2011/8/28 Hans Witvliet <[email protected]>: > Hi all, > > In order to create a -more or less- representative test configuration, I > tried to copy a real life situation into a xen-set-up: > -external firewal (kc3040) > -openvpn server (kc3072) > -Internal firewall (kc3041) > -management gateway (kc3075) > -asterisk pabx > -mysql server > > To simulate different networks, I created dummy ethernet devices, and > connected bridges to it. > All of the four bridges are working OK, except ONE: BR2 and also only > from one virtual machine: openvpn/kc3072 > > If i ping on the vpn-box (vpn is not setup yet) towards internal > firewall i see no traffic at all ( 172.16.100.1 => 172.16.100.2 ) > Even if i do an tcpdump on the bridge-device from DOM-0, i dont see > anything. > > On the otherhand, if i do a ping the otherway round (int-fw towards vpn) > i see the icmp-request on the bridge device (but no repy, hence the > problem) > > Looked at [internal] firewall, at the bridges, routing, but i'm > clue-less…. > Tried to move the whole configuration towards a different DOM-0, with > the same result, rebuild the vpn-dom-U: still no show > All firewall's are down. > > All boxes are suse: both firewals are open_11.4, mgnt+vpn are sles11sp1 > and dom0 is also sles, but tried also with open. > > Tried the lists at xen, but the only replies were questions what i used > to make the drawing ;-) > > Any suggestion where to look next? >
did you try "ethtool - K eth0 tx off" [1] Hope the helps. Thanks, Todd [1] http://xen.markmail.org/search/?q=xen+ethtool+-K+eth0+tx+checksum+off#query:xen%20ethtool%20-K%20eth0%20tx%20checksum%20off+page:1+mid:ozu24u7azscw2zwf+state:results -- Todd Deshane http://www.linkedin.com/in/deshantm http://www.xen.org/products/cloudxen.html http://runningxen.com/ -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
