Hello,
I am experiencing a network malfunction with the OVS configuration I
developed for the Debian/Proxmox 5.1 environment.
I have a dedicated server with two network interfaces.
The first is intended to give access to the public network.
The second is connected on a private network and gives access to a SAN
through a vlan. The identifier of this vlan is worth 2001.
I configured the Debian file /etc/network/interfaces as follows:
auto lo
iface lo inet loopback
# Public interface
auto enp1s0f0
iface enp1s0f0 inet static
address 12.34.56.78
netmask 255.255.255.0
gateway 12.34.56.1
broadcast 12.34.56.255
network 12.34.56.0
dns-nameservers 12.34.56.1
dns-search example.com
# Private bridge
auto vmbr1
allow-ovs vmbr1
iface vmbr1 inet manual
ovs_type OVSBridge
ovs_ports enp1s0f1 vlan2001
up ip link set vmbr1 up
mtu 9000
# Layer-2 Port
allow-vmbr1 enp1s0f1
iface enp1s0f1 inet manual
ovs_bridge vmbr1
ovs_type OVSPort
pre-up ip link set dev enp1s0f1 mtu 9000
up ip link set enp1s0f1 up
# Private Layer-3 interface
allow-vmbr1 vlan2001
iface vlan2001 inet static
ovs_bridge vmbr1
ovs_type OVSIntPort
ovs_options tag=2001
ovs_extra set interface ${IFACE}
external-ids:iface-id=$(hostname -s)-${IFACE}-vif
address 10.20.30.100
netmask 255.255.255.240
mtu 9000
post-up ip route add 10.30.0.0/24 via 10.20.30.254
This configuration works well. A need having evolved, I am forced to
create a bridge on the public network. So I adapted the previous
configuration as follows:
auto lo
iface lo inet loopback
# Public bridge
auto vmbr0
allow-ovs vmbr0
iface vmbr0 inet manual
ovs_type OVSBridge
ovs_ports enp1s0f0 veth0
up ip link set vmbr0 up
# Layer-2 Port
allow-vmbr0 enp1s0f0
iface enp1s0f0 inet manual
ovs_bridge vmbr0
ovs_type OVSPort
up ip link set enp1s0f0 up
# Private Layer-3 interface
allow-vmbr0 veth0
iface veth0 inet static
ovs_bridge vmbr0
ovs_type OVSIntPort
ovs_extra set interface ${IFACE}
external-ids:iface-id=$(hostname -s)-${IFACE}-vif
address 12.34.56.78
netmask 255.255.255.0
gateway 12.34.56.1
broadcast 12.34.56.255
network 12.34.56.0
dns-nameservers 12.34.56.1
dns-search example.com
# Private bridge
auto vmbr1
allow-ovs vmbr1
iface vmbr1 inet manual
ovs_type OVSBridge
ovs_ports enp1s0f1 vlan2001
up ip link set vmbr1 up
mtu 9000
# Layer-2 Port
allow-vmbr1 enp1s0f1
iface enp1s0f1 inet manual
ovs_bridge vmbr1
ovs_type OVSPort
pre-up ip link set dev enp1s0f1 mtu 9000
up ip link set enp1s0f1 up
# Private Layer-3 interface
allow-vmbr1 vlan2001
iface vlan2001 inet static
ovs_bridge vmbr1
ovs_type OVSIntPort
ovs_options tag=2001
ovs_extra set interface ${IFACE}
external-ids:iface-id=$(hostname -s)-${IFACE}-vif
address 10.20.30.100
netmask 255.255.255.240
mtu 9000
post-up ip route add 10.30.0.0/24 via 10.20.30.254
Since, after reboot, I can not connect to the public interface anymore.
Access to the private interface continues to work correctly.
I'd like to connect these two bridges with a virtual machine acting as a
router/firewall. For now I will like to solve my tcp/ip link problem.
I beg to ask you to help me understand my mistake.
Regards,
--
Marc-Henri Pamiseux - SARL Libricks - www.libricks.fr
6 rue LĂ©onard de Vinci - CS 20119, 53001 LAVAL Cedex
Tel. : 02.30.96.15.24 / Mobile : 06.26.71.30.97
_______________________________________________
discuss mailing list
disc...@openvswitch.org
https://mail.openvswitch.org/mailman/listinfo/ovs-discuss
