[pve-devel] [PATCH pve-docs] sdn: add rp_filter sysctl tuning when mulitple evpn nodes are used
Alexandre Derumier
aderumier at odiso.com
Tue Mar 21 07:53:07 CET 2023
Signed-off-by: Alexandre Derumier <aderumier at odiso.com>
---
pvesdn.adoc | 13 +++++++++++++
1 file changed, 13 insertions(+)
diff --git a/pvesdn.adoc b/pvesdn.adoc
index be62769..d1ff036 100644
--- a/pvesdn.adoc
+++ b/pvesdn.adoc
@@ -928,6 +928,19 @@ and 10.0.2.0/24 in this example), will be announced dynamically.
Notes
-----
+Multiple EVPN Exit Nodes
+~~~~~~~~~~~~~~~~~~~~~~~~
+
+If you have multiple gateway nodes, disable rp_filter as packet could incoming in a 1 node, and outgoing
+to another node.
+
+
+sysctl.conf
+-----
+net.ipv4.conf.default.rp_filter=0
+net.ipv4.conf.all.rp_filter=0
+-----
+
VXLAN IPSEC Encryption
~~~~~~~~~~~~~~~~~~~~~~
--
2.30.2
More information about the pve-devel
mailing list