Thanks for your prompt response and detailed explanation.
We understood that the up-link interface should be part of the same VLAN
group as the other VLAN VMs.
Tested following scenario's and able to get Internet access on VM1 & VM2:
Added vlan tag to* uplink interface eth0*
$ ovs-vsctl add-br br0
$ ovs-vsctl add-port br0 eth0
$ ovs-vsctl add-port br0 tap0 tag=9
$ ovs-vsctl add-port br0 tap1 tag=9
$ ovs-vsctl add-port br0 eth0 tag=9
Could you please confirm the above understanding & approach is correct ?
Kindly Suggest.
On Sat, Nov 5, 2016 at 4:17 AM, Ben Pfaff <[email protected]> wrote:
> On Fri, Nov 04, 2016 at 06:06:24PM +0530, gowthami prakala wrote:
> > Hi ,
> >
> >
> > After adding vlan tag, not able to reach external network(ie ping
> > www.google.com failed).The following commands used,
> > In Host Machine,
> > sudo ovs-vsctl add-br br0
> > sudo ovs-vsctl add-port brlan0 eth0
> > sudo ifconfig eth0 0
> > sudo ifconfig brlan0 192.168.1.100 netmask 255.255.255.0
> > sudo ifconfig brlan0 up
> > sudo route add default gw 192.168.1.1 br0
> > sudo ip tuntap add mode tap vport1
> > sudo ip tuntap add mode tap vport2
> > sudo ifconfig vport1 up
> > sudo ifconfig vport2 up
> > ping www.google.com--success
> > sudo ovs-vsctl add-port brlan0 vport1
> > sudo ovs-vsctl add-port brlan0 vport2
> > sudo ovs-vsctl show
> >
> > VM1 configured as vport1
> > ping www.google.com in VM1-->success
> > VM2 configured as vport2
> > ping www.google.com in VM2-->success
> >
> > In Host Machine,
> > sudo ovs-vsctl set port vport1 tag=10
> > ping www.google.com in VM2-->failed
> > sudo ovs-vsctl set port vport2 tag=10
> > ping www.google.com in VM2-->failed
> >
> > Please give suggestions to resolve above issue
>
> The FAQ has advice:
>
> Q: I added a pair of VMs on different VLANs, like this::
>
> $ ovs-vsctl add-br br0
> $ ovs-vsctl add-port br0 eth0
> $ ovs-vsctl add-port br0 tap0 tag=9
> $ ovs-vsctl add-port br0 tap1 tag=10
>
> but the VMs can't access each other, the external network, or the Internet.
>
> A: It is to be expected that the VMs can't access each other. VLANs
> are a
> means to partition a network. When you configured tap0 and tap1 as
> access
> ports for different VLANs, you indicated that they should be isolated
> from
> each other.
>
> As for the external network and the Internet, it seems likely that the
> machines you are trying to access are not on VLAN 9 (or 10) and that
> the
> Internet is not available on VLAN 9 (or 10).
>
> Q: I added a pair of VMs on the same VLAN, like this::
>
> $ ovs-vsctl add-br br0
> $ ovs-vsctl add-port br0 eth0
> $ ovs-vsctl add-port br0 tap0 tag=9
> $ ovs-vsctl add-port br0 tap1 tag=9
>
> The VMs can access each other, but not the external network or the
> Internet.
>
> A: It seems likely that the machines you are trying to access in the
> external network are not on VLAN 9 and that the Internet is not
> available
> on VLAN 9. Also, ensure VLAN 9 is set up as an allowed trunk VLAN on
> the
> upstream switch port to which eth0 is connected.
>
_______________________________________________
discuss mailing list
[email protected]
https://mail.openvswitch.org/mailman/listinfo/ovs-discuss
