I'm writing a simple python script to parse the headers of raw data packets received via socket. The script runs on a VM and another VM is generating packets and sending them in. (Both VMs are running linux). This is part of a setup in which custom headers are made for the packets before sending them off, and the entire purpose of the script is to receive the packets completely unblemished via the socket, and verify their content.
The first header is a standard Ethernet header, with 6 bytes each for the DMAC and SMAC, four bytes for VLAN related fields (TPID, PCP and ID), and two bytes for Ethertype.
The problem I'm encountering is that the VLAN fields (four bytes) are stripped from the packets before I receive them (all the rest of the packet is present). I am not very familiar with the various elements of virtual HW along the network path between the two VMs, though I suspect that the stripping is being done there.
Here is the method I use to open the socket:
def openSocketToInterface(nicInterface):
ETH_P_ALL = 3 # To receive all Ethernet protocols
socketToInterface = socket.socket(socket.AF_PACKET, socket.SOCK_RAW,
socket.htons(ETH_P_ALL))
socketToInterface.bind((nicInterface, 0))
subprocess.check_call('ifconfig %s promisc' % (nicInterface),
shell=True)
return socketToInterface
Is there a way I can prevent the VLAN fields from being stripped?
