Thursday, July 19, 2018

Openvswitch connectivity problem

Hey all,

i built following environment:

both hosts:

 Operating System: CentOS Linux 7 (Core) Kernel: Linux 3.10.0-862.6.3.el7.x86_64 Architecture: x86-64

ovs-host 1 with the local ip of 10.1.247.123

2 physical ports: eth0 and eth1

-eth0 is connected to an ip-network (network is in a vlan) with connectivity to the internet (isp)

-eth1 is connected to a switch and on this switch there is a device (centos7) machine

i installed ovs version 2.9.2 on the host to use vxlan tunneling over the isp-network

host1 interfaces:

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether 70:71:bc:62:d6:38 brd ff:ff:ff:ff:ff:ff inet 10.1.247.117/24 brd 10.1.247.255 scope global dynamic eth0 valid_lft 1192219sec preferred_lft 1192219sec inet6 fe80::7271:bcff:fe62:d638/64 scope link valid_lft forever preferred_lft forever 3: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master ovs-system state UP group default qlen 1000 link/ether 00:10:18:2b:a7:90 brd ff:ff:ff:ff:ff:ff inet6 fe80::210:18ff:fe2b:a790/64 scope link valid_lft forever preferred_lft forever 4: ovs-system: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000 link/ether ea:ec:ff:79:00:8f brd ff:ff:ff:ff:ff:ff 5: bridge1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000 link/ether 00:10:18:2b:a7:90 brd ff:ff:ff:ff:ff:ff inet 192.168.0.35/24 brd 192.168.0.255 scope global bridge1 valid_lft forever preferred_lft forever inet6 fe80::210:18ff:fe2b:a790/64 scope link valid_lft forever preferred_lft forever 6: vxlan_sys_4789: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 65000 qdisc noqueue master ovs-system state UNKNOWN group default qlen 1000 link/ether 46:ce:7a:80:34:e9 brd ff:ff:ff:ff:ff:ff inet6 fe80::44ce:7aff:fe80:34e9/64 scope link valid_lft forever preferred_lft forever

host 1 ovs-output:

# ovs-vsctl show 15b312e1-50d3-4670-9783-2ff89dd7645e Bridge "bridge1" Port "eth1" Interface "eth1" Port "bridge1" Interface "bridge1" type: internal Port "vxlan0" Interface "vxlan0" type: vxlan options: {local_ip="10.1.247.117", remote_ip="10.1.247.123"} ovs_version: "2.9.2"

this setup is mirrored to the other side of the isp-network

host2 interface:

# ip addr 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000 link/ether 00:1a:64:20:5f:b5 brd ff:ff:ff:ff:ff:ff inet 10.1.247.123/24 brd 10.1.247.255 scope global dynamic eth0 valid_lft 1191064sec preferred_lft 1191064sec inet6 fe80::21a:64ff:fe20:5fb5/64 scope link valid_lft forever preferred_lft forever 3: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master ovs-system state UP group default qlen 1000 link/ether 00:1a:64:20:5f:b6 brd ff:ff:ff:ff:ff:ff inet6 fe80::21a:64ff:fe20:5fb6/64 scope link valid_lft forever preferred_lft forever 4: eth2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000 link/ether 90:e2:ba:49:1c:cc brd ff:ff:ff:ff:ff:ff 5: eth3: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000 link/ether 90:e2:ba:49:1c:cd brd ff:ff:ff:ff:ff:ff 6: eth4: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000 link/ether 90:e2:ba:49:1c:ce brd ff:ff:ff:ff:ff:ff 7: eth5: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000 link/ether 90:e2:ba:49:1c:cf brd ff:ff:ff:ff:ff:ff 8: ovs-system: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000 link/ether 12:ea:06:d9:3b:de brd ff:ff:ff:ff:ff:ff 9: bridge1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000 link/ether 00:1a:64:20:5f:b6 brd ff:ff:ff:ff:ff:ff inet 192.168.0.1/24 brd 192.168.0.255 scope global bridge1 valid_lft forever preferred_lft forever inet6 fe80::21a:64ff:fe20:5fb6/64 scope link valid_lft forever preferred_lft forever 11: vxlan_sys_4789: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 65000 qdisc noqueue master ovs-system state UNKNOWN group default qlen 1000 link/ether 5e:38:af:9a:f4:e2 brd ff:ff:ff:ff:ff:ff inet6 fe80::5c38:afff:fe9a:f4e2/64 scope link valid_lft forever preferred_lft forever

host2 ovs output:

# ovs-vsctl show da282d04-5f50-43c5-89c4-19a7db4e99f7 Bridge "bridge1" Port "vxlan0" Interface "vxlan0" type: vxlan options: {local_ip="10.1.247.123", remote_ip="10.1.247.117"} Port "eth1" Interface "eth1" Port "bridge1" Interface "bridge1" type: internal ovs_version: "2.9.2"

the issue:

connectivity between host1 and host 2 via the ip network is given:

PING 10.1.247.123 (10.1.247.123) 56(84) bytes of data. 64 bytes from 10.1.247.123: icmp_seq=1 ttl=64 time=0.285 ms 64 bytes from 10.1.247.123: icmp_seq=2 ttl=64 time=0.236 ms 64 bytes from 10.1.247.123: icmp_seq=3 ttl=64 time=0.234 ms PING 10.1.247.117 (10.1.247.117) 56(84) bytes of data. 64 bytes from 10.1.247.117: icmp_seq=1 ttl=64 time=0.294 ms 64 bytes from 10.1.247.117: icmp_seq=2 ttl=64 time=0.244 ms 64 bytes from 10.1.247.117: icmp_seq=3 ttl=64 time=0.247 ms

also the connectivity from the bridge to the switch and the device connected to the switch is given on each side:

PING 192.168.0.22 (192.168.0.22) 56(84) bytes of data. 64 bytes from 192.168.0.22: icmp_seq=1 ttl=64 time=1.06 ms 64 bytes from 192.168.0.22: icmp_seq=2 ttl=64 time=0.214 ms 64 bytes from 192.168.0.22: icmp_seq=3 ttl=64 time=0.217 ms PING 192.168.0.40 (192.168.0.40) 56(84) bytes of data. 64 bytes from 192.168.0.40: icmp_seq=1 ttl=64 time=0.344 ms 64 bytes from 192.168.0.40: icmp_seq=2 ttl=64 time=0.168 ms 64 bytes from 192.168.0.40: icmp_seq=3 ttl=64 time=0.162 ms

so basically i created 2 seperate vlan's , but somehow i cant connect them into one vxlan , because if i try to reach any interface / device on the other side of the isp-network, the packets just get lost / network is unreachable

can anyone help me with this issue becaue i really don't know what to try anymore !

thanks in advance



at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)