Routing in Proxmox/Linux?

A

Andrey2021-09-30 15:20:07

linux

Andrey, 2021-09-30 15:20:07

Hello everyone, help me understand how to do it right?
There is a node on Proxmox
There are two network interfaces eno1, eno2
They are combined in bond0
There are two vmbr10 and vmbr20
vmbr10- 10.10.0.1/24 (vlan10)
vmbr20- 10.20.0.1/24 (vlan20)
Default - vmbr10 it is with a gateway
Linux is also created vlan(10/20) that refer to bond0
I need all traffic for 10.20.0.0/24 to go through my vmbr20-10.20.0.1(vlan20) and not load the main (default) vmbr10

read that this is configured via iproute2 and so on did, but nifiga does not work

right, do I understand that traffic should be routed through the bridge (vmbr20) ?? or I'm wrong?

config

auto eno1
iface eno1 inet manual

auto eno2
iface eno2 inet manual

auto bond0
iface bond0 inet manual
        bond-slaves eno1 eno2
        bond-miimon 100
        bond-mode balance-tlb
        
auto vmbr10
iface vmbr10 inet static
        address 10.10.0.1/24
        gateway 10.10.0.1
        bridge-ports vlan10
        bridge-stp off
        bridge-fd 0
        bridge-vlan-aware yes
        bridge-vids 2-4094
#WEB/VLAN10

auto vmbr20
iface vmbr20 inet static
           address 10.20.0.1/24
           bridge-ports vlan20
           bridge-stp off
           bridge-fd 0
           bridge-vlan-aware yes
           bridge-vids 2-4094
           post-up ip route add 10.20.0.0/24 dev vmbr20 10.20.0.1 table rt2
           post-up ip route add default via 10.20.0.1 dev vmbr20 table rt2
           post-up ip rule add from 10.20.0.1/24 table rt2
           post-up ip rule add to 10.20.0.1/24 table rt2
#VLAN20 from BackSrv

auto vlan10
iface vlan10 inet manual
<------>vlan-raw-device bond0

auto vlan20
iface vlan20 inet manual
<------>vlan-raw-device bond0

Reply

Answer the question

In order to leave comments, you need to log in

5 answer(s)

A

Alexander Karabanov, 2021-09-30
@MoscowStyle

In view of the fact that IP 10.20.0.1 is added to the interface, subnet 10.20.0.0/24 is directly connected and traffic can freely go to it through vmbr20. No route rules are needed.
The goal that you are trying to achieve is not clear, and therefore I will explain: VLAN technology only allows you to divide the physical network into logical networks isolated from each other. VLANs will not help to increase the throughput in any way.
Thus, if traffic in one VLAN utilizes the interface bandwidth by 100%, and no limits or QoS are configured, then traffic in another VLAN will inevitably degrade - there is only one physical interface.
If you want to avoid this, remove BOND. Assign VLANs each to your interface. Or set up QoS.

S

SHVV, 2014-10-31
@SHVV

I'm going to take a gtx 960, they promise to release it soon.
They just have consumption almost 2 times lower, and performance is higher. And the price should be up to 10k. Unless, of course, by then the dollar has not jumped much.

K

Konstantin, 2014-10-31
@fallen8rwtf

buy shaitan-box-one and don't suffer))
ps: xbox one =)

A

Andrey Golumenov, 2014-10-31
@Golumenov

Read this article www.overclockers.ru/lab/62218/Vybor_optimalnoj_vid...
and choose the best option for yourself

S

Sergey Lerg, 2014-10-31
@Lerg

For example this Asus GeForce GTX 760 OC 2048MB 256bit GDDR5 [GTX760-DC2OC-2GD5]. Worth just 10k.