Ostinato on ESXi - What is the best light weight version with VLAN ID on interface
247 views
Skip to first unread message
Evoldus Fernando
Mar 8, 2016, 9:54:58 AM3/8/16
to osti...@googlegroups.com
Hi
I am looking for a light weight Ostinato Linux version to run on ESXi 5.5. I want to generator on one port group and also capture another port group on the same server. I need to set the VLAN tag/ID for the receiving port for the capture - I think.
Srivats P
Mar 9, 2016, 10:05:21 AM3/9/16
to Evoldus Fernando, ostinato
Isn't the official vDrone or the Bernhard's qcow2 VM images (both
available on the ostinato website) not working for you?
Srivats
> --
> Get Ostinato News and Updates on Twitter - Follow @ostinato
> (http://twitter.com/ostinato)
> ---
> You received this message because you are subscribed to the Google Groups
> "ostinato" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to ostinato+u...@googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
--
http://ostinato.org/
@ostinato
available on the ostinato website) not working for you?
Srivats
> Get Ostinato News and Updates on Twitter - Follow @ostinato
> (http://twitter.com/ostinato)
> ---
> You received this message because you are subscribed to the Google Groups
> "ostinato" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to ostinato+u...@googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
--
http://ostinato.org/
@ostinato
evo...@gmail.com
Mar 11, 2016, 4:38:46 AM3/11/16
to ostinato
Hi,
Traffic generation is working and I believe it is even with vlan tag but I do not have a way to capture even using a Windows 7 VM. Windows 7 VM only accept us tagged frames Om EXSi.
So I am looking for a VM to capture ar the other end with vlan tags and I will even be happy if someone can tell me how to capture it with same or another Ostinat VM.
My objective of using Ostnato is to generate traffic with vlan tag - 802.1q and CoS p-bits - 802.1p and capture on the other end of the network to see the vlan tags and p-bits.
Any ideas/support on this is very much appreciated.
EF
Traffic generation is working and I believe it is even with vlan tag but I do not have a way to capture even using a Windows 7 VM. Windows 7 VM only accept us tagged frames Om EXSi.
So I am looking for a VM to capture ar the other end with vlan tags and I will even be happy if someone can tell me how to capture it with same or another Ostinat VM.
My objective of using Ostnato is to generate traffic with vlan tag - 802.1q and CoS p-bits - 802.1p and capture on the other end of the network to see the vlan tags and p-bits.
Any ideas/support on this is very much appreciated.
EF
Matt Brownell
Mar 11, 2016, 4:40:53 AM3/11/16
to Evoldus Fernando, osti...@googlegroups.com
UNSUBSCRIBE ME FROM
THIS GROUP PLEASE RIGHT NOW
Carlos G Mendioroz
Mar 11, 2016, 5:51:44 AM3/11/16
to evo...@gmail.com, ostinato
Evoldus,
I don't understand what has ESXi to do with Ostinato. Ostinato does not
run on ESXi, your preferred operating system does.
Now, usually the VMs do not see "trunks" or 802.1Q (or 802.1p) frames.
AFAIK, ESXi do not support 802.1p, but if you want to use 802.1Q you
need to configure the vnic in vlan 4095 (aka VGT, VM Guest Tagging).
HTH,
-Carlos
evo...@gmail.com @ 11/03/2016 06:08 -0300 dixit:
--
Carlos G Mendioroz <tr...@huapi.ba.ar> LW7 EQI Argentina
I don't understand what has ESXi to do with Ostinato. Ostinato does not
run on ESXi, your preferred operating system does.
Now, usually the VMs do not see "trunks" or 802.1Q (or 802.1p) frames.
AFAIK, ESXi do not support 802.1p, but if you want to use 802.1Q you
need to configure the vnic in vlan 4095 (aka VGT, VM Guest Tagging).
HTH,
-Carlos
evo...@gmail.com @ 11/03/2016 06:08 -0300 dixit:
Carlos G Mendioroz <tr...@huapi.ba.ar> LW7 EQI Argentina
Evoldus Fernando
Mar 11, 2016, 11:54:08 PM3/11/16
to Carlos G Mendioroz, ostinato
Hi Carlos,
Thank you for the reply - all the details.
The reason why I run it on ESXi is that all my other router VMs are on this ESXi server - kind of a virtualized home lab setup for network topologies.
Well, I tried vnic with 4095 vlan ID at the receiving port but not on the transmitting end/port. I believe I should try vlan ID 4095 on both TX and RX ports.
I will try it later today and update this.
Thanks again.
EF
Thank you for the reply - all the details.
The reason why I run it on ESXi is that all my other router VMs are on this ESXi server - kind of a virtualized home lab setup for network topologies.
Well, I tried vnic with 4095 vlan ID at the receiving port but not on the transmitting end/port. I believe I should try vlan ID 4095 on both TX and RX ports.
I will try it later today and update this.
Thanks again.
EF
evo...@gmail.com
Mar 14, 2016, 10:54:37 AM3/14/16
to ostinato
Hi, it looks like ESXi VM cannot send tagged traffic as ESXi vSwitch seems to be dropping. I tried setting two vSwitchs without a NICs and with all vlans 4095.
I am wondering whether there is any solution to get two VMs to transmit and receive with tagged traffic, like through a trunk.
Any more ideas?
EF
Carlos G Mendioroz
Mar 14, 2016, 3:22:10 PM3/14/16
to evo...@gmail.com, ostinato
Your conclussion is wrong. ESXi VMs can transmit 802.1Q tagged frames.
You want ideas to do what ? :)
-Carlos
evo...@gmail.com @ 14/03/2016 09:24 -0300 dixit:
You want ideas to do what ? :)
-Carlos
evo...@gmail.com @ 14/03/2016 09:24 -0300 dixit:
Carlos G Mendioroz
Mar 14, 2016, 3:51:57 PM3/14/16
to Evoldus Fernando, ostinato
As I said, tagged 802.1Q does work in ESXi hosted VMs using VGT.
ESXis do not permit vswitch to vswitch traffic.
Get ostinato out of the way, and try to get 802.1Q working by itself.
-Carlos
Evoldus Fernando @ 14/03/2016 16:39 -0300 dixit:
> Hi Carlos,
>
> I see. I am still missed something here.
> I want two VMs (Ostinato) to exchange tagged traffic. I will test it again.
>
> Do you know any specific setting in vSwitch to achieve this, other than to set the vlan number to 4095?
> Do you think vSwitch can accept and pass tagged traffic between two ports of two VMs, without involving a physical NIC?
>
> FYI, I want to send tagged traffic between two VMs within the same ESXi host, within one or more vSwitches. I have few Virtual routers configured with L2VPN - VPLS. IP connectivity between the two ends are working. Now I am trying to generate packets with tagged using Ostinato and capture them on other end.
>
> Thanks in advance.
>
> EF
>
> Evoldus Fernando
ESXis do not permit vswitch to vswitch traffic.
Get ostinato out of the way, and try to get 802.1Q working by itself.
-Carlos
Evoldus Fernando @ 14/03/2016 16:39 -0300 dixit:
> Hi Carlos,
>
> I see. I am still missed something here.
> I want two VMs (Ostinato) to exchange tagged traffic. I will test it again.
>
> Do you know any specific setting in vSwitch to achieve this, other than to set the vlan number to 4095?
> Do you think vSwitch can accept and pass tagged traffic between two ports of two VMs, without involving a physical NIC?
>
> FYI, I want to send tagged traffic between two VMs within the same ESXi host, within one or more vSwitches. I have few Virtual routers configured with L2VPN - VPLS. IP connectivity between the two ends are working. Now I am trying to generate packets with tagged using Ostinato and capture them on other end.
>
> Thanks in advance.
>
> EF
>
> Evoldus Fernando
Evoldus Fernando
Mar 15, 2016, 12:32:18 AM3/15/16
to Carlos G Mendioroz, ostinato
Hi Carlos,
I see. I am still missed something here.
I want two VMs (Ostinato) to exchange tagged traffic. I will test it again.
Do you know any specific setting in vSwitch to achieve this, other than to set the vlan number to 4095?
Do you think vSwitch can accept and pass tagged traffic between two ports of two VMs, without involving a physical NIC?
FYI, I want to send tagged traffic between two VMs within the same ESXi host, within one or more vSwitches. I have few Virtual routers configured with L2VPN - VPLS. IP connectivity between the two ends are working. Now I am trying to generate packets with tagged using Ostinato and capture them on other end.
Thanks in advance.
EF
Evoldus Fernando
I see. I am still missed something here.
I want two VMs (Ostinato) to exchange tagged traffic. I will test it again.
Do you know any specific setting in vSwitch to achieve this, other than to set the vlan number to 4095?
Do you think vSwitch can accept and pass tagged traffic between two ports of two VMs, without involving a physical NIC?
FYI, I want to send tagged traffic between two VMs within the same ESXi host, within one or more vSwitches. I have few Virtual routers configured with L2VPN - VPLS. IP connectivity between the two ends are working. Now I am trying to generate packets with tagged using Ostinato and capture them on other end.
Thanks in advance.
EF
Evoldus Fernando
linus...@googlemail.com
Mar 15, 2016, 9:40:53 PM3/15/16
to ostinato, tr...@huapi.ba.ar, evo...@gmail.com
Hi there,
Check out port groups on the same VSwitch. These can have different VLAN tags. The machine which captures needs to be in in a port group with VLAN id 4095 which is the catch all port group that "sees" all vlans. Capturing packets definitely requires promiscous permissions in the port group and VSwitch settings. Not sure though if the VLAN port in the VSwitch "untags" the packets.
A PHY port on a VSwitch should however do tagged packets.
You might need to check out Cisco 1000V (which requires licenses) or an alternative VSwitch or even Virtualization environment.
Perhaps mininet can do something for you:http://mininet.org/
Just my 2 cents,
Linus
Check out port groups on the same VSwitch. These can have different VLAN tags. The machine which captures needs to be in in a port group with VLAN id 4095 which is the catch all port group that "sees" all vlans. Capturing packets definitely requires promiscous permissions in the port group and VSwitch settings. Not sure though if the VLAN port in the VSwitch "untags" the packets.
A PHY port on a VSwitch should however do tagged packets.
You might need to check out Cisco 1000V (which requires licenses) or an alternative VSwitch or even Virtualization environment.
Perhaps mininet can do something for you:http://mininet.org/
Just my 2 cents,
Linus
Carlos G Mendioroz
Mar 16, 2016, 8:09:45 AM3/16/16
to Evoldus Fernando, linus...@googlemail.com, ostinato
There is nothing simple in the description you are providing.
You are talking about routers, stacket VLANs, tunnels, L2 and L3, VMs
and hipervisors. Wow.
Now your stated problem seems to be with not being able to do 802.1Q on
an ESXi VM. If that's it, I assure you that this does work.
This has nothing to do with promiscuous setting, BTW, because you are
not trying, AFAIK, to receive some other VM traffic.
-Carlos
Evoldus Fernando @ 16/03/2016 08:59 -0300 dixit:
> Hi Carlos and Linus,
>
> Thank you very much for all the replies and ideas.
> Today I tried the settings "promiscous permissions in the port group and
> VSwitch setting" but still it is no good. I will try very simple setup
> soon to eliminate any issues with my router setups.
>
> Simply I have a L2 tunnel and the two ends, two ports are in trunk
> configuration so I need to connect a VM to generate traffic with stacked
> VLAN tags and capture it at other end. I have L3/IP connectivity between
> the two ends. If I set two VLANs for the two ends to connect a simple
> host with IPs, I can ping and send untagged L2 traffic between the two
> end ports. The router configuration used in the L2 tunnel tested in real
> hardware environment. "Passing L2 tagged traffic" is the only thing that
> does not work within this ESXi server.
>
> There is a very low possibility that these VM does not work as expected
> but I can not prove it until I have a known working setup to generate
> tagged traffic between the two ends within a ESXi server's vSwitch.
>
> I am doing more test on coming days and report back, especially how
> Ostinato is working.
>
> Regards,
>
> EF
>
> On 16 Mar 2016, at 12:40 PM, linus...@googlemail.com
>> Argentina
You are talking about routers, stacket VLANs, tunnels, L2 and L3, VMs
and hipervisors. Wow.
Now your stated problem seems to be with not being able to do 802.1Q on
an ESXi VM. If that's it, I assure you that this does work.
This has nothing to do with promiscuous setting, BTW, because you are
not trying, AFAIK, to receive some other VM traffic.
-Carlos
Evoldus Fernando @ 16/03/2016 08:59 -0300 dixit:
> Hi Carlos and Linus,
>
> Thank you very much for all the replies and ideas.
> Today I tried the settings "promiscous permissions in the port group and
> VSwitch setting" but still it is no good. I will try very simple setup
> soon to eliminate any issues with my router setups.
>
> Simply I have a L2 tunnel and the two ends, two ports are in trunk
> configuration so I need to connect a VM to generate traffic with stacked
> VLAN tags and capture it at other end. I have L3/IP connectivity between
> the two ends. If I set two VLANs for the two ends to connect a simple
> host with IPs, I can ping and send untagged L2 traffic between the two
> end ports. The router configuration used in the L2 tunnel tested in real
> hardware environment. "Passing L2 tagged traffic" is the only thing that
> does not work within this ESXi server.
>
> There is a very low possibility that these VM does not work as expected
> but I can not prove it until I have a known working setup to generate
> tagged traffic between the two ends within a ESXi server's vSwitch.
>
> I am doing more test on coming days and report back, especially how
> Ostinato is working.
>
> Regards,
>
> EF
>
> On 16 Mar 2016, at 12:40 PM, linus...@googlemail.com
>> <tr...@huapi.ba.ar <javascript:>> wrote:
>> >
>> > Your conclussion is wrong. ESXi VMs can transmit 802.1Q tagged
>> frames.
>> > You want ideas to do what ? :)
>> > -Carlos
>> >
>> > evo...@gmail.com <javascript:> @ 14/03/2016 09:24 -0300 dixit:
>> >
>> > Your conclussion is wrong. ESXi VMs can transmit 802.1Q tagged
>> frames.
>> > You want ideas to do what ? :)
>> > -Carlos
>> >
>> >>
>> >> Hi, it looks like ESXi VM cannot send tagged traffic as ESXi
>> vSwitch seems to be dropping. I tried setting two vSwitchs without
>> a NICs and with all vlans 4095.
>> >>
>> >> I am wondering whether there is any solution to get two VMs to
>> transmit and receive with tagged traffic, like through a trunk.
>> >>
>> >> Any more ideas?
>> >>
>> >> EF
>> >
>> > --
>> > Carlos G Mendioroz <tr...@huapi.ba.ar <javascript:>> LW7 EQI
>> >> Hi, it looks like ESXi VM cannot send tagged traffic as ESXi
>> vSwitch seems to be dropping. I tried setting two vSwitchs without
>> a NICs and with all vlans 4095.
>> >>
>> >> I am wondering whether there is any solution to get two VMs to
>> transmit and receive with tagged traffic, like through a trunk.
>> >>
>> >> Any more ideas?
>> >>
>> >> EF
>> >
>> > --
>> Argentina
Evoldus Fernando
Mar 16, 2016, 10:50:09 AM3/16/16
to linus...@googlemail.com, ostinato, tr...@huapi.ba.ar
Hi Carlos and Linus,
Thank you very much for all the replies and ideas.
Today I tried the settings "promiscous permissions in the port group and VSwitch setting" but still it is no good. I will try very simple setup soon to eliminate any issues with my router setups.
Simply I have a L2 tunnel and the two ends, two ports are in trunk configuration so I need to connect a VM to generate traffic with stacked VLAN tags and capture it at other end. I have L3/IP connectivity between the two ends. If I set two VLANs for the two ends to connect a simple host with IPs, I can ping and send untagged L2 traffic between the two end ports. The router configuration used in the L2 tunnel tested in real hardware environment. "Passing L2 tagged traffic" is the only thing that does not work within this ESXi server.
There is a very low possibility that these VM does not work as expected but I can not prove it until I have a known working setup to generate tagged traffic between the two ends within a ESXi server's vSwitch.
I am doing more test on coming days and report back, especially how Ostinato is working.
Regards,
EF
Evoldus Fernando
Mar 16, 2016, 10:50:35 AM3/16/16
to Carlos G Mendioroz, linus...@googlemail.com, ostinato
Hi Carlos,
My setup is with lot of routers etc but all of them work with IP for some time - this is a home lab setup.
The issue came up when I want to generate L2 traffic and capture within ESXi server.
Thanks for confirming the below.
I will update this when I make a progress.
Regards,
EF
My setup is with lot of routers etc but all of them work with IP for some time - this is a home lab setup.
The issue came up when I want to generate L2 traffic and capture within ESXi server.
Thanks for confirming the below.
I will update this when I make a progress.
Regards,
EF
evo...@gmail.com
Mar 16, 2016, 11:21:36 PM3/16/16
to ostinato, tr...@huapi.ba.ar, linus...@googlemail.com, evo...@gmail.com
Hi, Carlos/Linus,
According to the article, "Tagged frames from VMs are dropped" and "all traffic sent to VM and received from VM must be untagged when using VLAN ID’s 1-4094 otherwise it will be dropped by vSwitc".
There is a picture showing this.
http://rickardnobel.se/vswitch-and-vlan-tagging-part-1/
So I believe we can not use Ostinato on Vmware as a VM to generated tagged traffic.
If this is the case, Ostinato should be on a another PC connected ESXi vSwitch trunk via a NIC. Maybe packet capturing PC should also be on a trunk on 2nd NIC.
I am not sure whether there is a way to do all within one ESXi server.
EF
According to the article, "Tagged frames from VMs are dropped" and "all traffic sent to VM and received from VM must be untagged when using VLAN ID’s 1-4094 otherwise it will be dropped by vSwitc".
There is a picture showing this.
http://rickardnobel.se/vswitch-and-vlan-tagging-part-1/
So I believe we can not use Ostinato on Vmware as a VM to generated tagged traffic.
If this is the case, Ostinato should be on a another PC connected ESXi vSwitch trunk via a NIC. Maybe packet capturing PC should also be on a trunk on 2nd NIC.
I am not sure whether there is a way to do all within one ESXi server.
EF
Carlos G Mendioroz
Mar 17, 2016, 5:15:33 AM3/17/16
to evo...@gmail.com, ostinato, linus...@googlemail.com
That's why I told you that to use VGT you need to set VLAN id to 4095.
-Carlos
evo...@gmail.com @ 16/03/2016 21:32 -0300 dixit:
> Hi, Carlos/Linus,
>
> According to the article, "Tagged frames from VMs are dropped" and "/all
> <mailto:linus...@googlemail.com>
> >> <mailto:linus...@googlemail.com
> > Carlos G Mendioroz <tr...@huapi.ba.ar <mailto:tr...@huapi.ba.ar>>
-Carlos
evo...@gmail.com @ 16/03/2016 21:32 -0300 dixit:
> Hi, Carlos/Linus,
>
> According to the article, "Tagged frames from VMs are dropped" and "/all
> traffic sent to VM and received from VM must be untagged when using VLAN
> ID’s 1-4094 otherwise it will be dropped by vSwitc/".
>
> There is a picture showing this.
>
> http://rickardnobel.se/vswitch-and-vlan-tagging-part-1/
>
> So I believe we can not use Ostinato on Vmware as a VM to generated
> tagged traffic.
>
> If this is the case, Ostinato should be on a another PC connected ESXi
> vSwitch trunk via a NIC. Maybe packet capturing PC should also be on a
> trunk on 2nd NIC.
> I am not sure whether there is a way to do all within one ESXi server.
>
> EF
>
> On Thursday, March 17, 2016 at 1:50:35 AM UTC+11, Evoldus Fernando wrote:
>
> Hi Carlos,
>
> My setup is with lot of routers etc but all of them work with IP for
> some time - this is a home lab setup.
>
> The issue came up when I want to generate L2 traffic and capture
> within ESXi server.
>
> Thanks for confirming the below.
> I will update this when I make a progress.
>
> Regards,
>
> EF
>
> > On 16 Mar 2016, at 11:09 PM, Carlos G Mendioroz <tr...@huapi.ba.ar
> There is a picture showing this.
>
> http://rickardnobel.se/vswitch-and-vlan-tagging-part-1/
>
> So I believe we can not use Ostinato on Vmware as a VM to generated
> tagged traffic.
>
> If this is the case, Ostinato should be on a another PC connected ESXi
> vSwitch trunk via a NIC. Maybe packet capturing PC should also be on a
> trunk on 2nd NIC.
> I am not sure whether there is a way to do all within one ESXi server.
>
> EF
>
> On Thursday, March 17, 2016 at 1:50:35 AM UTC+11, Evoldus Fernando wrote:
>
> Hi Carlos,
>
> My setup is with lot of routers etc but all of them work with IP for
> some time - this is a home lab setup.
>
> The issue came up when I want to generate L2 traffic and capture
> within ESXi server.
>
> Thanks for confirming the below.
> I will update this when I make a progress.
>
> Regards,
>
> EF
>
> > On 16 Mar 2016, at 11:09 PM, Carlos G Mendioroz <tr...@huapi.ba.ar
> >> <mailto:linus...@googlemail.com
Reply all
Reply to author
Forward
0 new messages