Let me start by saying that Proxmox VE is a powerful package, getting back into it after many years off the horse. While I'm a big promoter of XCP-ng, KVM brings features that are not quite up to snuff in the Xen project... yet.
Doing some testing with PVE 7.2, came across something undesired. Did a bit of searching and the general consensus on previous instances regarding STP config on bridge interfaces is that it is "an edge case" and WebGUI implementation of STP configuration would not be implemented. fair enough.
The problem I am encountering is that the GUI management of such a bridge interface will overwrite a manual setting of "bridge-stp on" with an explicit "bridge-stp off" statement.
Could the GUI not just ignore/preserve the existing statement for an already created bridge interface so that it won't override settings explicitly configured interface options? I know I'm a minority in using this configuration, But STP is a major component for a configuration that has cascade connectivity between hosts (with redundancy) without using a switch (10GbE for Ceph).
NICs connected as follows (matching numbers are ends of the same DAC SFP+ cable):
P1 P2
[1] [2] HOST1
[2] [3] HOST2
[3] [1] HOST3
Here is the change intent listed to /etc/network/interfaces from a configuration change on an existing bridge on one of my hosts:
--- /etc/network/interfaces 2022-11-22 23:54:34.136856414 -0700
+++ /etc/network/interfaces.new 2022-11-22 23:54:52.797006490 -0700
@@ -34,6 +34,6 @@
iface vmbr1 inet static
address 10.0.0.1/28
bridge-ports enp3s0f0 enp3s0f1
- bridge-stp on
+ bridge-stp off
bridge-fd 0
A perfect example of a scenario where this would require going back into the manual configuration after initial setup would be adding a physical interface to a bridge after initial setup. Yes this could be done manually as well, but the guys on the tools are not always that familiar with the local Linux utilities, and will rely on the GUI, possibly taking configurations out of compliance. These are smaller cluster implementations where the power requirements and heat output of 10Gb switches are not conducive to the environments - not to mention the hardware cost.
Doing some testing with PVE 7.2, came across something undesired. Did a bit of searching and the general consensus on previous instances regarding STP config on bridge interfaces is that it is "an edge case" and WebGUI implementation of STP configuration would not be implemented. fair enough.
The problem I am encountering is that the GUI management of such a bridge interface will overwrite a manual setting of "bridge-stp on" with an explicit "bridge-stp off" statement.
Could the GUI not just ignore/preserve the existing statement for an already created bridge interface so that it won't override settings explicitly configured interface options? I know I'm a minority in using this configuration, But STP is a major component for a configuration that has cascade connectivity between hosts (with redundancy) without using a switch (10GbE for Ceph).
NICs connected as follows (matching numbers are ends of the same DAC SFP+ cable):
P1 P2
[1] [2] HOST1
[2] [3] HOST2
[3] [1] HOST3
Here is the change intent listed to /etc/network/interfaces from a configuration change on an existing bridge on one of my hosts:
--- /etc/network/interfaces 2022-11-22 23:54:34.136856414 -0700
+++ /etc/network/interfaces.new 2022-11-22 23:54:52.797006490 -0700
@@ -34,6 +34,6 @@
iface vmbr1 inet static
address 10.0.0.1/28
bridge-ports enp3s0f0 enp3s0f1
- bridge-stp on
+ bridge-stp off
bridge-fd 0
A perfect example of a scenario where this would require going back into the manual configuration after initial setup would be adding a physical interface to a bridge after initial setup. Yes this could be done manually as well, but the guys on the tools are not always that familiar with the local Linux utilities, and will rely on the GUI, possibly taking configurations out of compliance. These are smaller cluster implementations where the power requirements and heat output of 10Gb switches are not conducive to the environments - not to mention the hardware cost.
