"
Cc: "pve-devel"
Envoyé: Mardi 6 Janvier 2015 05:41:49
Objet: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and VMsturns
off
Many thanks Alexandre !!!, it is the rule that i was searching long time
ago, i will add to the rc.local file.
Moreover and if you can, a
well.
Best regards
Cesar
- Original Message -
From: "Alexandre DERUMIER"
To: "Cesar Peschiera"
Cc: "dietmar" ; "pve-devel"
Sent: Tuesday, January 06, 2015 12:37 AM
Subject: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and
VMsturns
--dst-type MULTICAST
-m udp --dport 5404:5405 -j DROP
Proxmox firewall don't override custom rules
- Mail original -
De: "Cesar Peschiera"
À: "aderumier" , "dietmar"
Cc: "pve-devel"
Envoyé: Mardi 6 Janvier 2015 00:09:17
Objet: Re: [pve-dev
;pve-devel"
Sent: Monday, January 05, 2015 6:18 AM
Subject: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and
VMsturns off
Following rule on your pve nodes should prevent igmp packages flooding
your bridge:
iptables -t filter -A FORWARD -i vmbr0 -p igmp -j DROP
If something happen
> @Dietmar: maybe can we add a default drop rule in -A PVEFW-FORWARD, to drop
> multicast traffic from host ?
>
> Or maybe better, allow to create rules at datacenter level, and put them in -A
> PVEFW-FORWARD ?
So that we have 'IN', 'OUT', and 'FORWARD' rules at Datacenter/host level? Not
sure
and put them in -A
PVEFW-FORWARD ?
- Mail original -
De: "datanom.net"
À: "pve-devel"
Envoyé: Dimanche 4 Janvier 2015 03:34:57
Objet: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and VMsturns
off
On Sat, 3 Jan 2015 21:32:54 -0300
"Cesar Peschiera&qu
hat enable the firewall in
the network device of the VM (also in PVE GUI).
- Original Message -
From: "Michael Rasmussen"
To: "pve-devel"
Sent: Saturday, January 03, 2015 11:34 PM
Subject: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and
VMsturns off
On Sat, 3 Jan 2015 21:32:54 -0300
"Cesar Peschiera" wrote:
>
> Now in the switch i have igmp snooping disabled, but i want to avoid
> flooding the entire VLAN and the VMs
>
Following rule on your pve nodes should prevent igmp packages flooding
your bridge:
iptables -t filter -A FORWARD -i vmbr0
or apply firewall rules of in/out that affect only to this
node,
right?, or for what exist such option?
Yes, exactly, firewall tab on the node, is the firewall for INPUT|OUTPUT
rules to|from the node.
At datacenter level, it's apply on all nodes IN|OUT
----- Mail original -----
D
On Sat, 3 Jan 2015 16:40:40 +0100 (CET)
Alexandre DERUMIER wrote:
>
> I'll do test, but I don't see why It'll not work.
> (I known they was a bug with openswitch , but with linux bridge it's should
> work without any problem)
>
I use Linux bridge here with igmp snooping. igmp snooping enabled
ss that such
>>option is for apply firewall rules of in/out that affect only to this node,
>>right?, or for what exist such option?
Yes, exactly, firewall tab on the node, is the firewall for INPUT|OUTPUT rules
to|from the node.
At datacenter level, it's apply on all nodes IN|OUT
hiera"
À: "aderumier"
Cc: "pve-devel"
Envoyé: Samedi 3 Janvier 2015 03:41:20
Objet: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and VMsturns
off
Hi Alexandre
Many thanks for your reply, which is much appreciated.
Unfortunately, your suggestion d
(Currently datacenter rules apply only on hosts IN|OUT iptables rules, but
not in FORWARD iptables rules which is used by vms)
- Mail original -
De: "Cesar Peschiera"
À: "aderumier"
Cc: "pve-devel"
Envoyé: Vendredi 2 Janvier 2015 05:10:08
Objet: Re: [pve-dev
rules, but not
in FORWARD iptables rules which is used by vms)
----- Mail original -----
De: "Cesar Peschiera"
À: "aderumier"
Cc: "pve-devel"
Envoyé: Vendredi 2 Janvier 2015 05:10:08
Objet: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and VMst
idge_fd 0
post-up echo 0 > /sys/devices/virtual/net/vmbr0/bridge/multicast_snooping
- Mail original -
De: "Cesar Peschiera"
À: "aderumier"
Cc: "pve-devel"
Envoyé: Mercredi 31 Décembre 2014 05:01:37
Objet: Re: [pve-devel] Quorum problems with NICs Intel of
g
- Mail original -
De: "Cesar Peschiera"
À: "aderumier"
Cc: "pve-devel"
Envoyé: Mercredi 31 Décembre 2014 05:01:37
Objet: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and VMsturns
off
Hi Alexandre
Today, and after a week, again a node lost t
iera"
Cc: "pve-devel"
Sent: Friday, December 19, 2014 7:59 AM
Subject: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and
VMsturns off
maybe can you try to put 192.100.100.51 ip address directly to bond0,
to avoid corosync traffic going through to vmbr0.
(I remember some o
ine : Disable
SR-IOV Global Enable : Disable
Mem. Mapped I/O Above 4 GB : Disable
- Original Message -
From: "Alexandre DERUMIER"
To: "Cesar Peschiera"
Cc: "pve-devel"
Sent: Wednesday, December 24, 2014 8:49 AM
Subject: Re: [pve-devel] Quorum problems
On Wed, 24 Dec 2014 12:49:39 +0100 (CET)
Alexandre DERUMIER wrote:
>
> >>Moreover, i have doubts over these 3 options (Bios Hardware):
> >>- OS Watchdog timer (option available in all my servers)
>
> you can use it if you don't use fencing from proxmox. I'll restart the server
> in case of a
Dell R720
- Original Message -----
From: "Alexandre DERUMIER"
To: "Cesar Peschiera"
Cc: "pve-devel"
Sent: Monday, December 22, 2014 2:58 PM
Subject: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and
VMsturns off
>>After several
ster restart
then
/etc/init.d/pvedaemon restart
/etc/init.d/pvestatd restart
- Mail original -
De: "Cesar Peschiera"
À: "aderumier" , "pve-devel"
Envoyé: Lundi 22 Décembre 2014 04:01:31
Objet: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s
vestatd daemon is hanging/crashed.
Can you check that you can write to /etc/pve.
if not, try to restart
/etc/init.d/pve-cluster restart
then
/etc/init.d/pvedaemon restart
/etc/init.d/pvestatd restart
----- Mail original -
De: "Cesar Peschiera"
À: "aderumier" ,
schiera"
To: "Alexandre DERUMIER"
Cc: "pve-devel"
Sent: Saturday, December 20, 2014 9:30 AM
Subject: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and
VMsturns off
Hi Alexandre
I put 192.100.100.51 ip address directly to bond0, and i don't h
. :-(
Some other suggestion?
- Original Message -
From: "Alexandre DERUMIER"
To: "Cesar Peschiera"
Cc: "pve-devel"
Sent: Friday, December 19, 2014 7:59 AM
Subject: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and
VMsturns off
maybe can
vel"
Envoyé: Vendredi 19 Décembre 2014 11:08:33
Objet: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and VMsturns
off
>can you post your /etc/network/interfaces of theses 10gb/s nodes ?
This is my configuration:
Note: The LAN use 192.100.100.0/24
#Network interfaces
auto l
can you post your /etc/network/interfaces of theses 10gb/s nodes ?
This is my configuration:
Note: The LAN use 192.100.100.0/24
#Network interfaces
auto lo
iface lo inet loopback
iface eth0 inet manual
iface eth1 inet manual
iface eth2 inet manual
iface eth3 inet manual
iface eth4 inet ma
VE node begin to boot brutally as if the physical server recently was
power on.
- Original Message -
From: "Cesar Peschiera"
To: "Alexandre DERUMIER"
Cc: "pve-devel"
Sent: Friday, December 19, 2014 2:04 AM
Subject: Re: [pve-devel] Quorum problems with NI
nvoyé: Vendredi 19 Décembre 2014 06:04:15
Objet: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and VMsturns
off
Yes, Multicast works (tested with omping)
Best regards
Cesar
- Original Message -
From: "Alexandre DERUMIER"
To: "Cesar Peschiera"
hiera"
À: "aderumier"
Cc: "pve-devel"
Envoyé: Vendredi 19 Décembre 2014 06:04:15
Objet: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and VMsturns
off
Yes, Multicast works (tested with omping)
Best regards
Cesar
- Original Message -
F
Yes, Multicast works (tested with omping)
Best regards
Cesar
- Original Message -
From: "Alexandre DERUMIER"
To: "Cesar Peschiera"
Cc: "pve-devel"
Sent: Thursday, December 18, 2014 12:38 PM
Subject: Re: [pve-devel] Quorum problems with NICs Intel of 1
014 12:38 PM
Subject: Re: [pve-devel] Quorum problems with NICs Intel of 10 Gb/s and
VMsturns off
when you loose the quorum, is multicast working or not ?
(test with omping for example)
- Mail original -
De: "Cesar Peschiera"
À: "aderumier"
Cc: "pve-devel&qu
when you loose the quorum, is multicast working or not ?
(test with omping for example)
- Mail original -
De: "Cesar Peschiera"
À: "aderumier"
Cc: "pve-devel"
Envoyé: Jeudi 18 Décembre 2014 15:33:47
Objet: Re: [pve-devel] Quorum problems with NICs Inte
simultaneously in my two nodes that has the NICs of 10 Gb/s.
- Original Message -
From: "Alexandre DERUMIER"
To: "Cesar Peschiera"
Cc: "pve-devel"
Sent: Thursday, December 18, 2014 9:18 AM
Subject: Re: [pve-devel] Quorum problems with NICs Intel of 1
33 matches
Mail list logo
