Hello,
I have a strange issue with my proxmox installation.
I had install a cluster of two nodes (one IBM 3650 M2 and a Supermicro). Each one has, at least 4 NIC.
I use an cisco SG300 small business switch (managed switch).
for the two nodes :
eth0 is configured on vmbr0 bridge for adminitrative and cluster vlan. This is connected to port 1 and 2 of the SG300. work fine.
eth1 (just for one node = IBM), is for the wan access. Connected to port 19 of the SG300 (port 20 is connected to wan) : work fine
eth 4 (on ibm) and eth2 (on Supermicro) are configured with VLAN :
vmbr100 -> eth2.100 (for one node) and eth4.100 (for the other node)
vmbr110 -> eth2.110 and eth4.110
I select vlan-aware on the config (but with or without it change nothing).
For information, I have a VM with IPCOP to firewalling the solution.
My problem arrive between the two nodes on the VLAN 100 and 110 (the ports 9 and 10 of the cisco to connect eth2 and eth4 from each nodes, are configured trunk/tagged).
I install (test) two CT (LXC) one each nodes :
- test1 -> node 1 -> vmbr100 / tag 100
- test 2 -> node 2 -> vmbr100 / tag 100
routes are configured to cross by the firewall (two virtual NIC E1000, associated with vmbr100 (tag 100) and vmbr110 (tag 110))
Then the problem :
When i ping between test1 and test 2 -> ok ping pass well
When i try something else (like ssh, wget, apt-get with outside) no communication (return !) is establish withe test2. test1 work fine (it is on the same node as the firewall). but Test2 can't communicate with serveur in node1.
A tcpdump show that tcp (or icmp) packet arrive from test2 on test1 (by example, during the ssh connexion phase).
I have all destructured create only one switch (vmbr100 - > eth2 or eth4) and this time all work fine.
If someone has an idea of the problem. Perhaps, I must envisage to use Opevswitch ?
Best regards
Dominique
I have a strange issue with my proxmox installation.
I had install a cluster of two nodes (one IBM 3650 M2 and a Supermicro). Each one has, at least 4 NIC.
I use an cisco SG300 small business switch (managed switch).
for the two nodes :
eth0 is configured on vmbr0 bridge for adminitrative and cluster vlan. This is connected to port 1 and 2 of the SG300. work fine.
eth1 (just for one node = IBM), is for the wan access. Connected to port 19 of the SG300 (port 20 is connected to wan) : work fine
eth 4 (on ibm) and eth2 (on Supermicro) are configured with VLAN :
vmbr100 -> eth2.100 (for one node) and eth4.100 (for the other node)
vmbr110 -> eth2.110 and eth4.110
I select vlan-aware on the config (but with or without it change nothing).
For information, I have a VM with IPCOP to firewalling the solution.
My problem arrive between the two nodes on the VLAN 100 and 110 (the ports 9 and 10 of the cisco to connect eth2 and eth4 from each nodes, are configured trunk/tagged).
I install (test) two CT (LXC) one each nodes :
- test1 -> node 1 -> vmbr100 / tag 100
- test 2 -> node 2 -> vmbr100 / tag 100
routes are configured to cross by the firewall (two virtual NIC E1000, associated with vmbr100 (tag 100) and vmbr110 (tag 110))
Then the problem :
When i ping between test1 and test 2 -> ok ping pass well
When i try something else (like ssh, wget, apt-get with outside) no communication (return !) is establish withe test2. test1 work fine (it is on the same node as the firewall). but Test2 can't communicate with serveur in node1.
A tcpdump show that tcp (or icmp) packet arrive from test2 on test1 (by example, during the ssh connexion phase).
I have all destructured create only one switch (vmbr100 - > eth2 or eth4) and this time all work fine.
If someone has an idea of the problem. Perhaps, I must envisage to use Opevswitch ?
Best regards
Dominique
