# Operation of a Basic Ethernet Switch or Bridge
<i>Adapted for use with FABRIC from [Operation of a basic Ethernet switch or bridge](https://witestlab.poly.edu/blog/basic-ethernet-switch-operation/)</i>
        
<b> Prerequisites  </b>
    
* You need to have your FABRIC bastion host key pair set up to do this tutorial. If you have not already set this up, follow steps 1-3 at https://learn.fabric-testbed.net/knowledge-base/logging-into-fabric-vms/.
* You are comfortable using ssh and executing basic commands using a UNIX shell. [Tips about how to login to hosts.](https://learn.fabric-testbed.net/knowledge-base/logging-into-fabric-vms/)

Switches and bridges improve performance by partitioning the collision domain, the section of network where frames will collide and destroy each other. Only one host within a collision domain may transmit, else collisions will be present. Thus, network capacity is shared with all hosts in a collision domain. Using a learning switch or bridge, each port on a switch becomes its own collision domain, so each network segment can separately support the full network capacity.

## 1. Design the Experiment
### 1.1 Reserve Resources

#### Import the Fabric API

In [None]:
from fabrictestbed_extensions.fablib.fablib import FablibManager as fablib_manager

fablib = fablib_manager()
                     
fablib.show_config()

import json
import traceback

#### Create slice
Four nodes will be connected to a single "Bridge" node.

In [None]:
try:
    site = "TACC"
    #Create Slice
    slice = fablib.new_slice(name="BridgeOp")
    
    #Bridge
    bridge = slice.add_node(name="bridge", site=site)
    bridge.set_capacities(cores=4, ram=16, disk=50)
    bridge.set_image("default_ubuntu_20")
    bp1 = bridge.add_component(model='NIC_Basic', name="bp1").get_interfaces()[0] 
    bp2 = bridge.add_component(model='NIC_Basic', name="bp2").get_interfaces()[0] 
    bp3 = bridge.add_component(model='NIC_Basic', name="bp3").get_interfaces()[0] 
    bp4 = bridge.add_component(model='NIC_Basic', name="bp4").get_interfaces()[0] 
    
    #Host 1
    host1 = slice.add_node(name="host1", site=site)
    host1.set_capacities(cores=4, ram=16, disk=50)
    host1.set_image("default_ubuntu_20")
    h1Port = host1.add_component(model='NIC_Basic', name="h1Port").get_interfaces()[0] 
    
    #Host 2
    host2 = slice.add_node(name="host2", site=site)
    host2.set_capacities(cores=4, ram=16, disk=50)
    host2.set_image("default_ubuntu_20")
    h2Port = host2.add_component(model='NIC_Basic', name="h2Port").get_interfaces()[0] 
    
    #Host 3
    host3 = slice.add_node(name="host3", site=site)
    host3.set_capacities(cores=4, ram=16, disk=50)
    host3.set_image("default_ubuntu_20")
    h3Port = host3.add_component(model='NIC_Basic', name="h3Port").get_interfaces()[0] 
    
    #Host 4
    host4 = slice.add_node(name="host4", site=site)
    host4.set_capacities(cores=4, ram=16, disk=50)
    host4.set_image("default_ubuntu_20")
    h4Port = host4.add_component(model='NIC_Basic', name="h4Port").get_interfaces()[0] 
    
    lan1 = slice.add_l2network(name="Lan1", interfaces=[bp1, h1Port])
    lan2 = slice.add_l2network(name="Lan2", interfaces=[bp2, h2Port])
    lan3 = slice.add_l2network(name="Lan3", interfaces=[bp3, h3Port])
    lan4 = slice.add_l2network(name="Lan4", interfaces=[bp4, h4Port])
    
    #Submit Slice Request
    slice.submit()
except Exception as e:
    print(f"Slice Failed: {e}")

In [None]:
slice = fablib.get_slice("BridgeOp")
slice.list_nodes()

#### Set IPs
Setup a unique IP to all nodes except the "Bridge"

In [None]:
from ipaddress import ip_address, IPv4Address, IPv6Address, IPv4Network, IPv6Network

try:
    bridge = slice.get_node(name="bridge") 
    host1 = slice.get_node(name="host1") 
    host2 = slice.get_node(name="host2")
    host3 = slice.get_node(name="host3") 
    host4 = slice.get_node(name="host4")
    
    subnet1 = IPv4Network("12.0.0.0/24")
    subnet2 = IPv4Network("13.0.0.0/24")
    subnet3 = IPv4Network("14.0.0.0/24")
    subnet4 = IPv4Network("15.0.0.0/24")
    
    host1_iface = host1.get_interface(network_name="Lan1")
    host1_iface.ip_addr_add(addr="12.0.0.1", subnet=subnet1)
    
    host2_iface = host2.get_interface(network_name="Lan2")
    host2_iface.ip_addr_add(addr="13.0.0.1", subnet=subnet2) 
    
    host3_iface = host3.get_interface(network_name="Lan3")
    host3_iface.ip_addr_add(addr="14.0.0.1", subnet=subnet3)
    
    host4_iface = host4.get_interface(network_name="Lan4")
    host4_iface.ip_addr_add(addr="15.0.0.1", subnet=subnet4) 
    
    bridge_iface1 = bridge.get_interface(network_name="Lan1")
    bridge_iface1.ip_addr_add(addr="12.0.0.2", subnet=subnet1)
    
    bridge_iface2 = bridge.get_interface(network_name="Lan2")
    bridge_iface2.ip_addr_add(addr="13.0.0.2", subnet=subnet2)
    
    bridge_iface3 = bridge.get_interface(network_name="Lan3")
    bridge_iface3.ip_addr_add(addr="14.0.0.2", subnet=subnet3)
    
    bridge_iface4 = bridge.get_interface(network_name="Lan4")
    bridge_iface4.ip_addr_add(addr="15.0.0.2", subnet=subnet4)
    bridge.execute("sudo sysctl -w net.ipv4.ip_forward=1")
    
    for node in slice.get_nodes():
        node.execute("sudo apt install net-tools; sudo ifconfig ens7 up;")
    host1.execute("sudo ip route add 13.0.0.0/24 via 12.0.0.2;sudo ip route add 14.0.0.0/24 via 12.0.0.2;sudo ip route add 15.0.0.0/24 via 12.0.0.2;")
    host2.execute("sudo ip route add 12.0.0.0/24 via 13.0.0.2;sudo ip route add 14.0.0.0/24 via 13.0.0.2;sudo ip route add 15.0.0.0/24 via 13.0.0.2;")
    host3.execute("sudo ip route add 13.0.0.0/24 via 14.0.0.2;sudo ip route add 12.0.0.0/24 via 14.0.0.2;sudo ip route add 15.0.0.0/24 via 14.0.0.2;")
    host4.execute("sudo ip route add 13.0.0.0/24 via 15.0.0.2;sudo ip route add 14.0.0.0/24 via 15.0.0.2;sudo ip route add 12.0.0.0/24 via 15.0.0.2;")
    
except Exception as e:
    print(f"Exception: {e}")

## 2. Set up the bridge

#### Install the bridge software

In [None]:
bridge =  slice.get_node(name="bridge") 
bridge.execute("sudo apt-get update; sudo apt-get -y install bridge-utils; sudo apt-get -y install net-tools;")

#### Create a new bridge interface `br0`

In [None]:
bridge.execute("sudo brctl addbr br0")

#### Add the four interfaces to the bridge

In [None]:
bridge.execute("sudo brctl addif br0 ens7;\
sudo brctl addif br0 ens8;\
sudo brctl addif br0 ens9;\
sudo brctl addif br0 ens10;")

#### Bring up all interfaces

In [None]:
bridge.execute("sudo ifconfig ens7 up;\
sudo ifconfig ens8 up;\
sudo ifconfig ens9 up;\
sudo ifconfig ens10 up;\
sudo ifconfig br0 up;")

#### List the bridge ports

bridgeports = bridge.execute("brctl show br0")
print(bridgeports[0])

#### List the bridge known MAC addresses
It is ok if the list prints twice

In [None]:
bridgemacs = bridge.execute("brctl showmacs br0")
print(bridgemacs[0])

### Connect to each node with an SSH terminal and ping each of the other nodes with the following commands:

`ping -c 1 12.0.0.1 ` 
    <br>`ping -c 1 13.0.0.1 ` 
    <br>`ping -c 1 14.0.0.1 ` 
    <br>`ping -c 1 15.0.0.1 `
    
Immediately after pinging, execute the following code block:

In [None]:
bridgemacs = bridge.execute("brctl showmacs br0")
print(bridgemacs[0])

As nodes communicate, the bridge learns their respective port and adds it to the table. Over time, the "ageing timer" column increases. Once an entry exceeds 300 seconds, it is removed from the table. When rerunning `brctl showmacs br0` after 300 seconds, the entries will be removed from the table.

## 3. Building a table

We will study how MAC addresses are added to the forwarding table on the bridge. Start by verifying all addresses in the forwarding table are local (no entry says "no" in `is local?` column). If there are non local addresses, wait for them to leave the table.

In [None]:
bridge = slice.get_node(name="bridge")
bridgemacs = bridge.execute("brctl showmacs br0")
print(bridgemacs[0])

Open an SSH terminal to the bridge node and run:
    `bridge monitor fdb`
   
This will show new entries live, as they are added to or removed from the forwarding table.

On the end-pointh nodes we will use `tcpdump` to watch traffic on the interface connected to the bridge. Run:
    `sudo tcpdump -n -e -i ens7`
    
Open an additional terminal on `node1` and send some traffic to `node2`:
    `ping -c 5 13.0.0.1`
    
1. The output will show a frame from `node1` will arrive on the switch.

    * This exchange causes node1 to be added to the forwarding table.
    
2. The frame is then sent over all ports as it doesn't know the bridge with the destination at this point.
3. `node2` will generate a response to this packet and send an echo response to `node1`.
    * Since the bridge already knows the port for `node1`, the packet won't be sent to `node3` or `node4`.

## 4. Cleanup Resources
### 4.1 Delete Slice

In [None]:
try:
    slice = fablib.get_slice("BridgeOp")
    slice.delete()
except Exception as e:
    print(f"Fail: {e}")