Hi,
Here is what I am trying to do. I have a Juniper switch connected to a Dell
R730, running CentOS 7.2, libvirt 1.2.17 and Open vSwitch 2.4.0
JNPR EX <——>Dell R730
I am running a virtual firewall (vSRX) as a KVM guest. I want to trunk VLANs
from the JNPR switch to the vSRX. So, the JNPR configs look like…
sherk@Public_IP_LAB_FABRIC_SW> show configuration interfaces xe-2/1/5
description "MSE-SERVER-3 p5p2 Rack 3.03";
vlan-tagging;
unit 1001 {
vlan-id 1001;
family inet {
address 192.168.1.1/30;
}
}
root@vSRX1> show configuration interfaces ge-0/0/1
description outside;
vlan-tagging;
unit 1001 {
vlan-id 1001;
family inet {
address 192.168.1.2/30;
}
}
On the CentOS host, I have a bridge defined…
[root@localhost network-scripts]# more ifcfg-outside
DEVICE="outside"
BOOTPROTO="none"
IPADDR=192.168.1.101
PREFIX=24
#GATEWAY=192.168.0.1
DNS1=8.8.8.8
ONBOOT="yes"
TYPE="OVSBridge"
DEVICETYPE="ovs"
This bridge has one physical interface (p5p2) and one virtual interface (vnet2)
[root@localhost network-scripts]# more ifcfg-p5p2
TYPE=Ethernet
DEVICE="p5p2"
NAME=p5p2
ONBOOT=yes
OVS_BRIDGE=outside
TYPE="OVSIntPort"
DEVIECTYPE="ovs"
Question: Should this be a 'OVSIntPort' or a 'OVSPort’? I’ve tried both without
effect…
This is what the bridge looks like…
[root@localhost network-scripts]# ovs-ofctl dump-ports-desc outside
OFPST_PORT_DESC reply (xid=0x2):
1(p5p2): addr:a0:36:9f:82:87:4e
config: 0
state: 0
current: 10GB-FD COPPER AUTO_NEG
advertised: 100MB-FD 1GB-FD 10GB-FD COPPER AUTO_NEG
supported: 100MB-FD 1GB-FD 10GB-FD COPPER AUTO_NEG
speed: 10000 Mbps now, 10000 Mbps max
3(vnet2): addr:fe:54:00:65:59:d5
config: 0
state: 0
current: 10MB-FD COPPER
speed: 10 Mbps now, 0 Mbps max
LOCAL(outside): addr:a0:36:9f:82:87:4e
config: 0
state: 0
speed: 0 Mbps now, 0 Mbps max
[root@localhost network-scripts]# ovs-vsctl show
429f8280-dd0f-46ce-8edf-6ea438dd4f32
Bridge outside
Port outside
trunks: [1001, 1002]
Interface outside
type: internal
Port "p5p2"
trunks: [1001, 1002]
Interface "p5p2"
Port "vnet2"
trunks: [1001, 1002]
Interface "vnet2"
Bridge "xxx222"
Port "vnet1"
Interface "vnet1"
Port "xxx222"
Interface "xxx222"
type: internal
Port "p5p1"
Interface "p5p1"
Bridge management
Port "vnet0"
Interface "vnet0"
Port "em2"
Interface "em2"
Port management
Interface management
type: internal
Port "vnet3"
Interface "vnet3"
ovs_version: "2.4.0"
To set the VLANs, I used this command…
[root@localhost network-scripts]# ovs-vsctl set port vnet2 trunk=1001,1002
How can I troubleshoot this?
When I ping from the JNPR switch, I can see packets arriving in the guest vSRX,
by seeing RX counts increasing…
root@vSRX1> show interfaces ge-0/0/1.1001
Logical interface ge-0/0/1.1001 (Index 71) (SNMP ifIndex 520)
Flags: Up SNMP-Traps 0x4000 VLAN-Tag [ 0x8100.1001 ] Encapsulation: ENET2
Input packets : 881
Output packets: 901
Security: Zone: Null
Protocol inet, MTU: 1500
Flags: Sendbcast-pkt-to-re
Addresses, Flags: Is-Preferred Is-Primary
Destination: 192.168.1.0/30, Local: 192.168.1.2, Broadcast: 192.168.1.3
The can also be seen on the p5p2 and the vnet2 interfaces…
[root@localhost network-scripts]# ifconfig p5p2
p5p2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet6 fe80::a236:9fff:fe82:874e prefixlen 64 scopeid 0x20<link>
ether a0:36:9f:82:87:4e txqueuelen 1000 (Ethernet)
RX packets 36348 bytes 5417334 (5.1 MiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 722 bytes 37560 (36.6 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
[root@localhost network-scripts]# ifconfig vnet2
vnet2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet6 fe80::fc54:ff:fe65:59d5 prefixlen 64 scopeid 0x20<link>
ether fe:54:00:65:59:d5 txqueuelen 500 (Ethernet)
RX packets 3 bytes 138 (138.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1303 bytes 112032 (109.4 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
Any help/suggestions appreciated!
Erik
_______________________________________________
discuss mailing list
discuss@openvswitch.org
http://openvswitch.org/mailman/listinfo/discuss
