Hi guys,
I have issue with bridging interfaces for my POC (proof of concept). I have 2 pve host in cluster and here is the interface configuration:
pve01:
auto vlan20
iface vlan21 inet manual
vlan-raw-device eth0
auto vlan21
iface vlan21 inet manual
vlan-raw-device eth0
auto vmbr0
iface vmbr0 inet static
address 192.168.1.100
netmask 255.255.255.0
gateway 192.168.1.1
bridge_ports eth0
bridge_stp off
bridge_fd 0
bridge_maxage 0
bridge_ageing 0
bridge_maxwait 0
auto vmbr20
iface vmbr20 inet static
address 0.0.0.0
netmask 255.255.255.255
bridge_ports vlan20
bridge_stp off
bridge_fd 0
auto vmbr21
iface vmbr21 inet static
address 0.0.0.0
netmask 255.255.255.255
bridge_ports vlan21
bridge_stp off
bridge_fd 0
pve02:
auto vlan20
iface vlan21 inet manual
vlan-raw-device eth0
auto vlan21
iface vlan21 inet manual
vlan-raw-device eth0
auto vmbr0
iface vmbr0 inet static
address 192.168.1.101
netmask 255.255.255.0
gateway 192.168.1.1
bridge_ports eth0
bridge_stp off
bridge_fd 0
bridge_maxage 0
bridge_ageing 0
bridge_maxwait 0
auto vmbr20
iface vmbr20 inet static
address 0.0.0.0
netmask 255.255.255.255
bridge_ports vlan20
bridge_stp off
bridge_fd 0
auto vmbr21
iface vmbr21 inet static
address 0.0.0.0
netmask 255.255.255.255
bridge_ports vlan21
bridge_stp off
bridge_fd 0
Both pve01 and pve02 are able to reach internet and vmbr20 and vmbr21 are interfaces for my virtual machines.
I created 2 VMs with this configuration:
fw01:
auto eth1
iface eth1 inet static
address 10.1.1.254
netmask 255.255.255.0
network 10.1.1.0
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
client01:
auto eth1
iface eth1 inet static
address 10.1.1.11
netmask 255.255.255.0
network 10.1.1.254
Normally, each VMs were able to communicate without gateway because they are on the same network but actually it's not the case.
Does anyone has actually been able to make this kind of configuration and make it works?
I'm trying to have this kind of configuration because I want to have the VM who will manage all firewall stuff for the VM.
Of course, bridge-utils is installed and here is my pve version:
root@pve01:~# pveversion --verbose
proxmox-ve: 4.2-60 (running kernel: 4.4.15-1-pve)
pve-manager: 4.2-17 (running version: 4.2-17/e1400248)
pve-kernel-4.4.15-1-pve: 4.4.15-60
lvm2: 2.02.116-pve2
corosync-pve: 2.4.0-1
libqb0: 1.0-1
pve-cluster: 4.0-43
qemu-server: 4.0-85
pve-firmware: 1.1-8
libpve-common-perl: 4.0-71
libpve-access-control: 4.0-19
libpve-storage-perl: 4.0-56
pve-libspice-server1: 0.12.8-1
vncterm: 1.2-1
pve-qemu-kvm: 2.6-1
pve-container: 1.0-72
pve-firewall: 2.0-29
pve-ha-manager: 1.0-33
ksm-control-daemon: 1.2-1
glusterfs-client: 3.5.2-2+deb8u2
lxc-pve: 2.0.3-4
lxcfs: 2.0.2-pve1
cgmanager: not correctly installed
criu: 1.6.0-1
I don't want to assign a static ip address on each vmbr20 and vrmb21 bridges and host, I want it to act like vSwitch on VMware. I tried with openvSwitch (with openvswitch-switch and openvswitch-common installed of course) but I did'nt able to make it works ...
Any help?
Thx a lot.
I have issue with bridging interfaces for my POC (proof of concept). I have 2 pve host in cluster and here is the interface configuration:
pve01:
auto vlan20
iface vlan21 inet manual
vlan-raw-device eth0
auto vlan21
iface vlan21 inet manual
vlan-raw-device eth0
auto vmbr0
iface vmbr0 inet static
address 192.168.1.100
netmask 255.255.255.0
gateway 192.168.1.1
bridge_ports eth0
bridge_stp off
bridge_fd 0
bridge_maxage 0
bridge_ageing 0
bridge_maxwait 0
auto vmbr20
iface vmbr20 inet static
address 0.0.0.0
netmask 255.255.255.255
bridge_ports vlan20
bridge_stp off
bridge_fd 0
auto vmbr21
iface vmbr21 inet static
address 0.0.0.0
netmask 255.255.255.255
bridge_ports vlan21
bridge_stp off
bridge_fd 0
pve02:
auto vlan20
iface vlan21 inet manual
vlan-raw-device eth0
auto vlan21
iface vlan21 inet manual
vlan-raw-device eth0
auto vmbr0
iface vmbr0 inet static
address 192.168.1.101
netmask 255.255.255.0
gateway 192.168.1.1
bridge_ports eth0
bridge_stp off
bridge_fd 0
bridge_maxage 0
bridge_ageing 0
bridge_maxwait 0
auto vmbr20
iface vmbr20 inet static
address 0.0.0.0
netmask 255.255.255.255
bridge_ports vlan20
bridge_stp off
bridge_fd 0
auto vmbr21
iface vmbr21 inet static
address 0.0.0.0
netmask 255.255.255.255
bridge_ports vlan21
bridge_stp off
bridge_fd 0
Both pve01 and pve02 are able to reach internet and vmbr20 and vmbr21 are interfaces for my virtual machines.
I created 2 VMs with this configuration:
fw01:
auto eth1
iface eth1 inet static
address 10.1.1.254
netmask 255.255.255.0
network 10.1.1.0
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
client01:
auto eth1
iface eth1 inet static
address 10.1.1.11
netmask 255.255.255.0
network 10.1.1.254
Normally, each VMs were able to communicate without gateway because they are on the same network but actually it's not the case.
Does anyone has actually been able to make this kind of configuration and make it works?
I'm trying to have this kind of configuration because I want to have the VM who will manage all firewall stuff for the VM.
Of course, bridge-utils is installed and here is my pve version:
root@pve01:~# pveversion --verbose
proxmox-ve: 4.2-60 (running kernel: 4.4.15-1-pve)
pve-manager: 4.2-17 (running version: 4.2-17/e1400248)
pve-kernel-4.4.15-1-pve: 4.4.15-60
lvm2: 2.02.116-pve2
corosync-pve: 2.4.0-1
libqb0: 1.0-1
pve-cluster: 4.0-43
qemu-server: 4.0-85
pve-firmware: 1.1-8
libpve-common-perl: 4.0-71
libpve-access-control: 4.0-19
libpve-storage-perl: 4.0-56
pve-libspice-server1: 0.12.8-1
vncterm: 1.2-1
pve-qemu-kvm: 2.6-1
pve-container: 1.0-72
pve-firewall: 2.0-29
pve-ha-manager: 1.0-33
ksm-control-daemon: 1.2-1
glusterfs-client: 3.5.2-2+deb8u2
lxc-pve: 2.0.3-4
lxcfs: 2.0.2-pve1
cgmanager: not correctly installed
criu: 1.6.0-1
I don't want to assign a static ip address on each vmbr20 and vrmb21 bridges and host, I want it to act like vSwitch on VMware. I tried with openvSwitch (with openvswitch-switch and openvswitch-common installed of course) but I did'nt able to make it works ...
Any help?
Thx a lot.
