Skip to Content.
Sympa Menu

rare-users - Re: [RARE-users] [freertr] Bridge configuration

Subject: RARE user and assistance email list

List archive

Re: [RARE-users] [freertr] Bridge configuration


Chronological Thread 
    < Chronological >      < Thread >
  • From: Xavier Jeannin <>
  • To:
  • Subject: Re: [RARE-users] [freertr] Bridge configuration
  • Date: Thu, 22 Sep 2022 14:46:42 +0200
  • Dkim-filter: OpenDKIM Filter v2.10.3 zmtaauth01.partage.renater.fr 0E9CD1402BD
Hello Csaba,

Thank you for your time

yes I think I do not make mistake

1/ on DAV0001 from where the ping is issued - vrf inet - and bvi1 is in  vrf inet
2/ on DAV010, bvi1 has  11.11.11.101 Ipv4 addr

--
DAV0001#ping 11.11.11.101 vrf inet
pinging 11.11.11.101, src=null, vrf=inet, cnt=5, len=64, tim=1000, gap=0, ttl=255, tos=0, sgt=0, flow=0, fill=0, sweep=false, multi=false
.....
result=0%, recv/sent/lost/err=0/5/5/0, rtt min/avg/max/sum=10000/0/0/5001, ttl min/avg/max=256/0/0, tos min/avg/max=256/0/0
DAV0001#

---

DAV0101#ping 11.11.11.101 vrf inet
pinging 11.11.11.101, src=null, vrf=inet, cnt=5, len=64, df=false, tim=1000, gap=0, ttl=255, tos=0, sgt=0, flow=0, fill=0, alrt=-1, sweep=false, multi=false
!!!!!
result=100.0%, recv/sent/lost/err=5/5/0/0, took 0, min/avg/max/dev rtt=0/0.0/0/0.0, ttl 255/255/255/0.0, tos 0/0.0/0/0.0

--

interface bvi1
 description "DAV0001 BVI1 BRIDGE 1"
 vrf forwarding inet
 ipv4 address 11.11.11.1 255.255.255.0
 no shutdown
 no log-link-change
 exit

Regards
Xavier

Le 22/09/2022 à 14:38, mc36 a écrit :
hi,
in the pcap files, i see a fully working ping and a completely broken one...
are you sure you're pinging in the right vrfs on the right addresses?
thanks,
cs


On 9/22/22 12:57, wrote:
Hello

I encounter a strange behaviour configure a basic bridge configuration

Two RARE/Freertr machines are connected: DAV0101 (DPDK) and DAV0001 (WEDGE)

1/ I configure IP the 2 interfaces and ping worked fine so it seems the interface hardware work fine


2/ I configure a bridge 1 with bvi1 interface - I cannot ping from the Wedge bvi1 the DPDK bvi1 interface

2.1 / Capturing the packet on the 2 physical interfaces. I can see that DPDK machine received the ICMP Echo request packet and answer a Echo reply. But on the Wedge it seems to not receive the packet. see the pcap at https://filesender.renater.fr/?s=download&token=04803078-bb70-4dbe-b99e-1f6b55a8df52
It seems that the Wedge cannot 'use' and/or 'store' the APR answer of the DPDK machine

2.2/ But using show bridge (see screenshot below), I can see that Ethernet MAC addresses of the 2 bvi interfaces are present

I put my 2 configurations (hoping that there are not obvious misconfiguration). I do not declare the sub interface in server p4lang. is it correct?

Any idea to debug this ?

Thank you
Xavier


*DAV0001#show running-config hide*
hostname DAV0001
buggy
!
logging buffered debug 10240
logging file debug /var/log/freertr.log
logging rotate 655360000 /var/log/freertr.old
!
crypto rsakey rsa import $w10$<removed>$
!
crypto dsakey dsa import $w10$<removed>$
!
crypto ecdsakey ecdsa import $w10$<removed>$
!
aaa userlist usr
   username rare
   username rare password $w10$<removed>$
   exit
!
scheduler errors
   time 600000
   delay 30000
   command clear errors
   start
   exit
!
prefix-list all4
   sequence 10 permit 0.0.0.0/0 ge 0 le 0
   exit
!
prefix-list all6
   sequence 10 permit ::/0 ge 0 le 0
   exit
!
bridge 1
   mac-learn
   exit
!
bridge 2
   mac-learn
   exit
!
vrf definition inet
   exit
!
vrf definition lin
   exit
!
vrf definition oob
   exit
!
vrf definition p4
   description P4 VRF _NEVER_EVER_ CONFIGURE IT
   exit
!
interface bvi1
   description "DAV0001 BVI1 BRIDGE 1"
   vrf forwarding inet
   ipv4 address 11.11.11.1 255.255.255.0
   no shutdown
   no log-link-change
   exit
!
interface bvi2
   vrf forwarding inet
   ipv4 address 12.12.12.1 255.255.255.0
   no shutdown
   no log-link-change
   exit
!
interface ethernet0
   description CPU_PORT _NEVER_EVER_ CONFIGURE IT
   no shutdown
   no log-link-change
   exit
!
interface ethernet1
   description out of band management port
   vrf forwarding oob
   ipv4 address dynamic dynamic
   ipv4 gateway-prefix all4
   ipv4 dhcp-client enable
   ipv4 dhcp-client early
   ipv6 address dynamic dynamic
   ipv6 gateway-prefix all6
   ipv6 slaac-client enable
   ipv6 prefix-suppress
   no shutdown
   no log-link-change
   exit
!
interface ethernet2
   description linux tuntap management interface
   vrf forwarding lin
   ipv4 address 10.255.255.254 255.255.255.0
   no shutdown
   no log-link-change
   exit
!
interface sdn10
   description frontpanel port 10/0
   mtu 1500
   macaddr 0031.755e.0363
   lldp enable
   no shutdown
   no log-link-change
   exit
!
interface sdn10.11
   bridge-group 1
   no shutdown
   no log-link-change
   exit
!
interface sdn15
   description frontpanel port 15/0
   mtu 1500
   bandwidth 10000000
   macaddr 0056.2158.6249
   lldp enable
   no shutdown
   log-link-change
   exit
!
interface sdn15.11
   bridge-group 1
   no shutdown
   no log-link-change
   exit
!
interface sdn7
   description frontpanel port 7/0
   mtu 1500
   macaddr 0040.784a.0b38
   lldp enable
   no shutdown
   log-link-change
   exit
!
interface sdn7.12
   bridge-group 2
   no shutdown
   no log-link-change
   exit
!
interface sdn7.666
   lldp enable
   vrf forwarding inet
   ipv4 address 6.6.6.1 255.255.255.0
   no shutdown
   no log-link-change
   exit
!
proxy-profile oob
   vrf oob
   exit
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
alias exec tna-set-profile sticky-param PE
!
!
!
!
!
!
!
!
!
!
server telnet oob
   security authentication usr
   security rsakey rsa
   security dsakey dsa
   security ecdsakey ecdsa
   second-port 22
   exec logging
   no exec authorization
   login authentication usr
   login logging
   vrf oob
   exit
!
server telnet p4
   security protocol telnet
   exec logging
   no exec authorization
   no login authentication
   login logging
   vrf p4
   exit
!
server p4lang p4
   export-vrf inet 1
   export-bridge 1
   export-bridge 2
   export-port sdn15 12 10 0 0 0
   export-port sdn10 52 10 0 0 0
   export-port sdn7 176 10 0 0 0
   interconnect ethernet0
   vrf p4
   exit
!
client proxy oob
client name-server 1.1.1.1
client time-server europe.pool.ntp.org
client time-zone CET
!

DAV0101#show running-config hide
hostname DAV0101
buggy
!
logging buffered debug 8192
logging file debug zzz.log
logging rotate 65536000 zzz.old
!
crypto rsakey rsa import $w10$<removed>$
!
crypto dsakey dsa import $w10$<removed>$
!
crypto ecdsakey ecdsa import $w10$<removed>$
!
aaa userlist usr
   username rare
   username rare password $w10$<removed>$
   exit
!
scheduler errors
   time 600000
   delay 30000
   command clear errors
   start
   exit
!
scheduler upgrade
   time 600000
   delay 60000
   random-time 60000
   random-delay 300000
   command flash upgrade
   start
   exit
!
object-group network host4
   sequence 10 10.255.255.0 255.255.255.0
   exit
!
object-group network host6
   sequence 10 2001:db8:ffff:ffff:: ffff:ffff:ffff:ffff::
   exit
!
object-group network lloc4
   sequence 10 169.254.0.0 255.255.0.0
   exit
!
object-group network lloc6
   sequence 10 fe80:: ffff::
   exit
!
object-group network mcast4
   sequence 10 224.0.0.0 255.255.0.0
   exit
!
object-group network mcast6
   sequence 10 ff00:: ff00::
   exit
!
access-list nat4
   sequence 10 deny all obj lloc4 all any all
   sequence 20 deny all any all obj mcast4 all
   sequence 30 deny all obj host4 all obj host4 all
   sequence 40 permit all obj host4 all any all
   exit
!
access-list nat6
   sequence 10 deny all obj lloc6 all any all
   sequence 20 deny all any all obj mcast6 all
   sequence 30 deny all obj host6 all obj host6 all
   sequence 40 permit all obj host6 all any all
   exit
!
access-list test4
   sequence 10 permit all any all 3.3.3.3 255.255.255.255 all
   exit
!
prefix-list all4
   sequence 10 permit 0.0.0.0/0 ge 0 le 0
   exit
!
prefix-list all6
   sequence 10 permit ::/0 ge 0 le 0
   exit
!
bridge 1
   mac-learn
   exit
!
bridge 2
   mac-learn
   exit
!
vrf definition inet
   exit
!
vrf definition oob
   exit
!
vrf definition p4
   exit
!
router ospf4 1
   vrf inet
   router-id 10.1.3.3
   traffeng-id 0.0.0.0
   area 0 enable
   exit
!
router ospf6 1
   vrf inet
   router-id 10.1.3.3
   traffeng-id ::
   area 0 enable
   exit
!
interface loopback0
   vrf forwarding inet
   ipv4 address 10.1.3.3 255.255.255.255
   router ospf4 1 enable
   router ospf4 1 area 0
   router ospf4 1 passive
   no shutdown
   no log-link-change
   exit
!
interface loopback1
   vrf forwarding inet
   ipv4 address 2.2.2.3 255.255.255.255
   ipv6 address 4321::3 ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
   router ospf4 1 enable
   router ospf4 1 area 0
   router ospf4 1 passive
   router ospf6 1 enable
   router ospf6 1 area 0
   router ospf6 1 passive
   no shutdown
   no log-link-change
   exit
!
interface loopback3333
   vrf forwarding inet
   ipv4 address 3.3.3.3 255.255.255.255
   no shutdown
   no log-link-change
   exit
!
interface bvi1
   vrf forwarding inet
   ipv4 address 11.11.11.101 255.255.255.0
   no shutdown
   no log-link-change
   exit
!
interface bvi2
   vrf forwarding inet
   ipv4 address 12.12.12.3 255.255.255.0
   no shutdown
   no log-link-change
   exit
!
interface ethernet0
   description p4 cpu port
   no shutdown
   no log-link-change
   exit
!
interface sdn1
   mtu 1500
   macaddr 0028.7866.2c41
   lldp enable
   vrf forwarding inet
   ipv4 address 10.1.34.3 255.255.255.0
   shutdown
   no log-link-change
   exit
!
interface sdn2
   mtu 1500
   macaddr 0040.572f.3c09
   lldp enable
   vrf forwarding inet
   ipv4 address 10.2.34.3 255.255.255.0
   shutdown
   no log-link-change
   exit
!
interface sdn3
   mtu 1500
   macaddr 0009.1275.1e69
   lldp enable
   vrf forwarding inet
   ipv4 address 10.3.34.3 255.255.255.0
   shutdown
   no log-link-change
   exit
!
interface sdn4
   mtu 1500
   macaddr 004f.3b5b.5353
   lldp enable
   vrf forwarding inet
   ipv4 address 10.1.23.3 255.255.255.0
   router ospf4 1 enable
   router ospf4 1 area 0
   no shutdown
   no log-link-change
   exit
!
interface sdn5
   mtu 1500
   macaddr 0060.1a21.1d27
   lldp enable
   no shutdown
   no log-link-change
   exit
!
interface sdn5.11
   bridge-group 1
   no shutdown
   no log-link-change
   exit
!
interface sdn5.12
   bridge-group 2
   no shutdown
   no log-link-change
   exit
!
interface sdn6
   mtu 1500
   macaddr 0061.4870.5670
   lldp enable
   vrf forwarding inet
   ipv4 address 10.6.34.3 255.255.255.0
   shutdown
   no log-link-change
   exit
!
interface sdn7
   mtu 1500
   macaddr 0067.2724.3157
   lldp enable
   vrf forwarding inet
   ipv4 address 10.7.34.3 255.255.255.0
   shutdown
   no log-link-change
   exit
!
proxy-profile inet
   vrf inet
   exit
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
alias test bash command attach shell1 socat - exec:bash,ctty,pty,stderr
alias test bash description get linux shell
!
server telnet inet
   security protocol telnet
   security authentication usr
   exec logging
   no exec authorization
   login authentication usr
   login logging
   interface loopback3333
   vrf inet
   exit
!
server telnet oob
   security authentication usr
   security rsakey rsa
   security dsakey dsa
   security ecdsakey ecdsa
   second-port 22
   exec logging
   no exec authorization
   login authentication usr
   login logging
   vrf oob
   exit
!
server telnet p4
   security protocol telnet
   no exec authorization
   no login authentication
   vrf p4
   exit
!
server telnet tel
   security rsakey rsa
   security dsakey dsa
   security ecdsakey ecdsa
   access-log
   access-rate 5 5000
   access-total 5
   access-peer 5
   protocol ipv4 tcp
   second-port 22
   exec logging
   no exec authorization
   no login authentication
   login logging
   login last global
   vrf inet
   exit
!
server p4lang p4
   export-vrf inet
   export-vrf oob
   export-bridge 1
   export-port sdn1 0 1 0 0 0
   export-port sdn2 1 1 0 0 0
   export-port sdn3 2 1 0 0 0
   export-port sdn4 3 10 0 0 0
   export-port sdn5 4 10 0 0 0
   export-port sdn6 5 1 0 0 0
   export-port sdn7 6 1 0 0 0
   interconnect ethernet0
   vrf p4
   exit
!
server dns ns
   recursion enable
   vrf inet
   exit
!
client proxy inet
client name-server 193.49.159.2
client upgrade-server http://upgrade.nop.hu/
client upgrade-backup
client config-backup
client time-server europe.pool.ntp.org
client time-zone CET
!
end



--
Xavier JEANNIN
Network Dpt.
GN4-3 Network technology evolution (WP6 T1) task leader
T  l. : +33 1 5394 2042
Mob. : +33 6 3017 0963
www.renater.fr

_._,_._,_
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Groups.io Links:

You receive all messages sent to this group.

View/Reply Online (#720) <https://groups.io/g/freertr/message/720> | Reply To Group <> | Reply To Sender <> | Mute This Topic <https://groups.io/mt/93845879/6006518> | New Topic <https://groups.io/g/freertr/post>
Your Subscription <https://groups.io/g/freertr/editsub/6006518> | Contact Group Owner <> | Unsubscribe <https://groups.io/g/freertr/unsub> []

_._,_._,_

--
Xavier JEANNIN
Network Dpt.
GN4-3 Network technology evolution (WP6 T1) task leader
Tél. : +33 1 5394 2042
Mob. : +33 6 3017 0963
www.renater.fr


Archive powered by MHonArc 2.6.19.

Top of Page