Join Log in
Score:0
Toodarday avatar Server

Attempting to GRE tunnel IP block through public IP (OVH > Hetzner)

pk flag
Toodarday

I am attempting to route an IPv4 /28 block through my OVH server to a server I have with Hetzner through their main public IPs. I found a guide attached below but I am unable to ping 164.132.xxx.1 externally. 164.132.xxx.1 does ping from the OVH node after.

Public IPv4 (OVH) server 1: 141.94.176.xxx

Public IPv4 server 2 (Hetzner) : 5.9.105.xxx

IP block I want to use on server 2 (OVH IP Block): 164.132.xxx.0/28

Bridge interface server2: vmbr0

What I have tried:

Run this on server 1:

ip tunnel add gre1 mode gre remote 5.9.105.xxx local 141.94.176.xxx ttl 255
ip link set gre1 up

Run this on server 2:

ip tunnel add gre1 mode gre remote 141.94.176.xxx local 5.9.105.xxx ttl 255
ip link set gre1 up

Then we need to create a route on server 1 that will route the IP traffic over the GRE tunnel

Run this on server 1:

ip route add 164.132.xxx.0/28 dev gre1

The next step is to route data from the GRE tunnel to the bridge and back.

Run this on server 2:

ip rule add from 164.132.xxx.0/28 table 666
ip route add default dev gre1 table 666
ip route add 164.132.xxx.0/28 dev vmbr0 table 666

Last thing to do is to add the a IP the to bridge. This is gonna be the gateway for you VM's!
Use the second IP of the range!

Run this on server 2:

ip addr add 164.132.xxx.1/28 dev vmbr0

OVH node:

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 02:00:00:c5:bc:6f brd ff:ff:ff:ff:ff:ff
    inet 141.94.176.xxx/32 brd 141.94.176.xxx scope global eth0
       valid_lft forever preferred_lft forever
    inet6 fe80::ff:fec5:bc6f/64 scope link
       valid_lft forever preferred_lft forever
3: gre0@NONE: <NOARP> mtu 1476 qdisc noop state DOWN group default qlen 1000
    link/gre 0.0.0.0 brd 0.0.0.0
4: gretap0@NONE: <BROADCAST,MULTICAST> mtu 1462 qdisc noop state DOWN group default qlen 1000
    link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff
5: gre1@NONE: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1476 qdisc noqueue state UNKNOWN group default qlen 1000
    link/gre 141.94.176.xxx peer 5.9.105.xxx
    inet6 fe80::200:5efe:8d5e:b0a0/64 scope link
       valid_lft forever preferred_lft forever

Hetzner node:

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: enp7s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
    link/ether 50:eb:f6:22:f4:72 brd ff:ff:ff:ff:ff:ff
    inet 5.9.105.xxx/27 scope global enp7s0
       valid_lft forever preferred_lft forever
    inet6 2a01:4f8:162:4202::2/64 scope global
       valid_lft forever preferred_lft forever
    inet6 fe80::52eb:f6ff:fe22:f472/64 scope link
       valid_lft forever preferred_lft forever
3: vmbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether a2:2a:09:2a:f3:36 brd ff:ff:ff:ff:ff:ff
    inet 164.132.xxx.1/32 scope global vmbr0
       valid_lft forever preferred_lft forever
    inet6 fe80::a02a:9ff:fe2a:f336/64 scope link
       valid_lft forever preferred_lft forever
4: vmbr1: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default qlen 1000
    link/ether e2:b3:f0:04:70:50 brd ff:ff:ff:ff:ff:ff
5: gre0@NONE: <NOARP> mtu 1476 qdisc noop state DOWN group default qlen 1000
    link/gre 0.0.0.0 brd 0.0.0.0
6: gretap0@NONE: <BROADCAST,MULTICAST> mtu 1462 qdisc noop state DOWN group default qlen 1000
    link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff
7: erspan0@NONE: <BROADCAST,MULTICAST> mtu 1450 qdisc noop state DOWN group default qlen 1000
    link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff
8: gre1@NONE: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1476 qdisc noqueue state UNKNOWN group default qlen 1000
    link/gre 5.9.105.xxx peer 141.94.176.xxx
    inet6 fe80::200:5efe:509:69cc/64 scope link
       valid_lft forever preferred_lft forever
18: tap100i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr0 state UNKNOWN group default qlen 1000
    link/ether ae:50:31:a7:74:60 brd ff:ff:ff:ff:ff:ff
66
0 + 0
gre
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.