[PVE-User] Interfaces startup and ip-up.d scripts...

dORSY dorsyka at yahoo.com
Tue May 15 16:31:50 CEST 2018

 I suggest using post-up / pre-down hooks in interfaces. It makes sure that the interfaces are actually up before the commands get executed.

    On Tuesday, 15 May 2018, 15:26:49 CEST, Marco Gaiarin <gaio at sv.lnf.it> wrote:  
I've to setup a little PVE server in a private but hostile network, and
i've only an IP available, so i was forced to assign the IP to the
phisical server, running latest proxmox, and i've setup a firewall
using my hand-made scripts.

I've put the script, as usual with debian, in /etc/network/if-up.d/ and
if-down.d/, but i've found that not at every boot they get started.

So, i've enabled networking debug (eg, set VERBOSE=yes in
/etc/default/networking) and found that at every boot scripts get
called with 'lo' interface, but only roughly 1 out of 10 times the
other bridge interfaces get started.

So, i got:

 May 15 10:18:25 clerk ifup[2958]: /bin/ip link set dev lo up
 May 15 10:18:25 clerk ifup[2958]: /bin/run-parts --exit-on-error --verbose /etc/network/if-up.d

but then:

 May 15 10:18:26 clerk ifup[2958]: /bin/run-parts --exit-on-error --verbose /etc/network/if-up.d

without interface name. With some more debug i discovered that is the
'--all' interface.
The strange things is that interfaces vmbr0 and vmbr1 are up, simply
the scripts get not called.

Some boot, instead:

 May 15 10:18:27 clerk ifup[4043]: /bin/ip link set dev vmbr0  up
 May 15 10:18:27 clerk ifup[4043]: /bin/run-parts --exit-on-error --verbose /etc/network/if-up.d

 May 15 10:18:28 clerk ifup[4043]: /bin/ip addr add broadcast          dev vmbr1 label vmbr1
 May 15 10:18:28 clerk ifup[4043]: /bin/ip link set dev vmbr1  up
 May 15 10:18:28 clerk ifup[4043]:  /bin/ip route add default via  dev vmbr1 onlink
 May 15 10:18:28 clerk ifup[4043]: /bin/run-parts --exit-on-error --verbose /etc/network/if-up.d

and clearly firewalling script works.

For now, i've put 'systemctl restart networking' in /etc/rc.local.

My /etc/network/interfaces is rather simple:

 auto lo
 iface lo inet loopback
 iface enp2s0f0 inet manual
 iface enp2s0f1 inet manual
     ethernet-autoneg on
     link-speed 100
     link-duplex full
     hardware-dma-ring-tx 18
     offload-tso off
     offload-gso off
     offload-gro off
 auto vmbr0
 iface vmbr0 inet static
     bridge_ports enp2s0f0 
    bridge_stp off
    bridge_fd 0
    bridge_vlan_aware yes

 auto vmbr1
 iface vmbr1 inet static
    bridge_ports enp2s0f1
    bridge_stp off
    bridge_fd 0

There's something i can do to fix this? Thanks.

dott. Marco Gaiarin                        GNUPG Key ID: 240A3D66
  Associazione ``La Nostra Famiglia''          http://www.lanostrafamiglia.it/
  Polo FVG  -  Via della Bontà, 7 - 33078  -  San Vito al Tagliamento (PN)
  marco.gaiarin(at)lanostrafamiglia.it  t +39-0434-842711  f +39-0434-842797

    (cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)
pve-user mailing list
pve-user at pve.proxmox.com

More information about the pve-user mailing list