openvswitch setup on first node won't allow vlan icmp echo reply.

asked 2017-06-05 15:50:50 -0500

pwd gravatar image

I am trying to set up VLAN networking for an OpenStack Node using a switch interface that has a few VLANS comming from the switch. The switch is set to tag the packets with the VLAN ID (72, 73, and 74). I have install Open VSwitch but NOT openstack nor ceph yet, I want to get the networking working before going on to the other parts of the system.

Port em1 is set to a simple interface network and works fine for everything (ping, ssh, scp, etc) that I have tried.

When I Ping 10.72.1.111, 10.73.1.111, or 10.74.1.111 I can see the counters go up AND when I capture packets on that interface (vl72, vl73, or vl74) I can use wireshark to view the packets and see ICMP Echo with every sequence number but no traffic outbound.

I am not sure what I have mis-configured This is on openvswitch 1:2.6.1-4.1.git20161206.el7 from the openstack-ocata repro.

This is on a Centos 7 with kernal 3.10.0-514.21.1.el7.x86_64 yum update run clean.

Below is my configuration. I include ip addr and ip route and some of the ovs-* show commands along with netstat -i output.

::::::::::::::
/etc/sysconfig/network-scripts/ifcfg-em1

The Working Interface (NO VLAN)
::::::::::::::
TYPE="Ethernet"
BOOTPROTO="none"
DEFROUTE="yes"
IPV4_FAILURE_FATAL="no"
IPV6INIT="yes"
IPV6_AUTOCONF="yes"
IPV6_DEFROUTE="yes"
IPV6_FAILURE_FATAL="no"
IPV6_ADDR_GEN_MODE="stable-privacy"
NAME="em1"
UUID="1405df78-0de3-4744-b249-4b07d35a1873"
DEVICE="em1"
ONBOOT="yes"
IPADDR="10.0.71.111"
PREFIX="24"
GATEWAY="10.0.71.1"
DNS1="8.8.8.8"
DNS2="8.8.4.4"
DOMAIN="mdtsoft.com frame.biz nb-me.org"
IPV6_PEERDNS="yes"
IPV6_PEERROUTES="yes"
IPV6_PRIVACY="no"
::::::::::::::
/etc/sysconfig/network-scripts/ifcfg-em2

The interface with the vlan going to the bridge
::::::::::::::
DEVICE=em2
ONBOOT=yes
DEVICETYPE=ovs
TYPE=OVSPort
OVS_BRIDGE=br-ovs0
BOOTPROTO=none
HOTPLUG=no
::::::::::::::
/etc/sysconfig/network-scripts/ifcfg-vl72

vlan 72 interface
::::::::::::::
DEVICE=vl72
ONBOOT=yes
DEVICETYPE=ovs
TYPE=OVSIntPort
BOOTPROTO=static
IPADDR=10.72.1.111
NETMASK=255.255.0.0
OVS_BRIDGE=br-ovs0
OVS_OPTIONS="tag=72"
OVS_EXTRA="set Interface $DEVICE external-ids:iface-id=$(hostname -s)-$DEVICE-vif"
HOTPLUG=no


::::::::::::::
/etc/sysconfig/network-scripts/ifcfg-vl73

vlan 73 interface
::::::::::::::
DEVICE=vl73
ONBOOT=yes
DEVICETYPE=ovs
TYPE=OVSIntPort
BOOTPROTO=static
IPADDR=10.73.1.111
NETMASK=255.255.0.0
OVS_BRIDGE=br-ovs0
OVS_OPTIONS="tag=73"
OVS_EXTRA="set Interface $DEVICE external-ids:iface-id=$(hostname -s)-$DEVICE-vif"
HOTPLUG=no

::::::::::::::
/etc/sysconfig/network-scripts/ifcfg-vl74

vlan 74 interface
::::::::::::::
DEVICE=vl74
ONBOOT=yes
DEVICETYPE=ovs
TYPE=OVSIntPort
BOOTPROTO=static
IPADDR=10.74.1.111
NETMASK=255.255.0.0
OVS_BRIDGE=br-ovs0
OVS_OPTIONS="tag=74"
OVS_EXTRA="set Interface $DEVICE external-ids:iface-id=$(hostname -s)-$DEVICE-vif"
HOTPLUG=no

::::::::::::::
/etc/sysconfig/network-scripts/ifcfg-br-ovs0

The Bridge
::::::::::::::
DEVICE=br-ovs0
ONBOOT=yes
DEVICETYPE=ovs
TYPE=OVSBridge
BOOTPROTO=static
HOTPLUG=no

==============================================================================
[pwd@pwd-stack-1 ~]$ sudo ovs-vsctl show
dd85e8eb-f374-403e-9b03-e186617b9bd6
    Bridge "osvbr0"
        Port "osvbr0"
            Interface "osvbr0"
                type: internal
    Bridge "br-ovs0"
        Port "vl73"
            tag: 73
            Interface "vl73"
                type: internal
        Port "br-ovs0"
            Interface "br-ovs0"
                type: internal
        Port "vl72"
            tag: 72
            Interface "vl72"
                type: internal
        Port "em2"
            Interface "em2"
        Port "vl74"
            tag ...
(more)
edit retag flag offensive close merge delete