VM to VM connectivity

[borov]

I've got two VM's, both are FreeBSD.

/etc/network/interfaces

auto vmbr4
iface vmbr4 inet static
        address 10.1.11.3
        netmask 255.255.255.0
        bridge_ports none
        bridge_stp off
        bridge_fd 0

Each VM got virtio bridge nic to vmbr4. Firewall is disabled on the node. Both nic's have different mac addresses. I can ping host ip 10.1.11.3 from both vms, and i can ping both vms from host, but i cannot ping vm2 from vm1 and in backward. There is no additional firewall rules on vm's.

Maybe somebody know what it could be?

 

[Blub]

Can you use tcpdump on the host on the vmbr4 and the VM's tap interfaces to see where the packets get lost?

While running a ping from VM1 to VM2:

$ tcpdump -n -i vmbr4 ip proto '\icmp'
$ tcpdump -n -i tap${VMID1}i0 ip proto '\icmp'
$ tcpdump -n -i tap${VMID2}i0 ip proto '\icmp'

EDIT: I was first gonna suggest checking the various forwarding sysctls but they're all 0 for my host and VM-to-VM traffic works fine here.

 

[pirateghost]

Is there a reason you put an IP on that vmbr? It's not needed for an internal only vswitch