Reputation: 6052
Multiple LXD containers on single macvlan interface
I'm a little confused as to how the following scenario works. It's a very simple setup, so I hope the explanation is simple.
I have a host with a single physical NIC. I create a single macvlan sub-interface in bridge mode off this physical NIC. Then I start up two LXD/LXC containers. Each with their own unique MAC and IP, but in the profile, I specify the same single macvlan sub-interface as each container's parent interface.
Both containers have access to the network without issue. I'm also able to SSH into each container using each container's unique IP address. This is the bit that confuses me:
How is all of this working underneath the hood? Both containers are using the single macvlan MAC/IP when accessing the external world. Isn't there going to be some sort of collision? Shouldn't this not work? Shouldn't I need one macvlan subinterface per container? Is there some sort of NAT going on here?
macvlan isn't documented much, hoping someone out there can help out.
Upvotes: 0
Views: 845
Answers (1)
Reputation: 23
There isn't NATing per say as that is at the IP layer -- MACs are the link layer -- but it is a similar result.
All of the MACs (the NIC's and the macvlan's) will get routed through the same link that goes to the NIC. The NIC device driver will then route the traffic to the correct interface (virtual or not) which puts it to one of the guests or to the host. You can think of macvlan's as virtual switches.
Upvotes: 1
Related Questions
- lxd (ubuntu 16.10) container mac address
- How to connect additional network to container with ipvlan l3 network?
- LXC containers on host's lan
- LXD public ip to container using routed
- LXC - Linux Containers - Add new network interface without restarting
- Assigning a local IP to docker containers
- Missing Network function on LXD?
- How to setup LXD containers that communicate over the LAN
- Multiple NIC and Docker containers
- LXC with Open vSwitch