<br><div class="gmail_quote">Hello,<br><br>I'm struggling for two days now with some completely weird network behaviours.<br>My host is a virtual machine hosted on an ESX farm. I planned to deploy several containers on it to achieve various tasks.<br>
<br>Host is running Scientific Linux 6 with default kernel (2.6.32), and my container is an Oracle Linux 6. I discovered that i had to change ESX vswitch settings to allow promiscuous mode in order to make the host bridge correctly behave, but it still gives me weird results.<br>
Most of the time after having started the container, network inside the container is erratic. I can ping or ssh from the host to the container, but nothing gets out of the container or in the container from the LAN. While the container is still running, if i issue a network restart on the host, the container start behaving correctly and network works again as expected.<br>
The problem is that it's not reliable at all. If i stop/restart the container several times, it starts losing network again that i can only get back by issuing the network restart on the host...<br><br>Here's my container configuration:<br>
lxc.utsname = ct-011<br>lxc.network.type = veth<br>lxc.network.flags = up<br>lxc.network.link = br0<br><a href="http://lxc.network.name" target="_blank">lxc.network.name</a> = eth0<br>lxc.network.mtu = 1500<br>lxc.network.ipv4 = 0.0.0.0<br>
lxc.mount = /etc/lxc/ct-01.fstab<br>lxc.rootfs = /srv/lxc/ct-01/<br><br>lxc.cap.drop = sys_module mknod <br>lxc.cap.drop = mac_override sys_time<br>lxc.cap.drop = setfcap setpcap sys_boot <br><br>I set the network from inside the container to avoid having to modify too much of container init - I also tried setting IP from lxc config and it gave me the same result.<br>
<br>My bridge is set with forward delay to 0 and STP on as having it disabled doesn't work at all.<br><br>I don't have that much errors that could lead me to a solution here's a snippet of my dmesg after restarting twice the network on the host:<br>
e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None<br>br0: starting userspace STP failed, starting kernel STP<br>br0: topology change detected, propagating<br>br0: port 1(eth0) entering forwarding state<br>
device vethAuDQzn entered promiscuous mode<br>br0: topology change detected, propagating<br>br0: port 2(vethAuDQzn) entering forwarding state<br>br0: port 2(vethAuDQzn) entering disabled state<br>br0: port 1(eth0) entering disabled state<br>
br0: port 1(eth0) entering disabled state<br>e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None<br>br0: topology change detected, propagating<br>br0: port 1(eth0) entering forwarding state<br>br0: topology change detected, propagating<br>
br0: port 2(vethAuDQzn) entering forwarding state<br><br>I'm starting to desperate here and i hope one of you has an idea on what would be needed to make that thing work correctly.<br><br>Regards,<br><font color="#888888">Olivier<br>
</font></div><br>