We need bridge (brX) interface(s) for linux kvm virtualization. <\/p>\n
EXAMPLE FOR 3 VLAN-S<\/strong><\/p>\n VLAN-s must be defined on Cisco switch<\/strong><\/p>\n VLAN 10 – IT vlan Define vlan without ip (L2 switch):<\/strong><\/p>\n Define vlan with ip address (L3 switch):<\/strong><\/p>\n INTERFACE CONFIGURATION ON CISCO SWITCH<\/strong><\/p>\n Connection to network interface eth0 on linux server for vlan 10 and vlan 30 (trunk connection):<\/p>\n Connection to network interface eth1 on linux server for vlan 20 (trunk connection):<\/p>\n NETWORK CONFIGURATION ON LINUX SERVER (Debian) <\/strong><\/p>\n We need bridge (brX) interface(s) for linux kvm virtualization. EXAMPLE FOR 3 VLAN-S VLAN-s must be defined on Cisco switch VLAN 10 – IT vlan VLAN 20 – DMZ vlan VLAN 30 – guest vlan Define vlan without ip (L2 switch): switch# conf t switch(config)# vlan 10 switch(config-vlan)# name vlan-it switch(config-vlan)# end switch# write Define […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10,6],"tags":[129,79,130,44,131,101],"class_list":["post-1335","post","type-post","status-publish","format-standard","hentry","category-cisco","category-linux-stuff","tag-bridge","tag-cisco-2","tag-kvm","tag-linux","tag-trunk","tag-vlan"],"_links":{"self":[{"href":"https:\/\/blog.spanger.org\/index.php?rest_route=\/wp\/v2\/posts\/1335","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.spanger.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.spanger.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.spanger.org\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.spanger.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1335"}],"version-history":[{"count":63,"href":"https:\/\/blog.spanger.org\/index.php?rest_route=\/wp\/v2\/posts\/1335\/revisions"}],"predecessor-version":[{"id":1433,"href":"https:\/\/blog.spanger.org\/index.php?rest_route=\/wp\/v2\/posts\/1335\/revisions\/1433"}],"wp:attachment":[{"href":"https:\/\/blog.spanger.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1335"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.spanger.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1335"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.spanger.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1335"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\nVLAN 20 – DMZ vlan
\nVLAN 30 – guest vlan<\/p>\nswitch# conf t\r\nswitch(config)# vlan 10\r\nswitch(config-vlan)# name vlan-it\r\nswitch(config-vlan)# end\r\nswitch# write<\/pre>\n
switch# conf t\r\nswitch(config)# interface vlan 10\r\nswitch(config-if)# ip adress 192.168.10.1 255.255.255.0\r\nswitch(config-if)# description vlan-it\r\nswitch(config-if)# end\r\nswitch# write<\/pre>\n
interface GigabitEthernet1\/0\/30\r\n description == kvm server IT\r\n switchport trunk encapsulation dot1q\r\n switchport trunk allowed vlan 10,30\r\n switchport mode trunk<\/pre>\n
interface GigabitEthernet1\/0\/31\r\n description == kvm server DMZ\r\n switchport trunk encapsulation dot1q\r\n switchport trunk allowed vlan 20\r\n switchport mode trunk<\/pre>\n
linux-server:~# cat \/etc\/network\/interfaces\r\n\r\n# The loopback network interface\r\nauto lo\r\niface lo inet loopback\r\n\r\n# VLAN 10 (IT vlan)\r\nauto eth0.10\r\niface eth0.10 inet manual\r\n up ifconfig eth0.10 up\r\n\r\n# KVM bridge , VLAN 10, via eth0 (management interface)\r\nauto br10\r\niface br10 inet static\r\n address xx.xy.xz.10\r\n netmask xx.xy.xz.0\r\n network xx.xy.xz.0\r\n broadcast xx.xy.xz.255\r\n gateway xx.xy.xz.1\r\n dns-nameservers 8.8.8.8 4.4.4.4\r\n dns-search local.domain.com\r\n bridge_ports eth0.10 \r\n bridge_maxwait 5\r\n bridge_fd 1\r\n bridge_stp on\r\n\r\n# VLAN 20 (DMZ vlan)\r\nauto eth1.20\r\niface eth1.20 inet manual\r\n up ifconfig eth1.20 up\r\n\r\n# KVM bridge, VLAN 20, via eth1\r\nauto br20\r\niface br20 inet manual\r\n bridge_ports eth1.20\r\n bridge_maxwait 5\r\n bridge_fd 1\r\n bridge_stp on\r\n\r\n# VLAN 30 (guest vlan)\r\nauto eth0.30\r\niface eth0.30 inet manual\r\n up ifconfig eth0.30 up\r\n\r\n# KVM bridge, VLAN 30, via eth0\r\nauto br30\r\niface br30 inet manual\r\n bridge_ports eth0.30\r\n bridge_maxwait 5\r\n bridge_fd 1\r\n bridge_stp on<\/pre>\n","protected":false},"excerpt":{"rendered":"