Salutare, Incerc sa configurez un coreos sa pot utiliza interfata bond cu vlan tag, si se pare ca dau pe langa (posibil sa fi ruginit in networking): Pe un server Dell (R640) am patru interfete, legate in doua bonduri cu subnet diferit (unu pt managment/admin) altul pentru traffic normal. Primul permite pachetele untagged, al doilea nu.
Configuratia actuala: core@my-kube-worker-01 /etc/systemd/network $ ls -l total 56 -rw-r--r--. 1 root root 44 Feb 22 11:47 00-vlan2.netdev -rw-r--r--. 1 root root 91 Feb 20 16:52 10-int.network -rw-r--r--. 1 root root 91 Feb 22 10:38 15-int.network -rw-r--r--. 1 root root 69 Feb 22 11:48 20-bond0.netdev -rw-r--r--. 1 root root 119 Feb 21 13:24 20-bond1.netdev -rw-r--r--. 1 root root 97 Feb 22 12:32 30-bond0.network -rw-r--r--. 1 root root 85 Feb 22 12:24 30-bond1.network core@my-kube-worker-01 /etc/systemd/network $ cat 00-vlan2.netdev [NetDev] Name=vlan2 Kind=vlan [VLAN] Id=2 core@my-kube-worker-01 /etc/systemd/network $ cat 10-int.network [Match] Name=eno3* Name=eno4* [Network] Bond=bond0 LinkLocalAddressing=no IPv6AcceptRA=no core@my-kube-worker-01 /etc/systemd/network $ cat 15-int.network [Match] Name=eno1* Name=eno2* [Network] Bond=bond1 LinkLocalAddressing=no IPv6AcceptRA=no core@my-kube-worker-01 /etc/systemd/network $ cat 20-bond0.netdev [NetDev] Name=bond0 Kind=bond [Bond] Mode=balance-rr MIIMonitorSec=1 core@my-kube-worker-01 /etc/systemd/network $ cat 20-bond1.netdev [NetDev] Name=bond1 Kind=bond [Bond] Mode=802.3ad LACPTransmitRate=fast MIIMonitorSec=1s UpDelaySec=3s DownDelaySec=9s core@my-kube-worker-01 /etc/systemd/network $ cat 30-bond0.network [Match] Name=bond0 [Network] DNS=192.168.12.175 Address=192.168.15.243/24 Gateway=192.168.15.254 core@my-kube-worker-01 /etc/systemd/network $ cat 30-bond1.network [Match] Name=bond1 [Network] DNS=192.168.12.175 Address=192.168.12.243/24 VLAN=vlan2 Din care rezulta : core@amy-kube-worker-01 /etc/systemd/network $ ip add 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eno1np0: <BROADCAST,MULTICAST,SLAVE,UP,LOWER_UP> mtu 1500 qdisc mq master bond1 state UP group default qlen 1000 link/ether brd ff:ff:ff:ff:ff:ff 3: eno2np1: <BROADCAST,MULTICAST,SLAVE,UP,LOWER_UP> mtu 1500 qdisc mq master bond1 state UP group default qlen 1000 link/ether brd ff:ff:ff:ff:ff:ff 4: eno3: <BROADCAST,MULTICAST,SLAVE,UP,LOWER_UP> mtu 1500 qdisc mq master bond0 state UP group default qlen 1000 link/ether brd ff:ff:ff:ff:ff:ff 5: eno4: <BROADCAST,MULTICAST,SLAVE,UP,LOWER_UP> mtu 1500 qdisc mq master bond0 state UP group default qlen 1000 link/ether brd ff:ff:ff:ff:ff:ff 6: bond1: <BROADCAST,MULTICAST,MASTER,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000 link/ether brd ff:ff:ff:ff:ff:ff inet 192.168.12.243/24 brd 192.168.12.255 scope global bond1 valid_lft forever preferred_lft forever inet6 fe80::2c27:68ff:fe97:15f6/64 scope link valid_lft forever preferred_lft forever 7: bond0: <BROADCAST,MULTICAST,MASTER,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000 link/ether brd ff:ff:ff:ff:ff:ff inet 192.168.15.243/24 brd 192.168.15.255 scope global bond0 valid_lft forever preferred_lft forever inet6 fe80::14d6:deff:fec9:f2cc/64 scope link valid_lft forever preferred_lft forever 8: vlan2@bond1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000 link/ether brd ff:ff:ff:ff:ff:ff inet 192.168.12.205/24 brd 192.168.12.255 scope global dynamic vlan2 valid_lft 122sec preferred_lft 122sec inet6 fe80::2c27:68ff:fe97:15f6/64 scope link valid_lft forever preferred_lft forever 9: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default link/ether 02:42:fd:a3:ad:db brd ff:ff:ff:ff:ff:ff inet 172.17.0.1/16 scope global docker0 valid_lft forever preferred_lft forever core@my-kube-worker-01 /etc/systemd/network $ route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 192.168.15.254 0.0.0.0 UG 0 0 0 bond0 0.0.0.0 192.168.12.254 0.0.0.0 UG 1024 0 0 vlan2 172.17.0.0 0.0.0.0 255.255.0.0 U 0 0 0 docker0 192.168.12.0 0.0.0.0 255.255.255.0 U 0 0 0 bond1 192.168.12.0 0.0.0.0 255.255.255.0 U 0 0 0 vlan2 192.168.12.254 0.0.0.0 255.255.255.255 UH 1024 0 0 vlan2 192.168.15.0 0.0.0.0 255.255.255.0 U 0 0 0 bond0 Ce as dori este sa pot accesa (de pe server) subnetul 192.168.12.x si acest subnet sa fie si cel default si sa pot accesa adresa bond1 din exterior. Ce nu inteleg: nu am setat pentru vlan.netdev sa ceara ip de la dhcp si totusi o face, desi ar trebui sa utilizeze cea ce e setat pentru bond1, posibil sa gresesc sa am bungit-o rau cu documentatia de la CoreOS (care oricum nu e prea generoasa cu exemple). Daca cineva are vreo idee/link/etc ii multumesc. Desigur pot oferi alte detalii daca nu cele copiate nu sunt relevante. Multumesc. Numai bine, -- Gyula KERESZTELY-KRALL -- I hate myself, because I'm not open-source. Worrying about killer AI and the superintelligent robots is like worrying about overcrowding on Mars. - Garry Kasparov _______________________________________________ RLUG mailing list RLUG@lists.lug.ro http://lists.lug.ro/mailman/listinfo/rlug_lists.lug.ro