<div class="gmail_quote">On Thu, Oct 1, 2009 at 2:02 PM, Timo Schoeler <span dir="ltr"><<a href="mailto:timo.schoeler@riscworks.net">timo.schoeler@riscworks.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
-----BEGIN PGP SIGNED MESSAGE-----<br>
Hash: SHA1<br>
<br>
Hi list,<br>
<br>
I have a weird (?) problem here on a setup running CentOS 5.3 x86_64<br>
(and OpenVZ, and some home-brew L2TP daemons, RIPd, BGPd, etc).<br>
<br>
There's a (VE in OpenVZ speak) virtual machine that has two ethernet<br>
interfaces, seen as eth0 and eth1, respectively. Those live in VLANs,<br>
but it's not important here.<br>
<br>
The thing is that on eth1 the default route lives, while on eth0 all<br>
traffic comes in.<br>
<br>
So, sending a ping to the IP address of eth0 tcpdump shows that the echo<br>
request (type 8) packet arrives on the machine. However, the machine<br>
does _not_ send an echo reply (type 0) back to the machine that pings<br>
eth0, maybe because it would have to emerge from eth1.<br>
<br>
One exception (an obvious one) is that IPs on the /29 where eth0 lives<br>
on _can_ ping eth0 and receive an answer -- this is because the packets<br>
don't have to take 'the default route', which lives on the other<br>
interface, eth1.<br>
<br>
This seems to me like decent behaviour.<br>
<br>
However, I really need eth0 to be able to be pinged from the outside<br>
world, it's totally okay for me that eth1 would 'answer' and send the<br>
echo replies instead of eth0.<br>
<br>
Is there anything I can tweak (via sysctl or whatever)?<br></blockquote><div><br><br>You need a way to tell that packets originating from eth0 destined outside should be routed to eth0. This thread should help:<br><br><a href="http://lists.centos.org/pipermail/centos/2009-January/070828.html">http://lists.centos.org/pipermail/centos/2009-January/070828.html</a> <br>
<br>Giovanni P. Tirloni<br><a href="mailto:tirloni@gmail.com">tirloni@gmail.com</a><br></div></div>