From e892973e391aa93f4aac144527400ae24ad68032 Mon Sep 17 00:00:00 2001 From: Daniel Lezcano Date: Mon, 28 Dec 2009 22:10:11 +0100 Subject: add macvlan vepa and bridge mode The future kernel 2.6.33 will incorporate the macvlan bridge mode where all the macvlan will be able to communicate if they are using the same physical interface. This is an interesting feature to have containers to communicate together. If we are outside of the container, we have to setup a macvlan on the same physical interface than the containers and use it to communicate with them. Signed-off-by: Daniel Lezcano --- doc/lxc.conf.sgml.in | 51 +++++++++++++++++++++++++++++++++++++++++++++------ 1 file changed, 45 insertions(+), 6 deletions(-) (limited to 'doc') diff --git a/doc/lxc.conf.sgml.in b/doc/lxc.conf.sgml.in index c128333..fd61816 100644 --- a/doc/lxc.conf.sgml.in +++ b/doc/lxc.conf.sgml.in @@ -134,11 +134,28 @@ Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA a new network stack is created, a peer network device is created with one side assigned to - the container and the other side attached to a bridge - specified by the . The - bridge has to be setup before on the - system, lxc won't handle - configuration outside of the container. + the container and the other side is attached to a bridge + specified by the . If + the bridge is not specified, then the veth pair device + will be created but not attached to any + bridge. Otherwise, the bridge has to be setup before on + the system, lxc won't handle + any configuration outside of the container. By + default lxc choose a name for the + network device belonging to the outside of the + container, this name is handled + by lxc, but if you wish to handle + this name yourself, you can tell lxc + to set a specific name with + the option. + + + + a new network stack is created, a + vlan interface is linked with the interface specified by + the and assigned to + the container. The vlan identifier is specified with the + option . @@ -147,11 +164,33 @@ Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA interface specified by the and assigned to the container. + specifies the + mode the macvlan will use to communicate between + different macvlan on the same upper device. The accepted + modes are , the device never + communicates with any other device on the same upper_dev (default), + , the new Virtual Ethernet Port + Aggregator (VEPA) mode, it assumes that the adjacent + bridge returns all frames where both source and + destination are local to the macvlan port, i.e. the + bridge is set up as a reflective relay. Broadcast + frames coming in from the upper_dev get flooded to all + macvlan interfaces in VEPA mode, local frames are not + delivered locallay, or , it + provides the behavior of a simple bridge between + different macvlan interfaces on the same port. Frames + from one interface to another one get delivered directly + and are not sent out externally. Broadcast frames get + flooded to all other bridge ports and to the external + interface, but when they come back from a reflective + relay, we don't deliver them again. Since we know all + the MAC addresses, the macvlan bridge mode does not + require learning or STP like the bridge module does. a new network stack is created - and the interface specified by + and an already existing interface specified by the is assigned to the container. -- cgit v1.2.3-65-gdbad