Hi,
I wonder if I can get some suggestions to troubleshoot a connectivity issue
under VLAN setup,
My setup is under RHEL 6.5 (2.6.32-431) with OVS-1.11.0
(1) VMs (tapxxxx) are attached to br-int and eth1 is connected to br-ex with
vlan trunking enabled on eth1.(2) vlan trunking is validated for vlan 17 by
configuring eth1.17 and ICMP ping to the GW on vlan-17 is successful from the
host.(3) Flow seems to be normal, as shown below,
[root@svl-nova-09 openvswitch]# ovs-ofctl dump-flows br-intNXST_FLOW reply
(xid=0x4): cookie=0x0, duration=2607.611s, table=0, n_packets=0, n_bytes=0,
idle_age=2607, priority=3,in_port=1,dl_vlan=17 actions=mod_vlan_vid:1,NORMAL
cookie=0x0, duration=2610.373s, table=0, n_packets=5589, n_bytes=346828,
idle_age=0, priority=2,in_port=1 actions=drop cookie=0x0, duration=2612.193s,
table=0, n_packets=553, n_bytes=23250, idle_age=1892, priority=1
actions=NORMAL[root@svl-nova-09 openvswitch]# ovs-ofctl dump-flows
br-exNXST_FLOW reply (xid=0x4): cookie=0x0, duration=2613.029s, table=0,
n_packets=549, n_bytes=23066, idle_age=1897, priority=4,in_port=2,dl_vlan=1
actions=mod_vlan_vid:17,NORMAL cookie=0x0, duration=2615.49s, table=0,
n_packets=8, n_bytes=556, idle_age=2605, priority=2,in_port=2 actions=drop
cookie=0x0, duration=2617.163s, table=0, n_packets=5641, n_bytes=359144,
idle_age=1, priority=1 actions=NORMAL
(4) [root@svl-nova-09 openvswitch]# ovs-vsctl
showa14174e0-6cd9-4914-946d-27dd61ba68fd Port br-int
Interface br-int type: internal Port int-br-ex
Interface int-br-ex Port "tap45b7d159-9d" tag: 1
Interface "tap45b7d159-9d" (VM1) Port "tap02cfecd6-c7"
tag: 1 Interface "tap02cfecd6-c7" (VM2) Bridge br-ex
Port phy-br-ex Interface phy-br-ex Port br-ex
Interface br-ex type: internal Port "eth1"
Interface "eth1" ovs_version: "1.11.0"
However, an ICMP ping to the subnet GW IP (or other destination outside the
host) from either VM1 or VM2 doesn't work. tcpdump on eth1 shows both egress
ARP request from the VM and ingress ARP reply from the GW IP but tcpdump on
phy-br-ex is only showing egress ARP request.
[root@svl-nova-09 neutron]# tcpdump -e -n -i eth1 arplistening on eth1,
link-type EN10MB (Ethernet), capture size 65535 bytes00:32:10.206118
fa:16:3e:98:d8:7e > Broadcast, ethertype 802.1Q (0x8100), length 46: vlan 17, p
0, ethertype ARP, Request who-has 10.29.104.145 tell 10.29.104.154, length
2800:32:10.209731 00:00:0c:07:ac:11 > fa:16:3e:98:d8:7e, ethertype 802.1Q
(0x8100), length 64: vlan 17, p 5, ethertype ARP, Reply 10.29.104.145 is-at
00:00:0c:07:ac:11, length 46
[root@svl-nova-09 neutron]# tcpdump -e -n -i phy-br-ex arplistening on
phy-br-ex, link-type EN10MB (Ethernet), capture size 65535 bytes00:33:40.222106
fa:16:3e:98:d8:7e > Broadcast, ethertype 802.1Q (0x8100), length 46: vlan 1, p
0, ethertype ARP, Request who-has 10.29.104.145 tell 10.29.104.154, length
2800:33:41.222009 fa:16:3e:98:d8:7e > Broadcast, ethertype 802.1Q (0x8100),
length 46: vlan 1, p 0, ethertype ARP, Request who-has 10.29.104.145 tell
10.29.104.154, length 28
(5) ovs-dpctl dump-flows shows only egress dp flow for ARP Request traffic from
both VM port (tapxxxx) and phy-br-ex,[root@svl-nova-09 openvswitch]# ovs-dpctl
dump-flows | grep
fa:16:3e:98:d8:7ein_port(5),eth(src=fa:16:3e:98:d8:7e,dst=ff:ff:ff:ff:ff:ff),eth_type(0x8100),vlan(vid=1,pcp=0),encap(eth_type(0x0806),arp(sip=10.29.104.154,tip=10.29.104.145,op=1,sha=fa:16:3e:98:d8:7e,tha=00:00:00:00:00:00)),
packets:44, bytes:1848, used:0.796s,
actions:pop_vlan,push_vlan(vid=17,pcp=0),2,1in_port(8),eth(src=fa:16:3e:98:d8:7e,dst=ff:ff:ff:ff:ff:ff),eth_type(0x0806),arp(sip=10.29.104.154,tip=10.29.104.145,op=1,sha=fa:16:3e:98:d8:7e,tha=00:00:00:00:00:00),
packets:44, bytes:1848, used:0.796s,
actions:push_vlan(vid=1,pcp=0),4,pop_vlan,6,7,push_vlan(vid=1,pcp=0),3[root@svl-nova-09
openvswitch]# ovs-dpctl dump-flows | grep
arpin_port(5),eth(src=fa:16:3e:98:d8:7e,dst=ff:ff:ff:ff:ff:ff),eth_type(0x8100),vlan(vid=1,pcp=0),encap(eth_type(0x0806),arp(sip=10.29.104.154,tip=10.29.104.145,op=1,sha=fa:16:3e:98:d8:7e,tha=00:00:00:00:00:00)),
packets:47, bytes:1974, used:1.885s,
actions:pop_vlan,push_vlan(vid=17,pcp=0),2,1in_port(8),eth(src=fa:16:3e:98:d8:7e,dst=ff:ff:ff:ff:ff:ff),eth_type(0x0806),arp(sip=10.29.104.154,tip=10.29.104.145,op=1,sha=fa:16:3e:98:d8:7e,tha=00:00:00:00:00:00),
packets:47, bytes:1974, used:1.885s,
actions:push_vlan(vid=1,pcp=0),4,pop_vlan,6,7,push_vlan(vid=1,pcp=0),3
At this point, I am a bit lost on what I can do next. The open flow rules
suggest that a regular arp-reply should have been passed from eth1 futher down
to the VM port but it is not happening. Any suggestions are welcomed.
BTW, I can ping each other between the two VMs on the same br-int bridge.
Thanks. --weiguo
_______________________________________________
discuss mailing list
[email protected]
http://openvswitch.org/mailman/listinfo/discuss
