]>
git.proxmox.com Git - qemu-server.git/blob - pve-bridge
5 use PVE
:: Tools
qw(run_command) ;
10 die "no interface specified \n " if ! $iface ;
12 die "got strange interface name ' $iface ' \n "
13 if $iface !~ m/^tap(\d+)i(\d+)$/ ;
18 my $conf = PVE
:: QemuServer
:: load_config
( $vmid );
20 die "unable to get network config ' $netid ' \n "
23 my $net = PVE
:: QemuServer
:: parse_net
( $conf ->{ $netid });
24 die "unable to parse network config ' $netid ' \n " if ! $net ;
26 my $bridge = $net ->{ bridge
};
27 die "unable to get bridge setting \n " if ! $bridge ;
29 system ( "/sbin/ifconfig $iface 0.0.0.0 promisc up" ) == 0 ||
30 die "interface activation failed \n " ;
34 my $rate = int ( $net ->{ rate
}* 1024 * 1024 );
35 my $burst = 1024 * 1024 ;
37 system ( "/sbin/tc qdisc del dev $iface ingres >/dev/null 2>&1" );
38 system ( "/sbin/tc qdisc del dev $iface root >/dev/null 2>&1" );
40 run_command
( "/sbin/tc qdisc add dev $iface handle ffff: ingress" );
42 # this does not work wit virtio - don't know why
43 #run_command("/sbin/tc filter add dev $iface parent ffff: protocol ip prio 50 u32 match ip src 0.0.0.0/0 police rate ${rate}bps burst ${burst}b drop flowid :1");
44 # so we use avrate instead
45 run_command
( "/sbin/tc filter add dev $iface parent ffff: " .
46 "protocol ip prio 50 estimator 1sec 8sec " .
47 "u32 match ip src 0.0.0.0/0 police avrate ${rate}bps drop flowid :1" );
49 # tbf does not work for unknown reason
50 #$TC qdisc add dev $DEV root tbf rate $RATE latency 100ms burst $BURST
51 # so we use htb instead
52 run_command
( "/sbin/tc qdisc add dev $iface root handle 1: htb default 1" );
53 run_command
( "/sbin/tc class add dev $iface parent 1: classid 1:1 " .
54 "htb rate ${rate}bps burst ${burst}b" );
56 # enable this to debug tc
58 print "DEBUG tc settings \n " ;
59 system ( "/sbin/tc qdisc ls dev $iface " );
60 system ( "/sbin/tc class ls dev $iface " );
61 system ( "/sbin/tc filter ls dev $iface parent ffff:" );
68 my $vlan = $net ->{ tag
};
69 my $bridgevlan = $bridge . "v" . $vlan ;
71 #check if we have an only one ethX or bondX interface in the bridge
72 my ( undef , $interface ) = PVE
:: Storage
:: dir_glob_regex
( "/sys/class/net/ $bridge/brif/ " , '((eth|bond)\d+)' );
73 die "No interface in bridge" if ! $interface ;
74 die "You can't have 2 physical interfaces on the same bridge" if ( ref ( $interface ) eq 'ARRAY' );
76 my $interfacevlan = $interface . "." . $vlan ;
78 #create vlan on interface is not already exist
79 unless (- d
"/sys/class/net/ $interfacevlan " ) {
80 system ( "/sbin/vconfig add $interface $vlan " ) == 0 ||
81 die "can't add vlan $vlan to interface $interface\n " ;
84 #be sure to have the interfacevlan up
85 system ( "/sbin/ip link set $interfacevlan up" ) == 0 ||
86 die "can't up interface $interfacevlan\n " ;
88 # test if vlaninterface is already enslave in another bridge
89 my $path = "/sys/class/net/ $interfacevlan/brport/bridge " ;
91 my $targetbridge = readlink ( $path );
92 if ( $targetbridge =~ m/([0-9A-Za-z]+)$/ ) {
93 die "Interface $interfacevlan already exist in bridge $targetbridge " if $1 ne $bridgevlan ;
97 #add bridgevlan if it doesn't already exist
98 unless (- d
"/sys/class/net/ $bridgevlan " ) {
99 system ( "/usr/sbin/brctl addbr $bridgevlan " ) == 0 ||
100 die "can't add bridge $bridgevlan\n " ;
103 #be sure to have the bridge up
104 system ( "/sbin/ip link set $bridgevlan up" ) == 0 ||
105 die "can't up bridge $bridgevlan\n " ;
107 #add interfacevlan to the bridge
108 my ( undef , $interfacevlanfound ) = PVE
:: Storage
:: dir_glob_regex
( "/sys/class/net/ $bridgevlan/brif/ " , "( $interface\ . $vlan )" );
109 if (! defined ( $interfacevlanfound )) {
110 system ( "/usr/sbin/brctl addif $bridgevlan $interfacevlan " ) == 0 ||
111 die "can't add interface $interfacevlan to bridge $bridgevlan\n " ;
118 system ( "/usr/sbin/brctl addif $bridge $iface " ) == 0 ||
119 die "can't add interface to bridge \n " ;