On Tuesday, January 06, 2015 07:56:53 PM Ben wrote: > Just for information, the problem is SOLVED. > > The issue is that I tried to put an IP Address on the TAP and test like > that which is not working. > After booting a VM machine with a TAP interface (where I put an IP > Address) it is working ! > > I just figured out a strange behaviour : > > If I set two tap devices on 2 VM (tap50 & tap60) and set tap50 tag=50 > and tap60 tag=60 on ovs I noticed that it is working well. > Each VM IP can ping each other on the same vlan, but if I erase one IP > address on one vm and add a default gw to route all the traffic on the > second tap interface I noticed that the other vm is still responding to > the ping even if I am requestiing an ip address into the other vlan. > > I check ip forwarding and ajust the rp_ & arp filter on my linux kernel > and iptables forward to deny everything but is keeps respond to my ping. > I guess OVS is forwarding it properly to the VM but to the wrong tap > interface. > > Is there a way to harden the linux or change this behaviour? > The reason is that I am going to use my VM for routing (vlan) purpose > and I need to deny everything by default.
Sorry, but it is still not clear to me how you are connecting the interfaces and where you are adding addresses. fbl _______________________________________________ discuss mailing list [email protected] http://openvswitch.org/mailman/listinfo/discuss
