[jira] [Commented] (CLOUDSTACK-5591) [VMWare][64-bit template]Public network is not reachable by the System Vm's.

Jayapal Reddy (JIRA) Wed, 01 Jan 2014 00:14:40 -0800

    [ 
https://issues.apache.org/jira/browse/CLOUDSTACK-5591?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13859846#comment-13859846
 ]


Jayapal Reddy commented on CLOUDSTACK-5591:
-------------------------------------------

This issue is not reproduced in my setup.
Here are debug info:

root@s-6-VM:~# uname -a
Linux s-6-VM 3.2.0-4-amd64 #1 SMP Debian 3.2.41-2 x86_64 GNU/Linux

root@s-6-VM:~#
root@s-6-VM:~# ifconfig
eth1      Link encap:Ethernet  HWaddr 06:f6:c6:00:00:07
          inet addr:10.147.41.127  Bcast:10.147.41.255  Mask:255.255.254.0
          inet6 addr: fe80::4f6:c6ff:fe00:7/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:445 errors:0 dropped:0 overruns:0 frame:0
          TX packets:188 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:33771 (32.9 KiB)  TX bytes:27180 (26.5 KiB)

eth2      Link encap:Ethernet  HWaddr 06:bb:f0:00:00:0c
          inet addr:10.147.52.101  Bcast:10.147.52.255  Mask:255.255.255.0
          inet6 addr: fe80::4bb:f0ff:fe00:c/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:43 errors:0 dropped:0 overruns:0 frame:0
          TX packets:47 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:4298 (4.1 KiB)  TX bytes:4110 (4.0 KiB)

eth3      Link encap:Ethernet  HWaddr 06:5b:cc:00:00:04
          inet addr:10.147.41.124  Bcast:10.147.41.255  Mask:255.255.254.0
          inet6 addr: fe80::45b:ccff:fe00:4/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:195 errors:0 dropped:0 overruns:0 frame:0
          TX packets:5 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:11752 (11.4 KiB)  TX bytes:478 (478.0 B)

lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:2 errors:0 dropped:0 overruns:0 frame:0
          TX packets:2 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:168 (168.0 B)  TX bytes:168 (168.0 B)

root@s-6-VM:~# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         10.147.52.1     0.0.0.0         UG    0      0        0 eth2
10.147.40.0     0.0.0.0         255.255.254.0   U     0      0        0 eth1
10.147.40.0     0.0.0.0         255.255.254.0   U     0      0        0 eth3
10.147.52.0     0.0.0.0         255.255.255.0   U     0      0        0 eth2
10.147.59.0     10.147.40.1     255.255.255.0   UG    0      0        0 eth1
10.147.59.206   10.147.40.1     255.255.255.255 UGH   0      0        0 eth1
10.223.240.232  10.147.40.1     255.255.255.255 UGH   0      0        0 eth1


root@s-6-VM:~# ping google.com
PING google.com (74.125.239.136): 48 data bytes
56 bytes from 74.125.239.136: icmp_seq=0 ttl=45 time=245.253 ms
56 bytes from 74.125.239.136: icmp_seq=1 ttl=45 time=242.582 ms
^C--- google.com ping statistics ---
2 packets transmitted, 2 packets received, 0% packet loss
round-trip min/avg/max/stddev = 242.582/243.917/245.253/1.336 ms
root@s-6-VM:~#

root@s-6-VM:~# arp -a
? (10.147.40.1) at 00:19:b9:8c:8e:3a [ether] on eth1
? (10.147.52.1) at 00:19:b9:8c:8e:3a [ether] on eth2
root@s-6-VM:~#

root@s-6-VM:~# iptables -L -nv
Chain INPUT (policy DROP 22 packets, 1768 bytes)
 pkts bytes target     prot opt in     out     source               destination
    0     0 ACCEPT     tcp  --  eth2   *       0.0.0.0/0            0.0.0.0/0   
         state NEW tcp dpt:443
    0     0 ACCEPT     tcp  --  eth2   *       0.0.0.0/0            0.0.0.0/0   
         state NEW tcp dpt:80
    1    60 ACCEPT     tcp  --  eth1   *       0.0.0.0/0            0.0.0.0/0   
         state NEW tcp dpt:3922
    0     0 ACCEPT     all  --  eth0   *       0.0.0.0/0            0.0.0.0/0   
         state RELATED,ESTABLISHED
  519 36553 ACCEPT     all  --  eth1   *       0.0.0.0/0            0.0.0.0/0   
         state RELATED,ESTABLISHED
   54  4592 ACCEPT     all  --  eth2   *       0.0.0.0/0            0.0.0.0/0   
         state RELATED,ESTABLISHED
    0     0 ACCEPT     all  --  eth3   *       0.0.0.0/0            0.0.0.0/0   
         state RELATED,ESTABLISHED
    0     0 ACCEPT     all  --  lo     *       0.0.0.0/0            0.0.0.0/0
    0     0 DROP       icmp --  *      *       0.0.0.0/0            0.0.0.0/0   
         icmptype 13
    0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0
    0     0 ACCEPT     tcp  --  eth1   *       0.0.0.0/0            0.0.0.0/0   
         state NEW tcp dpt:3922

Chain FORWARD (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination

Chain OUTPUT (policy ACCEPT 509 packets, 61428 bytes)
 pkts bytes target     prot opt in     out     source               destination
    0     0 REJECT     tcp  --  *      eth1    0.0.0.0/0            0.0.0.0/0   
         state NEW tcp dpt:80 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      eth1    0.0.0.0/0            0.0.0.0/0   
         state NEW tcp dpt:443 reject-with icmp-port-unreachable

Chain HTTP (0 references)
 pkts bytes target     prot opt in     out     source               destination
root@s-6-VM:~#

> [VMWare][64-bit template]Public network is not reachable by the System Vm's.
> ----------------------------------------------------------------------------
>
>                 Key: CLOUDSTACK-5591
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-5591
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the 
> default.) 
>          Components: Install and Setup
>    Affects Versions: 4.3.0
>            Reporter: Kiran Koneti
>            Assignee: Jayapal Reddy
>            Priority: Blocker
>             Fix For: 4.3.0
>
>
> The setup details are as follows:
> 1)Installed the CS setup and changed the global setting to allow the download 
> from the internal sites.
> 2)Created a Advanced Zone setup with Vmware 5.5 where the system Vm's came up.
> 3)Then added one more cluster for the KVm and added a KVM host.
> 4)After adding the KVM ost the system Vm template for the KVM was not ready 
> and it shows as connection timed out.
> 5)Then logged into the SSVM and tried to ping the public network then the 
> network was not reachable,even the default gateway was not pingable.
> 6)When stopped the IP tables the gateway was pingable.
> 7)When tried to check the arp of the gw using "arping the gatewayIP" it says 
> the eth0 is down and when eth0 is made up the ping was successful and the 
> public network was reachable.
> 8)Then tried to restart the SSVM again the situation is same that the public 
> network is not reachable.
> 9)If we leave the stup for longer time without making any changes the Public 
> network will be reachable and when rebooted again the network will not be 
> reached again.
> The Iptables details are as below:
> "iptables -L -nv
> Chain INPUT (policy DROP 4 packets, 312 bytes)
>  pkts bytes target     prot opt in     out     source               
> destination
>     0     0 ACCEPT     tcp  --  eth2   *       0.0.0.0/0            0.0.0.0/0 
>            state NEW tcp dpt:443
>     0     0 ACCEPT     tcp  --  eth2   *       0.0.0.0/0            0.0.0.0/0 
>            state NEW tcp dpt:80
>     1    60 ACCEPT     tcp  --  eth1   *       0.0.0.0/0            0.0.0.0/0 
>            state NEW tcp dpt:3922
>     0     0 ACCEPT     all  --  eth0   *       0.0.0.0/0            0.0.0.0/0 
>            state RELATED,ESTABLISHED
>   547 95190 ACCEPT     all  --  eth1   *       0.0.0.0/0            0.0.0.0/0 
>            state RELATED,ESTABLISHED
>     2   262 ACCEPT     all  --  eth2   *       0.0.0.0/0            0.0.0.0/0 
>            state RELATED,ESTABLISHED
>     0     0 ACCEPT     all  --  eth3   *       0.0.0.0/0            0.0.0.0/0 
>            state RELATED,ESTABLISHED
>    10   588 ACCEPT     all  --  lo     *       0.0.0.0/0            0.0.0.0/0
>     0     0 DROP       icmp --  *      *       0.0.0.0/0            0.0.0.0/0 
>            icmptype 13
>     0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0
>     0     0 ACCEPT     tcp  --  eth1   *       0.0.0.0/0            0.0.0.0/0 
>            state NEW tcp dpt:3922
> Chain FORWARD (policy DROP 0 packets, 0 bytes)
>  pkts bytes target     prot opt in     out     source               
> destination
> Chain OUTPUT (policy ACCEPT 493 packets, 76135 bytes)
>  pkts bytes target     prot opt in     out     source               
> destination
>     0     0 ACCEPT     tcp  --  *      eth1    0.0.0.0/0            
> 10.147.28.0/24       state NEW tcp
>     0     0 REJECT     tcp  --  *      eth1    0.0.0.0/0            0.0.0.0/0 
>            state NEW tcp dpt:80 reject-with icmp-port-unreachable
>     0     0 REJECT     tcp  --  *      eth1    0.0.0.0/0            0.0.0.0/0 
>            state NEW tcp dpt:443 reject-with icmp-port-unreachable
> Chain HTTP (0 references)
>  pkts bytes target     prot opt in     out     source               
> destination"
> The arping request is as below:
>  arping 10.147.X.X
> Interface "eth0" is down



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)

[jira] [Commented] (CLOUDSTACK-5591) [VMWare][64-bit template]Public network is not reachable by the System Vm's.

Reply via email to