Hi
Is it expected behaviour that a libvirt NAT-based network is faster than a libvirt routed network?
I would guess that the routed network would be the fastest one in all cases, but I'm seeing the opposite in my setup. On a 100mbit internet connection, the routed network tops at 4mbyte/sec, while the nat-based network goes all the way to 10mbyte/sec. I've spend the last 6 hours on trying to figure out the cause of this, changing settings, reinstalling the system, but the problem persists and I can't find the cause of it.
It is a clean and fairly simple setup: - Clean installation of CentOS 5.5 - Installation of kvm+libvirt+virt-manager+xorg - iptables service disabled - 1 public IP for the host (xxx.yyy.zzz.215) on a /32 subnet with xxx.yyy.zzz.193 as gateway - 3 public IP for the routed network (xxx.yyy.zzz.251-253) on a /26 subnet with the same gateway as the host - 1 virtual machine with either the NAT or the routed libvirt network assigned
I have no networking connection errors or similar, it works perfectly with both the NAT and the routed network, but the routed network is just 2-4 times slower than the NAT one.
Do you have any suggestions of what the problem might be? When I look at the iptables rules generated by libvirt, and the routing table, everything looks fine AFAICT. Traceroute from guest doesn't reveal anything either. Ping times from the two networks are similar, so the main issue seems to be throughput.
Any help or pointers to what I should look at, is highly appreciated... :)
I've copy pasted some of my relevant system configuration into pastebin: http://pastebin.com/jtTrHLqA
Thank you, Kenni
On 05/25/2010 04:34 PM, Kenni Lund wrote:
- 1 public IP for the host (xxx.yyy.zzz.215) on a /32 subnet with
xxx.yyy.zzz.193 as gateway
Is it typo? There can be no subnet with /32 bit mask, it's single host only.
В Thu, 27 May 2010 10:40:30 +0300 Veiko Kukk veiko@ekp.ee пишет:
On 05/25/2010 04:34 PM, Kenni Lund wrote:
- 1 public IP for the host (xxx.yyy.zzz.215) on a /32 subnet with
xxx.yyy.zzz.193 as gateway
Is it typo? There can be no subnet with /32 bit mask, it's single host only.
Actually, it is possible:
ip addr add xxx.yyy.zzz.215/32 dev eth0 ip route add xxx.yyy.zzz.193 dev eth0 ip route add default via xxx.yyy.zzz.193
On 05/27/2010 12:21 PM, Aleksei Miheev wrote:
Is it typo? There can be no subnet with /32 bit mask, it's single host only.
Actually, it is possible:
ip addr add xxx.yyy.zzz.215/32 dev eth0 ip route add xxx.yyy.zzz.193 dev eth0 ip route add default via xxx.yyy.zzz.193
Of course you can do that, but it wouldn't a *subnet*. Net like network, system consisting of several units. I rest my case.
-- Veiko
2010/5/27 Veiko Kukk veiko@ekp.ee:
On 05/27/2010 12:21 PM, Aleksei Miheev wrote:
Is it typo? There can be no subnet with /32 bit mask, it's single host only.
Actually, it is possible:
ip addr add xxx.yyy.zzz.215/32 dev eth0 ip route add xxx.yyy.zzz.193 dev eth0 ip route add default via xxx.yyy.zzz.193
Of course you can do that, but it wouldn't a *subnet*. Net like network, system consisting of several units. I rest my case.
Well, it is a subnet, it has just only got one host in it. I wrote it because the question is about routing, so it's quite relevant that the IP-addresses are not on the same subnet.
No one with any clues on what to test / look into? :-/
Best Regards Kenni
Maybe the part about netfilter?
2010/5/28 compdoc compdoc@hotrodpc.com:
Maybe the part about netfilter?
The part about disabling netfilter on bridges?
It is already done, line 78-80: http://pastebin.com/jtTrHLqA
-
Aleksei Miheev -
compdoc -
Kenni Lund -
Veiko Kukk