Hello Peter, On Wed, Jan 03, 2024 at 10:21:21PM +0000, peter.gasparo...@orange.com wrote: > Hi Daniel, > hope you are good, had peaceful Christmas time, entering yet better NY 2024 > hope so... sorry for overlooking this, even wanted to respond early December, > then got delayed again.. Now I do so as its still interesting to me! > > 1) yes, my sole quick method was "ip nei" command to confirm the ARP > passthrough > 2) no firewall at all, plain Debian installation > 3) you will not believe --> but before Xmas and now, it all works and MAC is > passed e2e. That's so pitty. Only change I made was my underlay change of > vSwitch uplink to another port... because I re-considered my overall lab > setup, yet it hardly could improve this as the external MAC made it to > external (VLAN) iface of the bridge, before/. Anyhow, possibly I understand > the "bridge fbd" only shows learned MACs on given interface (my VLAN199) and > is not supposed to attribute it to all others all way up to NS, like I > attempted to guess.. > > Finally, either this of MACVLAN setup (where I found this), I have new > finding which I don’t like as it creates a hell of duplicate traffic into > network. The problem is, that either VETH or MACVLAN-configured IP host's VM > duplicates incoming packets on its receiving port, connected to vSphere > vSwitch, which in turn just dully floods it to uplinks, where my Wireshark > sniffer sees it. This is how I discovered that. > I prepared this diagram for you to see and tell. > https://docs.google.com/document/d/1mNkZswDSG_OjLnsgXJvIX2tUGSEebcZf720eS29eFCA/edit?usp=sharing
I have problems understanding your mail. Under 3) you write "it all works" but then there are still some issues about duplicate traffic (which isn't the original problem?). Can you please clearify if there is still something to do/fix? Best regards Uwe
signature.asc
Description: PGP signature