Open vSwitch

多网卡时如何使用源地址ping目的地址,检测网络连通性。

1.1      使用源地址ping检查网络连通性:

Windows系统:

Ping –S 128.80.241.10 192.168.155.100

Liunx 系统:

Ping –I 128.80.241.10 192.168.155.100

华为交换机:

Ping –a 128.80.241.10 192.168.155.100

1.   how  to   access Internet via OVS

What I did?

1. I added eth0 (NAT) of ovs to the bridge.
2. I removed IP for the eth0.
3. I assigned IP for bridge (br0) using DHCP.
4. Made the Host-Only with out any IP. (I mean, I changed vmnet 0 settings
as DHCP)
5. Added eth1 to br0
6. Got the IP address on eth0 of Host 1 via DHCP.

*In OVS:*
*----------*
*ovs-vsctl add br br0*
*ovs-vsctl add-port br0 eth0*
*ifconfig eth0 0 *     //取消eth0的IP地址
*dhclient br0 (eth0 should not have any IP while br0 should get an IP now)*
*now if we ping www.google.com <http://www.google.com> it works*

*next*
*ovs-vsctl add-port br0 eth1*

*in Host:*
*dhclient eth0 (It should fetch an IP from DHCP).*

*Then I am able to ping google from here.*

*I got this idea from  this video *
https://www.youtube.com/watch?v=rYW7kQRyUvA



:默认网关只能有一个,虽然上面显示有许多条defualt, 但是只使用第一条的defatult条目






2.Mininet with different network subnet

  http://hwchiu.logdown.com/posts/203260-mininet-and-network-subnet

Introduction

我們使用 mn --topo single,3 --mac創造一個有不同subnet的拓墣,使用--mac使得所有host的MAC Address更加簡單,能夠使得此實驗變得容易。
我們目標是要讓這三個不同subnet的host都能夠互相溝通。

網路架構如下圖
topology.png

在此實驗中,我們並不採用任何controller來控制所有封包,單純就手動下flow entry來處理所有的封包,一旦了解了這中間的道理,要自己撰寫APP處裏此情況就不會太難了。

Solutions

首先,mininet創造出來網路後,預設會讓所有的host都屬於相同的network subnet 10.0.0.0/24,因此在實驗開始前,我們要先修改其餘host的設定,改變其network subnet。

  • mininet的環境中執行下列指令
  • h2 ifconfig h2-eth0 20.0.0.1
  • h3 ifconfig h3-eth0 30.0.0.1

接下來,我們先執行h1 ping h3,這時候我們會看到有錯誤訊息 connect: Network is unreachable。這個原因是因為對於host1來說,host2是不一樣的network subnet,此時會將該封包轉送到本身subnet的gateway來處理,但是該host不知道gateway在哪裡,因此我們要幫他們加上route for default gateway

  • mininet的環境中執行下列指令
  • h1 route add default gw 10.0.0.254 h1-eth0
  • h2 route add default gw 20.0.0.254 h2-eth0
  • h3 route add default gw 30.0.0.254 h3-eth0

接下來,我們繼續執行h1 ping h3,此時會得到下列的訊息

mininet> h1 ping h3
PING 30.0.0.1 (30.0.0.1) 56(84) bytes of data.
From 10.0.0.1 icmp_seq=1 Destination Host Unreachable
From 10.0.0.1 icmp_seq=2 Destination Host Unreachable
From 10.0.0.1 icmp_seq=3 Destination Host Unreachable
From 10.0.0.1 icmp_seq=4 Destination Host Unreachable

到這步驟後,因為我們還沒有寫入任何的flow entry,所以網路不通是正常的。在處理ICMP 封包前,我們必須要先處理ARP的封包。
這邊我們先在mininet那邊持續的執行h1 ping h3。同時,我們開啟第二個視窗,執行tcpdump -vvv -i s1-eth1,我們會得到下列的訊息

tcpdump: WARNING: s1-eth1: no IPv4 address assigned
tcpdump: listening on s1-eth1, link-type EN10MB (Ethernet), capture size 65535 bytes
20:07:04.639862 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 10.0.0.254 tell 10.0.0.1, length 28
20:07:05.639859 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 10.0.0.254 tell 10.0.0.1, length 28
20:07:06.639895 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 10.0.0.254 tell 10.0.0.1, length 28
20:07:07.639856 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 10.0.0.254 tell 10.0.0.1, length 28

由這邊可以發現,Host 1透過arp在詢問其gateway相關資訊,但是麻煩的是,在此網路中,我們並沒有真的一個Device的ip是該gateway,為了解決這個問題,我們有兩個選擇

  1. 弄一個Host出來,當作gateway去處理
  2. 弄個arp proxy來處理,這部分在OpenDayLight中預設有提供此module,讓controller假裝自己是gateway來處理此問題。

由於本實驗並沒有採用任何controller,因此我們要手動修改switch,讓她覺得自己是gateway,能夠回arp reply給Host。

  • mininet的環境中執行下列指令
  • s1 ifconfig s1:0 10.0.0.254
  • s1 ifconfig s1:1 20.0.0.254
  • s1 ifconfig s1:2 30.0.0.254

我們令s1這個interface擁有三個ip,這些ip都代表每個network subnetgatewayip,接下來為了讓switch自己幫我們處理所有arp request for gateway,我們加入下列flow entry到s1中

  • mininet的環境中執行下列指令
  • sh ovs-ofctl add-flow s1 "table=0,priority=65535,arp,arp_tpa=10.0.0.254 actions=LOCAL"
  • sh ovs-ofctl add-flow s1 "table=0,priority=65535,arp,arp_tpa=20.0.0.254 actions=LOCAL"
  • sh ovs-ofctl add-flow s1 "table=0,priority=65535,arp,arp_tpa=30.0.0.254 actions=LOCAL"

上面這三個flow entry會把所有arp request for gateway的封包都導入本地的OS去處理,因此這些封包就會進入到
s1:0,s1:1,s1:2去處理,並且回覆一個arp reply。這些arp reply都會再度的進到OVS內,為了處理這些封包,我們要根據他的destination ip address把它給送回去對應的Host。

  • sh ovs-ofctl add-flow s1 "table=0,priority=1,arp,nw_dst=10.0.0.1,actions=output:1"
  • sh ovs-ofctl add-flow s1 "table=0,priority=1,arp,nw_dst=20.0.0.1,actions=output:2"
  • sh ovs-ofctl add-flow s1 "table=0,priority=1,arp,nw_dst=30.0.0.1,actions=output:3"

這些完畢後,arp封包就能夠正常處理了,接下來為了處理ICMP,我們要再做一些設定,在此實驗中,我們同時測試multiple table的功用,因此我們決定把ICMP routing的部分放到第二個table去處理。
首先,我們先在table 0加入一個flow entry,把剛剛沒有被arp處理掉的封包都送到table 1去處理。

  • sh ovs-ofctl add-flow s1 "table=0,priority=0,actions=resubmit(,1)"

接者,在table 1,因為switch的身份很類似router,因此我們要修改所有封包的destination MAC Address

  • sh ovs-ofctl add-flow s1 "table=1,icmp,nw_dst=10.0.0.1,actions=mod_dl_dst=00:00:00:00:00:01,output:1"
  • sh ovs-ofctl add-flow s1 "table=1,icmp,nw_dst=20.0.0.1,actions=mod_dl_dst=00:00:00:00:00:02,output:2"
  • sh ovs-ofctl add-flow s1 "table=1,icmp,nw_dst=30.0.0.1,actions=mod_dl_dst=00:00:00:00:00:03,output:3"

最後執行h1 ping h3,就會順利的通了,以下整理一下flow table中的所有flow entry

#Those two flow will handle the arp-request for the gateway, it will send the arp-request to s1
table=0,priority=65535,arp,arp_tpa=10.0.0.254 actions=LOCAL
table=0,priority=65535,arp,arp_tpa=20.0.0.254 actions=LOCAL
table=0,priority=65535,arp,arp_tpa=30.0.0.254 actions=LOCAL
table=0,priority=1,arp,nw_dst=10.0.0.1,actions=output:1
table=0,priority=1,arp,nw_dst=20.0.0.1,actions=output:2
table=0,priority=1,arp,nw_dst=30.0.0.1,actions=output:3
table=0,priority=0,actions=resubmit(,1)

#table1  - forward/route
table=1,icmp,nw_dst=10.0.0.1,actions=mod_dl_dst=00:00:00:00:00:01,output:1
table=1,icmp,nw_dst=20.0.0.1,actions=mod_dl_dst=00:00:00:00:00:02,output:2
table=1,icmp,nw_dst=30.0.0.1,actions=mod_dl_dst=00:00:00:00:00:03,output:3







3

https://www.youtube.com/watch?v=K6MWUo6rwUU

 How to add Physical Interface (eth0 or wlan0) to OpenvSwitch Bridge
http://fosshelp.blogspot.in/2014/10/a...
1)
Find configuration of "wlan0"
#ifconfig wlan0

2)
Note the route table entries
#route -n

3)
Add an OpenvSwitch Bridge
#sudo ovs-vsctl add-br br-int

4)
Add the interface "wlan0" to OpenvSwitch Bridge "br-int" and Zero out your wlan0 interface
#sudo ovs-vsctl add-port br-int wlan0
#sudo ifconfig wlan0 0

5)
Assign IP to OpenvSwitch Bridge "br-int"
$sudo ifconfig br-int 192.168.0.131 netmask 255.255.255.0

6)
Change your default route
#sudo route add default gw 192.168.0.1 br-int


7)
Check the configuration of "wlan0" and "br-int"
#ifconfig wlan0
#ifconfig br-int

8)
Check the route table entries
#route -n

9)
a)
Before 

b)
Commands

sudo ovs-vsctl add-br br-int
sudo ovs-vsctl add-port br-int wlan0
sudo ifconfig wlan0 0
sudo ifconfig br-int 192.168.0.131 netmask 255.255.255.0
sudo route add default gw 192.168.0.1 br-int

c)
After 

10)
Delete OpenvSwitch Bridge "br-int"
#sudo ovs-vsctl del-br br-int
#route -n
*Wifi: Disconnect and connect again
【推广】 免费学中医,健康全家人
原文地址:https://www.cnblogs.com/zxqstrong/p/4897433.html