Flatnetwork tap interface can't receive any packets
Environment:
Liberty
- 1 Controller openSUSE 13.2 (nova, neutron, glance, keystone)
- 1 Compute openSUSE 13.2 (nova-compute, neutron-linuxbridge-agent)
Followed OpenSuse guide for a new installation and trying to lunch an instance in provider network (bridged to public network)
Only have one network ( 10.37.6.0/24 for external network, also configured as public network and subnet )
Summary:
When startup the public-instance, dhcp discover and offer packets can be captured in the network, but if do a tcpdump on the tap interface which belongs to the public-instance, it can only get packets on tx direction, no rx packets. Hence the public-instance can't get an ip address and lost connectivity.
Details:
Network configurations:
controller:~ # neutron net-list
+--------------------------------------+--------+---------------------------------------------------+
| id | name | subnets |
+--------------------------------------+--------+---------------------------------------------------+
| 540aebaa-4c36-4037-a7c2-adea823f9fd1 | public | 805856d3-0f69-49a3-83e8-de4257c398b9 10.37.6.0/24 |
+--------------------------------------+--------+---------------------------------------------------+
controller:~ # neutron subnet-list
+--------------------------------------+--------+--------------+------------------------------------------------+
| id | name | cidr | allocation_pools |
+--------------------------------------+--------+--------------+------------------------------------------------+
| 805856d3-0f69-49a3-83e8-de4257c398b9 | public | 10.37.6.0/24 | {"start": "10.37.6.101", "end": "10.37.6.109"} |
+--------------------------------------+--------+--------------+------------------------------------------------+
controller:~ # nova list
+--------------------------------------+-----------------+--------+------------+-------------+--------------------+
| ID | Name | Status | Task State | Power State | Networks |
+--------------------------------------+-----------------+--------+------------+-------------+--------------------+
| b93e15a4-c6a3-48e9-9229-b1b3d090852f | public-instance | ACTIVE | - | Running | public=10.37.6.102 |
+--------------------------------------+-----------------+--------+------------+-------------+--------------------+
Bridge details on compute node
compute1:~ # brctl show
bridge name bridge id STP enabled interfaces
brq540aebaa-4c 8000.0050568807fa no ens32
tap003fbe42-dd
compute1:~ # brctl showstp brq540aebaa-4c
brq540aebaa-4c
bridge id 8000.0050568807fa
designated root 8000.0050568807fa
root port 0 path cost 0
max age 20.00 bridge max age 20.00
hello time 2.00 bridge hello time 2.00
forward delay 0.00 bridge forward delay 0.00
ageing time 300.00
hello timer 1.65 tcn timer 0.00
topology change timer 0.00 gc timer 53.67
flags
ens32 (2)
port id 8002 state forwarding
designated root 8000.0050568807fa path cost 4
designated bridge 8000.0050568807fa message age timer 0.00
designated port 8002 forward delay timer 0.00
designated cost 0 hold timer 0.64
flags
tap003fbe42-dd (1)
port id 8001 state forwarding
designated root 8000.0050568807fa path cost 100
designated bridge 8000.0050568807fa message age timer 0.00
designated port 8001 forward delay timer 0.00
designated cost 0 hold timer 0.64
tap interface statistics:
tap003fbe Link encap:Ethernet HWaddr FE:16:3E:01:44:DF
inet6 addr: fe80::fc16:3eff:fe01:44df/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:9 errors:0 dropped:0 overruns:0 frame:0
TX packets:15061 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:1464 (1.4 Kb) TX bytes:930463 (908.6 Kb)
ip link information on the compute node: (tap interface status UNKNOWN)
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: ens32: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master brq540aebaa-4c state UP group default qlen 1000
link/ether 00:50:56:88:07:fa brd ff:ff:ff:ff:ff ...
"dhcp discover and offer packets can be captured in the network"
I understand on the tap interface you only see discover packets. What do you capture on the bridge and the physical interface ens32? Could it be that the firewall on the compute node doesn't accept DHCP?
to Bernd Bausch: Thanks for your reply. From the packet capture result, I can see dhcp packets are sent out from controller's phy interface to compute's TAP interface's MAC address. But neither the phy interface (ens32) nor the bridge interface can receive those packets. I've updated details.