Re: [ovs-discuss] Problems trunking VLANs through an OVS bridge

Sat, 19 Mar 2016 01:29:17 -0700 

I see a lot of information on how you configured things but nothing on
what's going wrong.  What's the problem?

On Wed, Mar 16, 2016 at 05:07:44PM +0000, Erik Sherk wrote:
> 
> 
> Hi,
> Here is what I am trying to do. I have a Juniper switch connected to a Dell 
> R730, running CentOS 7.2, libvirt 1.2.17 and Open vSwitch 2.4.0
> 
> JNPR EX <——>Dell R730
> 
> I am running a virtual firewall (vSRX) as a KVM guest. I want to trunk VLANs 
> from the JNPR switch to the vSRX. So, the JNPR configs look like…
> 
> 
> sherk@Public_IP_LAB_FABRIC_SW> show configuration interfaces xe-2/1/5
> 
> description "MSE-SERVER-3 p5p2 Rack 3.03";
> 
> vlan-tagging;
> 
> unit 1001 {
> 
>     vlan-id 1001;
> 
>     family inet {
> 
>         address 192.168.1.1/30;
> 
>     }
> 
> }
> 
> 
> root@vSRX1> show configuration interfaces ge-0/0/1
> 
> description outside;
> 
> vlan-tagging;
> 
> unit 1001 {
> 
>     vlan-id 1001;
> 
>     family inet {
> 
>         address 192.168.1.2/30;
> 
>     }
> 
> }
> 
> On the CentOS host, I have a bridge defined…
> 
> 
> [root@localhost network-scripts]# more ifcfg-outside
> 
> DEVICE="outside"
> 
> BOOTPROTO="none"
> 
> IPADDR=192.168.1.101
> 
> PREFIX=24
> 
> #GATEWAY=192.168.0.1
> 
> DNS1=8.8.8.8
> 
> ONBOOT="yes"
> 
> TYPE="OVSBridge"
> 
> DEVICETYPE="ovs"
> 
> This bridge has one physical interface (p5p2) and one virtual interface 
> (vnet2)
> 
> 
> [root@localhost network-scripts]# more ifcfg-p5p2
> 
> TYPE=Ethernet
> 
> DEVICE="p5p2"
> 
> NAME=p5p2
> 
> ONBOOT=yes
> 
> OVS_BRIDGE=outside
> 
> TYPE="OVSIntPort"
> 
> DEVIECTYPE="ovs"
> 
> Question: Should this be a 'OVSIntPort' or a 'OVSPort’? I’ve tried both 
> without effect…
> 
> This is what the bridge looks like…
> 
> 
> [root@localhost network-scripts]# ovs-ofctl dump-ports-desc outside
> 
> OFPST_PORT_DESC reply (xid=0x2):
> 
>  1(p5p2): addr:a0:36:9f:82:87:4e
> 
>      config:     0
> 
>      state:      0
> 
>      current:    10GB-FD COPPER AUTO_NEG
> 
>      advertised: 100MB-FD 1GB-FD 10GB-FD COPPER AUTO_NEG
> 
>      supported:  100MB-FD 1GB-FD 10GB-FD COPPER AUTO_NEG
> 
>      speed: 10000 Mbps now, 10000 Mbps max
> 
>  3(vnet2): addr:fe:54:00:65:59:d5
> 
>      config:     0
> 
>      state:      0
> 
>      current:    10MB-FD COPPER
> 
>      speed: 10 Mbps now, 0 Mbps max
> 
>  LOCAL(outside): addr:a0:36:9f:82:87:4e
> 
>      config:     0
> 
>      state:      0
> 
>      speed: 0 Mbps now, 0 Mbps max
> 
> 
> [root@localhost network-scripts]#  ovs-vsctl show
> 
> 429f8280-dd0f-46ce-8edf-6ea438dd4f32
> 
>     Bridge outside
> 
>         Port outside
> 
>             trunks: [1001, 1002]
> 
>             Interface outside
> 
>                 type: internal
> 
>         Port "p5p2"
> 
>             trunks: [1001, 1002]
> 
>             Interface "p5p2"
> 
>         Port "vnet2"
> 
>             trunks: [1001, 1002]
> 
>             Interface "vnet2"
> 
>     Bridge "xxx222"
> 
>         Port "vnet1"
> 
>             Interface "vnet1"
> 
>         Port "xxx222"
> 
>             Interface "xxx222"
> 
>                 type: internal
> 
>         Port "p5p1"
> 
>             Interface "p5p1"
> 
>     Bridge management
> 
>         Port "vnet0"
> 
>             Interface "vnet0"
> 
>         Port "em2"
> 
>             Interface "em2"
> 
>         Port management
> 
>             Interface management
> 
>                 type: internal
> 
>         Port "vnet3"
> 
>             Interface "vnet3"
> 
>     ovs_version: "2.4.0"
> 
> To set the VLANs, I used this command…
> 
> 
> [root@localhost network-scripts]# ovs-vsctl set port vnet2 trunk=1001,1002
> 
> How can I troubleshoot this?
> 
> When I ping from the JNPR switch, I can see packets arriving in the guest 
> vSRX, by seeing RX counts increasing…
> 
> 
> root@vSRX1> show interfaces ge-0/0/1.1001
> 
>   Logical interface ge-0/0/1.1001 (Index 71) (SNMP ifIndex 520)
> 
>     Flags: Up SNMP-Traps 0x4000 VLAN-Tag [ 0x8100.1001 ]  Encapsulation: ENET2
> 
>     Input packets : 881
> 
>     Output packets: 901
> 
>     Security: Zone: Null
> 
>     Protocol inet, MTU: 1500
> 
>       Flags: Sendbcast-pkt-to-re
> 
>       Addresses, Flags: Is-Preferred Is-Primary
> 
>         Destination: 192.168.1.0/30, Local: 192.168.1.2, Broadcast: 
> 192.168.1.3
> 
> The can also be seen on the p5p2 and the vnet2 interfaces…
> 
> 
> [root@localhost network-scripts]# ifconfig p5p2
> 
> p5p2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
> 
>         inet6 fe80::a236:9fff:fe82:874e  prefixlen 64  scopeid 0x20<link>
> 
>         ether a0:36:9f:82:87:4e  txqueuelen 1000  (Ethernet)
> 
>         RX packets 36348  bytes 5417334 (5.1 MiB)
> 
>         RX errors 0  dropped 0  overruns 0  frame 0
> 
>         TX packets 722  bytes 37560 (36.6 KiB)
> 
>         TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
> 
> 
> [root@localhost network-scripts]# ifconfig vnet2
> 
> vnet2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
> 
>         inet6 fe80::fc54:ff:fe65:59d5  prefixlen 64  scopeid 0x20<link>
> 
>         ether fe:54:00:65:59:d5  txqueuelen 500  (Ethernet)
> 
>         RX packets 3  bytes 138 (138.0 B)
> 
>         RX errors 0  dropped 0  overruns 0  frame 0
> 
>         TX packets 1303  bytes 112032 (109.4 KiB)
> 
>         TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
> 
> Any help/suggestions appreciated!
> 
> Erik

> _______________________________________________
> discuss mailing list
> [email protected]
> http://openvswitch.org/mailman/listinfo/discuss

_______________________________________________
discuss mailing list
[email protected]
http://openvswitch.org/mailman/listinfo/discuss

Reply via email to