Creating several kvm bridges over tagged bond

Question

I have the following configuration in a RHEL6.5 which works great.

# ifcfg-em1_2
DEVICE=em1_2
HWADDR=C8:1F:66:D8:77:D2
TYPE=Ethernet
ONBOOT=yes
NM_CONTROLLED=no
MASTER=bond0
SLAVE=yes
USERCTL=no

#ifcfg-em2_2
DEVICE=em2_2
HWADDR=C8:1F:66:D8:77:E2
TYPE=Ethernet
ONBOOT=yes
NM_CONTROLLED=no
MASTER=bond0
SLAVE=yes
USERCTL=no

#ifcfg-bond0
ARP=no
BOOTPROTO=none
DEVICE=bond0
IPV6INIT=no
NM_CONTROLLED=no
NOZEROCONF=yes
ONBOOT=yes
BONDING_OPTS="mode=1 miimon=100"

#ifcfg-bond0.18
DEVICE=bond0.18
ONBOOT=yes
TYPE=Ethernet
BOOTPROTO=static
VLAN=yes
BRIDGE=br0

# ifcfg-br0
DEVICE=br0
ONBOOT=yes
SLAVE=bond0.18
TYPE=Bridge
DELAY=0
VLAN=yes

# IPv4
GATEWAY=<GATEWAY>
IPADDR=<IP>
NETMASK=<NETMASK>
NM_CONTROLLED=no
NOZEROCONF=yes

DOMAIN=<DOMAIN>
DNS1=<DNS1>
DNS2=<DNS2>

# brctl show
bridge name     bridge id               STP enabled     interfaces
br0             8000.c81f66d877df       no              bond0.18
                                                        vnet0
                                                        vnet1
virbr0          8000.52540014bdec       yes             virbr0-nic

I want to add a second bridge over the same bond but instead of tagging it with vlan 18, use for example vlan 26. I tried adding the following files and restart the network service, yet it didnt work and lost connection to the server. Had to eliminate the br1 config file and restart the network again, so for some reason I can't have the 2 bridges together. Is there something I am missing?

#ifcfg-bond0.26
DEVICE=bond0.26
ONBOOT=yes
TYPE=Ethernet
BOOTPROTO=static
VLAN=yes
BRIDGE=br1

# ifcfg-br1
DEVICE=br1
ONBOOT=yes
SLAVE=bond0.26
TYPE=Bridge
DELAY=0
VLAN=yes

# IPv4
GATEWAY=<GATEWAY2>
IPADDR=<IP2>
NETMASK=<NETMASK2>
NM_CONTROLLED=no
NOZEROCONF=yes

DOMAIN=<DOMAIN>
DNS1=<DNS1>
DNS2=<DNS2>

Also I'm new managing KVM machines so in the brctl show output I wrote above, there's a virbr0 interface I don't know where it came from. I suppose its the vnic for the virtual machines, do I have to set something like that after the second bridge is working? The idea is to have multiple interfaces in the VM (for service, backups, bd connection, etc), like I said, at first I only had 1 working but I'm confused on how to add more.

Cheers,

Answer 1

virbr0 is the likely the name KVM it chose when it created a bridge for you. It is difficult but not impossible to configure your own bridge.

From my reading of the documentation on configuring bridges, you should have only one bridge connected to a physical device (eth0, bond0, etc).

You could configure a second bridge and use IP forwarding to handle traffic routing. This is fairly easy to do.

You should be able to tag multiple vlans on the same bridge. This is likely the simplest method.

Answer 2

What you are trying to do is exactly the right way to do it.

• you have two NICs in a bond
• you have the bond itself
• on the bond, you can create a tagged interface plus bridge for every VLAN you have in use, and connect separate VM vNICs to those bridges.

Just remember that VMs have a limited number of PCI addresses, so you can't have 4000 NICs.

EDIT: The virbr0 bridge is automatically created by libvirt. You can safely ignore it and use your own configuration.