no route to gateway

[peterka]

no route to gateway, but I do not know why.
from h1=PVE (192.168.10.2) I can not ping r2=OPNsense=Gateway of internal network (192.168.10.1)
This means I can not update PVE.
I use OPNsense as Router from vmbr10 (LAN) to vmbr0 (WLAN, connected to a DSL-Router).
But I can ping from any other client 192.168.10.x to the gateway/router (192.168.10.1) and they have normal access to the internet.

======

/etc/network/interfaces

auto lo
iface lo inet loopback

iface enp0s31f6 inet manual
#WAN Uplink Mainboard

iface enp1s0 inet manual
#LAN PCIe-Card

iface enp2s0 inet manual
#LAN-Backup PCIe-Card

auto vmbr0
iface vmbr0 inet manual
bridge-ports enp0s31f6
bridge-stp off
bridge-fd 0
#WAN OPNsense

auto vmbr10
iface vmbr10 inet static
address 192.168.10.2/24
gateway 192.168.10.1
bridge-ports enp1s0
bridge-stp off
bridge-fd 0
#LAN 192.168.10.1

auto vmbr11
iface vmbr11 inet manual
bridge-ports none
bridge-stp off
bridge-fd 0
#backup

auto vmbr12
iface vmbr12 inet manual
bridge-ports none
bridge-stp off
bridge-fd 0
#openwrt

====

/etc/hosts

127.0.0.1 localhost.localdomain localhost
192.168.10.2 h1.in.botree.eu
192.168.10.2 h1.in
192.168.10.2 h1
192.168.10.3 h2.in.botree.eu
192.168.10.3 h2.in
192.168.10.3 h2

# The following lines are desirable for IPv6 capable hosts

::1 ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
ff02::3 ip6-allhosts

=====

 

[Hannes Laimer]

Hey,

could you post the output of ip route and ip address? Can PVE reach other clients on 192.168.10.0/24?

 

[peterka]

Thanx

====

root@h1:~# ip route
default via 192.168.10.1 dev vmbr10 proto kernel onlink
192.168.10.0/24 dev vmbr10 proto kernel scope link src 192.168.10.2

====

root@h1:~# ip address
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: enp0s31f6: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr0 state UP group default qlen 1000
link/ether 4c:52:62:a7:98:1c brd ff:ff:ff:ff:ff:ff
3: enp1s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr10 state UP group default qlen 1000
link/ether 00:1b:21:3a:e2:13 brd ff:ff:ff:ff:ff:ff
4: enp2s0: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000
link/ether 00:1b:21:3a:e2:89 brd ff:ff:ff:ff:ff:ff
5: vmbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether 4c:52:62:a7:98:1c brd ff:ff:ff:ff:ff:ff
inet6 2001:4dd7:5f19:0:4e52:62ff:fea7:981c/64 scope global dynamic mngtmpaddr
valid_lft 7158sec preferred_lft 3558sec
inet6 fe80::4e52:62ff:fea7:981c/64 scope link
valid_lft forever preferred_lft forever
6: vmbr10: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether 00:1b:21:3a:e2:13 brd ff:ff:ff:ff:ff:ff
inet 192.168.10.2/24 scope global vmbr10
valid_lft forever preferred_lft forever
inet6 fe80::21b:21ff:fe3a:e213/64 scope link
valid_lft forever preferred_lft forever
7: vmbr11: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default qlen 1000
link/ether d6:ec:55:5a:3f:1b brd ff:ff:ff:ff:ff:ff
8: vmbr12: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default qlen 1000
link/ether c2:2b:52:1b:b4:0f brd ff:ff:ff:ff:ff:ff
9: tap2000i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc mq master vmbr10 state UNKNOWN group default qlen 1000
link/ether da:e2:a3:dd:8d:18 brd ff:ff:ff:ff:ff:ff
10: tap2000i1: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc mq master vmbr0 state UNKNOWN group default qlen 1000
link/ether ea:9d:2b:77:cc:19 brd ff:ff:ff:ff:ff:ff
11: tap2103i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master fwbr2103i0 state UNKNOWN group default qlen 1000
link/ether e2:ce:b3:64:d2:f5 brd ff:ff:ff:ff:ff:ff
12: fwbr2103i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether ea:8b:77:f8:99:b4 brd ff:ff:ff:ff:ff:ff
13: fwpr2103p0@fwln2103i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master vmbr10 state UP group default qlen 1000
link/ether 7e:6b:33:e9:4a:2f brd ff:ff:ff:ff:ff:ff
14: fwln2103i0@fwpr2103p0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master fwbr2103i0 state UP group default qlen 1000
link/ether 2a:65:d9:e4:17:2e brd ff:ff:ff:ff:ff:ff
15: tap2101i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr10 state UNKNOWN group default qlen 1000
link/ether 1a:14:52:c0:43:5d brd ff:ff:ff:ff:ff:ff
16: tap1051i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr10 state UNKNOWN group default qlen 1000
link/ether ca:87:9c:ce:00:71 brd ff:ff:ff:ff:ff:ff

====

root@h1:~# ping 192.168.10.4
PING 192.168.10.4 (192.168.10.4) 56(84) bytes of data.
64 bytes from 192.168.10.4: icmp_seq=1 ttl=64 time=0.175 ms
64 bytes from 192.168.10.4: icmp_seq=2 ttl=64 time=0.182 ms
64 bytes from 192.168.10.4: icmp_seq=3 ttl=64 time=0.182 ms
64 bytes from 192.168.10.4: icmp_seq=4 ttl=64 time=0.164 ms

(can not ping 8.8.8.8 or even heise.de)