Traffic from OpenVZ host to container gets redirected to gateway The 2019 Stack Overflow Developer Survey Results Are In Announcing the arrival of Valued Associate #679: Cesar Manara Planned maintenance scheduled April 17/18, 2019 at 00:00UTC (8:00pm US/Eastern) 2019 Community Moderator Election ResultsUsing ip addr instead of ifconfig reports “RTNETLINK answers: File exists” on DebianIs it possible for a OpenVZ container to interact with a MySQL database on the host?Setting up OpenVZ container private areaLinux server able to wget but not able to pingOpenvz summary of IO for each containersystemd-timesyncd bug in OpenVZ containerDirect connection Centos7 (loadbalance) to QNAP (trunk)Openvpn issues with routing and config pushingvirtuozzo openvz centos 7 container network not start after updateConfiguring Linux Mint as a Gateway

What was the last x86 CPU that did not have the x87 floating-point unit built in?

What information about me do stores get via my credit card?

Typeface like Times New Roman but with "tied" percent sign

"... to apply for a visa" or "... and applied for a visa"?

The following signatures were invalid: EXPKEYSIG 1397BC53640DB551

What are these Gizmos at Izaña Atmospheric Research Center in Spain?

How many people can fit inside Mordenkainen's Magnificent Mansion?

How did passengers keep warm on sail ships?

how can a perfect fourth interval be considered either consonant or dissonant?

Hiding Certain Lines on Table

Did the new image of black hole confirm the general theory of relativity?

How to split app screen on my Mac?

Why does the Event Horizon Telescope (EHT) not include telescopes from Africa, Asia or Australia?

does high air pressure throw off wheel balance?

rotate text in posterbox

How to delete random line from file using Unix command?

Sort a list of pairs representing an acyclic, partial automorphism

What's the point in a preamp?

Finding the path in a graph from A to B then back to A with a minimum of shared edges

Match Roman Numerals

Why can't devices on different VLANs, but on the same subnet, communicate?

Am I ethically obligated to go into work on an off day if the reason is sudden?

How can I define good in a religion that claims no moral authority?

Do working physicists consider Newtonian mechanics to be "falsified"?



Traffic from OpenVZ host to container gets redirected to gateway



The 2019 Stack Overflow Developer Survey Results Are In
Announcing the arrival of Valued Associate #679: Cesar Manara
Planned maintenance scheduled April 17/18, 2019 at 00:00UTC (8:00pm US/Eastern)
2019 Community Moderator Election ResultsUsing ip addr instead of ifconfig reports “RTNETLINK answers: File exists” on DebianIs it possible for a OpenVZ container to interact with a MySQL database on the host?Setting up OpenVZ container private areaLinux server able to wget but not able to pingOpenvz summary of IO for each containersystemd-timesyncd bug in OpenVZ containerDirect connection Centos7 (loadbalance) to QNAP (trunk)Openvpn issues with routing and config pushingvirtuozzo openvz centos 7 container network not start after updateConfiguring Linux Mint as a Gateway



.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty margin-bottom:0;








0















An OpenVZ host (RHEL 6) is running Debian-based containers. The problem is that network traffic, instead of being routed to a relevant container (10.10.104.1) via venet0 interface, gets routed to the host network's default gateway (143.215.76.129). At the same time, traffic to the 192.168.x.x network does not get redirected to the gateway. Relevant output below. 



# traceroute 10.10.104.1
traceroute to 10.10.104.1 (10.10.104.1), 30 hops max, 60 byte packets
 1 143.215.76.129 (143.215.76.129) 1.349 ms 1.314 ms 1.280 ms
 2 * * *
 3 * * *
 4 * * *
 5 * * *
 6 * * *
 7 *^C

# traceroute 192.168.104.32
traceroute to 192.168.104.32 (192.168.104.32), 30 hops max, 60 byte packets
 1 * * *
 2 * * *
 3 * * *
 4 * * *
 5 * * *
 6 *^C

# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.10.104.1 0.0.0.0 255.255.255.255 UH 0 0 0 venet0
143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth0
143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth1
143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth2
169.254.0.0 0.0.0.0 255.255.0.0 U 1002 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 1003 0 0 eth1
169.254.0.0 0.0.0.0 255.255.0.0 U 1004 0 0 eth2
0.0.0.0 143.215.76.129 0.0.0.0 UG 0 0 0 eth0





networking openvz







share|improve this question






























    0















    An OpenVZ host (RHEL 6) is running Debian-based containers. The problem is that network traffic, instead of being routed to a relevant container (10.10.104.1) via venet0 interface, gets routed to the host network's default gateway (143.215.76.129). At the same time, traffic to the 192.168.x.x network does not get redirected to the gateway. Relevant output below. 



    # traceroute 10.10.104.1
    traceroute to 10.10.104.1 (10.10.104.1), 30 hops max, 60 byte packets
     1 143.215.76.129 (143.215.76.129) 1.349 ms 1.314 ms 1.280 ms
     2 * * *
     3 * * *
     4 * * *
     5 * * *
     6 * * *
     7 *^C

    # traceroute 192.168.104.32
    traceroute to 192.168.104.32 (192.168.104.32), 30 hops max, 60 byte packets
     1 * * *
     2 * * *
     3 * * *
     4 * * *
     5 * * *
     6 *^C

    # route -n
    Kernel IP routing table
    Destination Gateway Genmask Flags Metric Ref Use Iface
    10.10.104.1 0.0.0.0 255.255.255.255 UH 0 0 0 venet0
    143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth0
    143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth1
    143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth2
    169.254.0.0 0.0.0.0 255.255.0.0 U 1002 0 0 eth0
    169.254.0.0 0.0.0.0 255.255.0.0 U 1003 0 0 eth1
    169.254.0.0 0.0.0.0 255.255.0.0 U 1004 0 0 eth2
    0.0.0.0 143.215.76.129 0.0.0.0 UG 0 0 0 eth0





    networking openvz







    share|improve this question


























      0












      0








      0








      An OpenVZ host (RHEL 6) is running Debian-based containers. The problem is that network traffic, instead of being routed to a relevant container (10.10.104.1) via venet0 interface, gets routed to the host network's default gateway (143.215.76.129). At the same time, traffic to the 192.168.x.x network does not get redirected to the gateway. Relevant output below. 



      # traceroute 10.10.104.1
      traceroute to 10.10.104.1 (10.10.104.1), 30 hops max, 60 byte packets
       1 143.215.76.129 (143.215.76.129) 1.349 ms 1.314 ms 1.280 ms
       2 * * *
       3 * * *
       4 * * *
       5 * * *
       6 * * *
       7 *^C

      # traceroute 192.168.104.32
      traceroute to 192.168.104.32 (192.168.104.32), 30 hops max, 60 byte packets
       1 * * *
       2 * * *
       3 * * *
       4 * * *
       5 * * *
       6 *^C

      # route -n
      Kernel IP routing table
      Destination Gateway Genmask Flags Metric Ref Use Iface
      10.10.104.1 0.0.0.0 255.255.255.255 UH 0 0 0 venet0
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth0
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth1
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth2
      169.254.0.0 0.0.0.0 255.255.0.0 U 1002 0 0 eth0
      169.254.0.0 0.0.0.0 255.255.0.0 U 1003 0 0 eth1
      169.254.0.0 0.0.0.0 255.255.0.0 U 1004 0 0 eth2
      0.0.0.0 143.215.76.129 0.0.0.0 UG 0 0 0 eth0





      networking openvz







      share|improve this question
















      An OpenVZ host (RHEL 6) is running Debian-based containers. The problem is that network traffic, instead of being routed to a relevant container (10.10.104.1) via venet0 interface, gets routed to the host network's default gateway (143.215.76.129). At the same time, traffic to the 192.168.x.x network does not get redirected to the gateway. Relevant output below. 



      # traceroute 10.10.104.1
      traceroute to 10.10.104.1 (10.10.104.1), 30 hops max, 60 byte packets
       1 143.215.76.129 (143.215.76.129) 1.349 ms 1.314 ms 1.280 ms
       2 * * *
       3 * * *
       4 * * *
       5 * * *
       6 * * *
       7 *^C

      # traceroute 192.168.104.32
      traceroute to 192.168.104.32 (192.168.104.32), 30 hops max, 60 byte packets
       1 * * *
       2 * * *
       3 * * *
       4 * * *
       5 * * *
       6 *^C

      # route -n
      Kernel IP routing table
      Destination Gateway Genmask Flags Metric Ref Use Iface
      10.10.104.1 0.0.0.0 255.255.255.255 UH 0 0 0 venet0
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth0
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth1
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth2
      169.254.0.0 0.0.0.0 255.255.0.0 U 1002 0 0 eth0
      169.254.0.0 0.0.0.0 255.255.0.0 U 1003 0 0 eth1
      169.254.0.0 0.0.0.0 255.255.0.0 U 1004 0 0 eth2
      0.0.0.0 143.215.76.129 0.0.0.0 UG 0 0 0 eth0





      networking openvz




      networking openvz






      share|improve this question















      share|improve this question













      share|improve this question




      share|improve this question








      edited yesterday









      Rui F Ribeiro

      42.1k1483142




      42.1k1483142










      asked yesterday









      Aleksandr BlekhAleksandr Blekh

      1137




      1137




















          1 Answer
          1






          active

          oldest

          votes


















          2














          The venet0 interface will always be routed through the host network, that is the design of the venet network on OpenVZ.



          Since it seems you want to route traffic on the host to one of your containers, then you will need to make a proper virtual ethernet device which OpenVZ refers to as veth. This gives your container's network interface a MAC address and other requirements for proper packet routing.






          share|improve this answer























          • Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

            – Aleksandr Blekh
            yesterday












          Your Answer








          StackExchange.ready(function()
          var channelOptions =
          tags: "".split(" "),
          id: "106"
          ;
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function()
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled)
          StackExchange.using("snippets", function()
          createEditor();
          );

          else
          createEditor();

          );

          function createEditor()
          StackExchange.prepareEditor(
          heartbeatType: 'answer',
          autoActivateHeartbeat: false,
          convertImagesToLinks: false,
          noModals: true,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: null,
          bindNavPrevention: true,
          postfix: "",
          imageUploader:
          brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
          contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
          allowUrls: true
          ,
          onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          );



          );













          draft saved

          draft discarded


















          StackExchange.ready(
          function ()
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f512190%2ftraffic-from-openvz-host-to-container-gets-redirected-to-gateway%23new-answer', 'question_page');

          );

          Post as a guest















          Required, but never shown

























          1 Answer
          1






          active

          oldest

          votes








          1 Answer
          1






          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes









          2














          The venet0 interface will always be routed through the host network, that is the design of the venet network on OpenVZ.



          Since it seems you want to route traffic on the host to one of your containers, then you will need to make a proper virtual ethernet device which OpenVZ refers to as veth. This gives your container's network interface a MAC address and other requirements for proper packet routing.






          share|improve this answer























          • Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

            – Aleksandr Blekh
            yesterday
















          2














          The venet0 interface will always be routed through the host network, that is the design of the venet network on OpenVZ.



          Since it seems you want to route traffic on the host to one of your containers, then you will need to make a proper virtual ethernet device which OpenVZ refers to as veth. This gives your container's network interface a MAC address and other requirements for proper packet routing.






          share|improve this answer























          • Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

            – Aleksandr Blekh
            yesterday














          2












          2








          2







          The venet0 interface will always be routed through the host network, that is the design of the venet network on OpenVZ.



          Since it seems you want to route traffic on the host to one of your containers, then you will need to make a proper virtual ethernet device which OpenVZ refers to as veth. This gives your container's network interface a MAC address and other requirements for proper packet routing.






          share|improve this answer













          The venet0 interface will always be routed through the host network, that is the design of the venet network on OpenVZ.



          Since it seems you want to route traffic on the host to one of your containers, then you will need to make a proper virtual ethernet device which OpenVZ refers to as veth. This gives your container's network interface a MAC address and other requirements for proper packet routing.







          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered yesterday









          GracefulRestartGracefulRestart

          1,32937




          1,32937












          • Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

            – Aleksandr Blekh
            yesterday


















          • Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

            – Aleksandr Blekh
            yesterday

















          Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

          – Aleksandr Blekh
          yesterday






          Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

          – Aleksandr Blekh
          yesterday


















          draft saved

          draft discarded
















































          Thanks for contributing an answer to Unix & Linux Stack Exchange!


          • Please be sure to answer the question. Provide details and share your research!

          But avoid


          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.

          To learn more, see our tips on writing great answers.




          draft saved


          draft discarded














          StackExchange.ready(
          function ()
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f512190%2ftraffic-from-openvz-host-to-container-gets-redirected-to-gateway%23new-answer', 'question_page');

          );

          Post as a guest















          Required, but never shown





















































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown

































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown







          -networking, openvz
          -

          Popular posts from this blog

          Frič See also Navigation menuinternal link

          Image
          SurnamesCzech-language surnames ‹ The template Infobox surname is being considered for merging. › Frič Origin Language(s) Czechized German (eastern Middle German dialects and Alemannic German) - Thuringian, Upper Saxon, Low Lusatian, Silesian Meaning derived from German: Friedrich Other names Variant(s) Fritsch, Fritzsch, Frycz, Fricz, Fryczyński, Frietsch, Fritsche, Fritzsche; Fritschi (Alemannic), Fritz, Fritze, Fritzel, Fritzl, Fritzke, Fritzen Frič is a Czechized German surname. Notable people with the surname include: Alberto Vojtěch Frič, Czech botanist Antonín Jan Frič (Fritsch) , Czech paleontologist Jaroslav Erik Frič, Czech poet Martin Frič, Czech film director, screenwriter and actor See also Fričovce (Hungarian: Frics ) .mw-parser-output table.dmboxclear:both;margin:0.9em 1em;border-top:1px solid #ccc;border-bottom:1px solid #ccc;background-color:transparent Surname list This page lists people with...
          Read more

          Identify plant with long narrow paired leaves and reddish stems Planned maintenance scheduled April 17/18, 2019 at 00:00UTC (8:00pm US/Eastern) Announcing the arrival of Valued Associate #679: Cesar Manara Unicorn Meta Zoo #1: Why another podcast?What is this plant with long sharp leaves? Is it a weed?What is this 3ft high, stalky plant, with mid sized narrow leaves?What is this young shrub with opposite ovate, crenate leaves and reddish stems?What is this plant with large broad serrated leaves?Identify this upright branching weed with long leaves and reddish stemsPlease help me identify this bulbous plant with long, broad leaves and white flowersWhat is this small annual with narrow gray/green leaves and rust colored daisy-type flowers?What is this chilli plant?Does anyone know what type of chilli plant this is?Help identify this plant

          Image
          Apollo command module space walk? prime numbers and expressing non-prime numbers Can a non-EU citizen traveling with me come with me through the EU passport line? Extract all GPU name, model and GPU ram How to deal with a team lead who never gives me credit? Why was the term "discrete" used in discrete logarithm? Why do we bend a book to keep it straight? When do you get frequent flier miles - when you buy, or when you fly? How come Sam didn't become Lord of Horn Hill? At the end of Thor: Ragnarok why don't the Asgardians turn and head for the Bifrost as per their original plan? Is it true that "carbohydrates are of no use for the basal metabolic need"? Using et al. for a last / senior author rather than for a first author How to tell that you are a giant? How to react to hostile behavior from a senior developer? String `!23` is replaced with `docker` in command line How to find out what spells would be useless to a blind NPC sp...
          Read more

          fontconfig warning: “/etc/fonts/fonts.conf”, line 100: unknown “element blank” The 2019 Stack Overflow Developer Survey Results Are In“tar: unrecognized option --warning” during 'apt-get install'How to fix Fontconfig errorHow do I figure out which font file is chosen for a system generic font alias?Why are some apt-get-installed fonts being ignored by fc-list, xfontsel, etc?Reload settings in /etc/fonts/conf.dTaking 30 seconds longer to boot after upgrade from jessie to stretchHow to match multiple font names with a single <match> element?Adding a custom font to fontconfigRemoving fonts from fontconfig <match> resultsBroken fonts after upgrading Firefox ESR to latest Firefox

          Image
          How to type this arrow in math mode? Multiply Two Integer Polynomials What do hard-Brexiteers want with respect to the Irish border? Why isn't the circumferential light around the M87 black hole's event horizon symmetric? For what reasons would an animal species NOT cross a *horizontal* land bridge? Can one be advised by a professor who is very far away? Identify boardgame from Big movie slides for 30min~1hr skype tenure track application interview Why do we hear so much about the Trump administration deciding to impose and then remove tariffs? If I score a critical hit on an 18 or higher, what are my chances of getting a critical hit if I roll 3d20? Can we generate random numbers using irrational numbers like π and e? Worn-tile Scrabble Output the Arecibo Message What is the meaning of Triage in Cybersec world? How are circuits which use complex ICs normally simulated? Shouldn't "much" here be used instead of "more"? Dele...
          Read more