Home Explore Help
Sign In
golang
/
netmaker
mirror of https://github.com/gravitl/netmaker
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

comment packet sniffer

Abhishek Kondur 2 years ago
parent
1434147279
commit
06d71d4b69
4 changed files with 143 additions and 149 deletions
Split View Show Diff Stats
  1. 4 4
      nm-proxy/manager/manager.go
  2. 129 134
      nm-proxy/proxy/proxy.go
  3. 3 3
      nm-proxy/proxy/wireguard.go
  4. 7 8
      nm-proxy/server/server.go

+ 4 - 4
nm-proxy/manager/manager.go
View File 

@@ -262,9 +262,9 @@ func (m *ManagerAction) AddInterfaceToProxy() error {
 
 			shouldProceed = true
 
 		}
 
 		if peerConf.IsExtClient && peerConf.IsAttachedExtClient && shouldProceed {
 
-			ctx, cancel := context.WithCancel(context.Background())
 
-			common.ExtClientsWaitTh[wgInterface.Name] = append(common.ExtClientsWaitTh[wgInterface.Name], cancel)
 
-			go proxy.StartSniffer(ctx, wgInterface.Name, peerConf.Address, wgInterface.Port)
 
+			//ctx, cancel := context.WithCancel(context.Background())
 
+			//common.ExtClientsWaitTh[wgInterface.Name] = append(common.ExtClientsWaitTh[wgInterface.Name], cancel)
 
+			//go proxy.StartSniffer(ctx, wgInterface.Name, peerConf.Address, wgInterface.Port)
 
 		}
 
 
 		if peerConf.IsExtClient && !peerConf.IsAttachedExtClient {
 
@@ -302,7 +302,7 @@ func (m *ManagerAction) AddInterfaceToProxy() error {
 
 				defer func() {
 
 					if addExtClient {
 
 						log.Println("GOT ENDPOINT for Extclient adding peer...")
 
-						go proxy.StartSniffer(ctx, wgInterface.Name, peerConf.Address, wgInterface.Port)
 
+						//go proxy.StartSniffer(ctx, wgInterface.Name, peerConf.Address, wgInterface.Port)
 
 						common.PeerKeyHashMap[fmt.Sprintf("%x", md5.Sum([]byte(peer.PublicKey.String())))] = common.RemotePeer{
 
 							Interface:           wgInterface.Name,
 
 							PeerKey:             peer.PublicKey.String(),

+ 129 - 134
nm-proxy/proxy/proxy.go
View File 

@@ -4,13 +4,8 @@ import (
 
 	"context"
 
 	"errors"
 
 	"fmt"
 
-	"log"
 
 	"net"
 
-	"time"
 
 
-	"github.com/google/gopacket"
 
-	"github.com/google/gopacket/layers"
 
-	"github.com/google/gopacket/pcap"
 
 	"github.com/gravitl/netmaker/nm-proxy/common"
 
 	"github.com/gravitl/netmaker/nm-proxy/wg"
 
 	"golang.zx2c4.com/wireguard/wgctrl/wgtypes"
 
@@ -108,132 +103,132 @@ func getBoardCastAddress() ([]net.Addr, error) {
 
 	return nil, errors.New("couldn't obtain the broadcast addr")
 
 }
 
 
-func StartSniffer(ctx context.Context, ifaceName, extClientAddr string, port int) {
 
-	log.Println("Starting Packet Sniffer for iface: ", ifaceName)
 
-	var (
 
-		snapshotLen int32 = 1024
 
-		promiscuous bool  = false
 
-		err         error
 
-		timeout     time.Duration = 1 * time.Microsecond
 
-		handle      *pcap.Handle
 
-	)
 
-	// Open device
 
-	handle, err = pcap.OpenLive(ifaceName, snapshotLen, promiscuous, timeout)
 
-	if err != nil {
 
-		log.Println("failed to start sniffer for iface: ", ifaceName, err)
 
-		return
 
-	}
 
-	// if err := handle.SetBPFFilter(fmt.Sprintf("src %s and port %d", extClientAddr, port)); err != nil {
 
-	// 	log.Println("failed to set bpf filter: ", err)
 
-	// 	return
 
-	// }
 
-	defer handle.Close()
 
-
 
-	// var tcp layers.TCP
 
-	// var icmp layers.ICMPv4
 
-	// var udp layers.UDP
 
-	// parser := gopacket.NewDecodingLayerParser(layers.LayerTypeIPv4, &udp, &tcp, &icmp)
 
-
 
-	packetSource := gopacket.NewPacketSource(handle, handle.LinkType())
 
-	for {
 
-		select {
 
-		case <-ctx.Done():
 
-			log.Println("Stopping packet sniffer for iface: ", ifaceName, " port: ", port)
 
-			return
 
-		default:
 
-			packet, err := packetSource.NextPacket()
 
-			if err == nil {
 
-				//processPkt(ifaceName, packet)
 
-				ipLayer := packet.Layer(layers.LayerTypeIPv4)
 
-				if ipLayer != nil {
 
-					fmt.Println("IPv4 layer detected.")
 
-					ip, _ := ipLayer.(*layers.IPv4)
 
-
 
-					// IP layer variables:
 
-					// Version (Either 4 or 6)
 
-					// IHL (IP Header Length in 32-bit words)
 
-					// TOS, Length, Id, Flags, FragOffset, TTL, Protocol (TCP?),
 
-					// Checksum, SrcIP, DstIP
 
-					fmt.Println("#########################")
 
-					fmt.Printf("From %s to %s\n", ip.SrcIP, ip.DstIP)
 
-					fmt.Println("Protocol: ", ip.Protocol)
 
-					if ip.DstIP.String() == extClientAddr || ip.SrcIP.String() == extClientAddr {
 
-						if ifacePeers, ok := common.PeerAddrMap[ifaceName]; ok {
 
-							if peerConf, ok := ifacePeers[ip.DstIP.String()]; ok {
 
-								log.Println("-----> Fowarding PKT From ExtClient: ", extClientAddr, " to: ", peerConf)
 
-								//server.NmProxyServer.Server.WriteTo(packet.Data(),  )
 
-							}
 
-
 
-						}
 
-					}
 
-
 
-					fmt.Println("#########################")
 
-				}
 
-			}
 
-		}
 
-
 
-	}
 
-}
 
-
 
-func processPkt(iface string, packet gopacket.Packet) {
 
-	// Let's see if the packet is an ethernet packet
 
-	// ethernetLayer := packet.Layer(layers.LayerTypeEthernet)
 
-	// if ethernetLayer != nil {
 
-	// 	fmt.Println("Ethernet layer detected.")
 
-	// 	ethernetPacket, _ := ethernetLayer.(*layers.Ethernet)
 
-	// 	fmt.Println("Source MAC: ", ethernetPacket.SrcMAC)
 
-	// 	fmt.Println("Destination MAC: ", ethernetPacket.DstMAC)
 
-	// 	// Ethernet type is typically IPv4 but could be ARP or other
 
-	// 	fmt.Println("Ethernet type: ", ethernetPacket.EthernetType)
 
-	// 	fmt.Println()
 
-	// }
 
-
 
-	// Let's see if the packet is IP (even though the ether type told us)
 
-	ipLayer := packet.Layer(layers.LayerTypeIPv4)
 
-	if ipLayer != nil {
 
-		fmt.Println("IPv4 layer detected.")
 
-		ip, _ := ipLayer.(*layers.IPv4)
 
-
 
-		// IP layer variables:
 
-		// Version (Either 4 or 6)
 
-		// IHL (IP Header Length in 32-bit words)
 
-		// TOS, Length, Id, Flags, FragOffset, TTL, Protocol (TCP?),
 
-		// Checksum, SrcIP, DstIP
 
-		fmt.Printf("From %s to %s\n", ip.SrcIP, ip.DstIP)
 
-		fmt.Println("Protocol: ", ip.Protocol)
 
-		fmt.Println()
 
-
 
-	}
 
-
 
-	// udpLayer := packet.Layer(layers.LayerTypeUDP)
 
-	// if udpLayer != nil {
 
-	// 	udp, _ := udpLayer.(*layers.UDP)
 
-	// 	fmt.Printf("UDP: From port %d to %d\n", udp.SrcPort, udp.DstPort)
 
-	// 	fmt.Println()
 
-	// }
 
-
 
-	// // Iterate over all layers, printing out each layer type
 
-	// fmt.Println("All packet layers:")
 
-	// for _, layer := range packet.Layers() {
 
-	// 	fmt.Println("- ", layer.LayerType())
 
-	// }
 
-
 
-	// When iterating through packet.Layers() above,
 
-	// if it lists Payload layer then that is the same as
 
-	// this applicationLayer. applicationLayer contains the payload
 
-	// applicationLayer := packet.ApplicationLayer()
 
-	// if applicationLayer != nil {
 
-	// 	fmt.Println("Application layer/Payload found.")
 
-	// 	fmt.Printf("%s\n", applicationLayer.Payload())
 
-
 
-	// 	// Search for a string inside the payload
 
-	// 	if strings.Contains(string(applicationLayer.Payload()), "HTTP") {
 
-	// 		fmt.Println("HTTP found!")
 
-	// 	}
 
-	// }
 
-
 
-	// Check for errors
 
-	if err := packet.ErrorLayer(); err != nil {
 
-		fmt.Println("Error decoding some part of the packet:", err)
 
-	}
 
-}
 
+// func StartSniffer(ctx context.Context, ifaceName, extClientAddr string, port int) {
 
+// 	log.Println("Starting Packet Sniffer for iface: ", ifaceName)
 
+// 	var (
 
+// 		snapshotLen int32 = 1024
 
+// 		promiscuous bool  = false
 
+// 		err         error
 
+// 		timeout     time.Duration = 1 * time.Microsecond
 
+// 		handle      *pcap.Handle
 
+// 	)
 
+// 	// Open device
 
+// 	handle, err = pcap.OpenLive(ifaceName, snapshotLen, promiscuous, timeout)
 
+// 	if err != nil {
 
+// 		log.Println("failed to start sniffer for iface: ", ifaceName, err)
 
+// 		return
 
+// 	}
 
+// 	// if err := handle.SetBPFFilter(fmt.Sprintf("src %s and port %d", extClientAddr, port)); err != nil {
 
+// 	// 	log.Println("failed to set bpf filter: ", err)
 
+// 	// 	return
 
+// 	// }
 
+// 	defer handle.Close()
 
+
 
+// 	// var tcp layers.TCP
 
+// 	// var icmp layers.ICMPv4
 
+// 	// var udp layers.UDP
 
+// 	// parser := gopacket.NewDecodingLayerParser(layers.LayerTypeIPv4, &udp, &tcp, &icmp)
 
+
 
+// 	packetSource := gopacket.NewPacketSource(handle, handle.LinkType())
 
+// 	for {
 
+// 		select {
 
+// 		case <-ctx.Done():
 
+// 			log.Println("Stopping packet sniffer for iface: ", ifaceName, " port: ", port)
 
+// 			return
 
+// 		default:
 
+// 			packet, err := packetSource.NextPacket()
 
+// 			if err == nil {
 
+// 				//processPkt(ifaceName, packet)
 
+// 				ipLayer := packet.Layer(layers.LayerTypeIPv4)
 
+// 				if ipLayer != nil {
 
+// 					fmt.Println("IPv4 layer detected.")
 
+// 					ip, _ := ipLayer.(*layers.IPv4)
 
+
 
+// 					// IP layer variables:
 
+// 					// Version (Either 4 or 6)
 
+// 					// IHL (IP Header Length in 32-bit words)
 
+// 					// TOS, Length, Id, Flags, FragOffset, TTL, Protocol (TCP?),
 
+// 					// Checksum, SrcIP, DstIP
 
+// 					fmt.Println("#########################")
 
+// 					fmt.Printf("From %s to %s\n", ip.SrcIP, ip.DstIP)
 
+// 					fmt.Println("Protocol: ", ip.Protocol)
 
+// 					if ip.DstIP.String() == extClientAddr || ip.SrcIP.String() == extClientAddr {
 
+// 						if ifacePeers, ok := common.PeerAddrMap[ifaceName]; ok {
 
+// 							if peerConf, ok := ifacePeers[ip.DstIP.String()]; ok {
 
+// 								log.Println("-----> Fowarding PKT From ExtClient: ", extClientAddr, " to: ", peerConf)
 
+// 								//server.NmProxyServer.Server.WriteTo(packet.Data(),  )
 
+// 							}
 
+
 
+// 						}
 
+// 					}
 
+
 
+// 					fmt.Println("#########################")
 
+// 				}
 
+// 			}
 
+// 		}
 
+
 
+// 	}
 
+// }
 
+
 
+// func processPkt(iface string, packet gopacket.Packet) {
 
+// 	// Let's see if the packet is an ethernet packet
 
+// 	// ethernetLayer := packet.Layer(layers.LayerTypeEthernet)
 
+// 	// if ethernetLayer != nil {
 
+// 	// 	fmt.Println("Ethernet layer detected.")
 
+// 	// 	ethernetPacket, _ := ethernetLayer.(*layers.Ethernet)
 
+// 	// 	fmt.Println("Source MAC: ", ethernetPacket.SrcMAC)
 
+// 	// 	fmt.Println("Destination MAC: ", ethernetPacket.DstMAC)
 
+// 	// 	// Ethernet type is typically IPv4 but could be ARP or other
 
+// 	// 	fmt.Println("Ethernet type: ", ethernetPacket.EthernetType)
 
+// 	// 	fmt.Println()
 
+// 	// }
 
+
 
+// 	// Let's see if the packet is IP (even though the ether type told us)
 
+// 	ipLayer := packet.Layer(layers.LayerTypeIPv4)
 
+// 	if ipLayer != nil {
 
+// 		fmt.Println("IPv4 layer detected.")
 
+// 		ip, _ := ipLayer.(*layers.IPv4)
 
+
 
+// 		// IP layer variables:
 
+// 		// Version (Either 4 or 6)
 
+// 		// IHL (IP Header Length in 32-bit words)
 
+// 		// TOS, Length, Id, Flags, FragOffset, TTL, Protocol (TCP?),
 
+// 		// Checksum, SrcIP, DstIP
 
+// 		fmt.Printf("From %s to %s\n", ip.SrcIP, ip.DstIP)
 
+// 		fmt.Println("Protocol: ", ip.Protocol)
 
+// 		fmt.Println()
 
+
 
+// 	}
 
+
 
+// 	// udpLayer := packet.Layer(layers.LayerTypeUDP)
 
+// 	// if udpLayer != nil {
 
+// 	// 	udp, _ := udpLayer.(*layers.UDP)
 
+// 	// 	fmt.Printf("UDP: From port %d to %d\n", udp.SrcPort, udp.DstPort)
 
+// 	// 	fmt.Println()
 
+// 	// }
 
+
 
+// 	// // Iterate over all layers, printing out each layer type
 
+// 	// fmt.Println("All packet layers:")
 
+// 	// for _, layer := range packet.Layers() {
 
+// 	// 	fmt.Println("- ", layer.LayerType())
 
+// 	// }
 
+
 
+// 	// When iterating through packet.Layers() above,
 
+// 	// if it lists Payload layer then that is the same as
 
+// 	// this applicationLayer. applicationLayer contains the payload
 
+// 	// applicationLayer := packet.ApplicationLayer()
 
+// 	// if applicationLayer != nil {
 
+// 	// 	fmt.Println("Application layer/Payload found.")
 
+// 	// 	fmt.Printf("%s\n", applicationLayer.Payload())
 
+
 
+// 	// 	// Search for a string inside the payload
 
+// 	// 	if strings.Contains(string(applicationLayer.Payload()), "HTTP") {
 
+// 	// 		fmt.Println("HTTP found!")
 
+// 	// 	}
 
+// 	// }
 
+
 
+// 	// Check for errors
 
+// 	if err := packet.ErrorLayer(); err != nil {
 
+// 		fmt.Println("Error decoding some part of the packet:", err)
 
+// 	}
 
+// }

+ 3 - 3
nm-proxy/proxy/wireguard.go
View File 

@@ -31,7 +31,7 @@ func (p *Proxy) ProxyToRemote() {
 
 		log.Println("Closing connection for: ", p.LocalConn.LocalAddr().String())
 
 		p.LocalConn.Close()
 
 	}()
 
-	buf := make([]byte, 65535)
 
+	buf := make([]byte, 65000)
 
 	for {
 
 		select {
 
 		case <-p.Ctx.Done():
 
@@ -60,7 +60,7 @@ func (p *Proxy) ProxyToRemote() {
 
 				log.Println("ERRR READ: ", err)
 
 				continue
 
 			}
 
-			// go func(buf []byte, n int) {
 
+			//go func(buf []byte, n int) {
 
 
 			if peerI, ok := peers[p.Config.RemoteKey]; ok {
 
 				//var srcPeerKeyHash, dstPeerKeyHash string
 
@@ -81,7 +81,7 @@ func (p *Proxy) ProxyToRemote() {
 
 			if err != nil {
 
 				log.Println("Failed to send to remote: ", err)
 
 			}
 
-			// }(buf, n)
 
+			//}(buf, n)
 
 
 		}
 
 	}

+ 7 - 8
nm-proxy/server/server.go
View File 

@@ -35,7 +35,7 @@ type ProxyServer struct {
 
 func (p *ProxyServer) Listen(ctx context.Context) {
 
 
 	// Buffer with indicated body size
 
-	buffer := make([]byte, 65535+32)
 
+	buffer := make([]byte, 65032)
 
 	for {
 
 
 		select {
 
@@ -59,11 +59,11 @@ func (p *ProxyServer) Listen(ctx context.Context) {
 
 				log.Println("RECV ERROR: ", err)
 
 				continue
 
 			}
 
-			// go func(buffer []byte, source *net.UDPAddr, n int) {
 
+			//go func(buffer []byte, source *net.UDPAddr, n int) {
 
 
 			var srcPeerKeyHash, dstPeerKeyHash string
 
 			n, srcPeerKeyHash, dstPeerKeyHash = packet.ExtractInfo(buffer, n)
 
-			//log.Printf("--------> RECV PKT [DSTPORT: %d], [SRCKEYHASH: %s], SourceIP: [%s] \n", localWgPort, srcPeerKeyHash, source.IP.String())
 
+			//log.Printf("--------> RECV PKT , [SRCKEYHASH: %s], SourceIP: [%s] \n", srcPeerKeyHash, source.IP.String())
 
 			if _, ok := common.WgIfaceKeyMap[dstPeerKeyHash]; !ok {
 
 				// if common.IsIngressGateway {
 
 				// 	log.Println("----> fowarding PKT to EXT client...")
 
@@ -92,7 +92,7 @@ func (p *ProxyServer) Listen(ctx context.Context) {
 
 							if err != nil {
 
 								log.Println("Failed to send to remote: ", err)
 
 							}
 
-							return
 
+							//continue
 
 						}
 
 					} else {
 
 						if remoteMap, ok := common.RelayPeerMap[dstPeerKeyHash]; ok {
 
@@ -103,7 +103,7 @@ func (p *ProxyServer) Listen(ctx context.Context) {
 
 								if err != nil {
 
 									log.Println("Failed to send to remote: ", err)
 
 								}
 
-								return
 
+								//continue
 
 							}
 
 						}
 
 
@@ -122,12 +122,11 @@ func (p *ProxyServer) Listen(ctx context.Context) {
 
 						_, err = peerI.Proxy.LocalConn.Write(buffer[:n])
 
 						if err != nil {
 
 							log.Println("Failed to proxy to Wg local interface: ", err)
 
-							return
 
+							//continue
 
 						}
 
 
 					}
 
 				}
 
-				return
 
 
 			}
 
 			// // forward to all interfaces
 
@@ -143,7 +142,7 @@ func (p *ProxyServer) Listen(ctx context.Context) {
 
 			// 	}
 
 
 			// }
 
-			// }(buffer, source, n)
 
+			//}(buffer, source, n)
 
 		}
 
 
 	}