| vps from different Hardware Nodes can't access each others [message #42325] |
Thu, 31 March 2011 17:22  |
John Spanos
Messages: 3
Registered: March 2011
|
Junior Member |
|
|
Hello ppl
I am new in mailing list but i face a strange situation and i need your help to fix it... let me explain
i have two hardware nodes
HN1 --> OS:CentOS --> ip_address:192.168.1.1/24
HN2 --> OS:CentOS --> ip_address:192.168.1.2/24
i have four vps on each Hardware Node
vps01_hn1 --> running_on: HN1 --> OS:Debian --> ip_address:192.168.1.100/24
vps02_hn1 --> running_on: HN1 --> OS:Debian --> ip_address:192.168.1.101/24
vps03_hn1 --> running_on: HN1 --> OS:Debian --> ip_address:192.168.2.100/24
vps04_hn1 --> running_on: HN1 --> OS:Debian --> ip_address:192.168.2.101/24
vps01_hn2 --> running_on: HN2 --> OS:Debian --> ip_address:192.168.1.102/24
vps02_hn2 --> running_on: HN2 --> OS:Debian --> ip_address:192.168.1.103/24
vps03_hn2 --> running_on: HN2 --> OS:Debian --> ip_address:192.168.2.102/24
vps04_hn2 --> running_on: HN2 --> OS:Debian --> ip_address:192.168.2.103/24
so here is my situation
when i try to ping or trace from vps01_hn1 to any other vps i am taking a normal response
when i try to ping or trace from vps03_hn1 to any vps on HN1 i get a response but from HN2 i get response only from vps01_hn2 and vps02_hn2.
the same situation from HN2 vps, vps01_hn2 and vps02_hn2 can ping everyone but vps03_hn2 and vps04_hn2 can't ping vps vps03_hn1 and vps04_hn1.
I don't have any iptables.
any ideas??
|
|
|
|
| Re: vps from different Hardware Nodes can't access each others [message #42326 is a reply to message #42325] |
Fri, 01 April 2011 06:15  |
Marc Olive
Messages: 7
Registered: March 2011
|
Junior Member |
|
|
On Thursday 31 March 2011 19:22:47 John Spanos wrote:
> Hello ppl
Hello,
> I am new in mailing list but i face a strange situation and i need your
> help to fix it... let me explain
>
> i have two hardware nodes
>
> HN1 --> OS:CentOS --> ip_address:192.168.1.1/24
> HN2 --> OS:CentOS --> ip_address:192.168.1.2/24
>
> i have four vps on each Hardware Node
>
> vps01_hn1 --> running_on: HN1 --> OS:Debian --> ip_address:192.168.1.100/24
> vps02_hn1 --> running_on: HN1 --> OS:Debian --> ip_address:192.168.1.101/24
> vps03_hn1 --> running_on: HN1 --> OS:Debian --> ip_address:192.168.2.100/24
> vps04_hn1 --> running_on: HN1 --> OS:Debian --> ip_address:192.168.2.101/24
>
> vps01_hn2 --> running_on: HN2 --> OS:Debian --> ip_address:192.168.1.102/24
> vps02_hn2 --> running_on: HN2 --> OS:Debian --> ip_address:192.168.1.103/24
> vps03_hn2 --> running_on: HN2 --> OS:Debian --> ip_address:192.168.2.102/24
> vps04_hn2 --> running_on: HN2 --> OS:Debian --> ip_address:192.168.2.103/24
>
>
> so here is my situation
>
> when i try to ping or trace from vps01_hn1 to any other vps i am taking a
> normal response when i try to ping or trace from vps03_hn1 to any vps on
> HN1 i get a response but from HN2 i get response only from vps01_hn2 and
> vps02_hn2. the same situation from HN2 vps, vps01_hn2 and vps02_hn2 can
> ping everyone but vps03_hn2 and vps04_hn2 can't ping vps vps03_hn1 and
> vps04_hn1.
>
> I don't have any iptables.
> any ideas??
You have mixed (sub)nets on each HN, 192.168.1.x and 192.168.2.x. How did you
routed between subnets/hosts?
Also, if you randomly mix subnets IPs, like 192.168.2.100 on HN1 and
192.168.2.102 on HN2 then routing tables will be a bit hard, you will need a
route for every node instead having one route for every net.
I don't know your needs, but splitting subnets in a different way will be
easier to manage, for example 192.168.1.x for HNs, 192.168.2.x for VPx_HN1 and
192.168.3.x for VPx_HN2. This way you can route whole subnets to his HN-
gateway, instead of routing individual VPs as you will have to do with the
configuration you have now.
You should read some docs about routing and net-splitting.
Regards,
--
Marc Olivé
Blau Advisors
marc.olive@blauadvisors.com
C/ Molí de Guasch, 10 baixos 1a,
43440 L’Espluga de Francolí (Tarragona)
Tel. +34 977 870 702
Tel i Fax. + 34 977 870 507
www.blauadvisors.com
|
|
|
|
| RE: vps from different Hardware Nodes can't access each others [message #42333 is a reply to message #42326] |
Fri, 01 April 2011 11:20 |
John Spanos
Messages: 3
Registered: March 2011
|
Junior Member |
|
|
Hello,
Thanx for your help.
You are right with the solution you suggest me but the description of my problem was with fake ip addresses, my real problem is with real ip addresses and the subnets I have are not sequent.
So think like we have ips from 192.168.1.0/24 and 10.10.10.0/24
Any other suggestions??
-----Original Message-----
From: users-bounces@openvz.org [mailto:users-bounces@openvz.org] On Behalf Of Marc Olive
Sent: Friday, April 01, 2011 9:15 AM
To: users@openvz.org
Subject: Re: [Users] vps from different Hardware Nodes can't access each others
On Thursday 31 March 2011 19:22:47 John Spanos wrote:
> Hello ppl
Hello,
> I am new in mailing list but i face a strange situation and i need
> your help to fix it... let me explain
>
> i have two hardware nodes
>
> HN1 --> OS:CentOS --> ip_address:192.168.1.1/24
> HN2 --> OS:CentOS --> ip_address:192.168.1.2/24
>
> i have four vps on each Hardware Node
>
> vps01_hn1 --> running_on: HN1 --> OS:Debian -->
> ip_address:192.168.1.100/24
> vps02_hn1 --> running_on: HN1 --> OS:Debian -->
> ip_address:192.168.1.101/24
> vps03_hn1 --> running_on: HN1 --> OS:Debian -->
> ip_address:192.168.2.100/24
> vps04_hn1 --> running_on: HN1 --> OS:Debian -->
> ip_address:192.168.2.101/24
>
> vps01_hn2 --> running_on: HN2 --> OS:Debian -->
> ip_address:192.168.1.102/24
> vps02_hn2 --> running_on: HN2 --> OS:Debian -->
> ip_address:192.168.1.103/24
> vps03_hn2 --> running_on: HN2 --> OS:Debian -->
> ip_address:192.168.2.102/24
> vps04_hn2 --> running_on: HN2 --> OS:Debian -->
> ip_address:192.168.2.103/24
>
>
> so here is my situation
>
> when i try to ping or trace from vps01_hn1 to any other vps i am
> taking a normal response when i try to ping or trace from vps03_hn1 to
> any vps on
> HN1 i get a response but from HN2 i get response only from vps01_hn2
> and vps02_hn2. the same situation from HN2 vps, vps01_hn2 and
> vps02_hn2 can ping everyone but vps03_hn2 and vps04_hn2 can't ping vps
> vps03_hn1 and vps04_hn1.
>
> I don't have any iptables.
> any ideas??
You have mixed (sub)nets on each HN, 192.168.1.x and 192.168.2.x. How did you routed between subnets/hosts?
Also, if you randomly mix subnets IPs, like 192.168.2.100 on HN1 and
192.168.2.102 on HN2 then routing tables will be a bit hard, you will need a route for every node instead having one route for every net.
I don't know your needs, but splitting subnets in a different way will be easier to manage, for example 192.168.1.x for HNs, 192.168.2.x for VPx_HN1 and 192.168.3.x for VPx_HN2. This way you can route whole subnets to his HN- gateway, instead of routing individual VPs as you will have to do with the configuration you have now.
You should read some docs about routing and net-splitting.
Regards,
--
Marc Olivé
Blau Advisors
marc.olive@blauadvisors.com
C/ Molí de Guasch, 10 baixos 1a,
43440 L’Espluga de Francolí (Tarragona)
Tel. +34 977 870 702
Tel i Fax. + 34 977 870 507
www.blauadvisors.com
|
|
|
|
|
|
| RE: vps from different Hardware Nodes can't access each others [message #42335 is a reply to message #42334] |
Fri, 01 April 2011 11:41 |
John Spanos
Messages: 3
Registered: March 2011
|
Junior Member |
|
|
So i have something like:
HN1: 192.168.1.1/24
VS1_HN1: 192.168.1.11/24
VS2_HN1: 192.168.1.12/24
VS3_HN1: 10.0.0.13/24
VS4_HN1: 10.0.0.14/24
HN2: 192.168.1.2/24
VS1_HN2: 10.0.0.11/24
VS2_HN2: 10.0.0.12/24
VS3_HN2: 192.168.1.13/24
VS4_HN2: 192.168.1.14/24
So vs1_hn1 and vs1_hn2 can ping all, vs3_hn1 can ping VSx_HN1, VS3_HN2 and VS4_HN2 and not VS1_HN2 and VS2_HN2.
Thanks
-----Original Message-----
From: users-bounces@openvz.org [mailto:users-bounces@openvz.org] On Behalf Of Marc Olive
Sent: Friday, April 01, 2011 2:31 PM
To: users@openvz.org
Subject: Re: [Users] vps from different Hardware Nodes can't access each others
On Friday 01 April 2011 13:22:21 John Spanos wrote:
> Hello,
Hello,
> Thanx for your help.
>
> You are right with the solution you suggest me but the description of
> my problem was with fake ip addresses, my real problem is with real ip
> addresses and the subnets I have are not sequent. So think like we
> have ips from 192.168.1.0/24 and 10.10.10.0/24
>
> Any other suggestions??
So you have something like:
HN1: 192.168.1.1/24
VS1_HN1: 192.168.1.11/24
VS2_HN1: 192.168.1.12/24
VS3_HN1: 192.168.1.13/24
VS4_HN1: 192.168.1.14/24
HN2: 10.0.0.1/24
VS1_HN2: 10.0.0.11/24
VS2_HN2: 10.0.0.12/24
VS3_HN2: 10.0.0.13/24
VS4_HN2: 10.0.0.14/24
You can ping from VS1_HN1 to any VSx_HN1 and VSx_HN2, all it's fine.
You can ping from VS3_HN1 to any VSx_HN1 but only to two of VSx_HN2?
What have this VS3 different from VS1? It's the same type of ethernet than VS1 one (venet or veth, both)? What about interface's config differences besides the IP? Did you checked the routing tables of HN and VS?
Regards,
--
Marc Olivé
Blau Advisors
marc.olive@blauadvisors.com
C/ Molí de Guasch, 10 baixos 1a,
43440 L’Espluga de Francolí (Tarragona)
Tel. +34 977 870 702
Tel i Fax. + 34 977 870 507
www.blauadvisors.com
|
|
|
|
| Re: vps from different Hardware Nodes can't access each others [message #42336 is a reply to message #42335] |
Fri, 01 April 2011 12:06 |
Marc Olive
Messages: 7
Registered: March 2011
|
Junior Member |
|
|
On Friday 01 April 2011 13:43:04 John Spanos wrote:
> So i have something like:
>
> HN1: 192.168.1.1/24
> VS1_HN1: 192.168.1.11/24
> VS2_HN1: 192.168.1.12/24
> VS3_HN1: 10.0.0.13/24
> VS4_HN1: 10.0.0.14/24
>
> HN2: 192.168.1.2/24
> VS1_HN2: 10.0.0.11/24
> VS2_HN2: 10.0.0.12/24
> VS3_HN2: 192.168.1.13/24
> VS4_HN2: 192.168.1.14/24
>
> So vs1_hn1 and vs1_hn2 can ping all, vs3_hn1 can ping VSx_HN1, VS3_HN2 and
> VS4_HN2 and not VS1_HN2 and VS2_HN2.
Then, I repeat my first answer:
You have mixed (sub)nets and etcetera...
>
> Thanks
Regards,
--
Marc Olivé
Blau Advisors
marc.olive@blauadvisors.com
C/ Molí de Guasch, 10 baixos 1a,
43440 L’Espluga de Francolí (Tarragona)
Tel. +34 977 870 702
Tel i Fax. + 34 977 870 507
www.blauadvisors.com
|
|
|
|
OpenVZ Forum
Members
Search
Help
Register
Login
Home
