Versions Compared

Old Version 4

changes.mady.by.user W.Erber

Saved on

compared with

New Version 5

changes.mady.by.user W.Erber

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: name change to PAR

...

General Information

Currently, Charon-HPA PAR requires a dedicated Ethernet interface. TAP interfaces (connected to a Linux virtual bridge are not supported).

...

This chapter shows a workaround by which Charon-HPA PAR traffic can use a virtual bridge on Linux. This is not the recommended configuration, but may be useful in several situations, for example:

...

  1. Create the veth0/veth1 interface pair:
    # ip link add veth0 type veth peer name veth1

  2. Activate the interface pair:
    # ip link set veth0 up
    # ip link set veth1 up

  3. Turn off offloading (normally done in the Charon-HPA PAR configuration file):
    # ethtool -K veth1 rx off tx off sg off gso off gro off txvlan off rxvlan off
    # ethtool -K veth0 rx off tx off sg off gso off gro off txvlan off rxvlan off

  4. Create the virtual bridge and activate it if it does not yet exist:
    # ip link add name <bridge-name> type bridge
    # ip link set <bridge-name> up

  5. Add physical interface and veth interface to bridge:
    # ip link set <physical-int-name> up
    # ip link setĀ <physical-int-name> master <bridge-name>
    # ip link set veth0 masterĀ <bridge-name>

  6. Then configure Charon-HPA PAR to use veth1.


After this configuration, both the host and the guest system can use the physical interface for communication. If required, firewall rules for bridge traffic can be added.

...