Reuse of IP address for a new container fail to ping gateway

S

slamy

New Member
Dec 18, 2020
3
1
3
74
Hi all,

I am in a strange situation. My setup is 3 PVE 6.3 with VLANs and bridges
Network configuration on nodes is as simple as giving a VLAN number to each physical interfaces when needed and create bridges based on these VLANs interfaces.

Then I create a container, like test-debian, based on official proxmox debian 10 template and configure on it one network interface (hold by the first proxmox bridge).
I configure the network interface with IP, netmask and gateway, it works!

But I realize that I have to redeploy this container, so I remove it and I create a new one, with exactly same hostname and same network configuration.

Unfortunately this new container is unable to ping its gateway...

With tcpdump I confirm that ICMP are received by the gateway but the container never receive the reply...

And, what is strange (or not I would prefer), is that if I ping some other IP, like 8.8.8.8, it works! And now the ping to the gateway is working too.

Anybody already had this behaviour? Anything special to do when a container is reinstalled with same network configuration?

Thanks everybody for the good work so far!
 
From the top of my head. Try to move the CT to a different bridge and back. Re-check netmask, VLAN ID.
 
Well, thanks Alwin I did what you asked. Nothing happens, same unreachable container between itself and its gateway.
But I wonder if I setup VLANs the way it should be.
First I read the network configuration on official proxmox wiki.
So I setup VLANs only on the physical interfaces, with numbered interface to create VLANs, like eno1.2020
Then I setup the bridge, only to mention the bridge-ports as eno1.2020
Finaly I attach my container to this bridge with no more information about VLANs or physical interfaces used.

Is this setup right? Should I define my VLANs differently?

As I said, it only happens when I destroy a container, which is reachable with no problem and few minutes after I create a new one with the exact same network configuration. This new container is unable to reach the exact same gateway.

For the moment I will force same MAC address to the new container and see if it works...but not the most reliable setup



Thanks
 
slamy said:
Is this setup right? Should I define my VLANs differently?
Click to expand...
This can be done, and will limit the traffic to that VLAN. But the other network components need to know about the VLAN as well. And routing needs to be done between VLAN separated networks.

slamy said:
As I said, it only happens when I destroy a container, which is reachable with no problem and few minutes after I create a new one with the exact same network configuration. This new container is unable to reach the exact same gateway.
Click to expand...
But this sounds like the MAC address might be cached somewhere and traffic is not passed back to that MAC.
 
Yes thank you, definitely the MAC address cache is causing the issue. Not Proxmox or LXC related but our switches keep this cache.
After a certain amount of time my new container is reachable with no hack!

You can close this ticket, thank you
 
  • Like
Reactions: Alwin
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back