Re: Xen3 + VLANs + multiple DOM0s cause loss of connectivity?

To: Manuel Bouyer <bouyer%antioche.eu.org@localhost>
Subject: Re: Xen3 + VLANs + multiple DOM0s cause loss of connectivity?
From: Johan Ihren <johani%johani.org@localhost>
Date: Thu, 24 Jan 2008 22:11:16 +0100

Hi Manuel,

On 24 Jan 2008, at 15:58, Manuel Bouyer wrote:

Outside of VLANs (i.e. when configuring IPv4 and IPv6 addresses
directly on the xennetN then everything works just fine. VLANs
configured on the DOM0 also works fine. It is just the combination of
Xen3 + DOMU + VLANs that causes problems.

What I found strange is that it worked with Xen2. Xen version isprobably

not the key here, but the version of dom0.

Basically, 802.1q paquets in dom0 are not routed to the bridgeinterface butto the vlan interfaces, so these packets can't make it up to thedomUs.

Umm. There is confusion here, probably mine. I have lots of 802.1qpackets that go just fine across the bridge interface between DOMUs inthe same DOM0, and they most certainly make it up to the DOMUs. Whatthe packets don't do is go across the physical switch (between DOM0s)that the DOM0 bridge device is connected to. So I have to challengethe assertion that the packets are not routed to the DOM0 bridgeinterface.

If the dom0 kernel doesn't have 'pseudo-device vlan' then it may work.

I'll try that ASAP, but that will not be until next week when I gethome (presently on the lower half of the planet).

The way to do this is to have the vlan interfaces in dom0 only,connectone bridge to each vlan and have in the domU one vif per vlan youneed to
connect to.

Doesn't work for me as I need to be able to dynamically affecttopology from inside the DOMUs. I.e. I implement nomadic behaviour byhaving DOMUs change their VLAN tag. And on occasion I have severaldozen VLANs. There's no way I can do that with bridges and bunches ofxennets.

I remember discussing this with you at a previous occasion when I wastrying to have communication between the DOM0(s) and the DOMUs overVLANs (with very limeted success). You explained that the DOM0couldn't do the right thing wrt to both dealing with bridges and vlaninterfaces and therefore VLANs on the DOM0 would not see the trafficarriving on the same VLAN from a DOMU (i.e. the bridge gets thepacket, not the DOM0 vlan interface). As a consequence of that Istopped using VLANs entirely on the DOM0s and moved all services intoyet another DOMU and that has worked just fine for a long time.

But now, if I understand correctly, you're saying that in the conflictbetween sending the packet to the VLAN or to the bridge the VLAN getsthe packet. That sounds completely contrary to what you said beforeand not at all in line with my experience.


Regards,

Johan

Follow-Ups:
- Re: Xen3 + VLANs + multiple DOM0s cause loss of connectivity?
  - From: Manuel Bouyer

References:
- Xen3 + VLANs + multiple DOM0s cause loss of connectivity?
  - From: Johan Ihren
- Re: Xen3 + VLANs + multiple DOM0s cause loss of connectivity?
  - From: Manuel Bouyer

Prev by Date: Re: NetBSD/xen with 4 GB RAM
Next by Date: Re: Modular X.org
Previous by Thread: Re: Xen3 + VLANs + multiple DOM0s cause loss of connectivity?
Next by Thread: Re: Xen3 + VLANs + multiple DOM0s cause loss of connectivity?
Indexes:

Home | Main Index | Thread Index | Old Index