping at table=40

ODL

VM1(Attacker VM) --> VM2 (Victim VM)

VM details and default route entry 'fe80::f816:3eff:fe03:6107' :

Attack VM1 ipv6 address : '2001:db8:2fff:0:f816:3eff:fe85:de74'
Mac address : 'fa:16:3e:85:de:74'
Victim VM2 ipv6 address : '2001:db8:2fff:0:f816:3eff:fee9:9284'
Mac address : 'fa:16:3e:e9:92:84'
Target ipv6 address ( Default -route : tgt='fe80::f816:3eff:fe03:6107' and its mac address : fa:16:3e:03:61:07

1. Before sending the rouge NA packets to Victim VM

root@ubuntu-sg:~# ip neighbor show
2001:db8:2fff:0:f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe03:6107 dev ens3 lladdr fa:16:3e:03:61:07 router REACHABLE

2. After Sending the NA from VM1 to VM2 with target spoof mac using the scapy tool. 'fe80::f816:3eff:fe03:6107' and changing the mac address : 00:00:00:00:00:0c

And in VM2 ( Victim VM) is compromising with spoof target mac address :
root@ubuntu-sg:~# ip neighbor show
2001:db8:2fff:0:f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe03:6107 dev ens3 lladdr 00:00:00:00:00:0c DELAY
root@ubuntu-sg:~# ip neighbor show
2001:db8:2fff:0:f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe03:6107 dev ens3 lladdr 00:00:00:00:00:0c STALE
root@ubuntu-sg:~# ip neighbor show
2001:db8:2fff:0:f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe03:6107 dev ens3 lladdr 00:00:00:00:00:0c DELAY
root@ubuntu-sg:~# ip neighbor show
2001:db8:2fff:0:f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe03:6107 dev ens3 lladdr 00:00:00:00:00:0c DELAY
root@ubuntu-sg:~# ip neighbor show
2001:db8:2fff:0:f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe85:de74 dev ens3 lladdr fa:16:3e:85:de:74 STALE
fe80::f816:3eff:fe03:6107 dev ens3 lladdr 00:00:00:00:00:0c DELAY

its not dropping at table=40

Attaching the packet capture at both the VMs.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

test-pcap.7z
10/Jan/17 9:12 AM
0.8 kB
mahesh loni

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Sridhar Gaddam

Reporter:: mahesh loni

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 10/Jan/17 9:12 AM

Updated:: 05/Apr/18 9:51 PM

Resolved:: 05/Apr/18 9:51 PM