[Lxc-users] IPv4 container in a non-IPv4 main system ?

Fajar A. Nugraha list at fajar.net
Tue Jun 12 06:32:06 UTC 2012


On Tue, Jun 12, 2012 at 12:59 PM, Sébastien Montagne
<sebastien.montagne at gmail.com> wrote:
> No firewall on my system.

Are you sure? :)
RHEL-derivates have iptables turned-on by default, and the default
setup also filters bridged traffic.


> It is a hosted server ; I have only 1 available IPv4 address for now.
>
>
>> - make sure the switch/router your server connected to supports
>> multiple MAC on the same port
>
>
> I think I use only *one* MAC address : the one my provider gave for my host.
> It is the same in
>
> Here is the information the provider gave :
> IP :   91.121.99.167
> IPv6 :   2001:41d0:1:98a7::/64
> MAC :   00:1C:C0:17:8B:44

if you already setup ipv6 in the host, I actually think it'd be easier
if you first try setting up the guest with ONLY ipv6 as well. If it
works, then you can rule out MAC, bridge, and veth problems. If it
DOESN'T work, then you need to get back at those three.

Also, what OS/distro do you use?

> Or, do you mean the host veth generated interface seems to have created one
> of its own ?

In bridged mode, the guest's MAC also travel to the switch. If your
provider only allows one MAC, or specifically map your IP address to
your hosts's MAC, then you can't use bridge.

There are ways around this (e.g. with ebtables), but it's complicated.
It's easier if you try tcpdump on the veth interface, and try ipv6
only on both host and guest first.


> Do you think it would be possible to solve the problem with e.g. information
> in /etc/ethers ?

Nope.

-- 
Fajar




More information about the lxc-users mailing list