Traffic from OpenVZ host to container gets redirected to gateway The 2019 Stack Overflow Developer Survey Results Are In Announcing the arrival of Valued Associate #679: Cesar Manara Planned maintenance scheduled April 17/18, 2019 at 00:00UTC (8:00pm US/Eastern) 2019 Community Moderator Election ResultsUsing ip addr instead of ifconfig reports “RTNETLINK answers: File exists” on DebianIs it possible for a OpenVZ container to interact with a MySQL database on the host?Setting up OpenVZ container private areaLinux server able to wget but not able to pingOpenvz summary of IO for each containersystemd-timesyncd bug in OpenVZ containerDirect connection Centos7 (loadbalance) to QNAP (trunk)Openvpn issues with routing and config pushingvirtuozzo openvz centos 7 container network not start after updateConfiguring Linux Mint as a Gateway

What was the last x86 CPU that did not have the x87 floating-point unit built in?

What information about me do stores get via my credit card?

Typeface like Times New Roman but with "tied" percent sign

"... to apply for a visa" or "... and applied for a visa"?

The following signatures were invalid: EXPKEYSIG 1397BC53640DB551

What are these Gizmos at Izaña Atmospheric Research Center in Spain?

How many people can fit inside Mordenkainen's Magnificent Mansion?

How did passengers keep warm on sail ships?

how can a perfect fourth interval be considered either consonant or dissonant?

Hiding Certain Lines on Table

Did the new image of black hole confirm the general theory of relativity?

How to split app screen on my Mac?

Why does the Event Horizon Telescope (EHT) not include telescopes from Africa, Asia or Australia?

does high air pressure throw off wheel balance?

rotate text in posterbox

How to delete random line from file using Unix command?

Sort a list of pairs representing an acyclic, partial automorphism

What's the point in a preamp?

Finding the path in a graph from A to B then back to A with a minimum of shared edges

Match Roman Numerals

Why can't devices on different VLANs, but on the same subnet, communicate?

Am I ethically obligated to go into work on an off day if the reason is sudden?

How can I define good in a religion that claims no moral authority?

Do working physicists consider Newtonian mechanics to be "falsified"?



Traffic from OpenVZ host to container gets redirected to gateway



The 2019 Stack Overflow Developer Survey Results Are In
Announcing the arrival of Valued Associate #679: Cesar Manara
Planned maintenance scheduled April 17/18, 2019 at 00:00UTC (8:00pm US/Eastern)
2019 Community Moderator Election ResultsUsing ip addr instead of ifconfig reports “RTNETLINK answers: File exists” on DebianIs it possible for a OpenVZ container to interact with a MySQL database on the host?Setting up OpenVZ container private areaLinux server able to wget but not able to pingOpenvz summary of IO for each containersystemd-timesyncd bug in OpenVZ containerDirect connection Centos7 (loadbalance) to QNAP (trunk)Openvpn issues with routing and config pushingvirtuozzo openvz centos 7 container network not start after updateConfiguring Linux Mint as a Gateway



.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty margin-bottom:0;








0















An OpenVZ host (RHEL 6) is running Debian-based containers. The problem is that network traffic, instead of being routed to a relevant container (10.10.104.1) via venet0 interface, gets routed to the host network's default gateway (143.215.76.129). At the same time, traffic to the 192.168.x.x network does not get redirected to the gateway. Relevant output below. 



# traceroute 10.10.104.1
traceroute to 10.10.104.1 (10.10.104.1), 30 hops max, 60 byte packets
 1 143.215.76.129 (143.215.76.129) 1.349 ms 1.314 ms 1.280 ms
 2 * * *
 3 * * *
 4 * * *
 5 * * *
 6 * * *
 7 *^C

# traceroute 192.168.104.32
traceroute to 192.168.104.32 (192.168.104.32), 30 hops max, 60 byte packets
 1 * * *
 2 * * *
 3 * * *
 4 * * *
 5 * * *
 6 *^C

# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.10.104.1 0.0.0.0 255.255.255.255 UH 0 0 0 venet0
143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth0
143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth1
143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth2
169.254.0.0 0.0.0.0 255.255.0.0 U 1002 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 1003 0 0 eth1
169.254.0.0 0.0.0.0 255.255.0.0 U 1004 0 0 eth2
0.0.0.0 143.215.76.129 0.0.0.0 UG 0 0 0 eth0





networking openvz







share|improve this question






























    0















    An OpenVZ host (RHEL 6) is running Debian-based containers. The problem is that network traffic, instead of being routed to a relevant container (10.10.104.1) via venet0 interface, gets routed to the host network's default gateway (143.215.76.129). At the same time, traffic to the 192.168.x.x network does not get redirected to the gateway. Relevant output below. 



    # traceroute 10.10.104.1
    traceroute to 10.10.104.1 (10.10.104.1), 30 hops max, 60 byte packets
     1 143.215.76.129 (143.215.76.129) 1.349 ms 1.314 ms 1.280 ms
     2 * * *
     3 * * *
     4 * * *
     5 * * *
     6 * * *
     7 *^C

    # traceroute 192.168.104.32
    traceroute to 192.168.104.32 (192.168.104.32), 30 hops max, 60 byte packets
     1 * * *
     2 * * *
     3 * * *
     4 * * *
     5 * * *
     6 *^C

    # route -n
    Kernel IP routing table
    Destination Gateway Genmask Flags Metric Ref Use Iface
    10.10.104.1 0.0.0.0 255.255.255.255 UH 0 0 0 venet0
    143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth0
    143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth1
    143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth2
    169.254.0.0 0.0.0.0 255.255.0.0 U 1002 0 0 eth0
    169.254.0.0 0.0.0.0 255.255.0.0 U 1003 0 0 eth1
    169.254.0.0 0.0.0.0 255.255.0.0 U 1004 0 0 eth2
    0.0.0.0 143.215.76.129 0.0.0.0 UG 0 0 0 eth0





    networking openvz







    share|improve this question


























      0












      0








      0








      An OpenVZ host (RHEL 6) is running Debian-based containers. The problem is that network traffic, instead of being routed to a relevant container (10.10.104.1) via venet0 interface, gets routed to the host network's default gateway (143.215.76.129). At the same time, traffic to the 192.168.x.x network does not get redirected to the gateway. Relevant output below. 



      # traceroute 10.10.104.1
      traceroute to 10.10.104.1 (10.10.104.1), 30 hops max, 60 byte packets
       1 143.215.76.129 (143.215.76.129) 1.349 ms 1.314 ms 1.280 ms
       2 * * *
       3 * * *
       4 * * *
       5 * * *
       6 * * *
       7 *^C

      # traceroute 192.168.104.32
      traceroute to 192.168.104.32 (192.168.104.32), 30 hops max, 60 byte packets
       1 * * *
       2 * * *
       3 * * *
       4 * * *
       5 * * *
       6 *^C

      # route -n
      Kernel IP routing table
      Destination Gateway Genmask Flags Metric Ref Use Iface
      10.10.104.1 0.0.0.0 255.255.255.255 UH 0 0 0 venet0
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth0
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth1
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth2
      169.254.0.0 0.0.0.0 255.255.0.0 U 1002 0 0 eth0
      169.254.0.0 0.0.0.0 255.255.0.0 U 1003 0 0 eth1
      169.254.0.0 0.0.0.0 255.255.0.0 U 1004 0 0 eth2
      0.0.0.0 143.215.76.129 0.0.0.0 UG 0 0 0 eth0





      networking openvz







      share|improve this question
















      An OpenVZ host (RHEL 6) is running Debian-based containers. The problem is that network traffic, instead of being routed to a relevant container (10.10.104.1) via venet0 interface, gets routed to the host network's default gateway (143.215.76.129). At the same time, traffic to the 192.168.x.x network does not get redirected to the gateway. Relevant output below. 



      # traceroute 10.10.104.1
      traceroute to 10.10.104.1 (10.10.104.1), 30 hops max, 60 byte packets
       1 143.215.76.129 (143.215.76.129) 1.349 ms 1.314 ms 1.280 ms
       2 * * *
       3 * * *
       4 * * *
       5 * * *
       6 * * *
       7 *^C

      # traceroute 192.168.104.32
      traceroute to 192.168.104.32 (192.168.104.32), 30 hops max, 60 byte packets
       1 * * *
       2 * * *
       3 * * *
       4 * * *
       5 * * *
       6 *^C

      # route -n
      Kernel IP routing table
      Destination Gateway Genmask Flags Metric Ref Use Iface
      10.10.104.1 0.0.0.0 255.255.255.255 UH 0 0 0 venet0
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth0
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth1
      143.215.76.128 0.0.0.0 255.255.255.128 U 0 0 0 eth2
      169.254.0.0 0.0.0.0 255.255.0.0 U 1002 0 0 eth0
      169.254.0.0 0.0.0.0 255.255.0.0 U 1003 0 0 eth1
      169.254.0.0 0.0.0.0 255.255.0.0 U 1004 0 0 eth2
      0.0.0.0 143.215.76.129 0.0.0.0 UG 0 0 0 eth0





      networking openvz




      networking openvz






      share|improve this question















      share|improve this question













      share|improve this question




      share|improve this question








      edited yesterday









      Rui F Ribeiro

      42.1k1483142




      42.1k1483142










      asked yesterday









      Aleksandr BlekhAleksandr Blekh

      1137




      1137




















          1 Answer
          1






          active

          oldest

          votes


















          2














          The venet0 interface will always be routed through the host network, that is the design of the venet network on OpenVZ.



          Since it seems you want to route traffic on the host to one of your containers, then you will need to make a proper virtual ethernet device which OpenVZ refers to as veth. This gives your container's network interface a MAC address and other requirements for proper packet routing.






          share|improve this answer























          • Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

            – Aleksandr Blekh
            yesterday












          Your Answer








          StackExchange.ready(function()
          var channelOptions =
          tags: "".split(" "),
          id: "106"
          ;
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function()
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled)
          StackExchange.using("snippets", function()
          createEditor();
          );

          else
          createEditor();

          );

          function createEditor()
          StackExchange.prepareEditor(
          heartbeatType: 'answer',
          autoActivateHeartbeat: false,
          convertImagesToLinks: false,
          noModals: true,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: null,
          bindNavPrevention: true,
          postfix: "",
          imageUploader:
          brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
          contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
          allowUrls: true
          ,
          onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          );



          );













          draft saved

          draft discarded


















          StackExchange.ready(
          function ()
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f512190%2ftraffic-from-openvz-host-to-container-gets-redirected-to-gateway%23new-answer', 'question_page');

          );

          Post as a guest















          Required, but never shown

























          1 Answer
          1






          active

          oldest

          votes








          1 Answer
          1






          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes









          2














          The venet0 interface will always be routed through the host network, that is the design of the venet network on OpenVZ.



          Since it seems you want to route traffic on the host to one of your containers, then you will need to make a proper virtual ethernet device which OpenVZ refers to as veth. This gives your container's network interface a MAC address and other requirements for proper packet routing.






          share|improve this answer























          • Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

            – Aleksandr Blekh
            yesterday
















          2














          The venet0 interface will always be routed through the host network, that is the design of the venet network on OpenVZ.



          Since it seems you want to route traffic on the host to one of your containers, then you will need to make a proper virtual ethernet device which OpenVZ refers to as veth. This gives your container's network interface a MAC address and other requirements for proper packet routing.






          share|improve this answer























          • Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

            – Aleksandr Blekh
            yesterday














          2












          2








          2







          The venet0 interface will always be routed through the host network, that is the design of the venet network on OpenVZ.



          Since it seems you want to route traffic on the host to one of your containers, then you will need to make a proper virtual ethernet device which OpenVZ refers to as veth. This gives your container's network interface a MAC address and other requirements for proper packet routing.






          share|improve this answer













          The venet0 interface will always be routed through the host network, that is the design of the venet network on OpenVZ.



          Since it seems you want to route traffic on the host to one of your containers, then you will need to make a proper virtual ethernet device which OpenVZ refers to as veth. This gives your container's network interface a MAC address and other requirements for proper packet routing.







          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered yesterday









          GracefulRestartGracefulRestart

          1,32937




          1,32937












          • Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

            – Aleksandr Blekh
            yesterday


















          • Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

            – Aleksandr Blekh
            yesterday

















          Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

          – Aleksandr Blekh
          yesterday






          Much appreciate your prompt and helpful advice. However, based on my knowledge, the (overarching) system that we use is designed to utilize a venet-only configuration (not a veth-based one). I will get in touch with relevant people and keep you posted.

          – Aleksandr Blekh
          yesterday


















          draft saved

          draft discarded
















































          Thanks for contributing an answer to Unix & Linux Stack Exchange!


          • Please be sure to answer the question. Provide details and share your research!

          But avoid


          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.

          To learn more, see our tips on writing great answers.




          draft saved


          draft discarded














          StackExchange.ready(
          function ()
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f512190%2ftraffic-from-openvz-host-to-container-gets-redirected-to-gateway%23new-answer', 'question_page');

          );

          Post as a guest















          Required, but never shown





















































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown

































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown







          -networking, openvz
          -

          Popular posts from this blog

          Mobil Contents History Mobil brands Former Mobil brands Lukoil transaction Mobil UK Mobil Australia Mobil New Zealand Mobil Greece Mobil in Japan Mobil in Canada Mobil Egypt See also References External links Navigation menuwww.mobil.com"Mobil Corporation"the original"Our Houston campus""Business & Finance: Socony-Vacuum Corp.""Popular Mechanics""Lubrite Technologies""Exxon Mobil campus 'clearly happening'""Toledo Blade - Google News Archive Search""The Lion and the Moose - How 2 Executives Pulled off the Biggest Merger Ever""ExxonMobil Press Release""Lubricants""Archived copy"the original"Mobil 1™ and Mobil Super™ motor oil and synthetic motor oil - Mobil™ Motor Oils""Mobil Delvac""Mobil Industrial website""The State of Competition in Gasoline Marketing: The Effects of Refiner Operations at Retail""Mobil Travel Guide to become Forbes Travel Guide""Hotel Rankings: Forbes Merges with Mobil"the original"Jamieson oil industry history""Mobil news""Caltex pumps for control""Watchdog blocks Caltex bid""Exxon Mobil sells service station network""Mobil Oil New Zealand Limited is New Zealand's oldest oil company, with predecessor companies having first established a presence in the country in 1896""ExxonMobil subsidiaries have a business history in New Zealand stretching back more than 120 years. We are involved in petroleum refining and distribution and the marketing of fuels, lubricants and chemical products""Archived copy"the original"Exxon Mobil to Sell Its Japanese Arm for $3.9 Billion""Gas station merger will end Esso and Mobil's long run in Japan""Esso moves to affiliate itself with PC Optimum, no longer Aeroplan, in loyalty point switch""Mobil brand of gas stations to launch in Canada after deal for 213 Loblaws-owned locations""Mobil Nears Completion of Rebranding 200 Loblaw Gas Stations""Learn about ExxonMobil's operations in Egypt""Petrol and Diesel Service Stations in Egypt - Mobil"Official websiteExxon Mobil corporate websiteMobil Industrial official websiteeeeeeeeDA04275022275790-40000 0001 0860 5061n82045453134887257134887257

          Image
          Aera EnergyEssoEsso AustraliaExxonExxon NeftegasHumble OilImperial OilMagnolia Petroleum CompanyMobilMobil Producing NigeriaPetronSeaRiver MaritimeSuperior Oil CompanySyncrudeVacuum Oil CompanyXTO EnergyBaton Rouge RefineryBaytown RefineryMilford HavenExxon Building (New York)Fawley RefineryImperial Oil BuildingMossmorranNanticoke Refinery2010 ExxonMobil oil spill2010 Port Arthur oil spill2013 Mayflower oil spill Exxon Valdez oil spillGreenpoint oil spillSS Atlantic Empress SS Esso Brussels Colony Shale Oil ProjectEast-Prinovozemelsky fieldGoose Creek Oil FieldKearl Oil Sands ProjectKizomba deepwater projectOrmen LangePembina oil fieldPrudhoe Bay Oil FieldSable Offshore Energy ProjectSakhalin-ITengiz FieldTern oilfieldTuapse fieldWest Qurna FieldNational OilSasolSparSpar Express759 Store7-ElevenCircle KCUDaily YamazakiFamilyMartGS25LawsonMinistopParknShopPoplarSparStorywayVanGOemartSparampmBuy the WayBP ConnectCircle K SunkusDaily StopOn the Run7-ElevenBargain BoozeBest-OneBP ConnectB
          Read more

          Frič See also Navigation menuinternal link

          Image
          SurnamesCzech-language surnames ‹ The template Infobox surname is being considered for merging. › Frič Origin Language(s) Czechized German (eastern Middle German dialects and Alemannic German) - Thuringian, Upper Saxon, Low Lusatian, Silesian Meaning derived from German: Friedrich Other names Variant(s) Fritsch, Fritzsch, Frycz, Fricz, Fryczyński, Frietsch, Fritsche, Fritzsche; Fritschi (Alemannic), Fritz, Fritze, Fritzel, Fritzl, Fritzke, Fritzen Frič is a Czechized German surname. Notable people with the surname include: Alberto Vojtěch Frič, Czech botanist Antonín Jan Frič (Fritsch) , Czech paleontologist Jaroslav Erik Frič, Czech poet Martin Frič, Czech film director, screenwriter and actor See also Fričovce (Hungarian: Frics ) .mw-parser-output table.dmboxclear:both;margin:0.9em 1em;border-top:1px solid #ccc;border-bottom:1px solid #ccc;background-color:transparent Surname list This page lists people with the surname Frič . If an internal link intending to refer to a specifi
          Read more

          Identify plant with long narrow paired leaves and reddish stems Planned maintenance scheduled April 17/18, 2019 at 00:00UTC (8:00pm US/Eastern) Announcing the arrival of Valued Associate #679: Cesar Manara Unicorn Meta Zoo #1: Why another podcast?What is this plant with long sharp leaves? Is it a weed?What is this 3ft high, stalky plant, with mid sized narrow leaves?What is this young shrub with opposite ovate, crenate leaves and reddish stems?What is this plant with large broad serrated leaves?Identify this upright branching weed with long leaves and reddish stemsPlease help me identify this bulbous plant with long, broad leaves and white flowersWhat is this small annual with narrow gray/green leaves and rust colored daisy-type flowers?What is this chilli plant?Does anyone know what type of chilli plant this is?Help identify this plant

          Image
          Apollo command module space walk? prime numbers and expressing non-prime numbers Can a non-EU citizen traveling with me come with me through the EU passport line? Extract all GPU name, model and GPU ram How to deal with a team lead who never gives me credit? Why was the term "discrete" used in discrete logarithm? Why do we bend a book to keep it straight? When do you get frequent flier miles - when you buy, or when you fly? How come Sam didn't become Lord of Horn Hill? At the end of Thor: Ragnarok why don't the Asgardians turn and head for the Bifrost as per their original plan? Is it true that "carbohydrates are of no use for the basal metabolic need"? Using et al. for a last / senior author rather than for a first author How to tell that you are a giant? How to react to hostile behavior from a senior developer? String `!23` is replaced with `docker` in command line How to find out what spells would be useless to a blind NPC sp
          Read more