systemd sysctl rp_filter conflicting with cilium #2

vincentmli · 2021-11-27T18:46:59Z

openEuler systemd-sysctl could overwrite cilium rp_filter and cause similar issue reported in in cilium/cilium#10645, use workaround below to solve the problem

cat /etc/sysctl.d/90-override.conf

net.ipv4.conf.default.rp_filter = 0 
net.ipv4.conf.*.rp_filter = 0

The text was updated successfully, but these errors were encountered:

vincentmli · 2021-11-27T22:23:35Z

since openEuler has rp_filter enabled

[root@openEuler ~]# grep -r 'rp_filter' /usr/lib/sysctl.d/
/usr/lib/sysctl.d/50-default.conf:net.ipv4.conf.default.rp_filter = 2 
/usr/lib/sysctl.d/50-default.conf:net.ipv4.conf.*.rp_filter = 2 
/usr/lib/sysctl.d/50-default.conf:-net.ipv4.conf.all.rp_filter

I recommend also add net.ipv4.conf.all.log_martians=1 in /usr/lib/sysctl.d/50-default.conf to make it easier for network trouble shooting

vincentmli · 2021-12-05T18:23:09Z

probably openEuler should adopt centos rp_filter setting

#grep 'rp_filter' /usr/lib/sysctl.d/50-default.conf 
net.ipv4.conf.all.rp_filter = 1

vincentmli mentioned this issue Dec 7, 2021

RFE: collect sysctl rp_filter in bugtool? cilium/cilium#18157

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

systemd sysctl rp_filter conflicting with cilium #2

systemd sysctl rp_filter conflicting with cilium #2

vincentmli commented Nov 27, 2021

vincentmli commented Nov 27, 2021

vincentmli commented Dec 5, 2021

systemd sysctl rp_filter conflicting with cilium #2

systemd sysctl rp_filter conflicting with cilium #2

Comments

vincentmli commented Nov 27, 2021

vincentmli commented Nov 27, 2021

vincentmli commented Dec 5, 2021