Also remember that if your VR is the default GW, the you should enable icmp(-1) on the FW if you using ping to troubleshoot network connectivity.
Sent from my iPhone On Sep 15, 2012, at 8:46 PM, Nguyễn Đình Việt <viet...@viettel.com.vn> wrote: > Hi guy, > This is result of 'ip route show' command: default via 192.168.2.1 dev em1, > that right. I think bridging works right because I can ping from guest > network (10.1.1.0/24) to pod range (172.15.100.0/24). Any problem in my > network diagrams ? > MS server has 2 NIC card with connectivity diagrams: Node, NFS server (NIC > 1) -------->Switch------>NIC 2 (Management Server) NIC 1 ------> Internet. > > Is there something wrong with the diagram like this.Any attention when > configured, create a zone with this scheme? > > Thanks & Best Regards. > > > > -----Original Message----- > From: Marcus Sorensen [mailto:shadow...@gmail.com] > Sent: Sunday, September 16, 2012 3:29 AM > To: cloudstack-dev@incubator.apache.org > Subject: RE: VMs can not access to Internet via Public IP ??? > > Sounds like a routing issue. I would start on the VR and do an 'ip route > show', then look for default gateway and try to ping that. I imagine you > will see the issue there, either wrong IP/network, no route, or no > connectivity (bridging not working). > On Sep 15, 2012 2:07 PM, "Nguyễn Đình Việt" <viet...@viettel.com.vn> wrote: > >> Hi guy >> I don't think so. I use isolated network with source NAT. Default rule, VR >> block all traffic from outside and permit all from VMs to outside. If the >> cause is port forwarding rule, I will connect to SSVM, CPVM, VR via their >> Public IP. I try setup CS model with only 1 NIC on MS server and it work >> fine (that mean I can ping to public IP of SSVM, CPVM, VR and from VMs can >> connect to outside, internet). I need more help. >> >> >> >> -----Original Message----- >> From: Vijayendra Bhamidipati [mailto:vijayendra.bhamidip...@citrix.com] >> Sent: Sunday, September 16, 2012 2:41 AM >> To: cloudstack-dev@incubator.apache.org >> Subject: RE: VMs can not access to Internet via Public IP ??? >> >> Hi Dinh, >> >> You would need to set up port forwarding rules for the guest VMs to enable >> them send outbound traffic. In the CS GUI, go to Networks -> click on a >> network that your VM is associated with -> View IP addresses -> click on >> the IP you acquired for the VM -> Configuration -> click on view all in >> Port Forwarding -> choose the protocol and define the applicable port >> ranges and/or other values, and associate this rule with a VM. In case of >> ping, use -1 for both the icmp type and code if you want to enable the rule >> for all code+type combinations. >> >> Regards, >> Vijay >> >> From: viet...@viettel.com.vn [mailto:viet...@viettel.com.vn] >> Sent: Saturday, September 15, 2012 12:11 PM >> To: cloudstack-dev@incubator.apache.org >> Subject: VMs can not access to Internet via Public IP ??? >> >> >> I deploy CS model follow as: >> >> >> 1. MS: 2 NIC card: NIC 1: 192.168.2.100/24 gw 192.168.2.1, NIC 2: >> 172.15.100.100/24 gw 172.15.100.1. NIC 1 is can connect to Ineternet. >> >> 2. Node : 1 NIC with IP 172.15.100.101/24 with XCP. Node connect to >> MS’s NIC 2 via a switch. >> >> 3. NFS server: 1 NIC with IP 172.15.100.102/24 and connect to MS and >> node via a switch. >> >> 4. Public network 192.168.2.0/24. >> >> 5. Pod ip range: 172.15.100.0/24 >> >> 6. Storage traffic: 172.15.0/24 >> >> 7. Guest range: 10.1.1.0/24 >> I create Zone and VMs OK. But I have a problem. VMs, SSVM, VR, CPVM can >> not connect to outside (MS NIC 1 IP, internet) via Public IP.????? They >> can connect to machines that belong to 172.15.100.0/24 network. I try ssh >> to SSVM, VR, CPVM and use ping command to 8.8.8.8 or 192.168.2.100 and >> tcpdump on Node server but have not any packet send through Node’s NIC. >> Can u help me . >> Thanks and bestregard. >> >>
