I want …
- lxc get ip address from my router.
Actual results
- NIC on LXC that connected to the router do not get IP addresses.
- After manually assigning an IP, LXC could access internet and SSH.
environment
- HOST os: Fedora 38
- container’s nic is connected to bridge that managed by Network manager.
- host also connected to the bridge
- host get ip address from my router.
I tried…
net.bridge.bridge-nf-call-ip6tables=0
net.bridge.bridge-nf-call-iptables=0
net.bridge.bridge-nf-call-arptables=0
sysctl net.ipv4.ip_forward=1
- tcpdump- nothing goes out from veth which created on start lxc
config show Fedora
# lxc config show FedoraLxd --expanded
architecture: aarch64
config:
boot.autostart: "true"
image.architecture: arm64
image.description: Fedora 38 arm64 (20230527_03:00)
image.os: Fedora
image.release: "38"
image.serial: "20230527_03:00"
image.type: squashfs
image.variant: default
linux.kernel_modules: wireguard,ip_tables
raw.idmap: |
both 0-999 0-999
both 4261 4261
security.nesting: "true"
security.syscalls.intercept.mknod: "true"
security.syscalls.intercept.mount.allowed: cifs,smb,nfs,nfsv4
security.syscalls.intercept.setxattr: "true"
security.syscalls.intercept.sysinfo: "true"
volatile.base_image: fdccb6cc3f5ecffe3e7346b1a53970a3d3dc7fadbe255a1a50d8455209e1b797
volatile.cloud-init.instance-id: b8f28851-4fc4-4ca5-bd19-8e5c5cd5898b
volatile.ext.host_name: veth76a73317
volatile.ext.hwaddr: 00:16:3e:bf:b8:82
volatile.idmap.base: "0"
volatile.idmap.current: '[{"Isuid":true,"Isgid":true,"Hostid":0,"Nsid":0,"Maprange":1000},{"Isuid":true,"Isgid":false,"Hostid":1001000,"Nsid":1000,"Maprange":3261},{"Isuid":true,"Isgid":true,"Hostid":4261,"Nsid":4261,"Maprange":1},{"Isuid":true,"Isgid":false,"Hostid":1004262,"Nsid":4262,"Maprange":999995738},{"Isuid":true,"Isgid":true,"Hostid":0,"Nsid":0,"Maprange":1000},{"Isuid":false,"Isgid":true,"Hostid":1001000,"Nsid":1000,"Maprange":3261},{"Isuid":true,"Isgid":true,"Hostid":4261,"Nsid":4261,"Maprange":1},{"Isuid":false,"Isgid":true,"Hostid":1004262,"Nsid":4262,"Maprange":999995738}]'
volatile.idmap.next: '[{"Isuid":true,"Isgid":true,"Hostid":0,"Nsid":0,"Maprange":1000},{"Isuid":true,"Isgid":false,"Hostid":1001000,"Nsid":1000,"Maprange":3261},{"Isuid":true,"Isgid":true,"Hostid":4261,"Nsid":4261,"Maprange":1},{"Isuid":true,"Isgid":false,"Hostid":1004262,"Nsid":4262,"Maprange":999995738},{"Isuid":true,"Isgid":true,"Hostid":0,"Nsid":0,"Maprange":1000},{"Isuid":false,"Isgid":true,"Hostid":1001000,"Nsid":1000,"Maprange":3261},{"Isuid":true,"Isgid":true,"Hostid":4261,"Nsid":4261,"Maprange":1},{"Isuid":false,"Isgid":true,"Hostid":1004262,"Nsid":4262,"Maprange":999995738}]'
volatile.int.host_name: veth2f87e77a
volatile.int.hwaddr: "16:10:01:06:00:06"
volatile.last_state.idmap: '[]'
volatile.last_state.power: RUNNING
volatile.last_state.ready: "false"
volatile.uuid: c08b2fef-3630-467f-9c74-c177e1590487
volatile.uuid.generation: c08b2fef-3630-467f-9c74-c177e1590487
devices:
USERDATA:
path: /_USERDATA
propagation: rshared
recursive: "true"
source: /_USERDATA/
type: disk
ext:
name: ext
nictype: bridged
parent: lxdbr0
type: nic
int:
name: int
nictype: bridged
parent: nmbr-local
type: nic
root:
path: /
pool: lxd_pool
type: disk
ephemeral: false
profiles:
- dockerProfile
stateful: false
description: ""
# lxc profile show dockerProfile
config:
boot.autostart: "true"
linux.kernel_modules: wireguard,ip_tables
raw.idmap: |
both 0-999 0-999
both 4261 4261
security.nesting: "true"
security.syscalls.intercept.mknod: "true"
security.syscalls.intercept.mount.allowed: cifs,smb,nfs,nfsv4
security.syscalls.intercept.setxattr: "true"
security.syscalls.intercept.sysinfo: "true"
description: ""
devices:
USERDATA:
path: /_USERDATA
propagation: rshared
recursive: "true"
source: /_USERDATA/
type: disk
int:
name: int
nictype: bridged
parent: nmbr-local
type: nic
root:
path: /
pool: lxd_pool
type: disk
name: dockerProfile
used_by:
- /1.0/instances/FedoraLxd
What can I check and what can I try?
