in provider network, packet missing on the ovs bridge

asked 2017-06-20 02:51:10 -0600

etlars gravatar image

I have 3 ubuntu vms as following:

test11 : eth1 111.1.1.11 -- connected with provider network, br-prov1
testR : eth1 111.1.1.12 -- connected with provider network, br-prov1
...........eth2 111.3.3.14 -- connected with provider network, br-prov3
test33 : eth1 111.3.3.16 -- connected with provider network, br-prov3

these are all ubuntu14.04 vms on openstack mitaka version and also they are all in the same tennant.
test11 is on the compute node1, and the others are working on the compute node2.

I'd like to check ping from test11 to test33 via testR but I failed.
So I checked each interface following

case 1. ping test11 <--> testR ==> success
case 2. ping testR <--> test33 ==> success

case 3. ping test11 --> testR -->test33 : failed
but, I could find icmp replies from test33 at testR's eth1
in detail, I tested every ports related with testR's eth1 as following:

testR (vm)
--> eth1 : 111.1.1.12 ----> tap9d4fb995-b7 : tcpdump in/out checked
----> qbr9d4fb995-b7 : tcpdump in/out checked
----> qvb9d4fb995-b7 : tcpdump in checked (only request from test11)
----> qvo9d4fb995-b7 : tcpdump in checked (only request from test11)
...
----> enp5s0f0 (real interface on host machine) : tcpdump in checked (only request from test11)

if securitygroup problem, I couldn't get successes of test case 1 and 2.

please, what make this trouble on my environment.

I attached my detail environment as following:

[root@com0-host ~]# tcpdump -ni qvo9d4fb995-b7

tcpdump: WARNING: qvo9d4fb995-b7: no IPv4 address assigned tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on qvo9d4fb995-b7, link-type EN10MB (Ethernet), capture size 65535 bytes 16:27:59.783641 IP 111.1.1.14 > 111.3.3.16: ICMP echo request, id 1527, seq 2861, length 64 16:28:00.761472 ARP, Request who-has 111.1.1.14 tell 111.1.1.12, length 28 16:28:00.761758 ARP, Reply 111.1.1.14 is-at fa:16:3e:ed:45:77, length 46 16:28:00.791539 IP 111.1.1.14 > 111.3.3.16: ICMP echo request, id 1527, seq 2862, length 64 16:28:01.799636 IP 111.1.1.14 > 111.3.3.16: ICMP echo request, id 1527, seq 2863, length 64 ...

[root@com0-host ~]# tcpdump -ni qvb9d4fb995-b7

tcpdump: WARNING: qvb9d4fb995-b7: no IPv4 address assigned tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on qvb9d4fb995-b7, link-type EN10MB (Ethernet), capture size 65535 bytes 16:30:25.944478 IP 111.1.1.14 > 111.3.3.16: ICMP echo request, id 1527, seq 3006, length 64 16:30:26.952573 IP 111.1.1.14 > 111.3.3.16: ICMP echo request, id 1527, seq 3007, length 64 16:30:27.930460 ARP, Request who-has 111.1.1.14 tell 111.1.1.12, length 28 16:30:27.931117 ARP, Reply 111.1.1.14 is-at fa:16:3e:ed:45:77, length 46 16:30:27.960554 IP 111.1.1.14 > 111.3.3.16: ICMP echo request, id 1527, seq 3008, length 64

...

[root@com0-host ...
(more)
edit retag flag offensive close merge delete

Comments

all provider networks' network_type is flat

etlars gravatar imageetlars ( 2017-06-20 02:53:10 -0600 )edit