On 4/9/22 2:39 pm, Rand Pritelrohm wrote:
1. Bridge using routed subnet: ip link add dev br0 type bridge ip addr add 192.168.222.1/24 dev br0 ip link set dev br0 up ip tuntap add tap0 mode tap ip link set dev tap0 up ip link set dev tap0 master br0 #Then I have to enable routing echo '1' > /proc/sys/net/ipv4/ip_forward iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE 2. Bridge on the same subnet as the LAN: ip link add dev br0 type bridge ip link set dev br0 up ip link set dev eth0 master br0 ip link set dev eth0 up ip addr add 192.168.0.200/24 dev br0 ip route add default via 192.168.0.1 ip tuntap add tap0 mode tap ip link set dev tap0 up ip link set dev tap0 master br0 Here is my question: For both scenarios, what is the effectively seen MAC address by the GW when the VM access the Internet (host or VM MAC address)?
Intuitively (to me at least) NAT/routing (layer 3) replaces the client MAC address with the host MAC, while bridging (layer 2) passes the client MAC address. However to be certain, put wireshark on and look at the packet contents in both scenarios. -- Jeremy
Attachment:
OpenPGP_signature
Description: OpenPGP digital signature