<div dir="ltr"><div><div><div><div><div><div>Hello,<br><br></div>I am not able to connect to internet in teh spawned VM's.<br><br><br></div><div>Ethernet card details:<br></div><div><b>Eth1 bridged through OVS(mybridge)              - 172.27.10.76<br></b></div><div><b>Eth3                                                            - 192.168.182.251</b><br><br></div><div>after executing the command<br><br>iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE <br><br>iptables -t nat -A POSTROUTING -o mybridge -j MASQUERADE<br><br>- I see teh connectivity to VM's from my host name  ie 172.27.10.76 also affected.<br><br>root@VFSR1:~# ovs-vsctl show<br>37f38767-0a2b-45fd-9507-abef7fd2d5c9<br>    Bridge br-int<br>        fail_mode: secure<br>        Port "qr-2ff64ff8-b8"<br>            tag: 6<br>            Interface "qr-2ff64ff8-b8"<br>                type: internal<br>        Port patch-tun<br>            Interface patch-tun<br>                type: patch<br>                options: {peer=patch-int}<br>        Port "qvo310233a4-9f"<br>            tag: 6<br>            Interface "qvo310233a4-9f"<br>        Port br-int<br>            Interface br-int<br>                type: internal<br>        Port "tap6bc359b6-f0"<br>            tag: 6<br>            Interface "tap6bc359b6-f0"<br>                type: internal<br>        Port "qvo703c764e-23"<br>            tag: 5<br>            Interface "qvo703c764e-23"<br>        Port int-mybridge<br>            Interface int-mybridge<br>                type: patch<br>                options: {peer=phy-mybridge}<br>        Port "qg-333a2d2b-ca"<br>            tag: 5<br>            Interface "qg-333a2d2b-ca"<br>                type: internal<br>   <b> Bridge mybridge<br>        Port mybridge<br>            Interface mybridge<br>                type: internal<br>        Port "eth1"<br>            Interface "eth1"<br>        Port phy-mybridge<br>            Interface phy-mybridge<br>                type: patch<br>                options: {peer=int-mybridge}</b><br>    Bridge br-tun<br>        fail_mode: secure<br>        Port br-tun<br>            Interface br-tun<br>                type: internal<br>        Port patch-int<br>            Interface patch-int<br>                type: patch<br>                options: {peer=patch-tun}<br>    ovs_version: "2.5.0"<br><br></div><div><br>Below is my network and router details<br><br>root@VFSR1:~# neutron net-list<br>+--------------------------------------+---------+-----------------------------------------------------+<br>| id                                   | name    | subnets                                             |<br>+--------------------------------------+---------+-----------------------------------------------------+<br>| 51739543-b7d1-414b-bec1-9b38c3e5d5d7 | public  | 0db9fa02-27eb-4f38-8693-200719fc1fbf <a href="http://172.27.10.0/24">172.27.10.0/24</a> |<br>| bf919707-b1eb-4d8f-90fe-5bcf0e07dce3 | private | 7fddc311-7938-44c4-abd4-e5095adba422 <a href="http://192.168.0.0/24">192.168.0.0/24</a> |<br>+--------------------------------------+---------+-----------------------------------------------------+<br>root@VFSR1:~# neutron router-list<br>+--------------------------------------+--------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+<br>| id                                   | name   | external_gateway_info                                                                                                                                                                     | distributed | ha    |<br>+--------------------------------------+--------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+<br>| 323a6782-46aa-458e-ad76-f9462d8ad955 | router | {"network_id": "51739543-b7d1-414b-bec1-9b38c3e5d5d7", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "0db9fa02-27eb-4f38-8693-200719fc1fbf", "ip_address": "172.27.10.101"}]} | False       | False |<br>+--------------------------------------+--------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+<br><br></div>Below are my instances created <br><br>root@VFSR1:~# nova list<br>+--------------------------------------+--------+--------+------------+-------------+------------------------------------+<br>| ID                                   | Name   | Status | Task State | Power State | Networks                           |<br>+--------------------------------------+--------+--------+------------+-------------+------------------------------------+<br>| b737645b-317e-46be-b06a-f1b94f378d95 | test   | ACTIVE | -          | Running     | public=172.27.10.100               |<br>| 378b3776-dddb-4007-823a-8c4e2781dbdd | ubuntu | ACTIVE | -          | Running     | private=192.168.0.3, 172.27.10.102 |<br>+--------------------------------------+--------+--------+------------+-------------+---------------------------------<br><br></div>I have internet connectivity using the machine IP 172.27.10.76, but the internet is not working in teh VM range 172.27.10.100,172,27.10.250.<br><br></div><div><br></div>I have attached the firewall log as well.<br><br></div><div>Please advise.<br></div><div><br></div>Regards<br></div>kamal<br></div>