<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<p>Hi, <br>
</p>
<p> </p>
<div class="post-text" itemprop="text">
<p>I have 3 VM (qemu), 2 on vlan 10 and 1 on vlan 66 on the same
lab1 OpenVSwitch.
The first VM is connected via a tap interface on port lab1vm1.
The second has 2 network interfaces connected on port lab1dhcp
and lab1dhcpmaster and the third VM on port dhcpmaster.</p>
<pre><code>------------- ----------------------- --------------
| VM 1 | | VM2 | | VM3 |
|10.10.10.3 | |10.8.6.1 10.10.10.13| | 10.10.10.2 |
------------- ----------------------- --------------
| | | |
| | | |
------------------------------------------------------------------
|lab1vm1 lab1dhcp lab1dhcpadm dhcpmaster OVS lab1|
|tag 10 tag 10 tag 66 tag 66 |
------------------------------------------------------------------
</code></pre>
<p>The OpenVSwitch is configured as follow :</p>
<pre class="lang-sh prettyprint prettyprinted" style=""><code><span class="pln"> </span><span class="typ">Bridge</span><span class="pln"> </span><span class="str">"lab1"</span><span class="pln">
</span><span class="typ">Port</span><span class="pln"> </span><span class="str">"lab1vm1"</span><span class="pln">
tag</span><span class="pun">:</span><span class="pln"> </span><span class="lit">10</span><span class="pln">
</span><span class="typ">Interface</span><span class="pln"> </span><span class="str">"lab1vm1"</span><span class="pln">
</span><span class="typ">Port</span><span class="pln"> </span><span class="str">"lab1"</span><span class="pln">
tag</span><span class="pun">:</span><span class="pln"> </span><span class="lit">10</span><span class="pln">
</span><span class="typ">Interface</span><span class="pln"> </span><span class="str">"lab1"</span><span class="pln">
type</span><span class="pun">:</span><span class="pln"> internal
</span><span class="typ">Port</span><span class="pln"> </span><span class="str">"lab1dhcp"</span><span class="pln">
tag</span><span class="pun">:</span><span class="pln"> </span><span class="lit">10</span><span class="pln">
</span><span class="typ">Interface</span><span class="pln"> </span><span class="str">"lab1dhcp"</span><span class="pln">
</span><span class="typ">Port</span><span class="pln"> </span><span class="str">"lab1dhcpadm"</span><span class="pln">
tag</span><span class="pun">:</span><span class="pln"> </span><span class="lit">66</span><span class="pln">
</span><span class="typ">Interface</span><span class="pln"> </span><span class="str">"lab1dhcpadm"</span><span class="pln">
</span><span class="typ">Port</span><span class="pln"> dhcpmaster
tag</span><span class="pun">:</span><span class="pln"> </span><span class="lit">66</span><span class="pln">
</span><span class="typ">Interface</span><span class="pln"> dhcpmaster
ovs_version</span><span class="pun">:</span><span class="pln"> </span><span class="str">"2.9.2"</span></code></pre>
<p>The problem: VM1 can ping VM3!</p>
<ul>
<li>If I power off VM2 or shutdown lab1dhcp or lab1dhcpadm
interface, the ping doesn't work.</li>
<li>If I shutdown the two network interfaces of VM2 (eth0 and
eth1), ping works !</li>
</ul>
I assume that the packet is intercepted by the linux kernel which
forward the traffic directly to dhcpmaster ovs interface, without
pass through the OVS<br>
<p>Why I have build this lab ? I want to distribute IP with DHCP
server on VM2 to vlan 10 and with a DHCP on VM3 to vlan 66. But
as the traffic is not isolated, VM on vlan 10 can get IP from
DHCP on VM3 (from another VLAN).<br>
</p>
<p><br>
</p>
<p>How can I solve this problem ?</p>
<p>Best regard</p>
<p>Flo.<br>
</p>
</div>
</body>
</html>