Internet/Cloud access from inside of Eve lab running on ESXi

Before posting something, READ the changelog, WATCH the videos, howto and provide following:
Your install is: Bare metal, ESXi, what CPU model, RAM, HD, what EVE version you have, output of the uname -a and any other info that might help us faster.

Moderator: mike

darko
Posts: 92
Joined: Tue Oct 24, 2017 2:42 pm

Re: Internet/Cloud access from inside of Eve lab running on ESXi

Post by darko » Mon Mar 18, 2019 9:41 am

EVE ESXI 6.7.docx
You do not have the required permissions to view the files attached to this post.

darko
Posts: 92
Joined: Tue Oct 24, 2017 2:42 pm

Re: Internet/Cloud access from inside of Eve lab running on ESXi

Post by darko » Mon Mar 18, 2019 11:36 am

Anyone?

darko
Posts: 92
Joined: Tue Oct 24, 2017 2:42 pm

Re: Internet/Cloud access from inside of Eve lab running on ESXi

Post by darko » Mon Mar 18, 2019 11:54 am

ROUTER INSIDE EVE:
Router#show int eth0/0
Ethernet0/0 is up, line protocol is up
Hardware is AmdP2, address is aabb.cc00.2000 (bia aabb.cc00.2000)
Internet address is 192.168.190.6/24

interface Ethernet0/0
ip address 192.168.190.6 255.255.255.0
end


Router(config)#ip route 0.0.0.0 0.0.0.0 192.168.190.1
Router#show arp
Protocol Address Age (min) Hardware Addr Type Interface
Internet 192.168.190.2 5 0050.56a6.a8cc ARPA Ethernet0/0
Internet 192.168.190.6 - aabb.cc00.2000 ARPA Ethernet0/0

Router#ping 192.168.190.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.190.1, timeout is 2 seconds:

*Mar 18 11:51:15.335: ARP DB: ARP entry of key 192.168.190.1 not found
*Mar 18 11:51:15.335: ARP DB: ARP entry of key 192.168.190.1 not found
*Mar 18 11:51:15.335: ARP DB: ARP entry of key 192.168.190.1 not found
*Mar 18 11:51:15.335: ARP DB: ARP entry of key 192.168.190.1 not found
*Mar 18 11:51:15.335: ARP DB: ARP entry of key 192.168.190.1 inserted
*Mar 18 11:51:15.335: IP ARP: creating incomplete entry for IP address: 192.168.190.1 interface Ethernet0/0
*Mar 18 11:51:15.335: ARP DB: ARP entry of key 192.168.190.6 found
*Mar 18 11:51:15.335: IP ARP: sent req src 192.168.190.6 aabb.cc00.2000,
dst 192.168.190.1 0000.0000.0000 Ethernet0/0
*Mar 18 11:51:15.335: IP ARP req filtered src 192.168.190.6 aabb.cc00.2000, dst 192.168.190.1 0000.0000.0000 it's our address.
*Mar 18 11:51:17.337: ARP DB: ARP entry of key 192.168.190.1 found
*Mar 18 11:51:17.337: ARP DB: ARP entry of key 192.168.190.1 found
*Mar 18 11:51:17.337: ARP DB: ARP entry of key 192.168.190.6 found
*Mar 18 11:51:17.337: IP ARP: sent req src 192.168.190.6 aabb.cc00.2000,
dst 192.168.190.1 0000.0000.0000 Ethernet0/0
*Mar 18 11:51:17.337: IP ARP req filtered src 192.168.190.6 aabb.cc00.2000, dst 192.168.190.1 0000.0000.0000 it's our address.
*Mar 18 11:51:19.337: ARP DB: ARP entry of key 192.168.190.1 found
*Mar 18 11:51:19.337: ARP DB: ARP entry of key 192.168.190.1 found
*Mar 18 11:51:19.337: ARP DB: ARP entry of key 192.168.190.6 found
*Mar 18 11:51:19.337: IP ARP: sent req src 192.168.190.6 aabb.cc00.2000,
dst 192.168.190.1 0000.0000.0000 Ethernet0/0
*Mar 18 11:51:19.337: IP ARP req filtered src 192.168.190.6 aabb.cc00.2000, dst 192.168.190.1 0000.0000.0000 it's our address.
*Mar 18 11:51:21.337: ARP DB: ARP entry of key 192.168.190.1 found
*Mar 18 11:51:21.337: ARP DB: ARP entry of key 192.168.190.1 found
*Mar 18 11:51:21.337: ARP DB: ARP entry of key 192.168.190.6 found
*Mar 18 11:51:21.337: IP ARP: sent req src 192.168.190.6 aabb.cc00.2000,
dst 192.168.190.1 0000.0000.0000 Ethernet0/0
*Mar 18 11:51:21.337: IP ARP req filtered src 192.168.190.6 aabb.cc00.2000, dst 192.168.190.1 0000.0000.0000 it's our address.
*Mar 18 11:51:23.341: ARP DB: ARP entry of key 192.168.190.1 found
*Mar 18 11:51:23.341: ARP DB: ARP entry of key 192.168.190.1 found
*Mar 18 11:51:23.341: ARP DB: ARP entry of key 192.168.190.6 found
*Mar 18 11:51:23.341: IP ARP: sent req src 192.168.190.6 aabb.cc00.2000,
dst 192.168.190.1 0000.0000.0000 Ethernet0/0
*Mar 18 11:51:23.341: IP ARP req filtered src 192.168.190.6 aabb.cc00.2000, dst 192.168.190.1 0000.0000.0000 it's our address.
Success rate is 0 percent (0/5)
Router#u all
All possible debugging has been turned off


###
EVE
root@eve-ng:~# arp -a
? (192.168.190.6) at aa:bb:cc:00:20:00 [ether] on pnet0
? (192.168.190.1) at 00:01:e8:8b:eb:f0 [ether] on pnet0
root@eve-ng:~# ping 192.168.190.1
PING 192.168.190.1 (192.168.190.1) 56(84) bytes of data.
64 bytes from 192.168.190.1: icmp_seq=1 ttl=255 time=0.335 ms
^C
--- 192.168.190.1 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 0.335/0.335/0.335/0.000 ms
root@eve-ng:~# ping 192.168.190.6
PING 192.168.190.6 (192.168.190.6) 56(84) bytes of data.
64 bytes from 192.168.190.6: icmp_seq=1 ttl=255 time=0.293 ms
^C
--- 192.168.190.6 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 0.293/0.293/0.293/0.000 ms
root@eve-ng:~#
###
L3 physical switch

LABDELL01#show arp interface vlan 190

Protocol Address Age(min) Hardware Address Interface VLAN CPU
---------------------------------------------------------------------------------------------
Internet 192.168.190.1 - 00:01:e8:8b:eb:f0 - Vl 190 CP
Internet 192.168.190.2 9 00:50:56:a6:a8:cc Po 1 Vl 190 CP
Internet 192.168.190.3 18 50:00:00:01:00:00 Po 1 Vl 190 CP
Internet 192.168.190.4 139 50:00:00:02:00:00 Po 1 Vl 190 CP
Internet 192.168.190.5 37 50:00:00:03:00:00 Po 1 Vl 190 CP
Internet 192.168.190.6 0 aa:bb:cc:00:20:00 Po 1 Vl 190 CP
Internet 192.168.190.10 18 50:00:00:03:00:00 Po 1 Vl 190 CP
LABDELL01#show mac-address-table vlan 190

Codes: *N - VLT Peer Synced MAC
*I - Internal MAC Address used for Inter Process Communication
VlanId Mac Address Type Interface State
190 00:50:56:a6:a8:cc Dynamic Po 1 Active
190 00:50:56:a6:c7:b4 Dynamic Po 1 Active
190 aa:bb:cc:00:20:00 Dynamic Po 1 Active

LABDELL01#show run int vlan 190
!
interface Vlan 190
ip address 192.168.190.1/24
tagged TenGigabitEthernet 0/37
tagged Port-channel 1
no shutdown

Sending 5, 100-byte ICMP Echos to 192.168.190.2, timeout is 2 seconds:
!!!!!
Success rate is 100.0 percent (5/5), round-trip min/avg/max = 0/0/0 (ms)
LABDELL01#ping 192.168.190.1

Type Ctrl-C to abort.

Sending 5, 100-byte ICMP Echos to 192.168.190.1, timeout is 2 seconds:
!!!!!
Success rate is 100.0 percent (5/5), round-trip min/avg/max = 0/4/20 (ms)
LABDELL01#ping 192.168.190.6

Type Ctrl-C to abort.

Sending 5, 100-byte ICMP Echos to 192.168.190.6, timeout is 2 seconds:
.....

darko
Posts: 92
Joined: Tue Oct 24, 2017 2:42 pm

Re: Internet/Cloud access from inside of Eve lab running on ESXi

Post by darko » Mon Mar 18, 2019 12:12 pm


darko
Posts: 92
Joined: Tue Oct 24, 2017 2:42 pm

Re: Internet/Cloud access from inside of Eve lab running on ESXi

Post by darko » Mon Mar 18, 2019 12:40 pm

root@eve-ng:~# tcpdump -v arp
tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size 262144 bytes
14:39:21.004910 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.190.1 tell 192.168.190.6, length 46
14:39:21.004949 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.190.1 tell 192.168.190.6, length 46
14:39:21.005181 ARP, Ethernet (len 6), IPv4 (len 4), Reply 192.168.190.1 is-at 00:01:e8:8b:eb:f0 (oui Unknown), length 46
14:39:23.005465 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.190.1 tell 192.168.190.6, length 46
14:39:23.005516 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.190.1 tell 192.168.190.6, length 46
14:39:23.006037 ARP, Ethernet (len 6), IPv4 (len 4), Reply 192.168.190.1 is-at 00:01:e8:8b:eb:f0 (oui Unknown), length 46
14:39:25.005531 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.190.1 tell 192.168.190.6, length 46
14:39:25.005550 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.190.1 tell 192.168.190.6, length 46
14:39:25.016115 ARP, Ethernet (len 6), IPv4 (len 4), Reply 192.168.190.1 is-at 00:01:e8:8b:eb:f0 (oui Unknown), length 46
14:39:27.005571 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.190.1 tell 192.168.190.6, length 46
14:39:27.005590 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.190.1 tell 192.168.190.6, length 46
14:39:27.005838 ARP, Ethernet (len 6), IPv4 (len 4), Reply 192.168.190.1 is-at 00:01:e8:8b:eb:f0 (oui Unknown), length 46


Router#show arp
Protocol Address Age (min) Hardware Addr Type Interface
Internet 192.168.190.1 0 Incomplete ARPA
Internet 192.168.190.6 - aabb.cc00.2000 ARPA Ethernet0/0

darko
Posts: 92
Joined: Tue Oct 24, 2017 2:42 pm

Re: Internet/Cloud access from inside of Eve lab running on ESXi

Post by darko » Mon Mar 18, 2019 12:44 pm

Teaming has been disabled but still not working. Please advise.

darko
Posts: 92
Joined: Tue Oct 24, 2017 2:42 pm

Re: Internet/Cloud access from inside of Eve lab running on ESXi

Post by darko » Thu Mar 21, 2019 10:04 am

?

darko
Posts: 92
Joined: Tue Oct 24, 2017 2:42 pm

Re: Internet/Cloud access from inside of Eve lab running on ESXi

Post by darko » Thu Mar 21, 2019 10:10 am

It's a new EVE instance, deployed using the cookbook, with:

standard switch
one nic
promiscous mode

Still not working. Can anyone assist?

darko
Posts: 92
Joined: Tue Oct 24, 2017 2:42 pm

Re: Internet/Cloud access from inside of Eve lab running on ESXi

Post by darko » Thu Mar 21, 2019 10:13 am

eth1, unlike eth0, is not Tx packets:

root@eve-ng:~# ifconfig eth1
eth1 Link encap:Ethernet HWaddr 00:50:56:a6:3d:ac
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1545 errors:0 dropped:0 overruns:0 frame:0
TX packets:13 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:176962 (176.9 KB) TX bytes:1038 (1.0 KB)



root@eve-ng:~# ifconfig eth1
eth1 Link encap:Ethernet HWaddr 00:50:56:a6:3d:ac
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1643 errors:0 dropped:0 overruns:0 frame:0
TX packets:13 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:188596 (188.5 KB) TX bytes:1038 (1.0 KB)

darko
Posts: 92
Joined: Tue Oct 24, 2017 2:42 pm

Re: Internet/Cloud access from inside of Eve lab running on ESXi

Post by darko » Thu Mar 21, 2019 10:47 am

In short, Cloud1 is not forwarding ARP packets.

Is there a fix for this?

Post Reply