I am struggeling to find the right way to configure my network.
Information:
Network
First Node <--> Switch (unmanaged and dumb) <--> Second Node
First Node
4 CT Vlan 80
1 CT Vlan 40
1 Vm Vlan 20
Network
bond1 NIC1 NIC2 NIC3 NIC4 balanced-alb
bond1.40 VLAN 40
bond1.80 VLAN 80
bond1.20 VLAN 20
vmbr40 raw device bond1.40
vmbr80 raw device bond1.80
vmbr20 raw device bond1.20
vmbr100 raw device bond1 (untagged)
every ct or VM is Attachet to their specific network.
Second Node (Firewall)
1 VM
Network
vmbr0 (WAN)
vmbr1 (LAN)
VM (Opensense)
NIC1(net0) VLANTag 20
NIC2(net1) VLANTag 40
NIC3(net2) VLANTag 80
NIC4(net3) Untagged
every NIC ist tagged not the vmbr
In every configuration the vlanaware option on vmbr is not checked.
Issue:
If i have on the first Node the same configuration like the second Node, i mean i create the bond and after i attachet an vmbr and tagged the vlan on the CT/VM NIC I get Package loss from 30-80% but the second node seems not do have the same issue.
Now i changed to the actual settings and it seems too be working, but i have 2 nodes with different configurations and sometimes it seems to be that Node1 is having Package loss but only at the beginning of an connection.
Question:
How should be the right configuration look a like, what is the most common solution for such an configuration, to get an Layer3 Switch or something i dont have the money at the time, the Firewall need to be the central Point for Routing and Switching at the time.
Have someone a good suggestion or tool to find the point of failure in the Network it is unimportant if it is for Linux or Windows.
Information:
Network
First Node <--> Switch (unmanaged and dumb) <--> Second Node
First Node
4 CT Vlan 80
1 CT Vlan 40
1 Vm Vlan 20
Network
bond1 NIC1 NIC2 NIC3 NIC4 balanced-alb
bond1.40 VLAN 40
bond1.80 VLAN 80
bond1.20 VLAN 20
vmbr40 raw device bond1.40
vmbr80 raw device bond1.80
vmbr20 raw device bond1.20
vmbr100 raw device bond1 (untagged)
every ct or VM is Attachet to their specific network.
Second Node (Firewall)
1 VM
Network
vmbr0 (WAN)
vmbr1 (LAN)
VM (Opensense)
NIC1(net0) VLANTag 20
NIC2(net1) VLANTag 40
NIC3(net2) VLANTag 80
NIC4(net3) Untagged
every NIC ist tagged not the vmbr
In every configuration the vlanaware option on vmbr is not checked.
Issue:
If i have on the first Node the same configuration like the second Node, i mean i create the bond and after i attachet an vmbr and tagged the vlan on the CT/VM NIC I get Package loss from 30-80% but the second node seems not do have the same issue.
Now i changed to the actual settings and it seems too be working, but i have 2 nodes with different configurations and sometimes it seems to be that Node1 is having Package loss but only at the beginning of an connection.
Question:
How should be the right configuration look a like, what is the most common solution for such an configuration, to get an Layer3 Switch or something i dont have the money at the time, the Firewall need to be the central Point for Routing and Switching at the time.
Have someone a good suggestion or tool to find the point of failure in the Network it is unimportant if it is for Linux or Windows.