I am trying to set up subinterfaces on my Ubuntu 14.04 server for each VLAN. I believe I have successfully set them up using vconfig, but the subinterface is only pingable from hosts on its own VLAN. I'll need hosts outside its VLAN to be able to connect to it. This seems to work fine for my CentOS server so I know my networking is correct. I also see ICMP request packets on the subinterface when I do a tcpdump and ping the subinterface from a client outside the VLAN.
Any ideas? What other troubleshooting tips can you give me?
EDIT: I managed to fix this. My tcpdump on the server was showing icmp echo requests, but no reply. I found a related post here. Enabling martian source logging like this:
echo 1 >/proc/sys/net/ipv4/conf/eth2/log_martians
and then
sysctl net.ipv4.conf.all.rp_filter=2
Fixed it. I'm surprised this doesn't come up more often.
Answer
I managed to fix this. My tcpdump on the server was showing icmp echo requests, but no reply. I found a related post here. Enabling martian source logging like this:
echo 1 >/proc/sys/net/ipv4/conf/eth2/log_martians
and then
sysctl net.ipv4.conf.all.rp_filter=2
Fixed it. I'm surprised this doesn't come up more often.
No comments:
Post a Comment