[one-users] Problem with Virtual Router 4.8

Hüning, Christian Christian.Huening at haw-hamburg.de
Wed Sep 10 05:28:48 PDT 2014 

Hi folks,

 

I figured it out myself. It had to do with the automatically generated VLAN
ids from OpenvSwitch and the VMs not being on the same physical host. As it
seems my Cisco router would not allow these high(?) VLAN IDs. I tried
setting the VLAN Id to “5” manually and it worked! 

A quick view into Ciscos manual showed that in “normal VLAN” mode VLAN Ids
are only allowed to range between 1 and 1002. One can of course activate
“Extended VLAN “ mode and then you may provide VLAN IDs between 1006 and
4094. Is there a possibility to set a range for the automatically generated
vlan ids?

 

Cheers,

Christian

 

Von: Users [mailto:users-bounces at lists.opennebula.org] Im Auftrag von
Hüning, Christian
Gesendet: Mittwoch, 10. September 2014 12:57
An: users at lists.opennebula.org
Betreff: [one-users] Problem with Virtual Router 4.8

 

Hi there,

i’ve got openVSwitch running in my environment and can effectively provide
vlan isolation. I now have 3 VMS which are in an isolated network
(10.10.0.0/24) and can ping each other. I’ve got a bunch of other VMs
outside (141.22.29.0/24) and now wanted to connected these two networks with
the Virtual Router Appliance. However after setting the appliance up
regarding to the documentation, the routing effectively won’t work. 

 

The behavior is as follows:

1.      I can access the VR via SSH

2.      The VR can reach the public network

3.      The VR can NOT ping the VMs in the private network

4.      I forward port 80 to a VM “inside” , this of course does not work.

 

Here’s my Context Set for the VR:

CONTEXT=[

DHCP="NO",

DNS="141.22.192.100 141.22.29.101",

FORWARDING="10.10.0.2:80",

NETWORK="YES",

NTP_SERVER="141.22.192.100",

PRIVNET="$NETWORK[TEMPLATE, NETWORK=\"MARS SimulationNetwork ISO\"]",

PUBNET="$NETWORK[TEMPLATE, NETWORK=\"MARSNetwork\"]",

RADVD="NO",

SEARCH="local.domain",

SSH_PUBLIC_KEY="$USER[SSH_PUBLIC_KEY]",

TARGET="hdb",

TEMPLATE="$TEMPLATE"

]

 

I am a bit lost here. NMAP however shows that port 80 is in “filtered” state
on the router.

 

Any suggestions?

 

Cheers,

christian

 

-----------------------------------------------

Christian Hüning, BSc.

Fakultät Technik und Informatik, Department Informatik

Berliner Tor 7

20099 Hamburg

Tel.: +49 40 / 42875 - 8436 

Mobil: +49 40 / 180 55 44 5

Web: http://www.mars-group.org

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20140910/9c7213f9/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5781 bytes
Desc: not available
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20140910/9c7213f9/attachment-0001.bin>

More information about the Users mailing list