rp_filter dropping packets (RHEV 3.0)

Comments

Hi Guys,

We have setup a RHEV-H server with the following network setup (all fictitious):

- NIC: display_network (1.1.1.5/27)

- NIC: rhevm (10.10.10.2/24) GW 10.10.10.1

Incoming packets on display_network with a source adres from outside both networks (like internet) are dropped by the rp_filter (Reverse Path Filter). See Red Hat article: https://access.redhat.com/knowledge/solutions/53031

I had to set "net.ipv4.conf.display_network.rp_filter = 2" to get SPICE connections (and ICMP / TCP) working.

Questions:

- Did anyone run in to this problem aswell?

- Has this been changed (fixed) in RHEV 3.1 (I wasn't able to check my self)?

- In our old environment (RHEV 2.2) this wasn't a problems (seems like a difference between RHEL5 and RHEL6). I have reviewed the documentation, shouldn't there be a notice about this somewhere?

Regards, Vincent

ps: a case has been opened for this issue (for those who can view it): 00745715

Started 2012-11-22T10:23:49+00:00 by

Vincent Pluk

Expert 823 points

Select Your Language

Responses

Quick Links

Help

Site Info

Related Sites

About

Red Hat legal and privacy links

Red Hat legal and privacy links

Responses

Quick Links

Help

Site Info

Related Sites

Systems Status

About

Red Hat legal and privacy links

Red Hat legal and privacy links