Return-Path: X-Original-To: apmail-cloudstack-users-archive@www.apache.org Delivered-To: apmail-cloudstack-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id D84EA116C0 for ; Tue, 8 Apr 2014 18:28:55 +0000 (UTC) Received: (qmail 33162 invoked by uid 500); 8 Apr 2014 18:28:51 -0000 Delivered-To: apmail-cloudstack-users-archive@cloudstack.apache.org Received: (qmail 32727 invoked by uid 500); 8 Apr 2014 18:28:50 -0000 Mailing-List: contact users-help@cloudstack.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@cloudstack.apache.org Delivered-To: mailing list users@cloudstack.apache.org Received: (qmail 32687 invoked by uid 99); 8 Apr 2014 18:28:47 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 08 Apr 2014 18:28:47 +0000 X-ASF-Spam-Status: No, hits=2.2 required=5.0 tests=HTML_MESSAGE,RCVD_IN_DNSWL_NONE,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of geoff.higginbottom@shapeblue.com designates 213.199.154.84 as permitted sender) Received: from [213.199.154.84] (HELO emea01-db3-obe.outbound.protection.outlook.com) (213.199.154.84) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 08 Apr 2014 18:28:42 +0000 Received: from AMXPR07MB070.eurprd07.prod.outlook.com (10.242.70.148) by AMXPR07MB071.eurprd07.prod.outlook.com (10.242.70.154) with Microsoft SMTP Server (TLS) id 15.0.913.9; Tue, 8 Apr 2014 18:28:18 +0000 Received: from AMXPR07MB070.eurprd07.prod.outlook.com ([169.254.16.215]) by AMXPR07MB070.eurprd07.prod.outlook.com ([169.254.16.215]) with mapi id 15.00.0913.002; Tue, 8 Apr 2014 18:28:18 +0000 From: Geoff Higginbottom To: "" Subject: Re: System vm's with wrong network routing Thread-Topic: System vm's with wrong network routing Thread-Index: AQHPUqe3xXVjXo0GxUOfbFsHe3iJwJsHM1tegACPD4CAAA/DAIAAAdMAgAAQ2ICAAAlsAIAAHQvu Date: Tue, 8 Apr 2014 18:28:17 +0000 Message-ID: <3F82715B-85A2-4D49-9A70-5BEE183D55A2@shapeblue.com> References: <7E300889-0F26-4EA3-B709-E7043FCC07A8@shapeblue.com> <5344029B.5000302@trickhosting.biz> <5344115C.2040403@trickhosting.biz> ,<53442764.7060206@trickhosting.biz> In-Reply-To: <53442764.7060206@trickhosting.biz> Accept-Language: en-GB, en-US Content-Language: en-GB X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [80.229.158.60] x-forefront-prvs: 017589626D x-forefront-antispam-report: SFV:NSPM;SFS:(10009001)(428001)(479174003)(377454003)(13734003)(189002)(199002)(24454002)(66066001)(92566001)(97186001)(83716003)(20776003)(56816005)(76786001)(76796001)(63696002)(49866001)(77982001)(83072002)(74502001)(2656002)(74662001)(99396002)(16601075003)(93136001)(98676001)(90146001)(82746002)(81542001)(4396001)(47446003)(54356002)(47736002)(54316003)(47976002)(80022001)(50986002)(53806002)(80976001)(79102001)(87266001)(81342001)(77096001)(87936001)(97336001)(95416001)(92726001)(31966008)(59766001)(65816001)(86362001)(15975445006)(85852003)(33656001)(76482001)(94316002)(46102001)(69226001)(81686001)(94946001)(83322001)(81816001)(15202345003)(74706001)(95666003)(56776001)(15395725003)(85306002)(74366001)(16236675002)(93516002)(19580405001)(19580395003)(74876001)(36756003)(579004);DIR:OUT;SFP:1101;SCL:1;SRVR:AMXPR07MB071;H:AMXPR07MB070.eurprd07.prod.outlook.com;FPR:FEDEF1A5.AE32531B.30D15D53.4F64C9B1.205DC;MLV:sfv;PTR:InfoNoRecords;MX:1;A:1;LANG:en; received-spf: None (: shapeblue.com does not designate permitted sender hosts) Content-Type: multipart/alternative; boundary="_000_3F82715B85A24D499A705BEE183D55A2shapebluecom_" MIME-Version: 1.0 X-OriginatorOrg: shapeblue.com X-Virus-Checked: Checked by ClamAV on apache.org --_000_3F82715B85A24D499A705BEE183D55A2shapebluecom_ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable I would check the traffic labels for the management network match for your = zone and hosts. Regards Geoff Higginbottom CTO / Cloud Architect D: +44 20 3603 0542 | S: +44 20 3603 0540 | M: +447968161581 geoff.higginbottom@shapeblue.com |= www.shapeblue.com | Twitter:@cloudstackguru ShapeBlue Ltd, 53 Chandos Place, Covent Garden, London, WC2N 4HS On 8 Apr 2014, at 17:44, "Matthew Midgett" > wrote: My problem is that the ssvm will not ping anything on the management networ= k, It will not do dns lookups as it will not ping past the default public g= ateway. The ssvm is up and I can ping the public ip from a different subnet= . If i remove this I can use external dns and the ssvm can ping anything publ= ic 8.8.4.4 172.16.0.1 255.255.255.255 UGH 0 0 0 eth1 8.8.8.8 172.16.0.1 255.255.255.255 UGH 0 0 0 eth1 I change the values as Geoff had suggested and I rebooted the management se= rvice. Then i destroyed the ssvm so it would be recreated with the new chan= ges. Here is the route as it is now and not working. root@s-9-VM:~# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 216.249.111.1 0.0.0.0 UG 0 0 0 eth2 8.8.4.4 172.16.0.1 255.255.255.255 UGH 0 0 0 eth1 8.8.8.8 172.16.0.1 255.255.255.255 UGH 0 0 0 eth1 169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0 172.16.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth1 172.16.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth3 216.249.111.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 To me it doesn't look like the use external dns setting to true didn't do a= nything. It sill wants to tell the dns to go across the management network.= That would be fine if the routes to the management network worked. I'm willing to pay someone to help me at this point. On 04/08/2014 12:10 PM, Erik Weber wrote: You don't need gateway for network in the same subnet on an interface. You never told us what your real problem is (i think), so why not start by telling us what is not working :-) As i tried to explain, 8.8.8.8 and 8.8.4.4 will be routed over the mgmt interface if it's entered as the internal dns. If that is your problem, try changing the value Geoff suggested. Erik 8. apr. 2014 17:10 skrev "Matthew Midgett" > f=F8lgende: Erik that would be fine but this is wrong, this means its going to route over the public address as 0.0.0.0 points to my public gateway. 172.16.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth1 172.16.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth3 On 04/08/2014 11:03 AM, Erik Weber wrote: If you use the same dns servers for both internal and external it will add a route over mgmt interface. Erik Weber 8. apr. 2014 16:07 skrev "Matthew Midgett" > f=F8lgende: I destroyed the VM so it would create a new route. First off the 8.8.8.8 and 8.8.4.4 should have a default gateway of 0.0.0.0 if its to use the public address to get dns. If its supposed to use the management network then the 172.16.0.0 0.0.0.0 should be 172.16.0.0 172.16.0.1 This way it doesn't route properly root@s-4-VM:~# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 216.249.111.1 0.0.0.0 UG 0 0 0 eth2 8.8.4.4 172.16.0.1 255.255.255.255 UGH 0 0 0 eth1 8.8.8.8 172.16.0.1 255.255.255.255 UGH 0 0 0 eth1 169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0 172.16.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth1 172.16.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth3 216.249.111.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 This way works. root@s-4-VM:~# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 216.249.111.1 0.0.0.0 UG 0 0 0 eth2 169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0 172.16.0.0 172.16.0.1 255.255.0.0 U 0 0 0 eth1 172.16.0.0 172.16.0.1 255.255.0.0 U 0 0 0 eth3 216.249.111.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 Still not sure where I should put this. I know its the way that Im connecting to it but what route should it take? I'm thinking it should be 172.16.0.0 169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0 On 04/08/2014 01:35 AM, Geoff Higginbottom wrote: Matthew, Can you give examples of the routes you are seeing and explain why they are wrong please. Regards Geoff Higginbottom CTO / Cloud Architect D: +44 20 3603 0542 | S: +44 20 3603 0540 | M: +447968161581 geoff.higginbottom@shapeblue.com> | www.shapeblue.com | T= witter:@cloudstackguru < https://twitter.com/#!/cloudstackguru> ShapeBlue Ltd, 53 Chandos Place, Covent Garden, London, WC2N 4HS On 7 Apr 2014, at 22:24, "Matthew Midgett" < mailto:support@trickhosting.biz>> wrote: My system vm's are being created with the wrong routes. Manually deleting and adding them fixes the problem. Where would I go to fix this permanently? Sent from my Galaxy S(r)III Need Enterprise Grade Support for Apache CloudStack? Our CloudStack Infrastructure Support offers the best 24/7 SLA for CloudStack Environments. Apache CloudStack Bootcamp training courses **NEW!** CloudStack 4.2.1 training 28th-29th May 2014, Bangalore. Classromm 16th-20th June 2014, Region A. Instructor led, On-line< http://shapeblue.com/cloudstack-training/> 23rd-27th June 2014, Region B. Instructor led, On-line< http://shapeblue.com/cloudstack-training/> 15th-20th September 2014, Region A. Instructor led, On-line< http://shapeblue.com/cloudstack-training/> 22nd-27th September 2014, Region B. Instructor led, On-line< http://shapeblue.com/cloudstack-training/> 1st-6th December 2014, Region A. Instructor led, On-line< http://shapeblue.com/cloudstack-training/> 8th-12th December 2014, Region B. Instructor led, On-line< http://shapeblue.com/cloudstack-training/> This email and any attachments to it may be confidential and are intended solely for the use of the individual to whom it is addressed. Any views or opinions expressed are solely those of the author and do not necessarily represent those of Shape Blue Ltd or related companies. If you are not the intended recipient of this email, you must neither take any action based upon its contents, nor copy or show it to anyone. Please contact the sender if you believe you have received this email in error. Shape Blue Ltd is a company incorporated in England & Wales. ShapeBlue Services India LLP is a company incorporated in India and is operated under license from Shape Blue Ltd. Shape Blue Brasil Consultoria Ltda is a company incorporated in Brasil and is operated under license from Shape Blue Ltd. ShapeBlue is a registered trademark. This email and any attachments to it may be confidential and are intended s= olely for the use of the individual to whom it is addressed. Any views or o= pinions expressed are solely those of the author and do not necessarily rep= resent those of Shape Blue Ltd or related companies. If you are not the int= ended recipient of this email, you must neither take any action based upon = its contents, nor copy or show it to anyone. Please contact the sender if y= ou believe you have received this email in error. Shape Blue Ltd is a compa= ny incorporated in England & Wales. ShapeBlue Services India LLP is a compa= ny incorporated in India and is operated under license from Shape Blue Ltd.= Shape Blue Brasil Consultoria Ltda is a company incorporated in Brasil and= is operated under license from Shape Blue Ltd. ShapeBlue is a registered t= rademark. --_000_3F82715B85A24D499A705BEE183D55A2shapebluecom_--