Problems with vlan + carp + alias

Han Hwei Woo hhw at pce-net.com
Thu Jun 19 00:24:59 UTC 2008 

Hi Giulio,

Since the IP's are on the same subnet, you should try using a netmask of 
255.255.255.255 on the aliases.


Cheers,
Han Hwei Woo


Giulio Ferro wrote:
> Scenario : freebsd 7.0 stable amd64 (compiled today), bce network 
> interface
>
> Simply put, I'm trying to create multiple aliases on the same carp 
> interface.
> I did this without vlans (on physical interfaces) and it always worked.
>
> Here's what I do:
>
> ---rc.conf
> ...
> ifconfig_bce0="inet 192.168.1.1 netmask 255.255.255.0"
> ifconfig_vlan10="inet 192.168.10.1 netmask 255.255.255.0 vlan 10 
> vlandev bce0"
>
> ifconfig_carp10="vhid 10 pass qweq 192.168.10.10 netmask 255.255.255.0"
> ifconfig_carp10_alias0="192.168.10.11 netmask 255.255.255.0"
> ifconfig_carp10_alias1="192.168.10.12 netmask 255.255.255.0"
> ifconfig_carp10_alias2="192.168.10.13 netmask 255.255.255.0"
> ifconfig_carp10_alias3="192.168.10.14 netmask 255.255.255.0"
> ifconfig_carp10_alias4="192.168.10.15 netmask 255.255.255.0"
> ifconfig_carp10_alias5="192.168.10.16 netmask 255.255.255.0"
> ifconfig_carp10_alias6="192.168.10.17 netmask 255.255.255.0"
> ifconfig_carp10_alias7="192.168.10.18 netmask 255.255.255.0"
> ifconfig_carp10_alias8="192.168.10.19 netmask 255.255.255.0"
> ifconfig_carp10_alias9="192.168.10.20 netmask 255.255.255.0"
> ...
> ---
>
> First of all, whenever I try to reload a carp configuration by
> /etc/rc.d/netif restart the system goes kernel panic. I always have
> to restart the server to load the new configuration. This is not
> the core of the problem, however.
>
> If I issue a
> ifconfig carp10
> I can see all the aliases and the interface is in MASTER state.
>
> When I try to ping these addresses from another machine in the same
> vlan (10), I can only ping the vlan base address (192.168.10.10) and the
> first aliased address (192.168.10.11). All other aliases don't respond to
> external pings.
>
> If I try to inspect incoming packets with tcpdump :
> tcpdump -i vlan10 -n icmp
> I can see the packets coming in, but the other aliased addresses seem 
> inactive.
>
> What is interesting is that an arp request actually takes places and 
> is answered
> (all aliased ifs have the same mac address), but nobody respond to the 
> ping
> but the first alias and the vlan base address.
>
> Does someone have any ideas?
>
>
>
>
> _______________________________________________
> freebsd-net at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe at freebsd.org"
>
>

More information about the freebsd-net mailing list