Welcome to the Linux Foundation Forum!

Lab 3.4 - tcpdump not working

cteodor
cteodor Posts: 2
in LFS258 Class Forum

Despite curl works (and pod is on worker), a tcpdump does not show anything.
I eventually found was apparmor.
So hoping to save somebody some neurons:
apt-get install apparmor-utils
aa-complain /usr/sbin/tcpdump

Comments

  • serewicz
    serewicz Posts: 1,003

    Hello,

    If you reference the overview of the installation lab it specifically directs you to disable apparmor, for these types of reasons

    Regards,

  • cvrr
    cvrr Posts: 2
    edited October 2021

    I am getting following error when trying to run tcpdump
    student@worker:~$ sudo tcpdump -i tun10
    tcpdump: tun10: No such device exists
    (SIOCGIFHWADDR: No such device)

    student@worker:~$

    student@worker:~$ ip a
    1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
    valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
    valid_lft forever preferred_lft forever
    2: ens4: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1460 qdisc mq state UP group default qlen 1000
    link/ether 42:01:0a:02:00:05 brd ff:ff:ff:ff:ff:ff
    inet 10.2.0.5/32 scope global dynamic ens4
    valid_lft 2756sec preferred_lft 2756sec
    inet6 fe80::4001:aff:fe02:5/64 scope link
    valid_lft forever preferred_lft forever
    3: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default
    link/ether 02:42:a7:20:e8:b4 brd ff:ff:ff:ff:ff:ff
    inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
    valid_lft forever preferred_lft forever
    4: tunl0@NONE: <NOARP,UP,LOWER_UP> mtu 1440 qdisc noqueue state UNKNOWN group default qlen 1000
    link/ipip 0.0.0.0 brd 0.0.0.0
    inet 192.168.171.64/32 scope global tunl0
    valid_lft forever preferred_lft forever
    9: cali8b699de403e@if4: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1440 qdisc noqueue state UP group default
    link/ether ee:ee:ee:ee:ee:ee brd ff:ff:ff:ff:ff:ff link-netnsid 1
    inet6 fe80::ecee:eeff:feee:eeee/64 scope link
    valid_lft forever preferred_lft forever

    student@worker:~$

    student@master:~$ kubectl get pod -owide
    NAME READY STATUS RESTARTS AGE IP NODE NOMINATED NODE READINESS GATES
    nginx-7848d4b86f-67d7n 1/1 Running 0 13m 192.168.171.67 worker
    student@master:~$ sudo ip a | grep inet
    inet 127.0.0.1/8 scope host lo
    inet6 ::1/128 scope host
    inet 10.2.0.4/32 scope global dynamic ens4
    inet6 fe80::4001:aff:fe02:4/64 scope link
    inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
    inet 192.168.219.64/32 scope global tunl0
    inet6 fe80::ecee:eeff:feee:eeee/64 scope link
    inet6 fe80::ecee:eeff:feee:eeee/64 scope link
    inet6 fe80::ecee:eeff:feee:eeee/64 scope link
    student@master:~$

  • cvrr
    cvrr Posts: 2

    :)
    tunl0 not tun10
    my bad

Categories

Upcoming Training