Open VSwitch - Connect two virtual networks through two physical networks

Fab

2/24/24, 10:29 AM

I managed to setup the following network configuration :

HOST1 and HOST2 are two physical machines running Debian OS.
They have both two network cards (eth0 and eth1), each of them connected to two physically separated network and with different subnets.
OVS BR1 is an open vswitch bridge (one in each host)
VMx are virtual machines using vethvmx ovs port in the bridge of the host machine.
OVS BR1 are connected through an IPSEC over GRE tunnel (the green one through eth0).
VMx are able to ping other VMx etc... but are isolated from the network of eth0/eth1

As I would like to leverage on bandwith from eth1 and fallback on it in case of eth0 failure:

Is it possible to setup the yellow link (IPSEC over GRE tunnel) in a way it can load-balance traffic ? What about fallback to the other nic in case of failure?

Maybe through iptables mangle ? not sure if it can work with GRE though.
Note that I cannot bond eth0 and eth1 because they are completely different networks.
I can change the tunnel technology but I cannot change the physical network topology.

155

0 + 0

debian

ipsec

gre

openvswitch

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Open VSwitch - Connect two virtual networks through two physical networks

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.