proxmox bridge stop accept incoming packets

M

meral

New Member
Mar 29, 2024
5
2
3
Good evening

Server is on vultr, baremetal. I have one ip binded to vmbr0 and another ip(reserved) on vm.
Sometimes like every 5 minutes main ip on bridge not accessable from outside.

In tcpdump I see that ping packets come back to both. But ping from vmbr ip show nothing from that moment.
After minute or two it become working again.

I have no any messages in logs nor change of bridge state. STP is off.

IP 66.42.104.120 is on vbmr0 in this example
45.76..174.118 shown twice because it has default route of 66.42.104.120.

https://prnt.sc/O1Ni1PkD3T41

Interesting things, that packets for .118 still coming without delay. So all VMs are perfectly working, I just not able access web interface of Proxmox.
Also I still able access 66.42.104.120 from 45.76.174.118

Every time for every new setup on Vultr it is same.

Code: 
root@pve:~# cat /etc/network/interfaces
auto lo
iface lo inet loopback

iface enp1s0f0 inet manual

auto vmbr0
iface vmbr0 inet static
        address 45.32.79.187/22
        gateway 45.32.76.1
        bridge-ports enp1s0f0
        bridge-stp off
        bridge-fd 0
        bridge-disable-mac-learning 1
        bridge-vlan-aware yes
        bridge-vids 2-4096

iface enp1s0f1 inet manual

auto vmbr1
iface vmbr1 inet static
        address 10.5.112.4/20
        bridge-ports enp1s0f1
        bridge-stp off
        bridge-fd 0
        bridge-disable-mac-learning 1
        bridge-vlan-aware yes
        bridge-vids 2-4096

enp1s0f1


source /etc/network/interfaces.d/*
 

Attachments

  • Screenshot_15.png
    Screenshot_15.png
    933.5 KB · Views: 3
So I have found issue.

Exactly 50% of the time vultr is sending packets to main IP with MAC of VM interface.

Simplest solution is to change it to routing config

For that need enable packet forwarding and proxy arp, put network like this
Code: 
auto enp1s0
iface enp1s0 inet manual
        address 66.42.104.120/23
        gateway 66.42.104.1

auto vmbr0
iface vmbr0 inet static
        #address 66.42.104.120/23
        #gateway 66.42.104.1
        bridge-ports enp1s0
        bridge-stp off
        bridge-fd 0

And add route to internal ip on vmbr0
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back