× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. June 2020

RE: Ethernet options for IBM i client LPAR with no physical resources, all virtual

1) No the bridge needs a physical interface and a virtual one. The
physical side acts as a layer 2 ethernet switch (that's the answer to your
#2 question) and that's its only function and is the first half of the pair
needed. The Second interface which would be a 268C and had the bridge name
on it then is the second half of the pair and that has the VLAN and IP
information.

Yes you will need a physical cable from the port on the card you choose to
use to the switch to provide connectivity. (second half of the answer to #2)


There is a picture in the link I sent you that fairly quickly lays it out
for you.

So here's an example:
Physical:
CRTLINETH LIND(BRIDGEPHY) RSRCNAME(CMN23) BRIDGE(VLAN4) +
ONLINE(*YES) VRYWAIT(*NOWAIT) MAXCTL(40) ADPTADR(*ADPT) +
EXCHID(056DCCF0) ETHSTD(*ETHV2) LINESPEED(*AUTO) +
DUPLEX(*AUTO) SRVOPT(*NONE) MAXFRAME(1496) +
SSAP((04 1493 *SNA)(C8 1493 *HPR)) THRESHOLD(*OFF) +
GENTSTFRM(*YES) LINKSPEED(10M) COSTCNN(0) COSTBYTE(0) +
SECURITY(*NONSECURE) PRPDLY(*LAN) USRDFN1(128) +
USRDFN2(128) USRDFN3(128) AUTOCRTCTL(*NO) CMNRCYLMT(2 5) +
MSGQ(*SYSVAL) +
TEXT(*BLANK)

Logical:
CRTLINETH LIND(BRIDGEVRT) RSRCNAME(CMN10) BRIDGE(VLAN4) +
ONLINE(*YES) VRYWAIT(*NOWAIT) MAXCTL(40) ADPTADR(*ADPT) +
EXCHID(056DCCF0) ETHSTD(*ETHV2) LINESPEED(*AUTO) +
DUPLEX(*AUTO) SRVOPT(*NONE) MAXFRAME(1496) +
SSAP((04 1493 *SNA)(C8 1493 *HPR)) THRESHOLD(*OFF) +
GENTSTFRM(*YES) LINKSPEED(10M) COSTCNN(0) COSTBYTE(0) +
SECURITY(*NONSECURE) PRPDLY(*LAN) USRDFN1(128) +
USRDFN2(128) USRDFN3(128) AUTOCRTCTL(*NO) CMNRCYLMT(2 5) +
MSGQ(*SYSVAL) +
TEXT(*BLANK)

Note the vlan is the same on both in the HMC definition and I use Bridge
name VLAN4 That's the glue that brings these two together.

On my systems the physical card is:
Resource Type Status Text
LIN13 576F Operational LAN Adapter
CMN22 576F Operational Ethernet Port
CMN23 576F Operational Ethernet Port
CMN24 576F Operational Ethernet Port
CMN25 576F Operational Ethernet Port

So the bridge is on T2 of that card.

This is the virtual:

CMB28 268C Operational Comm Processor
LIN08 268C Operational LAN Adapter
CMN10 268C Operational Ethernet Port

--
Jim Oberholtzer
Agile Technology Architects

-----Original Message-----
From: Steinmetz, Paul <PSteinmetz@xxxxxxxxxx>
Sent: Monday, June 1, 2020 12:23 PM
To: 'midrangel@xxxxxxxxxxxxxxxxx' <midrangel@xxxxxxxxxxxxxxxxx>; 'Midrange
Systems Technical Discussion' <midrange-l@xxxxxxxxxxxxxxxxxx>
Subject: RE: Ethernet options for IBM i client LPAR with no physical
resources, all virtual

Jim,

Two questions.
1) On my existing LPARs, I already have a virtual line and interface for
internal LPAR to LPAR communications, such as BRMS, SAVRST*, STRPASTHR, etc.
172.16.*.* using CMNXX (268C)

ETHVIRT00 ACTIVE
ETHVINET ACTIVE
ETHVITCP ACTIVE QTCPWRK QSYS 370752

Could I use this line, interface, resource for the bridge, or do need to
create a 2nd CMNXX (268C) and a 2nd Virtual Ethernet line?


2) On the host, how does this work if there is no interface and no IP.
I'd also have to cable this new port to the switch, which then will need
firewall rules, etc., correct.

Or am I missing something in this picture.

Paul

-----Original Message-----
From: midrangel@xxxxxxxxxxxxxxxxx <midrangel@xxxxxxxxxxxxxxxxx>
Sent: Monday, June 01, 2020 11:24 AM
To: Steinmetz, Paul <PSteinmetz@xxxxxxxxxx>; 'Midrange Systems Technical
Discussion' <midrange-l@xxxxxxxxxxxxxxxxxx>
Subject: RE: Ethernet options for IBM i client LPAR with no physical
resources, all virtual

New line description yes. Interface address no.

See:
https://www.ibm.com/support/pages/ethernet-bridging-between-ibm-i-host-and-i
bm-i-guest

Add the virtual ethernet to each of the guest partitions and the host
partition, and set a similar vlan number on them say: 1021

On the Host
On the available physical interface:
CRTLINETH LIND(ETHLINE) RSRCNAME(CMNxx) BRIDGE(MYBRIDGE) CRTLINETH
LIND(VETHLINE) RSRCNAME(CMNxx) BRIDGE(MYBRIDGE)

Now add your IP interfaces to VETHLINE, the virtual device.....

The "BRIDGE(MYBRIDGE)" ties them together.

On the guest:
On the each of the guests:

CRTLINETH LIND(VETHLINE) RSRCNAME(CMNxx)

IBM's Warning, take it seriously:

Important Note: IBM suggests that the selected Ethernet resources be used
for only layer-2 bridging and not for IBM i TCP/IP configuration. There is a
significant increase in processor usage for any host traffic that uses
bridged resources. In addition, any line description that is used for
bridging receives many frames that are not useful to the TCP/IP stack. These
frames use unnecessary processing resources. The virtual Ethernet line on
the host does not require an interface. You only need the physical and
virtual lines active for the bridge function to work. You should not have an
interface on the physical line used for the bridge either. Create a separate
physical line & interface for network traffic on the Host.




--
Jim Oberholtzer
Agile Technology Architects

-----Original Message-----
From: Steinmetz, Paul <PSteinmetz@xxxxxxxxxx>
Sent: Monday, June 1, 2020 9:54 AM
To: 'midrangel@xxxxxxxxxxxxxxxxx' <midrangel@xxxxxxxxxxxxxxxxx>; 'Midrange
Systems Technical Discussion' <midrange-l@xxxxxxxxxxxxxxxxxx>
Subject: RE: Ethernet options for IBM i client LPAR with no physical
resources, all virtual

I'm not following you.
If I use another port on the NIC, I still would need to create a new
interface and line, which would also include a new IP.

Paul

-----Original Message-----
From: midrangel@xxxxxxxxxxxxxxxxx <midrangel@xxxxxxxxxxxxxxxxx>
Sent: Monday, June 01, 2020 10:43 AM
To: Steinmetz, Paul <PSteinmetz@xxxxxxxxxx>; 'Midrange Systems Technical
Discussion' <midrange-l@xxxxxxxxxxxxxxxxxx>
Subject: RE: Ethernet options for IBM i client LPAR with no physical
resources, all virtual

No you do not want to put a bridge on that interface. Use one of the other
three on the NIC card. If you put ANY ip addresses on the physical side of
the bridge, you will not enjoy the results.

CPU pegged at max, no console interaction, no work no nuttun..... IPL is
the only way out at that point. IBM goes out of their way to tell you not
to do that. So being inquisitive, I tried it on my test system (that's what
it's for afterall) Yep, just as IBM predicted, bad things.....

--
Jim Oberholtzer
Agile Technology Architects

-----Original Message-----
From: Steinmetz, Paul <PSteinmetz@xxxxxxxxxx>
Sent: Monday, June 1, 2020 9:03 AM
To: 'midrangel@xxxxxxxxxxxxxxxxx' <midrangel@xxxxxxxxxxxxxxxxx>; 'Midrange
Systems Technical Discussion' <midrange-l@xxxxxxxxxxxxxxxxxx>
Subject: RE: Ethernet options for IBM i client LPAR with no physical
resources, all virtual

Currently, no bridge.
I had a bridge on another LPAR back on my P7, but none currently.
I have the docs that I used to create the bridge.
The problem is, on my host, my main line, ETHAGG01, would have to be varied
off to add/change the Bridge identifier.
Bridge identifier . . . . . . . . : *NONE

Paul

-----Original Message-----
From: midrangel@xxxxxxxxxxxxxxxxx <midrangel@xxxxxxxxxxxxxxxxx>
Sent: Monday, June 01, 2020 9:48 AM
To: 'Midrange Systems Technical Discussion' <midrange-l@xxxxxxxxxxxxxxxxxx>
Cc: Steinmetz, Paul <PSteinmetz@xxxxxxxxxx>
Subject: RE: Ethernet options for IBM i client LPAR with no physical
resources, all virtual

I had indicated earlier I would use the bridge. In your environment you
already have one do you not? So adding the new partition to the bridge is a
simple as making sure you create the guest ethernet adapter in the HMC to be
on the same VLAN as the other partitions that participate as clients on the
bridge network.
--
Jim Oberholtzer
Agile Technology Architects

-----Original Message-----
From: MIDRANGE-L <midrange-l-bounces@xxxxxxxxxxxxxxxxxx> On Behalf Of
Steinmetz, Paul via MIDRANGE-L
Sent: Sunday, May 31, 2020 7:48 PM
To: 'Midrange Systems Technical Discussion' <midrange-l@xxxxxxxxxxxxxxxxxx>
Cc: Steinmetz, Paul <PSteinmetz@xxxxxxxxxx>
Subject: Ethernet options for IBM i client LPAR with no physical resources,
all virtual

Power9.
V7R3.
I hosting i
I'm creating a new client LPAR for testing.
I created one years back on a Power7 client, had to create a an Ethernet
bridge on the I host.
Does the Ethernet need to be bridged or are there other options?


Thank You
_____
Paul Steinmetz
IBM i Systems Administrator

Pencor Services, Inc.
462 Delaware Ave
Palmerton Pa 18071

610-826-9117 work
610-826-9188 fax
610-349-0913 cell
610-377-6012 home

psteinmetz@xxxxxxxxxx
http://www.pencor.com/
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx To subscribe,
unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives at
https://archive.midrange.com/midrange-l.

Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related
questions.

Help support midrange.com by shopping at amazon.com with our affiliate link:
https://amazon.midrange.com





As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.