[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] Xen bridged network - problem

  • To: xen-users <xen-users@xxxxxxxxxxxxx>
  • From: Sławek Kosowski <slawek.k_xl@xxxxx>
  • Date: Wed, 18 Jul 2012 22:54:11 +0200
  • Delivery-date: Wed, 18 Jul 2012 20:55:38 +0000
  • List-id: Xen user discussion <xen-users.lists.xen.org>
Don't know why my /etc/xen/fw.cfg changed, but MAC is the same in config as in 
created VM:

To sum up:
dom0:
ifconfig:
eth0      Link encap:Ethernet  HWaddr c8:60:00:8d:bc:96  
          inet6 addr: fe80::ca60:ff:fe8d:bc96/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:66 errors:0 dropped:35 overruns:0 frame:0
          TX packets:68 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:4515 (4.4 KiB)  TX bytes:5144 (5.0 KiB)
          Interrupt:17 Memory:fe500000-fe520000 

breth     Link encap:Ethernet  HWaddr c8:60:00:8d:bc:96  
          inet6 addr: fe80::ca60:ff:fe8d:bc96/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:5 errors:0 dropped:0 overruns:0 frame:0
          TX packets:10 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:228 (228.0 B)  TX bytes:812 (812.0 B)

vif1.0    Link encap:Ethernet  HWaddr fe:ff:ff:ff:ff:ff  
          inet6 addr: fe80::fcff:ffff:feff:ffff/64 Scope:Link
          UP BROADCAST RUNNING PROMISC MULTICAST  MTU:1500  Metric:1
          RX packets:44 errors:0 dropped:0 overruns:0 frame:0
          TX packets:12 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:32 
          RX bytes:1536 (1.5 KiB)  TX bytes:864 (864.0 B)

vif1.1    Link encap:Ethernet  HWaddr fe:ff:ff:ff:ff:ff  
          inet6 addr: fe80::fcff:ffff:feff:ffff/64 Scope:Link
          UP BROADCAST RUNNING PROMISC MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:45 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:32 
          RX bytes:0 (0.0 B)  TX bytes:2202 (2.1 KiB)

sysctl.conf:
net.ipv4.ip_forward = 1
net.ipv4.conf.default.proxy_arp = 1
net.ipv4.conf.all.rp_filter = 1
net.ipv4.icmp_echo_ignore_broadcasts = 1

BUT: cat /proc/sys/net/ipv4/conf/eth0/proxy_arp
0
echoeing 1 does not change anything

tcpdump for breth:
22:25:06.026447 00:16:3e:97:7b:9c (oui Unknown) > Broadcast, ethertype ARP 
(0x0806), length 42: Request who-has 7.5.7.193 tell dom0_prod, length 28
22:25:06.027020 78:fe:3d:47:19:12 (oui Unknown) > c8:60:00:8d:bc:96 (oui 
Unknown), ethertype ARP (0x0806), length 60: Reply 7.5.7.193 is-at 
78:fe:3d:47:19:12 (oui Unknown), length 46
22:25:07.026463 00:16:3e:97:7b:9c (oui Unknown) > Broadcast, ethertype ARP 
(0x0806), length 42: Request who-has 7.5.7.193 tell dom0_prod, length 28
22:25:07.029365 78:fe:3d:47:19:12 (oui Unknown) > c8:60:00:8d:bc:96 (oui 
Unknown), ethertype ARP (0x0806), length 60: Reply 7.5.7.193 is-at 
78:fe:3d:47:19:12 (oui Unknown), length 46
22:25:11.027014 00:16:3e:97:7b:9c (oui Unknown) > Broadcast, ethertype ARP 
(0x0806), length 42: Request who-has 7.5.7.193 tell dom0_prod, length 28
22:25:11.027697 78:fe:3d:47:19:12 (oui Unknown) > c8:60:00:8d:bc:96 (oui 
Unknown), ethertype ARP (0x0806), length 60: Reply 7.5.7.193 is-at 
78:fe:3d:47:19:12 (oui Unknown), length 46
22:25:12.026465 00:16:3e:97:7b:9c (oui Unknown) > Broadcast, ethertype ARP 
(0x0806), length 42: Request who-has 7.5.7.193 tell dom0_prod, length 28
22:25:12.027232 78:fe:3d:47:19:12 (oui Unknown) > c8:60:00:8d:bc:96 (oui 
Unknown), ethertype ARP (0x0806), length 60: Reply 7.5.7.193 is-at 
78:fe:3d:47:19:12 (oui Unknown), length 46
22:25:13.026365 00:16:3e:97:7b:9c (oui Unknown) > Broadcast, ethertype ARP 
(0x0806), length 42: Request who-has 7.5.7.193 tell dom0_prod, length 28
22:25:13.029238 78:fe:3d:47:19:12 (oui Unknown) > c8:60:00:8d:bc:96 (oui 
Unknown), ethertype ARP (0x0806), length 60: Reply 7.5.7.193 is-at 
78:fe:3d:47:19:12 (oui Unknown), length 46

tcpdump for eth0
22:26:01.025894 00:16:3e:97:7b:9c (oui Unknown) > Broadcast, ethertype ARP 
(0x0806), length 42: Request who-has 7.5.7.193 tell dom0_prod, length 28
22:26:01.029518 78:fe:3d:47:19:12 (oui Unknown) > c8:60:00:8d:bc:96 (oui 
Unknown), ethertype ARP (0x0806), length 60: Reply 7.5.7.193 is-at 
78:fe:3d:47:19:12 (oui Unknown), length 46
22:26:02.022412 00:16:3e:97:7b:9c (oui Unknown) > Broadcast, ethertype ARP 
(0x0806), length 42: Request who-has 7.5.7.193 tell dom0_prod, length 28
22:26:02.025598 78:fe:3d:47:19:12 (oui Unknown) > c8:60:00:8d:bc:96 (oui 
Unknown), ethertype ARP (0x0806), length 60: Reply 7.5.7.193 is-at 
78:fe:3d:47:19:12 (oui Unknown), length 46
22:26:02.575805 c8:60:00:8d:bc:96 (oui Unknown) > 01:00:5e:00:00:01 (oui 
Unknown), ethertype IPv4 (0x0800), length 46: 0.0.0.0 > 224.0.0.1: igmp query v2
22:26:02.575811 c8:60:00:8d:bc:96 (oui Unknown) > 33:33:00:00:00:01 (oui 
Unknown), ethertype IPv6 (0x86dd), length 86: fe80::ca60:ff:fe8d:bc96 > 
ip6-allnodes: HBH ICMP6, multicast listener querymax resp delay: 1000 addr: ::, 
length 24
22:26:03.022481 00:16:3e:97:7b:9c (oui Unknown) > Broadcast, ethertype ARP 
(0x0806), length 42: Request who-has 7.5.7.193 tell dom0_prod, length 28
22:26:03.023324 78:fe:3d:47:19:12 (oui Unknown) > c8:60:00:8d:bc:96 (oui 
Unknown), ethertype ARP (0x0806), length 60: Reply 7.5.7.193 is-at 
78:fe:3d:47:19:12 (oui Unknown), length 46
22:26:06.031398 00:16:3e:97:7b:9c (oui Unknown) > Broadcast, ethertype ARP 
(0x0806), length 42: Request who-has 7.5.7.193 tell dom0_prod, length 28



dmesg | tail shows:
[  843.499924] xt_physdev: using --physdev-out in the OUTPUT, FORWARD and 
POSTROUTING chains for non-bridged traffic is not supported anymore.


domU1 (firewall):
eth0      Link encap:Ethernet  HWaddr 00:16:3e:97:7b:9c  
          inet addr:7.5.7.202  Bcast:7.5.7.223  Mask:255.255.255.224
          inet6 addr: fe80::216:3eff:fe97:7b9c/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:12 errors:0 dropped:0 overruns:0 frame:0
          TX packets:44 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:696 (696.0 B)  TX bytes:2152 (2.1 KiB)
          Interrupt:23 

ping 7.5.7.193 (gateway):
PING 7.5.7.193 (7.5.7.193) 56(84) bytes of data.
>From 7.5.7.202 icmp_seq=1 Destination Host Unreachable
>From 7.5.7.202 icmp_seq=2 Destination Host Unreachable

--- 7.5.7.193 ping statistics ---
4 packets transmitted, 0 received, +2 errors, 100% packet loss, time 2999ms
pipe 2

sysctl.conf:
net.ipv4.ip_forward = 1


the mac at eth0 at dom0 (C6:60:00:8D:BC:96) is allowed by my hosting company 
together with my IP 7.5.7.202
Looks like eth0 at domU1 makes ARP, GW responds to eth0 at dom0, but this one 
does not proxy it to domU1 ?

Thanks for help



_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxx
http://lists.xen.org/xen-users

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.