vmbr0 bridge not working

M

mitron

New Member
May 24, 2018
13
0
1
45
I have a vm guest with public ip connected to vmbr0.
When I ping an ip on the internet it says "Destination Host Unreachable"



HOST config
===========

auto lo
iface lo inet loopback

#
# external interface of the host
auto eno1
iface eno1 inet static
address 188.164.246.137
netmask 255.255.255.255
gateway 188.164.246.254


#
# bridge for VMs with public IPs (DMZ)
auto vmbr0
iface vmbr0 inet static
address 188.164.246.137
netmask 255.255.255.255
bridge_ports none
bridge_stp off
bridge_fd 0

#
# bridge for internal LAN with private IPs
auto vmbr1
iface vmbr1 inet static
address 10.10.10.1
netmask 255.255.255.0
bridge_ports none
bridge_stp off
bridge_fd 0

post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-up iptables -t nat -A POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE
post-down iptables -t nat -D POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE
 
I had the same problem... and after 5 days of testing... I got it working, just do something like this:

Use vmbr0 for your vms and leave the file just like this, you can even remove vmbr1.

Code: 
auto lo
iface lo inet loopback

#
# external interface of the host
auto eno1
iface eno1 inet static
address 188.164.246.137
netmask 255.255.255.255
gateway 188.164.246.254
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-up echo 1 > /proc/sys/net/ipv4/conf/eno1/proxy_arp

#
# bridge for VMs with public IPs (DMZ)
auto vmbr0
iface vmbr0 inet static
address 10.10.10.1
netmask 255.255.255.255
bridge_ports none
bridge_stp off
bridge_fd 0
post-up iptables -t nat -A POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE
post-down iptables -t nat -D POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE

#
# bridge for internal LAN with private IPs
auto vmbr1
iface vmbr1 inet static
address 10.10.5.1
netmask 255.255.255.0
bridge_ports none
bridge_stp off
bridge_fd 0
 
Khalko said:
I had the same problem... and after 5 days of testing... I got it working, just do something like this:

Use vmbr0 for your vms and leave the file just like this, you can even remove vmbr1.

Code: 
auto lo
iface lo inet loopback

#
# external interface of the host
auto eno1
iface eno1 inet static
address 188.164.246.137
netmask 255.255.255.255
gateway 188.164.246.254
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-up echo 1 > /proc/sys/net/ipv4/conf/eno1/proxy_arp

#
# bridge for VMs with public IPs (DMZ)
auto vmbr0
iface vmbr0 inet static
address 10.10.10.1
netmask 255.255.255.255
bridge_ports none
bridge_stp off
bridge_fd 0
post-up iptables -t nat -A POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE
post-down iptables -t nat -D POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE

#
# bridge for internal LAN with private IPs
auto vmbr1
iface vmbr1 inet static
address 10.10.5.1
netmask 255.255.255.0
bridge_ports none
bridge_stp off
bridge_fd 0
Click to expand...
 
You must log in or register to reply here.
Top Bottom