{"id":2612,"date":"2025-06-20T09:19:41","date_gmt":"2025-06-20T07:19:41","guid":{"rendered":"http:\/\/clark.tipistrani.it\/?p=2612"},"modified":"2025-08-06T13:07:29","modified_gmt":"2025-08-06T11:07:29","slug":"networking-su-devuan-5-per-ambiente-di-test-con-xen","status":"publish","type":"post","link":"http:\/\/clark.tipistrani.it\/?p=2612","title":{"rendered":"Networking su Devuan 5 per ambiente di test con XEN"},"content":{"rendered":"

La parte di networking \u00e8 stata senza dubbio la pi\u00f9 complessa.
\nl’inizio \u00e8 stato “legare” i mac delle schede di rete al nome eth delle interfacce, il primo passo che deve essere eseguito in sequenza su ambo i nodi \u00e8 installare con apt i pacchetti ifrename bridge-utils ifensalve rispettivamente per creare iftab dove linkare mac a eth, creare le interfacce xenbrx necessarie, creare le interfacce bond necessarie.
\nLinkare mac a nome interfaccia sarebbe possibile anzi senza condizionale \u00e8 possibile tramite eudev (l’udev senza systemd) ma \u00e8 una cosa pi\u00f9 complessa che usare iftab.
\n\/etc\/iftab nel caso in esame \u00e8 un semplice file di testo simile a questo:
\neth0 \u00a0\u00a0\u00a0mac \u00a0\u00a0\u00a0\u00a000:0a:f7:c0:be:b4
\neth1 \u00a0\u00a0\u00a0mac \u00a0\u00a0\u00a0\u00a000:0a:f7:c0:be:b5
\neth2 \u00a0\u00a0\u00a0mac \u00a0\u00a0\u00a0\u00a0b4:45:06:f7:db:86
\neth3 \u00a0\u00a0\u00a0mac \u00a0\u00a0\u00a0\u00a0b4:45:06:f7:db:87
\neth4 \u00a0\u00a0\u00a0mac \u00a0\u00a0\u00a0\u00a0a0:36:9f:7c:40:d0
\neth5 \u00a0\u00a0\u00a0mac \u00a0\u00a0\u00a0\u00a0a0:36:9f:7c:40:d2
\neth6 \u00a0\u00a0\u00a0mac \u00a0\u00a0\u00a0\u00a0a0:36:9f:7c:39:a8
\neth7 \u00a0\u00a0\u00a0mac \u00a0\u00a0\u00a0\u00a0a0:36:9f:7c:39:aa
\nIn questo modo c’\u00e8 la certezza che le eth mantengano il nome, non mi \u00e8 mai successo che cambiassero nome, ma se hanno messo in piedi una simile situazione vuol dire che il rischi \u00e8 concreto quindi prima di fare danni lo uso.
\nUna volta definita questa questione modificare il file \/etc\/network\/interfaces in questo modo:<\/p>\n

# The loopback network interface
\nauto lo
\niface lo inet loopback<\/p>\n

allow-hotplug eth0
\niface eth0 inet manual<\/p>\n

allow-hotplug eth1
\niface eth1 inet manual<\/p>\n

allow-hotplug eth2
\niface eth2 inet manual<\/p>\n

allow-hotplug eth3
\niface eth3 inet manual<\/p>\n

allow-hotplug eth4
\niface eth4 inet manual
\nbond-master bond0<\/p>\n

allow-hotplug eth5
\niface eth5 inet manual
\nbond-master bond1<\/p>\n

allow-hotplug \u00a0eth6
\niface eth6 inet manual
\nbond-master bond0<\/p>\n

allow-hotplug eth7
\niface eth7 inet manual
\nbond-master bond1<\/p>\n

### interfaccia di rete LAN
\nauto xenbr0
\niface xenbr0 inet static
\naddress 192.168.2.245
\nnetmask 255.255.254.0
\nnetwork 192.168.2.0
\nbroadcast 192.168.3.255
\ngateway 192.168.2.241
\nbridge_ports eth0
\nbridge_waitport 0
\nbridge_fd 0
\nbridge_maxwait 0
\nbridge_stp off
\n#### interfaccia firewall virtuali
\nauto xenbr1
\niface xenbr1 inet manual
\nbridge_ports eth1
\nbridge_waitport 0
\nbridge_fd 0
\nbridge_maxwait 0
\nbridge_stp off<\/p>\n

#### interfaccia DMZ
\nauto xenbr2
\niface xenbr2 inet static
\naddress 192.168.200.245
\nnetmask 255.255.255.0
\nnetwork 192.168.200.0
\nbroadcast 192.168.200.255
\nbridge_ports eth2
\nbridge_waitports 0
\nbridge_fd 0
\nbridge_maxwait 0
\nbridge_stp off<\/p>\n

auto bond0
\niface bond0 inet static
\naddress 172.18.19.245
\nnetmask 255.255.255.0
\nnetwork 172.18.19.0
\nbroadcast 172.18.19.255
\nbond-slaves eth4 eth6
\nbond-mode 0
\nbond-miimon 100
\nbond-updelay 200
\nbond-downdelay 200
\nmtu 9000
\n#
\nauto bond1
\niface bond1 inet static
\naddress 172.19.19.245
\nnetmask 255.255.255.0
\nnetwork 172.19.19.0
\nbroadcast 172.19.19.255
\nbond-slaves eth5 eth7
\nbond-mode 0
\nbond-miimon 100
\nbond-updelay 200
\nbond-downdelay 200
\nmtu 9000<\/p>\n

Chiaramente sull’altro nodo gli IP sono uguali a meno dell’ultimo ottetto che \u00e8 .246<\/p>\n

in \/etc\/sysctl.d\/ creiamo il file 10G.conf che contiene:
\nnet.ipv4.tcp_congestion_control=cubic
\nnet.core.somaxconn = 1000
\nnet.core.netdev_max_backlog = 300000
\nnet.core.rmem_max = 16777216
\nnet.core.wmem_max = 16777216
\nnet.ipv4.tcp_max_syn_backlog = 8096
\nnet.ipv4.tcp_slow_start_after_idle = 0
\nnet.ipv4.tcp_tw_reuse = 1
\nnet.ipv4.ip_local_port_range = 10240 65535
\nnet.ipv4.tcp_rmem = 4096 87380 16777216
\nnet.ipv4.tcp_wmem = 4096 65536 16777216
\nnet.ipv4.tcp_mtu_probing=1
\nnet.ipv4.route.flush = 1
\nnet.ipv4.tcp_timestamps=0
\nnet.ipv4.tcp_fin_timeout=15
\nnet.ipv4.tcp_sack=0
\nnet.ipv4.tcp_moderate_rcvbuf=1
\nvm.vfs_cache_pressure=50<\/p>\n

modprobe tcp_cubic e inserire anche in \/etc\/modules per caricarlo ai successivi riavvii.<\/p>\n

Rieditare \/etc\/rc.local e aggiungere:
\n### eth 10gb tuning
\nifconfig eth4 txqueuelen 300000
\nifconfig eth4 mtu 9000
\nethtool -K eth4 rx on
\nethtool -K eth4 tx on
\nethtool -K eth4 sg on
\nethtool -K eth4 tso on
\nethtool -K eth4 gso on
\nethtool -K eth4 gro off
\n###
\nifconfig eth5 txqueuelen 300000
\nifconfig eth5 mtu 9000
\nethtool -K eth5 rx on
\nethtool -K eth5 tx on
\nethtool -K eth5 sg on
\nethtool -K eth5 tso on
\nethtool -K eth5 gso on
\nethtool -K eth5 gro off
\n####
\nifconfig eth6 txqueuelen 300000
\nifconfig eth6 mtu 9000
\nethtool -K eth6 rx on
\nethtool -K eth6 tx on
\nethtool -K eth6 sg on
\nethtool -K eth6 tso on
\nethtool -K eth6 gso on
\nethtool -K eth6 gro off
\n###
\nifconfig eth7 txqueuelen 300000
\nifconfig eth7 mtu 9000
\nethtool -K eth7 rx on
\nethtool -K eth7 tx on
\nethtool -K eth7 sg on
\nethtool -K eth7 tso on
\nethtool -K eth7 gso on
\nethtool -K eth7 gro off
\nLa parte di networking \u00e8 configurata<\/p>\n

fonte https:\/\/doc.tranquil.it\/xenserver_xcp-ng\/xcpng-config\/install-xcpng-drbd.html<\/a><\/p>\n

back<\/a>\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 home<\/a>\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 next<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

La parte di networking \u00e8 stata senza dubbio la pi\u00f9 complessa. l’inizio \u00e8 stato “legare” i mac delle schede di rete al nome eth delle interfacce, il primo passo che deve essere eseguito in sequenza su ambo i nodi \u00e8 installare con apt i pacchetti ifrename bridge-utils ifensalve rispettivamente per creare iftab dove linkare mac […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8,14,7,6],"tags":[303,302,86],"class_list":["post-2612","post","type-post","status-publish","format-standard","hentry","category-linux","category-networking","category-sistemi-operativi","category-work","tag-bond","tag-bridge","tag-xen"],"_links":{"self":[{"href":"http:\/\/clark.tipistrani.it\/index.php?rest_route=\/wp\/v2\/posts\/2612","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/clark.tipistrani.it\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/clark.tipistrani.it\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/clark.tipistrani.it\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/clark.tipistrani.it\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2612"}],"version-history":[{"count":7,"href":"http:\/\/clark.tipistrani.it\/index.php?rest_route=\/wp\/v2\/posts\/2612\/revisions"}],"predecessor-version":[{"id":2674,"href":"http:\/\/clark.tipistrani.it\/index.php?rest_route=\/wp\/v2\/posts\/2612\/revisions\/2674"}],"wp:attachment":[{"href":"http:\/\/clark.tipistrani.it\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2612"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/clark.tipistrani.it\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2612"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/clark.tipistrani.it\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2612"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}