Perdoe-me se minha terminologia estiver fora, aqui - eu sou relativamente novo no AIX.
Eu tenho um servidor AIX (6.1) executando o VIO, com duas partições de cliente (por exemplo, CLIENTA e CLIENTB). As duas partições estão sendo executadas em um limite de SEA entre uma única interface física (ent0) e uma virtual (eth4). Ambas as partições possuem este SEA como sua primeira interface dentro do IVM (estas aparecem dentro de cada partição como ent0).
Isso foi bom em nosso ambiente de back-office; no entanto, uma vez implantado em nosso datacenter, pretende-se que a partição CLIENTA só seja acessível a partir de uma VLAN (112), a partição CLIENTB só será acessível a partir de outra VLAN (113) e o VIO estará acessível apenas a partir de uma VLAN de gerenciamento (12). Já temos o firewall e a troca de local para suportar essas VLANs e manter esses limites para nossos equipamentos existentes (principalmente Windows / Linux).
Usando uma combinação de artigos ( 1 , < um href="http://www.torontoaix.com/via-how-to-s/how-to-work-with-vlan-using-vios"> 2 ), eu fiz o seguinte:
-
Usando cfgassist , criei um Etherchannel (ent9) em duas interfaces físicas (ent2 e ent3) como um NIB básico, com ent2 como ativo e ent3 como backup.
-
Eu criei o SEA na parte superior do Etherchannel (ent10), usando mkvdev -sea ent9 -vadapter ent5 -default ent5 -defaultid 1
-
Eu criei as duas VLANs cliente com mkvdev -vlan ent10 -tagid 112 e mkvdev -vlan ent10 -tagid 113 (criando ent11 e ent12, respectivamente).
Agora, ao examinar a guia 'Ethernet' para as partições CLIENTA e CLIENTB no IVM, parece que posso atribuir ent0 ou ent9 como um adaptador. Por enquanto, deixei ent0 como o primeiro adaptador e ent9 como o segundo.
Em cada partição do cliente, posso ver ent0 e ent1 e tenho acesso em nossa LAN de preparação usando ent0. Estou tentando fazer o acesso funcionar através da interface ent1 (ou seja, usando o tronco Etherchannel / VLAN), mas o tráfego não está passando.
Em cada partição do cliente, criei um dispositivo de VLAN (usando smitty ), com o adaptador de base ent1 e o tagid 112 (para CLIENTA) ou 113 (para CLIENTB). Isso criou ent2. Eu usei o mktcpip para atribuir um IP, uma máscara de sub-rede e um gateway ao dispositivo en2 equivalente. netstat -nr mostra o que eu esperaria, com minha rede de teste na interface en0 e a rede regular (e a rota padrão) na interface en2.
Agora estou testando por ping para o mundo externo (8.8.8.8) e para / de outro dispositivo na rede local e não estou obtendo nada em nenhuma direção.
-
O que estou perdendo, que está impedindo o tráfego de passar pela interface?
-
O que há para impedir que o usuário final (uma vez implantado) faça sua própria interface de VLAN marcada com 113 e acessando a partição do outro cliente?
Atualização: saídas de comando
VIO
$ entstat -all ent10
-------------------------------------------------------------
ETHERNET STATISTICS (ent10) :
Device Type: Shared Ethernet Adapter
Hardware Address: 98:be:94:02:1a:e2
Elapsed Time: 0 days 2 hours 55 minutes 50 seconds
Transmit Statistics: Receive Statistics:
-------------------- -------------------
Packets: 1054 Packets: 16121
Bytes: 63240 Bytes: 1787781
Interrupts: 0 Interrupts: 16121
Transmit Errors: 0 Receive Errors: 0
Packets Dropped: 0 Packets Dropped: 0
Bad Packets: 0
Max Packets on S/W Transmit Queue: 0
S/W Transmit Queue Overflow: 0
Current S/W+H/W Transmit Queue Length: 0
Elapsed Time: 0 days 0 hours 0 minutes 0 seconds
Broadcast Packets: 0 Broadcast Packets: 2146
Multicast Packets: 0 Multicast Packets: 11682
No Carrier Sense: 0 CRC Errors: 0
DMA Underrun: 0 DMA Overrun: 0
Lost CTS Errors: 0 Alignment Errors: 0
Max Collision Errors: 0 No Resource Errors: 0
Late Collision Errors: 0 Receive Collision Errors: 0
Deferred: 0 Packet Too Short Errors: 0
SQE Test: 0 Packet Too Long Errors: 0
Timeout Errors: 0 Packets Discarded by Adapter: 0
Single Collision Count: 0 Receiver Start Count: 0
Multiple Collision Count: 0
Current HW Transmit Queue Length: 0
General Statistics:
-------------------
No mbuf Errors: 0
Adapter Reset Count: 0
Adapter Data Rate: 0
Driver Flags: Up Broadcast Running
Simplex 64BitSupport ChecksumOffload
LargeSend DataRateSet
--------------------------------------------------------------
Statistics for adapters in the Shared Ethernet Adapter ent10
--------------------------------------------------------------
Number of adapters: 2
SEA Flags: 00000183
< THREAD >
< LARGESEND >
VLAN Ids :
ent5: 2
Real Side Statistics:
Packets received: 8060
Packets bridged: 1054
Packets consumed: 5807
Packets fragmented: 0
Packets transmitted: 0
Packets dropped: 5807
Packets filtered(VlanId): 1199
Packets filtered(Reserved address): 5807
Virtual Side Statistics:
Packets received: 0
Packets bridged: 0
Packets consumed: 0
Packets fragmented: 0
Packets transmitted: 1054
Packets dropped: 0
Packets filtered(VlanId): 0
Other Statistics:
Output packets generated: 0
Output packets dropped: 0
Device output failures: 0
Memory allocation failures: 0
ICMP error packets sent: 0
Non IP packets larger than MTU: 0
Thread queue overflow packets: 0
SEA THREADS INFORMATION
Thread .............. #0
SEA Default Queue #8
Queue full dropped packets: 0
Queue packets queued: 0
Queue average packets queued: 1
Queue packets count: 19
Queue max packets queued: 1
Thread .............. #1
SEA Default Queue #8
Queue full dropped packets: 0
Queue packets queued: 0
Queue average packets queued: 1
Queue packets count: 713
Queue max packets queued: 1
Thread .............. #3
SEA Default Queue #8
Queue full dropped packets: 0
Queue packets queued: 0
Queue average packets queued: 1
Queue packets count: 5567
Queue max packets queued: 1
Thread .............. #4
SEA Default Queue #8
Queue full dropped packets: 0
Queue packets queued: 0
Queue average packets queued: 1
Queue packets count: 1074
Queue max packets queued: 1
Thread .............. #5
SEA Default Queue #8
Queue full dropped packets: 0
Queue packets queued: 0
Queue average packets queued: 1
Queue packets count: 6
Queue max packets queued: 1
Thread .............. #6
SEA Default Queue #8
Queue full dropped packets: 0
Queue packets queued: 0
Queue average packets queued: 1
Queue packets count: 681
Queue max packets queued: 1
--------------------------------------------------------------
Real Adapter: ent9
ETHERNET STATISTICS (ent9) :
Device Type: EtherChannel
Hardware Address: 98:be:94:02:1a:e2
Transmit Statistics: Receive Statistics:
-------------------- -------------------
Packets: 0 Packets: 16121
Bytes: 0 Bytes: 1787781
Interrupts: 0 Interrupts: 16121
Transmit Errors: 0 Receive Errors: 0
Packets Dropped: 0 Packets Dropped: 0
Bad Packets: 0
Max Packets on S/W Transmit Queue: 0
S/W Transmit Queue Overflow: 0
Current S/W+H/W Transmit Queue Length: 0
Broadcast Packets: 0 Broadcast Packets: 2146
Multicast Packets: 0 Multicast Packets: 11682
No Carrier Sense: 0 CRC Errors: 0
DMA Underrun: 0 DMA Overrun: 0
Lost CTS Errors: 0 Alignment Errors: 0
Max Collision Errors: 0 No Resource Errors: 0
Late Collision Errors: 0 Receive Collision Errors: 0
Deferred: 0 Packet Too Short Errors: 0
SQE Test: 0 Packet Too Long Errors: 0
Timeout Errors: 0 Packets Discarded by Adapter: 0
Single Collision Count: 0 Receiver Start Count: 0
Multiple Collision Count: 0
Current HW Transmit Queue Length: 0
General Statistics:
-------------------
No mbuf Errors: 0
Adapter Reset Count: 0
Adapter Data Rate: 2000
Driver Flags: Up Broadcast Running
Simplex Promiscuous 64BitSupport
ChecksumOffload PrivateSegment LargeSend DataRateSet
=============================================================
=============================================================
Statistics for every adapter in the EtherChannel:
-------------------------------------------------
Number of adapters: 2
Active channel: primary channel
Operating mode: Network interface backup mode
-------------------------------------------------------------
ETHERNET STATISTICS (ent2) :
Device Type: Gigabit Ethernet PCIe Adapter (e4145716e4142004)
Hardware Address: 98:be:94:02:1a:e2
Transmit Statistics: Receive Statistics:
-------------------- -------------------
Packets: 0 Packets: 8060
Bytes: 0 Bytes: 898955
Interrupts: 0 Interrupts: 8060
Transmit Errors: 0 Receive Errors: 0
Packets Dropped: 0 Packets Dropped: 0
Bad Packets: 0
Max Packets on S/W Transmit Queue: 0
S/W Transmit Queue Overflow: 0
Current S/W+H/W Transmit Queue Length: 0
Broadcast Packets: 0 Broadcast Packets: 1073
Multicast Packets: 0 Multicast Packets: 5841
No Carrier Sense: 0 CRC Errors: 0
DMA Underrun: 0 DMA Overrun: 0
Lost CTS Errors: 0 Alignment Errors: 0
Max Collision Errors: 0 No Resource Errors: 0
Late Collision Errors: 0 Receive Collision Errors: 0
Deferred: 0 Packet Too Short Errors: 0
SQE Test: 0 Packet Too Long Errors: 0
Timeout Errors: 0 Packets Discarded by Adapter: 0
Single Collision Count: 0 Receiver Start Count: 0
Multiple Collision Count: 0
Current HW Transmit Queue Length: 0
General Statistics:
-------------------
No mbuf Errors: 0
Adapter Reset Count: 0
Adapter Data Rate: 2000
Driver Flags: Up Broadcast Running
Simplex Promiscuous 64BitSupport
ChecksumOffload PrivateSegment LargeSend
DataRateSet
Gigabit Ethernet PCIe Adapter (e4145716e4142004) Specific Statistics:
-----------------------------------------------------------------
Additional Driver Flags:
Entries to transmit timeout routine: 0
Link Status: Up
Media Speed Selected: 100 Mbps Full Duplex
Media Speed Running: 100 Mbps Full Duplex
Transmit and Receive Flow Control Status: Enabled
XON Flow Control Packets Transmitted: 0
XON Flow Control Packets Received: 0
XOFF Flow Control Packets Transmitted: 0
XOFF Flow Control Packets Received: 0
Jumbo Frames: Disabled
TCP Segmentation Offload: Enabled
TCP Segmentation Offload Packets Transmitted: 0
Assigned Interrupt Source Numbers:
Bus interrupt level 0 : 255520
Bus interrupt level 1 : 255521
Receive statistics for RXQ number: 1
Number of receive packets: 8060
Number of receive bytes: 898955
Number of receive interrupts: 8060
Number of receive bad packets: 0
Number of receive packet drops: 0
Number of RX mbufs allocated from system pool: 0
Number of RX mbufs allocated from system pool for Jumbo: 0
Number of system pool RX mbuf allocation failures: 0
Number of rx_hog events: 0
Receive TCP Segment Aggregation: Disabled
Transmit statistics for TXQ number: 1
Number of transmit packets: 0
Number of transmit bytes: 0
Number of Unicast Packets: 0
Number of Multicast packets: 0
Number of Broadcast packets: 0
Number of transmit packet drops: 0
Number of transmit queue overflows: 0
TCP segmentation offload packets transmitted: 0
Maximum entries used on this transmit queue: 0
-------------------------------------------------------------
Backup adapter - ent3:
======================
ETHERNET STATISTICS (ent3) :
Device Type: Gigabit Ethernet PCIe Adapter (e4145716e4142004)
Hardware Address: 98:be:94:02:1a:e2
Transmit Statistics: Receive Statistics:
-------------------- -------------------
Packets: 0 Packets: 8061
Bytes: 0 Bytes: 888826
Interrupts: 0 Interrupts: 8061
Transmit Errors: 0 Receive Errors: 0
Packets Dropped: 0 Packets Dropped: 0
Bad Packets: 0
Max Packets on S/W Transmit Queue: 0
S/W Transmit Queue Overflow: 0
Current S/W+H/W Transmit Queue Length: 0
Broadcast Packets: 0 Broadcast Packets: 1073
Multicast Packets: 0 Multicast Packets: 5841
No Carrier Sense: 0 CRC Errors: 0
DMA Underrun: 0 DMA Overrun: 0
Lost CTS Errors: 0 Alignment Errors: 0
Max Collision Errors: 0 No Resource Errors: 0
Late Collision Errors: 0 Receive Collision Errors: 0
Deferred: 0 Packet Too Short Errors: 0
SQE Test: 0 Packet Too Long Errors: 0
Timeout Errors: 0 Packets Discarded by Adapter: 0
Single Collision Count: 0 Receiver Start Count: 0
Multiple Collision Count: 0
Current HW Transmit Queue Length: 0
General Statistics:
-------------------
No mbuf Errors: 0
Adapter Reset Count: 0
Adapter Data Rate: 2000
Driver Flags: Up Broadcast Running
Simplex Promiscuous 64BitSupport
ChecksumOffload PrivateSegment LargeSend
DataRateSet
Gigabit Ethernet PCIe Adapter (e4145716e4142004) Specific Statistics:
-----------------------------------------------------------------
Additional Driver Flags:
Entries to transmit timeout routine: 0
Link Status: Up
Media Speed Selected: 100 Mbps Full Duplex
Media Speed Running: 100 Mbps Full Duplex
Transmit and Receive Flow Control Status: Enabled
XON Flow Control Packets Transmitted: 0
XON Flow Control Packets Received: 0
XOFF Flow Control Packets Transmitted: 0
XOFF Flow Control Packets Received: 0
Jumbo Frames: Disabled
TCP Segmentation Offload: Enabled
TCP Segmentation Offload Packets Transmitted: 0
Assigned Interrupt Source Numbers:
Bus interrupt level 0 : 255496
Bus interrupt level 1 : 255497
Receive statistics for RXQ number: 1
Number of receive packets: 8061
Number of receive bytes: 888826
Number of receive interrupts: 8061
Number of receive bad packets: 0
Number of receive packet drops: 0
Number of RX mbufs allocated from system pool: 0
Number of RX mbufs allocated from system pool for Jumbo: 0
Number of system pool RX mbuf allocation failures: 0
Number of rx_hog events: 0
Receive TCP Segment Aggregation: Disabled
Transmit statistics for TXQ number: 1
Number of transmit packets: 0
Number of transmit bytes: 0
Number of Unicast Packets: 0
Number of Multicast packets: 0
Number of Broadcast packets: 0
Number of transmit packet drops: 0
Number of transmit queue overflows: 0
TCP segmentation offload packets transmitted: 0
Maximum entries used on this transmit queue: 0
--------------------------------------------------------------
Virtual Adapter: ent5
ETHERNET STATISTICS (ent5) :
Device Type: Virtual I/O Ethernet Adapter (l-lan)
Hardware Address: 86:1f:e3:5f:21:04
Transmit Statistics: Receive Statistics:
-------------------- -------------------
Packets: 1054 Packets: 0
Bytes: 63240 Bytes: 0
Interrupts: 0 Interrupts: 0
Transmit Errors: 0 Receive Errors: 0
Packets Dropped: 0 Packets Dropped: 0
Bad Packets: 0
Max Packets on S/W Transmit Queue: 0
S/W Transmit Queue Overflow: 0
Current S/W+H/W Transmit Queue Length: 0
Broadcast Packets: 0 Broadcast Packets: 0
Multicast Packets: 0 Multicast Packets: 0
No Carrier Sense: 0 CRC Errors: 0
DMA Underrun: 0 DMA Overrun: 0
Lost CTS Errors: 0 Alignment Errors: 0
Max Collision Errors: 0 No Resource Errors: 0
Late Collision Errors: 0 Receive Collision Errors: 0
Deferred: 0 Packet Too Short Errors: 0
SQE Test: 0 Packet Too Long Errors: 0
Timeout Errors: 0 Packets Discarded by Adapter: 0
Single Collision Count: 0 Receiver Start Count: 0
Multiple Collision Count: 0
Current HW Transmit Queue Length: 0
General Statistics:
-------------------
No mbuf Errors: 0
Adapter Reset Count: 0
Adapter Data Rate: 20000
Driver Flags: Up Broadcast Running
Simplex Promiscuous AllMulticast
64BitSupport ChecksumOffload DataRateSet
Virtual I/O Ethernet Adapter (l-lan) Specific Statistics:
---------------------------------------------------------
RQ Length: 4545
Trunk Adapter: True
Priority: 1 Active: True
Filter MCast Mode: False
Filters: 255
Enabled: 0 Queued: 0 Overflow: 0
LAN State: Operational
Hypervisor Send Failures: 1054
Receiver Failures: 1054
Send Errors: 0
Hypervisor Receive Failures: 0
Invalid VLAN ID Packets: 0
ILLAN Attributes: 0000000000003103 [0000000000003103]
Port VLAN ID: 2
VLAN Tag IDs: None
Switch ID: ETHERNET0
Switch Mode: VEB
Management VLAN: Disabled
Hypervisor Information
Virtual Memory
Total (KB) 80
I/O Memory
VRM Minimum (KB) 100
VRM Desired (KB) 100
DMA Max Min (KB) 128
Transmit Information
Transmit Buffers
Buffer Size 65536
Buffers 32
History
No Buffers 0
Virtual Memory
Total (KB) 2048
I/O Memory
VRM Minimum (KB) 2176
VRM Desired (KB) 16384
DMA Max Min (KB) 16384
Receive Information
Receive Buffers
Buffer Type Tiny Small Medium Large Huge
Min Buffers 512 512 128 24 24
Max Buffers 2048 2048 256 64 64
Allocated 512 512 128 24 24
Registered 512 512 128 24 24
History
Max Allocated 512 512 128 24 24
Lowest Registered 512 512 128 24 24
Virtual Memory
Minimum (KB) 256 1024 2048 768 1536
Maximum (KB) 1024 4096 4096 2048 4096
I/O Memory
VRM Minimum (KB) 4096 4096 2560 864 1632
VRM Desired (KB) 16384 16384 5120 2304 4352
DMA Max Min (KB) 16384 16384 8192 4096 8192
I/O Memory Information
Total VRM Minimum (KB) 15524
Total VRM Desired (KB) 61028
Total DMA Max Min (KB) 69760
CLIENTA
# entstat -d ent2
-------------------------------------------------------------
ETHERNET STATISTICS (ent2) :
Device Type:
Hardware Address: 86:1f:e4:6d:3d:05
Elapsed Time: 0 days 2 hours 44 minutes 8 seconds
Transmit Statistics: Receive Statistics:
-------------------- -------------------
Packets: 0 Packets: 0
Bytes: 0 Bytes: 0
Interrupts: 0 Interrupts: 0
Transmit Errors: 71 Receive Errors: 0
Packets Dropped: 71 Packets Dropped: 0
Bad Packets: 0
Max Packets on S/W Transmit Queue: 0
S/W Transmit Queue Overflow: 0
Current S/W+H/W Transmit Queue Length: 0
Broadcast Packets: 0 Broadcast Packets: 0
Multicast Packets: 0 Multicast Packets: 0
No Carrier Sense: 0 CRC Errors: 0
DMA Underrun: 0 DMA Overrun: 0
Lost CTS Errors: 0 Alignment Errors: 0
Max Collision Errors: 0 No Resource Errors: 0
Late Collision Errors: 0 Receive Collision Errors: 0
Deferred: 0 Packet Too Short Errors: 0
SQE Test: 0 Packet Too Long Errors: 0
Timeout Errors: 0 Packets Discarded by Adapter: 0
Single Collision Count: 0 Receiver Start Count: 0
Multiple Collision Count: 0
Current HW Transmit Queue Length: 0
General Statistics:
-------------------
No mbuf Errors: 0
Adapter Reset Count: 0
Adapter Data Rate: 20000
Driver Flags: Up Broadcast Running
Simplex 64BitSupport ChecksumOffload
DataRateSet VIOENT
# entstat -d ent1
-------------------------------------------------------------
ETHERNET STATISTICS (ent1) :
Device Type: Virtual I/O Ethernet Adapter (l-lan)
Hardware Address: 86:1f:e4:6d:3d:05
Elapsed Time: 0 days 2 hours 44 minutes 23 seconds
Transmit Statistics: Receive Statistics:
-------------------- -------------------
Packets: 0 Packets: 0
Bytes: 0 Bytes: 0
Interrupts: 0 Interrupts: 0
Transmit Errors: 71 Receive Errors: 0
Packets Dropped: 71 Packets Dropped: 0
Bad Packets: 0
Max Packets on S/W Transmit Queue: 0
S/W Transmit Queue Overflow: 0
Current S/W+H/W Transmit Queue Length: 0
Broadcast Packets: 0 Broadcast Packets: 0
Multicast Packets: 0 Multicast Packets: 0
No Carrier Sense: 0 CRC Errors: 0
DMA Underrun: 0 DMA Overrun: 0
Lost CTS Errors: 0 Alignment Errors: 0
Max Collision Errors: 0 No Resource Errors: 0
Late Collision Errors: 0 Receive Collision Errors: 0
Deferred: 0 Packet Too Short Errors: 0
SQE Test: 0 Packet Too Long Errors: 0
Timeout Errors: 0 Packets Discarded by Adapter: 0
Single Collision Count: 0 Receiver Start Count: 0
Multiple Collision Count: 0
Current HW Transmit Queue Length: 0
General Statistics:
-------------------
No mbuf Errors: 0
Adapter Reset Count: 0
Adapter Data Rate: 20000
Driver Flags: Up Broadcast Running
Simplex 64BitSupport ChecksumOffload
DataRateSet VIOENT
Virtual I/O Ethernet Adapter (l-lan) Specific Statistics:
---------------------------------------------------------
RQ Length: 4545
Trunk Adapter: False
Filter MCast Mode: False
Filters: 255
Enabled: 1 Queued: 0 Overflow: 0
LAN State: Operational
Hypervisor Send Failures: 0
Receiver Failures: 0
Send Errors: 0
Hypervisor Receive Failures: 0
Invalid VLAN ID Packets: 71
ILLAN Attributes: 0000000000003002 [0000000000003002]
Port VLAN ID: 2
VLAN Tag IDs: None
Switch ID: ETHERNET0
Hypervisor Information
Virtual Memory
Total (KB) 80
I/O Memory
VRM Minimum (KB) 100
VRM Desired (KB) 100
DMA Max Min (KB) 128
Transmit Information
Transmit Buffers
Buffer Size 65536
Buffers 32
History
No Buffers 0
Virtual Memory
Total (KB) 2048
I/O Memory
VRM Minimum (KB) 2176
VRM Desired (KB) 16384
DMA Max Min (KB) 16384
Receive Information
Receive Buffers
Buffer Type Tiny Small Medium Large Huge
Min Buffers 512 512 128 24 24
Max Buffers 2048 2048 256 64 64
Allocated 512 512 128 24 24
Registered 512 512 128 24 24
History
Max Allocated 512 512 128 24 24
Lowest Registered 512 512 128 24 24
Virtual Memory
Minimum (KB) 256 1024 2048 768 1536
Maximum (KB) 1024 4096 4096 2048 4096
I/O Memory
VRM Minimum (KB) 4096 4096 2560 864 1632
VRM Desired (KB) 16384 16384 5120 2304 4352
DMA Max Min (KB) 16384 16384 8192 4096 8192
I/O Memory Information
Total VRM Minimum (KB) 15524
Total VRM Desired (KB) 61028
Total DMA Max Min (KB) 69760
CLIENTB
Ainda não configurado