zoukankan      html  css  js  c++  java
  • Open vSwitch

    多网卡时如何使用源地址ping目的地址,检测网络连通性。

    1.1      使用源地址ping检查网络连通性:

    Windows系统:

    Ping –S 128.80.241.10 192.168.155.100

    Liunx 系统:

    Ping –I 128.80.241.10 192.168.155.100

    华为交换机:

    Ping –a 128.80.241.10 192.168.155.100

    1.   how  to   access Internet via OVS

    What I did?
    
    1. I added eth0 (NAT) of ovs to the bridge.
    2. I removed IP for the eth0.
    3. I assigned IP for bridge (br0) using DHCP.
    4. Made the Host-Only with out any IP. (I mean, I changed vmnet 0 settings
    as DHCP)
    5. Added eth1 to br0
    6. Got the IP address on eth0 of Host 1 via DHCP.
    
    *In OVS:*
    *----------*
    *ovs-vsctl add br br0*
    *ovs-vsctl add-port br0 eth0*
    *ifconfig eth0 0 *     //取消eth0的IP地址
    *dhclient br0 (eth0 should not have any IP while br0 should get an IP now)*
    *now if we ping www.google.com <http://www.google.com> it works*
    
    *next*
    *ovs-vsctl add-port br0 eth1*
    
    *in Host:*
    *dhclient eth0 (It should fetch an IP from DHCP).*
    
    *Then I am able to ping google from here.*
    
    *I got this idea from  this video *
    https://www.youtube.com/watch?v=rYW7kQRyUvA



    :默认网关只能有一个,虽然上面显示有许多条defualt, 但是只使用第一条的defatult条目






    2.Mininet with different network subnet

    http://hwchiu.logdown.com/posts/203260-mininet-and-network-subnet

    Introduction

    我們使用 mn --topo single,3 --mac創造一個有不同subnet的拓墣,使用--mac使得所有host的MAC Address更加簡單,能夠使得此實驗變得容易。
    我們目標是要讓這三個不同subnet的host都能夠互相溝通。

    網路架構如下圖
    topology.png

    在此實驗中,我們並不採用任何controller來控制所有封包,單純就手動下flow entry來處理所有的封包,一旦了解了這中間的道理,要自己撰寫APP處裏此情況就不會太難了。

    Solutions

    首先,mininet創造出來網路後,預設會讓所有的host都屬於相同的network subnet 10.0.0.0/24,因此在實驗開始前,我們要先修改其餘host的設定,改變其network subnet。

    • mininet的環境中執行下列指令
    • h2 ifconfig h2-eth0 20.0.0.1
    • h3 ifconfig h3-eth0 30.0.0.1

    接下來,我們先執行h1 ping h3,這時候我們會看到有錯誤訊息 connect: Network is unreachable。這個原因是因為對於host1來說,host2是不一樣的network subnet,此時會將該封包轉送到本身subnet的gateway來處理,但是該host不知道gateway在哪裡,因此我們要幫他們加上route for default gateway

    • mininet的環境中執行下列指令
    • h1 route add default gw 10.0.0.254 h1-eth0
    • h2 route add default gw 20.0.0.254 h2-eth0
    • h3 route add default gw 30.0.0.254 h3-eth0

    接下來,我們繼續執行h1 ping h3,此時會得到下列的訊息

    mininet> h1 ping h3
    PING 30.0.0.1 (30.0.0.1) 56(84) bytes of data.
    From 10.0.0.1 icmp_seq=1 Destination Host Unreachable
    From 10.0.0.1 icmp_seq=2 Destination Host Unreachable
    From 10.0.0.1 icmp_seq=3 Destination Host Unreachable
    From 10.0.0.1 icmp_seq=4 Destination Host Unreachable
    

    到這步驟後,因為我們還沒有寫入任何的flow entry,所以網路不通是正常的。在處理ICMP 封包前,我們必須要先處理ARP的封包。
    這邊我們先在mininet那邊持續的執行h1 ping h3。同時,我們開啟第二個視窗,執行tcpdump -vvv -i s1-eth1,我們會得到下列的訊息

    tcpdump: WARNING: s1-eth1: no IPv4 address assigned
    tcpdump: listening on s1-eth1, link-type EN10MB (Ethernet), capture size 65535 bytes
    20:07:04.639862 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 10.0.0.254 tell 10.0.0.1, length 28
    20:07:05.639859 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 10.0.0.254 tell 10.0.0.1, length 28
    20:07:06.639895 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 10.0.0.254 tell 10.0.0.1, length 28
    20:07:07.639856 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 10.0.0.254 tell 10.0.0.1, length 28
    

    由這邊可以發現,Host 1透過arp在詢問其gateway相關資訊,但是麻煩的是,在此網路中,我們並沒有真的一個Device的ip是該gateway,為了解決這個問題,我們有兩個選擇

    1. 弄一個Host出來,當作gateway去處理
    2. 弄個arp proxy來處理,這部分在OpenDayLight中預設有提供此module,讓controller假裝自己是gateway來處理此問題。

    由於本實驗並沒有採用任何controller,因此我們要手動修改switch,讓她覺得自己是gateway,能夠回arp reply給Host。

    • mininet的環境中執行下列指令
    • s1 ifconfig s1:0 10.0.0.254
    • s1 ifconfig s1:1 20.0.0.254
    • s1 ifconfig s1:2 30.0.0.254

    我們令s1這個interface擁有三個ip,這些ip都代表每個network subnetgatewayip,接下來為了讓switch自己幫我們處理所有arp request for gateway,我們加入下列flow entry到s1中

    • mininet的環境中執行下列指令
    • sh ovs-ofctl add-flow s1 "table=0,priority=65535,arp,arp_tpa=10.0.0.254 actions=LOCAL"
    • sh ovs-ofctl add-flow s1 "table=0,priority=65535,arp,arp_tpa=20.0.0.254 actions=LOCAL"
    • sh ovs-ofctl add-flow s1 "table=0,priority=65535,arp,arp_tpa=30.0.0.254 actions=LOCAL"

    上面這三個flow entry會把所有arp request for gateway的封包都導入本地的OS去處理,因此這些封包就會進入到
    s1:0,s1:1,s1:2去處理,並且回覆一個arp reply。這些arp reply都會再度的進到OVS內,為了處理這些封包,我們要根據他的destination ip address把它給送回去對應的Host。

    • sh ovs-ofctl add-flow s1 "table=0,priority=1,arp,nw_dst=10.0.0.1,actions=output:1"
    • sh ovs-ofctl add-flow s1 "table=0,priority=1,arp,nw_dst=20.0.0.1,actions=output:2"
    • sh ovs-ofctl add-flow s1 "table=0,priority=1,arp,nw_dst=30.0.0.1,actions=output:3"

    這些完畢後,arp封包就能夠正常處理了,接下來為了處理ICMP,我們要再做一些設定,在此實驗中,我們同時測試multiple table的功用,因此我們決定把ICMP routing的部分放到第二個table去處理。
    首先,我們先在table 0加入一個flow entry,把剛剛沒有被arp處理掉的封包都送到table 1去處理。

    • sh ovs-ofctl add-flow s1 "table=0,priority=0,actions=resubmit(,1)"

    接者,在table 1,因為switch的身份很類似router,因此我們要修改所有封包的destination MAC Address

    • sh ovs-ofctl add-flow s1 "table=1,icmp,nw_dst=10.0.0.1,actions=mod_dl_dst=00:00:00:00:00:01,output:1"
    • sh ovs-ofctl add-flow s1 "table=1,icmp,nw_dst=20.0.0.1,actions=mod_dl_dst=00:00:00:00:00:02,output:2"
    • sh ovs-ofctl add-flow s1 "table=1,icmp,nw_dst=30.0.0.1,actions=mod_dl_dst=00:00:00:00:00:03,output:3"

    最後執行h1 ping h3,就會順利的通了,以下整理一下flow table中的所有flow entry

    #Those two flow will handle the arp-request for the gateway, it will send the arp-request to s1
    table=0,priority=65535,arp,arp_tpa=10.0.0.254 actions=LOCAL
    table=0,priority=65535,arp,arp_tpa=20.0.0.254 actions=LOCAL
    table=0,priority=65535,arp,arp_tpa=30.0.0.254 actions=LOCAL
    table=0,priority=1,arp,nw_dst=10.0.0.1,actions=output:1
    table=0,priority=1,arp,nw_dst=20.0.0.1,actions=output:2
    table=0,priority=1,arp,nw_dst=30.0.0.1,actions=output:3
    table=0,priority=0,actions=resubmit(,1)
    
    #table1  - forward/route
    table=1,icmp,nw_dst=10.0.0.1,actions=mod_dl_dst=00:00:00:00:00:01,output:1
    table=1,icmp,nw_dst=20.0.0.1,actions=mod_dl_dst=00:00:00:00:00:02,output:2
    table=1,icmp,nw_dst=30.0.0.1,actions=mod_dl_dst=00:00:00:00:00:03,output:3







    3

    https://www.youtube.com/watch?v=K6MWUo6rwUU

    How to add Physical Interface (eth0 or wlan0) to OpenvSwitch Bridge
    http://fosshelp.blogspot.in/2014/10/a...
    1)
    Find configuration of "wlan0"
    #ifconfig wlan0

    2)
    Note the route table entries
    #route -n

    3)
    Add an OpenvSwitch Bridge
    #sudo ovs-vsctl add-br br-int

    4)
    Add the interface "wlan0" to OpenvSwitch Bridge "br-int" and Zero out your wlan0 interface
    #sudo ovs-vsctl add-port br-int wlan0
    #sudo ifconfig wlan0 0

    5)
    Assign IP to OpenvSwitch Bridge "br-int"
    $sudo ifconfig br-int 192.168.0.131 netmask 255.255.255.0

    6)
    Change your default route
    #sudo route add default gw 192.168.0.1 br-int


    7)
    Check the configuration of "wlan0" and "br-int"
    #ifconfig wlan0
    #ifconfig br-int

    8)
    Check the route table entries
    #route -n

    9)
    a)
    Before 

    b)
    Commands

    sudo ovs-vsctl add-br br-int
    sudo ovs-vsctl add-port br-int wlan0
    sudo ifconfig wlan0 0
    sudo ifconfig br-int 192.168.0.131 netmask 255.255.255.0
    sudo route add default gw 192.168.0.1 br-int

    c)
    After 

    10)
    Delete OpenvSwitch Bridge "br-int"
    #sudo ovs-vsctl del-br br-int
    #route -n
    *Wifi: Disconnect and connect again
  • 相关阅读:
    如何方便的下载youtube视频?
    88. Merge Sorted Array
    83. Remove Duplicates from Sorted List
    70. Climbing Stairs
    用opencv+python全屏进行显示图片
    58. Length of Last Word
    numpy的resize和reshape区别
    Opencv的绘图
    Python的slice问题
    jqgrid一次性加载
  • 原文地址:https://www.cnblogs.com/zxqstrong/p/4897433.html
Copyright © 2011-2022 走看看