[ovs-discuss] Problems trunking VLANs through an OVS bridge

Erik Sherk sherk at juniper.net
Wed Mar 16 17:07:44 UTC 2016 


Hi,
Here is what I am trying to do. I have a Juniper switch connected to a Dell R730, running CentOS 7.2, libvirt 1.2.17 and Open vSwitch 2.4.0

JNPR EX <——>Dell R730

I am running a virtual firewall (vSRX) as a KVM guest. I want to trunk VLANs from the JNPR switch to the vSRX. So, the JNPR configs look like…


sherk at Public_IP_LAB_FABRIC_SW> show configuration interfaces xe-2/1/5

description "MSE-SERVER-3 p5p2 Rack 3.03";

vlan-tagging;

unit 1001 {

    vlan-id 1001;

    family inet {

        address 192.168.1.1/30;

    }

}


root at vSRX1> show configuration interfaces ge-0/0/1

description outside;

vlan-tagging;

unit 1001 {

    vlan-id 1001;

    family inet {

        address 192.168.1.2/30;

    }

}

On the CentOS host, I have a bridge defined…


[root at localhost network-scripts]# more ifcfg-outside

DEVICE="outside"

BOOTPROTO="none"

IPADDR=192.168.1.101

PREFIX=24

#GATEWAY=192.168.0.1

DNS1=8.8.8.8

ONBOOT="yes"

TYPE="OVSBridge"

DEVICETYPE="ovs"

This bridge has one physical interface (p5p2) and one virtual interface (vnet2)


[root at localhost network-scripts]# more ifcfg-p5p2

TYPE=Ethernet

DEVICE="p5p2"

NAME=p5p2

ONBOOT=yes

OVS_BRIDGE=outside

TYPE="OVSIntPort"

DEVIECTYPE="ovs"

Question: Should this be a 'OVSIntPort' or a 'OVSPort’? I’ve tried both without effect…

This is what the bridge looks like…


[root at localhost network-scripts]# ovs-ofctl dump-ports-desc outside

OFPST_PORT_DESC reply (xid=0x2):

 1(p5p2): addr:a0:36:9f:82:87:4e

     config:     0

     state:      0

     current:    10GB-FD COPPER AUTO_NEG

     advertised: 100MB-FD 1GB-FD 10GB-FD COPPER AUTO_NEG

     supported:  100MB-FD 1GB-FD 10GB-FD COPPER AUTO_NEG

     speed: 10000 Mbps now, 10000 Mbps max

 3(vnet2): addr:fe:54:00:65:59:d5

     config:     0

     state:      0

     current:    10MB-FD COPPER

     speed: 10 Mbps now, 0 Mbps max

 LOCAL(outside): addr:a0:36:9f:82:87:4e

     config:     0

     state:      0

     speed: 0 Mbps now, 0 Mbps max


[root at localhost network-scripts]#  ovs-vsctl show

429f8280-dd0f-46ce-8edf-6ea438dd4f32

    Bridge outside

        Port outside

            trunks: [1001, 1002]

            Interface outside

                type: internal

        Port "p5p2"

            trunks: [1001, 1002]

            Interface "p5p2"

        Port "vnet2"

            trunks: [1001, 1002]

            Interface "vnet2"

    Bridge "xxx222"

        Port "vnet1"

            Interface "vnet1"

        Port "xxx222"

            Interface "xxx222"

                type: internal

        Port "p5p1"

            Interface "p5p1"

    Bridge management

        Port "vnet0"

            Interface "vnet0"

        Port "em2"

            Interface "em2"

        Port management

            Interface management

                type: internal

        Port "vnet3"

            Interface "vnet3"

    ovs_version: "2.4.0"

To set the VLANs, I used this command…


[root at localhost network-scripts]# ovs-vsctl set port vnet2 trunk=1001,1002

How can I troubleshoot this?

When I ping from the JNPR switch, I can see packets arriving in the guest vSRX, by seeing RX counts increasing…


root at vSRX1> show interfaces ge-0/0/1.1001

  Logical interface ge-0/0/1.1001 (Index 71) (SNMP ifIndex 520)

    Flags: Up SNMP-Traps 0x4000 VLAN-Tag [ 0x8100.1001 ]  Encapsulation: ENET2

    Input packets : 881

    Output packets: 901

    Security: Zone: Null

    Protocol inet, MTU: 1500

      Flags: Sendbcast-pkt-to-re

      Addresses, Flags: Is-Preferred Is-Primary

        Destination: 192.168.1.0/30, Local: 192.168.1.2, Broadcast: 192.168.1.3

The can also be seen on the p5p2 and the vnet2 interfaces…


[root at localhost network-scripts]# ifconfig p5p2

p5p2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500

        inet6 fe80::a236:9fff:fe82:874e  prefixlen 64  scopeid 0x20<link>

        ether a0:36:9f:82:87:4e  txqueuelen 1000  (Ethernet)

        RX packets 36348  bytes 5417334 (5.1 MiB)

        RX errors 0  dropped 0  overruns 0  frame 0

        TX packets 722  bytes 37560 (36.6 KiB)

        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0


[root at localhost network-scripts]# ifconfig vnet2

vnet2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500

        inet6 fe80::fc54:ff:fe65:59d5  prefixlen 64  scopeid 0x20<link>

        ether fe:54:00:65:59:d5  txqueuelen 500  (Ethernet)

        RX packets 3  bytes 138 (138.0 B)

        RX errors 0  dropped 0  overruns 0  frame 0

        TX packets 1303  bytes 112032 (109.4 KiB)

        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

Any help/suggestions appreciated!

Erik
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://openvswitch.org/pipermail/ovs-discuss/attachments/20160316/4b130eeb/attachment-0002.html>

More information about the discuss mailing list