Package: kvm
Version: 85+dfsg-4
Severity: critical
Hi,
I'm starting kvm with 2 network interfaces like this:
sudo kvm -m 256 -drive file=/scratch/ramdisk/build/build/hda.img,if=ide,boot=on
-drive file=/scratch/ramdisk/build/build/hdb.img,if=ide,boot=off -net
nic,model=e1000,macaddr=54:52:00:00:42:12 -net tap -net
nic,model=e1000,macaddr=54:52:00:00:42:13 -net tap -smp 1 -kernel
/scratch/ramdisk/build/build/chroot-amd64/boot/vmlinuz-2.6.27.34-1-ql-beowulf
-append root=/dev/ram0 rw ramdisk_size=97872 console=ttyS0,115200 quiet
--initrd /scratch/ramdisk/build/build/image-beobox-amd64-7.0.0-0.gz -nographic
and the /etc/kvm/kvm-ifup script adds both devices to a bridge:
----------------------------------------------------------------------
cat /etc/kvm/kvm-ifup
#!/bin/sh
# NOTE: For this script to operate properly, it is expected that
# you have a br0
BRIDGE=br0
/sbin/ifconfig $1 0.0.0.0 up
/usr/sbin/brctl addif $BRIDGE $1
----------------------------------------------------------------------
The strange thing now is that somehow creates a network loop causing a
DOS attack on the local network within seconds. In tcpdump I saw a
DHCP Reply to 255.255.255.255 over and over and over again but I guess
any broadcast will do. This causes >90% package loss making the local
network completly unusable.
Michael Tokarev (mjt on #debian-devel) could reproduce the problem.
MfG
Goswin
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
