Watched your all courses and still wait for your new videos, so I can learn from you. Not because I have hunger to learn, because you know how to feed knowledge even to a not hungry person.❤
Wow Hussein, you are doing an amazing work sir, These concepts are insightful for someone who always uses these and never understand whats going under the hood. Thanks a ton!
2:58 AFAIK this shouldn't be true today with switches, they send the the package only for the intended destination. Which wasn't the case in ethernet hubs (never seen one lmao). But the issue is you can spoof the destination if you answer the ARP broadcasts. Wifi it still applies. Need to test this later with promiscuous mode. My lab is offline rn so kinda hard to do
Maybe I misunderstand your statement that a frame is only copied to the kernel if it matches the NIC address, or maybe I misunderstand Linux bridging. Wouldn't all frames enter the kernel on a Linux bridge? My Linux bridges aren't promisc either.
If we are on the same network, sending a packet will get to the firewall machine, and the firewall machine will forward it back to the network if it passes some criteria, my questions is, you said that when we send a packet to the network everyone will receive the packet, in this case the other device(the real destination ) will receive this packet in the same time the firewall does, so does that makes the firewall useless?
Depends on what you mean by worthless. Assuming you meant the firewall is a NAT router or similar then it's not used or needed. If two devices are on the same LAN then ARP will take care of it and the router isn't doing anything.
We are hijabis, the men and boys in our house would notify us when someone's at the door so that we get something to throw on our head or we just go to our room
Check out my fundamentals of network engineering network.husseinnasser.com
I enjoy your cadence and methodology of teaching. Just started your fundamentals course
Watched your all courses and still wait for your new videos, so I can learn from you. Not because I have hunger to learn, because you know how to feed knowledge even to a not hungry person.❤
I'm currently working with aviation router technologies in my job. This video popping up really made me happy. 🙂
I don't think I have ever used this parameter before, but it's always nice to learn new things in case one day you need it :)
Wow Hussein, you are doing an amazing work sir, These concepts are insightful for someone who always uses these and never understand whats going under the hood. Thanks a ton!
no need to appologies, life is not always same :) , good to see you!, really missing those crash courses and deep analysis videos!
2:58 AFAIK this shouldn't be true today with switches, they send the the package only for the intended destination. Which wasn't the case in ethernet hubs (never seen one lmao). But the issue is you can spoof the destination if you answer the ARP broadcasts. Wifi it still applies.
Need to test this later with promiscuous mode. My lab is offline rn so kinda hard to do
Maybe I misunderstand your statement that a frame is only copied to the kernel if it matches the NIC address, or maybe I misunderstand Linux bridging. Wouldn't all frames enter the kernel on a Linux bridge? My Linux bridges aren't promisc either.
Good to see you man!
If we are on the same network, sending a packet will get to the firewall machine, and the firewall machine will forward it back to the network if it passes some criteria, my questions is, you said that when we send a packet to the network everyone will receive the packet, in this case the other device(the real destination ) will receive this packet in the same time the firewall does, so does that makes the firewall useless?
Depends on what you mean by worthless. Assuming you meant the firewall is a NAT router or similar then it's not used or needed. If two devices are on the same LAN then ARP will take care of it and the router isn't doing anything.
It's confusing... has the firewall only one network interface or it's just to explain the idea?
Is there any drawback when this flag is enabled?
you are a software craftsman 👨💻
Yup. Had to enable this one to let my LXD containers and VMs have internet access.
nice to see you
routers aren't machines?
We are hijabis, the men and boys in our house would notify us when someone's at the door so that we get something to throw on our head or we just go to our room
yes