Skip to content

Latest commit

 

History

History
118 lines (88 loc) · 2.8 KB

unix-net.md

File metadata and controls

118 lines (88 loc) · 2.8 KB

UNIX networking

  • Note: Use dockerfile in root for testing the below
cd docker
docker build -t container-unix .
docker run -it --privileged --name container-unix container-unix /bin/sh

Custom network namespace in UNIX

graph TD
    subgraph Default Namespace
        A[Default Namespace]
        veth0
        veth0 --> B[192.168.1.1/24]
        veth0 --> veth1
    end

    subgraph New Namespace
        A1[my_namespace]
        veth1 --> B1[192.168.1.2/24]
        veth1 --> lo
        lo[Loopback Interface] --> lo_up[up]
    end

    veth0 -->|virtual ethernet link| veth1
    A1 -->|ping| A
    A -->|response| A1
Loading 
# Create a new network namespace using ip netns.
ip netns add my_namespace
# Create a pair of virtual Ethernet devices.
ip link add veth0 type veth peer name veth1

# Move one end of the virtual Ethernet pair to the new namespace.
ip link set veth1 netns my_namespace

# Set up the interfaces in both the default namespace and the new namespace.
ip addr add 192.168.1.1/24 dev veth0
ip link set veth0 up
ip netns exec my_namespace ip addr add 192.168.1.2/24 dev veth1
ip netns exec my_namespace ip link set veth1 up
ip netns exec my_namespace ip link set lo up

# Test connectivity between the default namespace and the new namespace.
ip netns exec my_namespace ping 192.168.1.1

VLANs

graph TD
    subgraph Default Namespace
        A[Default Namespace]
        veth0
        veth0 --> B[192.168.1.1/24]
        veth0 --> veth1
        veth0.10[VLAN Interface veth0.10]
        veth0.10 --> C[192.168.10.1/24]
    end

    subgraph New Namespace
        A1[my_namespace]
        veth1 --> B1[192.168.1.2/24]
        veth1 --> lo
        lo[Loopback Interface] --> lo_up[up]
        veth1.10[VLAN Interface veth1.10]
        veth1.10 --> C1[192.168.10.2/24]
    end

    veth0 -->|virtual ethernet link| veth1
    A1 -->|ping| A
    A -->|response| A1

    veth0.10 -->|VLAN id=10| veth1.10
    A1 -->|ping over VLAN| veth0.10
    veth0.10 -->|response| A1
Loading 
# Create & Add a VLAN interface to one of the virtual Ethernet devices.
ip link add link veth0 name veth0.10 type vlan id 10
ip addr add 192.168.10.1/24 dev veth0.10
ip link set veth0.10 up


# Set up the VLAN interface in the network namespace.
ip netns exec my_namespace ip link add link veth1 name veth1.10 type vlan id 10
ip netns exec my_namespace ip addr add 192.168.10.2/24 dev veth1.10
ip netns exec my_namespace ip link set veth1.10 up

# Verify connectivity over the VLAN.
ip netns exec my_namespace ping 192.168.10.1

Network performance testing

# Run iperf in server mode in one container and client mode in another to test network performance.
iperf -s   # In server container
iperf -c <server_ip>  # In client container


# Capture Packets and analyse traffic

tcpdump -i eth0