[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] Routing problem in bridged setup

  • To: "Pepe Barbe" <elventear@xxxxxxxxx>
  • From: "Todd Deshane" <deshantm@xxxxxxxxx>
  • Date: Fri, 9 May 2008 14:58:53 -0400
  • Cc: xen-users@xxxxxxxxxxxxxxxxxxx
  • Delivery-date: Fri, 09 May 2008 11:59:26 -0700
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:references; b=AI+jzH3Rdc3iD90ne4Rf/KWLclpRxYZLc9nuyAkGiVVQ4fql09b4udmY3+hzX98I0uJlFKn2bl35qvkKUqQLR6pWNlToN8c3OZtmAfMTYM4ZWXsAbN761DrvwR62r997W1SoJCOVR1bRF6D5cGtOnFLos8IgV4gGRga5zFi96KY=
  • List-id: Xen user discussion <xen-users.lists.xensource.com>

On Fri, May 9, 2008 at 2:50 PM, Pepe Barbe <elventear@xxxxxxxxx> wrote:
On May 9, 2008, at 12:45 PM, Todd Deshane wrote:

I just wanted to make sure that you are aware of the Ubuntu bugs:

Yeah, I as aware of those problems and I have used the suggested solutions (Hirano's Kernel) with success. After that everything I wanted to do has been working with Xen, until now.

There are a number of troubleshooting techniques discuss in those bugs

*using ethtool commands
*looking at the bridges in more detail with brctl commands etc.
*manually tracing the traffic with tools like wireshark and tcpdump
*any of general networking debugging that you can think of

I've used tcpdump to trace the traffic. What I have seen is the following.

Traffic outgoing from from domU-dmz traverses successfully to the brdmz bridge in domU-firewall and from there it goes to the eth0 interface that is part of the eth0 bridge in dom0. But no traffic shows in the eth0 bridge in dom0 or through vif1.0.

Traffic going from dom0 to domU-dmz reaches successfully but again any replies or acks don't come back. Thus I am not able to connect successfully.

I've flushed the iptables in dom0 to make sure nothing could be affecting it, but it help anything. dom0 etho or vif1.0 do work, at least partially, as I am using those interfaces for LAN forwarding to do NAT in domU-firewall. There is no problem with that.

Any ideas of what other step or where in the Linux system I could to see what is going on with the eth0 bridge or vif1.0 interface in dom0?

There is a couple of things that I would take a look at that can be found here:
In particular, I know there were sometimes issues with:

You may also want to get a better understanding for ebtables and its interaction with things.
A link off of that page is:

We also may have some links that you would find useful from our Networking chapter:

Hope that gives you some places to look.

Xen-users mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.