Project

General

Profile

Actions

Feature #13411

open

Packet capture does not support 6rd tunnels

Added by Daniel Engel about 2 months ago. Updated about 1 month ago.

Status:
Pull Request Review
Priority:
Low
Assignee:
Category:
Packet Capture
Target version:
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
22.11
Release Notes:
Default

Description

Only the WAN interface is shown in the interface selection box, no sign of WAN_STF.

The capture log is empty after selecting "WAN" and "IPv6 Only" as filters. The WAN interface appears to select my PPPOE connection only, as evidenced by the pfsense command:

/usr/sbin/tcpdump -i pppoe0 -p -c 100 -s 0 -w /root/packetcapture.cap ip6

When I run a modified command directly from the shell interface with the correct interface, I get results

/usr/sbin/tcpdump -i wan_stf -p -c 100 -s 0 -w /root/packetcapture.cap ip6

Files

838_2.6.0.patch (60.7 KB) 838_2.6.0.patch Marcos M, 08/16/2022 03:49 PM

Related issues

Related to Feature #13382: More flexible packet capture GUIPull Request ReviewMarcos M

Actions
Actions #1

Updated by Marcos M about 1 month ago

If I understand this correctly, the following patch should cover it:
https://redmine.pfsense.org/issues/13382

Apply the contents of the .diff file using the System Patches package.

Actions #2

Updated by Daniel Engel about 1 month ago

I can't say whether the patch makes any difference or not; I cannot apply it:

Patch does not apply cleanly (detail)
Patch does not revert cleanly (detail)

Debug Result: Fail

And the details:
/usr/bin/patch --directory='/' -t  --strip '2' -i '/var/patches/62fbe7c0b421e.patch' --check --forward --ignore-whitespace

Hmm...  Looks like a unified diff to me...
The text leading up to this was:
--------------------------
|diff --git a/src/usr/local/www/diag_packet_capture.php b/src/usr/local/www/diag_packet_capture.php
|index b6d2fecc97508aff4dd8f1f39f073693a23ff607..18a92df24f283e5bcded2f932cb459bd1b5b521c 100755
|--- a/src/usr/local/www/diag_packet_capture.php
|+++ b/src/usr/local/www/diag_packet_capture.php
--------------------------
Patching file usr/local/www/diag_packet_capture.php using Plan A...
Hunk #1 failed at 28.
1 out of 1 hunks failed while patching usr/local/www/diag_packet_capture.php
done

Are there perhaps baseline differences in diag_packet_capture.php between 2.6.0 and 2.7.0?

Actions #3

Updated by Marcos M about 1 month ago

It should work on 22.05 and 2.7. Here's the patch specifically for 2.6 though.

Actions #4

Updated by Daniel Engel about 1 month ago

Thanks; I can confirm that this works.
  • Installs cleanly with the System Patches tool
  • Provides the option to capture on wan_stf
  • Successfully downloads the .cap file with IPV6 traffic

One minor issue: when the maximum number of packets is set to zero, the tcpdump command line still has a limit parameter " -c 0", and no capture occurs. I changed line 1226 to:

$cmd_count = $input_count == 0 ? "" : sprintf(' -c %d', $input_count);

ALso -- and I suspect this is a limitation of tcpdump -- but it would be ideal if the PPPOE and WAN_STF (6RD) connection could be captured simultaneously as WAN. This would mirror the behavior on the firewall rules page.

Actions #5

Updated by Marcos M about 1 month ago

  • Tracker changed from Bug to Feature
  • Status changed from New to Pull Request Review
  • Assignee set to Marcos M
  • Target version set to 2.7.0
  • Plus Target Version set to 22.11
  • Affected Version deleted (2.6.0)

Thanks for the feedback! I've addressed the issue.

Actions #6

Updated by Marcos M about 1 month ago

Actions

Also available in: Atom PDF