Containers have no IPs using OVN network

guillomep · November 7, 2024, 6:20am

Hello,

I’m trying to use the OVN network in my Incus but my containers don’t get any IPs.
I’m on Incus 6.6.

This is my network configuration

- name: UPLINK
  type: physical
  config:
    parent: br1010
    ipv4.gateway: 10.100.1.1/24
    ipv4.ovn.ranges: 10.100.1.10-10.100.1.100
    ipv6.gateway: fd12:3456:789a:1::10/56
    ipv6.ovn.ranges: "fd12:3456:789a:1::10-fd12:3456:789a:1::100"
    dns.nameservers: 10.10.1.1
    ipv4.routes: 192.168.1.0/24,10.10.1.0/24
    ipv6.routes: 2a01:cb1c:e08:4900::/64,2a01:cb1c:e08:49ff::/64
    ovn.ingress_mode: routed
- name: incusovn
  type: ovn
  config:
    network: UPLINK

So I see my OVN network

+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
|      NAME       |   TYPE   | MANAGED |      IPV4      |           IPV6            | DESCRIPTION | USED BY |  STATE  |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| UPLINK          | physical | YES     |                |                           |             | 1       | CREATED |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| br0             | bridge   | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| br1010          | bridge   | NO      |                |                           |             | 1       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| br-4c7ecda3b1aa | bridge   | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| br-a3ef2299c3c8 | bridge   | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| br-int          | bridge   | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| docker0         | bridge   | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| end0            | physical | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| incusovn        | ovn      | YES     | 10.60.107.1/24 | fd42:74ca:b558:73d8::1/64 |             | 1       | CREATED |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| incusovn10      | bridge   | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| incusovn10a     | unknown  | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| incusovn10b     | unknown  | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| lo              | loopback | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| ovs-system      | unknown  | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| vlan10          | vlan     | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| vlan1010        | vlan     | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+
| wlan0           | physical | NO      |                |                           |             | 0       |         |
+-----------------+----------+---------+----------------+---------------------------+-------------+---------+---------+

But when I start an instance it does not get an IP

incus start c1
incus list
+------+---------+------+------+-----------+-----------+
| NAME |  STATE  | IPV4 | IPV6 |   TYPE    | SNAPSHOTS |
+------+---------+------+------+-----------+-----------+
| c1   | RUNNING |      |      | CONTAINER | 0         |
+------+---------+------+------+-----------+-----------+

My default profile is

- name: default
  devices:
    root:
      path: /
      pool: data
      type: disk
    eth0:
      name: eth0
      type: nic
      nictype: ovn
      network: incusovn

What am I missing ?
I have follow the following instruction How to set up OVN with Incus - Incus documentation

stgraber · November 7, 2024, 3:47pm

Could be host-size firewalling.

guillomep · November 8, 2024, 8:27am

Thank you,

I checked the configuration and I have net.ipv4.conf.all.forwarding=1 in my /etc/systctl.d configuration. So there is probably a problem with docker but I do not know why

guillomep · November 8, 2024, 9:55am

I tried the same configuration in another that does not have docker running and the container gets an IPv4 and an IPv6. So, there is a problem with the docker, as say on the page you link.

But I still have other problems now
First, the instance does not have access to internet.

Second, the machine did not get its IPs in the range I defined on uplink

+------+---------+-------------------+----------------------------------------------+-----------+-----------+
| NAME |  STATE  |       IPV4        |                     IPV6                     |   TYPE    | SNAPSHOTS |
+------+---------+-------------------+----------------------------------------------+-----------+-----------+
| c1   | RUNNING | 10.52.92.2 (eth0) | fd42:fc39:2a5:33af:216:3eff:fe7e:1623 (eth0) | CONTAINER | 0         |
+------+---------+-------------------+----------------------------------------------+-----------+-----------+

List of network

+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
|    NAME    |   TYPE   | MANAGED |     IPV4      |           IPV6           | DESCRIPTION | USED BY |  STATE  |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
| UPLINK     | physical | YES     |               |                          |             | 1       | CREATED |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
| br0        | bridge   | NO      |               |                          |             | 1       |         |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
| br-int     | bridge   | NO      |               |                          |             | 0       |         |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
| ens33      | physical | NO      |               |                          |             | 0       |         |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
| incusovn   | ovn      | YES     | 10.52.92.1/24 | fd42:fc39:2a5:33af::1/64 |             | 2       | CREATED |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
| incusovn1  | bridge   | NO      |               |                          |             | 0       |         |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
| incusovn1a | unknown  | NO      |               |                          |             | 0       |         |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
| incusovn1b | unknown  | NO      |               |                          |             | 0       |         |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
| lo         | loopback | NO      |               |                          |             | 0       |         |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+
| ovs-system | unknown  | NO      |               |                          |             | 0       |         |
+------------+----------+---------+---------------+--------------------------+-------------+---------+---------+

Config of network

  ipv4.gateway: 10.100.1.1/24
  ipv4.ovn.ranges: 10.100.1.10-10.100.1.100
  ipv4.routes: 192.168.1.0/24,10.10.1.0/24
  ipv6.gateway: fd12:3456:789a:1::10/56
  ipv6.ovn.ranges: fd12:3456:789a:1::10-fd12:3456:789a:1::100
  ipv6.routes: 2a01:cb1c:e08:4900::/64,2a01:cb1c:e08:49ff::/64
  ovn.ingress_mode: routed
  parent: br0