[SOLVED] Multiple OVS bridges on multiple ethernet interfaces

[nikolaii]

Hello,

I have a single server with 4 NICs (but using only two here).

I' d like to setup two OVS bridges, with a single Ethernet NIC each. No VLANs involved.

So for example:

• vmbr0 on top of eno1: used to access the local LAN.
• vmbr1 on top of eno3: directly connected to my firewall DMZ interface

I did the following setup, but this prevent my VM connected to vmbr1 to reach the firewall DMZ interface:

auto eno1
iface eno1 inet manual
    ovs_type OVSPort
    ovs_bridge vmbr0

iface eno2 inet manual

auto eno3
iface eno3 inet manual
    ovs_type OVSPort
    ovs_bridge vmbr1

iface eno4 inet manual

auto vmbr0
iface vmbr0 inet static
    address 192.168.3.200/24
    gateway 192.168.3.254
    ovs_type OVSBridge
    ovs_ports eno1

auto vmbr1
iface vmbr1 inet manual
    ovs_type OVSBridge
    ovs_ports eno3

I guess I missed something, but what?

Thanks
Nicolas

 

[nikolaii]

Hello, I tried another approach, by using "regular" Linux bridges. That didn't change anything.

Is there anything in particular to setup when using a secondary bridge attached to another Ethernet interface?

Nicolas

 

[nikolaii]

Well well well ...
Oddly enough, I had to reboot my firewall (a dedicated pfsense appliance) to get the secondary bridge to work.

I suspect some ARP issue maybe? Who knows ...