> 1) for bridge/bond interfaces, there is a special meaning of leaving > the MAC address unassigned. It causes kernel to automatically set the > MAC address when the first port gets attached. By setting a persistent > MAC address, that automatism is not longer possible. This is incredibly important when using bonded interfaces at cloud providers that expect only to see known MAC addresses on the network. For example, at Equinix Metal (formerly packet.net), the switch upstream from the server expects to see MAC addresses from either of the NICs attached to the server. If a bond interface MAC doesn't match either of those two, the network traffic is blocked. This is a common practice for many cloud providers. This issue has caused me plenty of headaches until I realized the switch was eating my traffic coming from an unknown MAC. -- Major Hayden
Re: Should `MACAddressPolicy=persistent` for bridges/bonds/all-software-devices be reconsidered?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: Should `MACAddressPolicy=persistent` for bridges/bonds/all-software-devices be reconsidered?
- From: "Major Hayden" <major@xxxxxxxxxx>
- Date: Thu, 12 May 2022 10:05:25 -0500
- In-reply-to: <732d04e9d3e80e26d0931b2e6d182c4b0208efe6.camel@redhat.com>
- References:
- Prev by Date: Re: Execute a script/program at the start of a graphical session
- Next by Date: Re: Should `MACAddressPolicy=persistent` for bridges/bonds/all-software-devices be reconsidered?
- Previous by thread: Re: Should `MACAddressPolicy=persistent` for bridges/bonds/all-software-devices be reconsidered?
- Next by thread: [EFI-Stub][ARM64] Cannot load unified-kernel.efi using systemd EFI stub
- Index(es):
 |