[Users] Multicast issue with openvz VMs and CTs

jjs - mainphrame jjs at mainphrame.com
Sun Jan 15 00:53:10 MSK 2023 

I'm not feeling as much pressure to fix this at the moment, since I have a
workaround in place (ucarp running on a pair of promox/lxc containers on 2
different hosts) but ultimately I want to move this to openvz containers,
as in my experience they have been bulletproof, running literally for
years. In contrast, I've seen lxc containers mysteriously become corrupted
and inoperative, and even since standing up the proxmox boxes, I've seen
lxc containers suddenly unable to accept ssh connections, and need to be
restarted.

Jake



On Wed, Jan 11, 2023 at 12:30 AM Paulo Coghi - Coghi IT <
paulocoghi at gmail.com> wrote:

> Thanks Jake for all the valuable information.
>
> I'm following every email.
>
> On Tue, Jan 10, 2023 at 5:05 PM jjs - mainphrame <jjs at mainphrame.com>
> wrote:
>
>> To clarify, the openvz guests can receive multicast traffic from the lan,
>> but they are unable to send multicast traffic to the lan. The multicast
>> packets are dropped on the way out, somewhere between the guest adapter and
>> the host bridge.
>>
>> I'm not seeing any differences in sysctl settings between the ovz hosts
>> and the working hosts, so firewall rules are the likely culprit.
>>
>> I'll continue to chip away at this as time allows and update with any
>> findings.
>>
>> Jake
>>
>>
>> On Sun, Jan 8, 2023 at 5:08 PM jjs - mainphrame <jjs at mainphrame.com>
>> wrote:
>>
>>> I've been doing some testing with ucarp, in debian VMs and containers.
>>>
>>> (ucarp is an implementation of VRRP, a means of providing a highly
>>> available floating virtual IP within a cluster of machines)
>>>
>>> It works fine on proxmox VMs and CTs, and I was hoping to get it working
>>> on openvz, but so far my attempts to get it fully up and running have
>>> failed.
>>>
>>> Basically, both nodes become master, because neither node is seeing the
>>> multicast traffic from the other.
>>>
>>> What is the secret of allowing multicast traffic to pass from openvz VMs
>>> and CTs, onto the lan?
>>>
>>> Jake
>>>
>> _______________________________________________
>> Users mailing list
>> Users at openvz.org
>> https://lists.openvz.org/mailman/listinfo/users
>>
> _______________________________________________
> Users mailing list
> Users at openvz.org
> https://lists.openvz.org/mailman/listinfo/users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openvz.org/pipermail/users/attachments/20230114/77db2fbf/attachment.html>

More information about the Users mailing list