Ben, thank you very much - your response got me into right direction. I'm using OVS as part of OpenNebula cloud. There are default flows applied by ONE to stop MAC-spoofing. Those rules also blocked proper bridging operation inside VMs. Everything works as expected once I deleted flows.
-- Thank you, Dmitri Chebotarov VCL Sys Eng, Engineering & Architectural Support, TSD - Ent Servers & Messaging 223 Aquia Building, Ffx, MSN: 1B5 Phone: (703) 993-6175 | Fax: (703) 993-3404 On 8/30/13 12:28 , "Ben Pfaff" <[email protected]> wrote: >On Fri, Aug 30, 2013 at 03:50:36PM +0000, Dmitri Chebotarov wrote: >> I'm looking for some help with an OVS option ? is there a way to >> allow interface of connected VM to operate in promiscuous mode? >> >> VMWare vSwitch has this under Security, VirtualBox under >> Network->[Adapter]->Advanced->Promiscuous mode. > >VMware made a terrible, confusing mistake in naming here. >"Promiscuous mode" has a specific meaning. As defined at e.g. >http://en.wikipedia.org/wiki/Promiscuous_mode, promiscuous mode is >when a network interface card passes every packet it receives to the >CPU, instead of filtering out and discarding the packets not destined >to that host. In a switched network, like the ones you'll find pretty >much everywhere these days, promiscuous mode doesn't have much effect, >because few packets not destined to a host are delivered to the host's >NIC. > >What the VMware vSwitch calls "promiscuous mode" is quite different. >When you configure promiscuous mode on a VMware vNIC, the vSwitch >sends a copy of every packet received by the vSwitch to that vNIC. >That has a much bigger effect: rather than getting a few stray packets >for which the switch does not yet know the correct destination, the >vNIC gets every packet. > >On a physical switch, what the VMware vSwitch calls "promiscuous mode" >is called "port mirroring" or "SPAN". Open vSwitch supports port >mirroring, and you can find instructions for configuring it in the >documentation. > _______________________________________________ discuss mailing list [email protected] http://openvswitch.org/mailman/listinfo/discuss
