-
Notifications
You must be signed in to change notification settings - Fork 4
/
ipvlan-macvlan-it.sh
864 lines (785 loc) · 36.5 KB
/
ipvlan-macvlan-it.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
#!/bin/sh
#
# Macvlan is merged upstream.
# Test a number of network creates, deletes and runs. Each testing
# different scenarios and configuration options for macvlan and ipvlan
#
# Change eth0 to the link to be used for the parent link `-o parent=`
#
# Config Options:
ETH=${ETH:-eth0}
RANDOM_LINK_NAME="foo"
PAUSE_SECONDS=1
# Expected Results:
EXPECTED_NETWORKS=54
EXPECTED_CONTAINERS=129
EXPECTED_MANUAL_8021Q_LINK=2
command_exists() {
command -v "$@" > /dev/null 2>&1
}
# Ensure docker is running
check_setup() {
if command_exists if command_exists sudo ps -ef | grep docker | awk '{print $2}' && [ -e /var/run/docker.sock ]; then
(set -x $dk '"Docker has been installed"') || true
echo "PASS -----> Docker daemon instance found"
else
echo "FAIL -----> A running Docker daemon was not found, start Docker with 'docker daemon -D'"
exit 1
fi
LINK_EXISTS=`grep ${ETH} /proc/net/dev`
if [ -n "$LINK_EXISTS" ] ; then
echo "PASS -----> Detected valid interface:[ ${ETH} ] to run the tests."
else
echo "FAIL -----> [ ${ETH} ] device was not found on this host. Specify the interface you wish to use as the macvlan/ipvlan -o host_interface by setting the 'ETH' variable in the script"
exit 1
fi
echo 'WARN -----> Prior to the test, the script will now ensure there are no Docker networks named [ ipnet ] or [ macnet ]'
echo 'INFO -----> To abort deleting those Docker networks hit ctrl^c within the next 5 seconds..'
sleep ${PAUSE_SECONDS}
INIT_LINK_COUNT=$(ip link | grep @${ETH} | wc -l)
final_cleanup
}
# Validate the expected results to the actual results of links, networks and containers
verify_results() {
REAL_LINK_COUNT=$(ip link | grep @${ETH} | wc -l)
ACTUAL_NETWORKS=$(docker network ls | grep "macvlan\|ipvlan" | wc -l)
ACTUAL_CONTAINERS=$(docker ps | grep "debian\|alpine" | wc -l)
ACTUAL_LINK_COUNT=$(ip link | grep @${ETH} | wc -l)
# ((POST_LINK_COUNT =${INIT_LINK_COUNT} + 2)) # Subtract the two manual links for .1q tests
# MANUAL_8021Q_LINK=$(ip link | grep "${ETH}.28\|${ETH}.29" | wc -l)
echo "#########################################################################################"
# The results should be 34 networks created
if [ ${ACTUAL_NETWORKS} -eq ${EXPECTED_NETWORKS} ]
then
echo "PASS ---------> Macvlan/Ipvlan drivers created the proper number of networks, actual:[ ${ACTUAL_NETWORKS} ]"
echo "PASS ---------> Macvlan/Ipvlan number of Links exist:[ ${ACTUAL_LINK_COUNT} ] ('ip link')"
else
echo "FAILED ---------> Macvlan/Ipvlan drivers created the wrong number of networks, actual:[ ${ACTUAL_NETWORKS} ] expected [ $EXPECTED_NETWORKS ]"
echo "FAILED ---------> Macvlan/Ipvlan number of Links exist, actual:[ ${ACTUAL_LINK_COUNT} ] ('ip link')"
fi
# The container account should be
if [ ${ACTUAL_CONTAINERS} -eq ${EXPECTED_CONTAINERS} ]
then
echo "PASS ---------> Macvlan/Ipvlan drivers created the proper number of containers, actual:[ ${ACTUAL_CONTAINERS} ]"
else
echo "FAILED ---------> Macvlan/Ipvlan drivers created the wrong number of containers, actual:[ ${ACTUAL_CONTAINERS} ] expected [ $EXPECTED_CONTAINERS ]"
fi
# Validate the manual link created for the custom parent sub-interface name test 'foo.19' was not deleted
LINK_EXISTS=$(ip link | grep ${RANDOM_LINK_NAME}.19)
if [ -n "$LINK_EXISTS" ] ; then
echo "PASS -----> Detected valid custom parent interface test link:[ ${RANDOM_LINK_NAME}.19 ] - tests will clean it up"
else
echo "FAIL -----> The custom link named link:[ ${RANDOM_LINK_NAME}.19 ] is not present and should have been created and not deleted"
fi
echo "#########################################################################################"
}
# Run the actual IT tests. Scripts runs them twice by creating, deleting and repeating that once
run() {
echo 'INFO -----> The following test will create a series of Mavlan and Ipvlan networks and containers'
echo 'INFO -----> After completing the tests, the containers and networks will then be deleted.'
echo 'INFO -----> If you wish to view the containers and networks, hit ctrl^c when prompted to break'
echo 'INFO -----> the script before cleanup. Rerunning the script will cleanup remaining networks'
echo 'INFO -----> Beginning network and container creations in 5 seconds..'
sleep ${PAUSE_SECONDS}
### Run the following tests
# Macvlan 802.1q sub-interfaces
macv_8021q
# Ipvlan L2 mode 802.1q sub-interfaces
ipv_8021q_l2
# Ipvlan L3 mode 802.1q sub-interfaces
ipv_8021q_l3
# Macvlan 802.1q multi-subnet networks
ipv_8021q_multinet_l3
# Ipvlan L2 mode 802.1q multi-subnet networks
mcv_8021q_multinet
# Ipvlan L3 mode 802.1q multi-subnet networks
ipv_8021q_multinet_l2
# Macvlan dual stack multi-net
mcv_dual_stack
# Ipvlan L2 mode dual stack multi-net
ipv_dual_stack_l2
# Ipvlan L3 mode dual stack multi-net
ipv_dual_stack_l3
# Macvlan internal network dual stack multi-net
mcv_internal_dual_stack
# Ipvlan L2 mode internal network dual stack multi-net
ipv_internal_dual_stack_l2
# Ipvlan L3 mode internal network dual stack multi-net
ipv_internal_dual_stack_l3
# Macvlan manual 802.1q existing interface
mcv_8021q_manual
# Ipvlan L2 mode manual 802.1q existing interface
ipv_8021q_manual_l2
# Ipvlan L3 mode manual 802.1q existing interface
ipv_8021q_manual_l3
echo '#########################################################################################'
echo 'INFO: -----> All tests are completed'
echo 'WARN -----> Deleting ALL containers and networks the test created in 5 seconds'
echo 'WARN -----> Hit ctrl^c to abort if you want to view the created networks and links prior to deletion and rerun the script to clean them up.'
sleep ${PAUSE_SECONDS}
}
macv_8021q() {
###################################################
# Macvlan Bridge Mode IPv4 802.1q VLAN Tagged Tests
#
### Network exclude eth0 192.168.31.2 address from IPAM with --aux-address
### eth0 in --aux-address=exclude1=192.168.31.2 can be named anything.
docker network create -d macvlan \
--subnet=192.168.31.0/24 \
--aux-address="exclude1=192.168.31.2" \
--gateway=192.168.31.254 \
-o parent=${ETH}.31 macnet31
### Network macvlan with --ip-range
docker network create -d macvlan \
--subnet=192.168.32.0/24 \
--ip-range=192.168.32.128/25 \
--gateway=192.168.32.254 \
-o parent=${ETH}.32 macnet32
### Network w/o explicit mode to default to -o macvlan_mode=bridge VLAN ID:33
docker network create -d macvlan \
--subnet=192.168.33.0/24 \
--gateway=192.168.33.1 \
-o parent=${ETH}.33 macnet33
### Network w/o explicit macvlan_mode=(defaults to bridge)
docker network create -d macvlan \
--subnet=192.168.34.0/24 \
--gateway=192.168.34.1 \
-o parent=${ETH}.34 macnet34
### Network with a GW: ,254 & VLAN ID:35
docker network create -d macvlan \
--subnet=192.168.35.0/24 \
--gateway=192.168.35.254 \
-o parent=${ETH}.35 macnet35
### Network w/o explicit --gateway=(libnetqork ipam defaults to .1)
docker network create -d macvlan \
--subnet=192.168.36.0/24 \
-o parent=${ETH}.36 \
-o macvlan_mode=bridge macnet36
### Network w/ GW: .254, w/o explicit --macvlan_mode
docker network create -d macvlan \
--subnet=192.168.37.0/24 \
--gateway=192.168.37.254 \
-o parent=${ETH}.37 \
-o macvlan_mode=bridge macnet37
### No Gateway specified test (defaults to x.x.x.1 as a gateway)
docker network create -d macvlan \
--subnet=192.168.38.0/24 \
-o parent=${ETH}.38 \
-o macvlan_mode=bridge macnet38
### No Gateway specified test (defaults to x.x.x.1 as a gateway)
docker network create -d macvlan \
--subnet=192.168.39.0/24 \
-o parent=${ETH}.39 \
-o macvlan_mode=bridge macnet39
### Start containers on each network
docker run --net=macnet31 --name=macnet31_test -itd alpine /bin/sh
docker run --net=macnet32 --name=macnet32_test -itd alpine /bin/sh
docker run --net=macnet33 --name=macnet33_test -itd alpine /bin/sh
docker run --net=macnet34 --name=macnet34_test -itd alpine /bin/sh
docker run --net=macnet35 --name=macnet35_test -itd alpine /bin/sh
docker run --net=macnet36 --name=macnet36_test -itd alpine /bin/sh
### Start containers with explicit --ip4 addrs
docker run --net=macnet37 --name=macnet37_test --ip=192.168.37.10 -itd alpine /bin/sh
docker run --net=macnet38 --name=macnet38_test --ip=192.168.38.10 -itd alpine /bin/sh
docker run --net=macnet39 --name=macnet39_test --ip=192.168.39.10 -itd alpine /bin/sh
#
}
##############################################
# Ipvlan L2 Mode IPv4 802.1q VLAN Tagged Tests
ipv_8021q_l2() {
### Network exclude eth0 192.168.41.2 address from IPAM with --aux-address
docker network create -d macvlan \
--subnet=192.168.41.0/24 \
--gateway=192.168.41.254 \
--aux-address="exclude_my_host_eth0=192.168.41.2" \
--aux-address="exclude_favorite_ip=192.168.41.3" \
-o parent=${ETH}.41 ipnet41
### Network with --ip-range
docker network create -d macvlan \
--subnet=192.168.42.0/24 \
--ip-range=192.168.42.128/25 \
--gateway=192.168.42.254 \
-o parent=${ETH}.42 ipnet42
### Network w/o explicit mode to default to -o ipvlan_mode=l2 VLAN ID:43
docker network create -d ipvlan \
--subnet=192.168.43.0/24 \
--gateway=192.168.43.1 \
-o parent=${ETH}.43 ipnet43
### Network w/o explicit ipvlan_mode=(defaults to l2 if unspecified)
docker network create -d ipvlan \
--subnet=192.168.44.0/24 \
--gateway=192.168.44.1 \
-o parent=${ETH}.44 ipnet44
### Network with a GW: ,254 & VLAN ID:45
docker network create -d ipvlan \
--subnet=192.168.45.0/24 \
--gateway=192.168.45.254 \
-o parent=${ETH}.45 ipnet45
### Network w/o explicit --gateway=(libnetqork ipam defaults to .1)
docker network create -d ipvlan \
--subnet=192.168.46.0/24 \
-o parent=${ETH}.46 \
-o ipvlan_mode=l2 ipnet46
### Network w/ GW: .254, w/o explicit --ipvlan_mode
docker network create -d ipvlan \
--subnet=192.168.47.0/24 \
--gateway=192.168.47.254 \
-o parent=${ETH}.47 \
-o ipvlan_mode=l2 ipnet47
### No Gateway specified test (defaults to x.x.x.1 as a gateway)
docker network create -d ipvlan \
--subnet=192.168.48.0/24 \
-o parent=${ETH}.48 \
-o ipvlan_mode=l2 ipnet48
### No Gateway specified test (defaults to x.x.x.1 as a gateway)
docker network create -d ipvlan \
--subnet=192.168.49.0/24 \
-o parent=${ETH}.49 \
-o ipvlan_mode=l2 ipnet49
### Network with --ip-range
docker network create -d ipvlan \
--subnet=192.168.40.0/24 \
--ip-range=192.168.40.128/25 \
--gateway=192.168.40.254 \
-o parent=${ETH}.40 ipnet40
### Start containers on each network
docker run --net=ipnet41 --name=ipnet41_test -itd alpine /bin/sh
docker run --net=ipnet42 --name=ipnet42_test -itd alpine /bin/sh
docker run --net=ipnet43 --name=ipnet43_test -itd alpine /bin/sh
docker run --net=ipnet44 --name=ipnet44_test -itd alpine /bin/sh
docker run --net=ipnet45 --name=ipnet45_test -itd alpine /bin/sh
docker run --net=ipnet46 --name=ipnet46_test -itd alpine /bin/sh
### Start containers with explicit --ip4 addrs
docker run --net=ipnet47 --name=ipnet47_test --ip=192.168.47.10 -itd alpine /bin/sh
docker run --net=ipnet48 --name=ipnet48_test --ip=192.168.48.10 -itd alpine /bin/sh
docker run --net=ipnet49 --name=ipnet49_test --ip=192.168.49.10 -itd alpine /bin/sh
#
}
##############################################
# Ipvlan L3 Mode IPv4 802.1q VLAN Tagged Tests
ipv_8021q_l3() {
### Network exclude eth0 192.168.52.2 address from IPAM with --aux-address
docker network create -d ipvlan \
--subnet=192.168.52.0/24 \
--gateway=192.168.52.1 \
--aux-address="reserve1=192.168.52.2" \
--aux-address="reserve2=192.168.52.3" \
-o ipvlan_mode=l3 \
-o parent=${ETH}.52 ipnet52
### Gateway is always ignored in L3 mode - default is 'default dev eth(n)'
docker network create -d ipvlan \
--subnet=192.168.53.0/24 \
--gateway=192.168.53.1 \
-o ipvlan_mode=l3 \
-o parent=${ETH}.53 ipnet53
### Network w/o --ip-range
docker network create -d ipvlan \
--subnet=192.168.54.0/24 \
--ip-range=192.168.54.128/25 \
-o ipvlan_mode=l3 \
-o parent=${ETH}.54 ipnet54
### Gateway is always ignored in L3 mode - default is 'default dev eth(n)'
docker network create -d ipvlan \
--subnet=192.168.55.0/24 \
--gateway=192.168.55.254 \
-o ipvlan_mode=l3 \
-o parent=${ETH}.55 ipnet55
### Network w/explicit mode set
docker network create -d ipvlan \
--subnet=192.168.56.0/24 \
-o parent=${ETH}.56 \
-o ipvlan_mode=l3 ipnet56
### Gateway is always ignored in L3 mode - default is 'default dev eth(n)'
docker network create -d ipvlan \
--subnet=192.168.57.0/24 \
--gateway=192.168.57.254 \
-o parent=${ETH}.57 \
-o ipvlan_mode=l3 ipnet57
### Network w/ explicit mode specified
docker network create -d ipvlan \
--subnet=192.168.58.0/24 \
-o parent=${ETH}.58 \
-o ipvlan_mode=l3 ipnet58
### Network w/ explicit mode specified
docker network create -d ipvlan \
--subnet=192.168.59.0/24 \
-o parent=${ETH}.59 \
-o ipvlan_mode=l3 ipnet59
### Start containers on each network
docker run --net=ipnet52 --name=ipnet52_test -itd alpine /bin/sh
docker run --net=ipnet53 --name=ipnet53_test -itd alpine /bin/sh
docker run --net=ipnet54 --name=ipnet54_test -itd alpine /bin/sh
docker run --net=ipnet55 --name=ipnet55_test -itd alpine /bin/sh
docker run --net=ipnet56 --name=ipnet56_test -itd alpine /bin/sh
### Start containers with explicit --ip4 addrs
docker run --net=ipnet57 --name=ipnet57_test --ip=192.168.57.10 -itd alpine /bin/sh
docker run --net=ipnet58 --name=ipnet58_test --ip=192.168.58.10 -itd alpine /bin/sh
docker run --net=ipnet59 --name=ipnet59_test --ip=192.168.59.10 -itd alpine /bin/sh
#
}
###########################################################
# Macvlan Multi-Subnet 802.1q VLAN Tagged Bridge Mode Tests
mcv_8021q_multinet() {
### Create multiple bridge subnets with a gateway of x.x.x.1:
docker network create -d macvlan \
--subnet=192.168.64.0/24 --subnet=192.168.66.0/24 \
--gateway=192.168.64.1 --gateway=192.168.66.1 \
--aux-address="foo=192.168.64.2" \
--aux-address="bar=192.168.66.2" \
-o parent=${ETH}.64 \
-o macvlan_mode=bridge macnet64
### Create multiple bridge subnets with a gateway of x.x.x.254:
docker network create -d macvlan \
--subnet=192.168.65.0/24 --subnet=192.168.67.0/24 \
--gateway=192.168.65.254 --gateway=192.168.67.254 \
-o parent=${ETH}.65 \
-o macvlan_mode=bridge macnet65
### Create multiple bridge subnets without a gateway (libnetwork IPAM will default to x.x.x.1):
docker network create -d macvlan \
--subnet=192.168.70.0/24 --subnet=192.168.72.0/24 \
-o parent=${ETH}.70 \
-o macvlan_mode=bridge macnet70
# Start Containers on network macnet64
docker run --net=macnet64 --name=macnet64_test --ip=192.168.64.10 -itd alpine /bin/sh
docker run --net=macnet64 --name=macnet66_test --ip=192.168.66.10 -itd alpine /bin/sh
docker run --net=macnet64 --ip=192.168.64.11 -itd alpine /bin/sh
docker run --net=macnet64 --ip=192.168.66.11 -itd alpine /bin/sh
docker run --net=macnet64 -itd alpine /bin/sh
# Start Containers on network macnet65
docker run --net=macnet65 --name=macnet65_test --ip=192.168.65.10 -itd alpine /bin/sh
docker run --net=macnet65 --name=macnet67_test --ip=192.168.67.10 -itd alpine /bin/sh
docker run --net=macnet65 --ip=192.168.65.11 -itd alpine /bin/sh
docker run --net=macnet65 --ip=192.168.67.11 -itd alpine /bin/sh
docker run --net=macnet65 -itd alpine /bin/sh
# Start Containers on network macnet70
docker run --net=macnet70 --name=macnet170_test --ip=192.168.70.10 -itd alpine /bin/sh
docker run --net=macnet70 --name=macnet172_test --ip=192.168.72.10 -itd alpine /bin/sh
docker run --net=macnet70 --ip=192.168.70.11 -itd alpine /bin/sh
docker run --net=macnet70 --ip=192.168.72.11 -itd alpine /bin/sh
docker run --net=macnet70 -itd alpine /bin/sh
}
#######################################################
# Ipvlan Multi-Subnet 802.1q VLAN Tagged L2 Mode Tests
ipv_8021q_multinet_l2() {
### Ipvlan l2 mode, VLAN ID:5,
# Gateway left default for one subnet to get default .1 IP
docker network create -d ipvlan \
--subnet=192.168.5.0/24 \
--subnet=192.168.7.0/24 \
--gateway=192.168.5.254 \
-o ipvlan_mode=l2 \
-o parent=${ETH}.5 ipnet5
# Start Containers on network ipnet5
docker run --net=ipnet5 --name=ipnet5_test -itd alpine /bin/sh
docker run --net=ipnet5 --ip=192.168.5.20 -itd alpine /bin/sh
docker run --net=ipnet5 --ip=192.168.7.20 -itd alpine /bin/sh
}
#######################################################
# Ipvlan Multi-Subnet 802.1q VLAN Tagged L3 Mode Tests
ipv_8021q_multinet_l3() {
### Create multiple l3 mode subnets VLAN ID:104
# Gateway is ignored since L3 is always 'default dev eth0'
docker network create -d ipvlan \
--subnet=192.168.104.0/24 --subnet=192.168.106.0/24 \
--gateway=192.168.104.1 --gateway=192.168.106.1 \
-o ipvlan_mode=l3 \
-o parent=${ETH}.104 ipnet104
### Create multiple l3 subnets w/ VLAN ID:104:
docker network create -d ipvlan \
--subnet=192.168.105.0/24 --subnet=192.168.107.0/24 \
-o parent=${ETH}.105 \
-o ipvlan_mode=l3 ipnet105
### Create multiple l3 subnets w/ VLAN ID:110:
docker network create -d ipvlan \
--subnet=192.168.110.0/24 --subnet=192.168.112.0/24 \
-o parent=${ETH}.110 \
-o ipvlan_mode=l3 ipnet110
# Start Containers on network ipnet104
docker run --net=ipnet104 --name=ipnet104_test --ip=192.168.104.10 -itd alpine /bin/sh
docker run --net=ipnet104 --name=ipnet106_test --ip=192.168.106.10 -itd alpine /bin/sh
docker run --net=ipnet104 --ip=192.168.104.11 -itd alpine /bin/sh
docker run --net=ipnet104 --ip=192.168.106.11 -itd alpine /bin/sh
docker run --net=ipnet104 -itd alpine /bin/sh
# Start Containers on network ipnet105
docker run --net=ipnet105 --name=ipnet105_test --ip=192.168.105.10 -itd alpine /bin/sh
docker run --net=ipnet105 --name=ipnet107_test --ip=192.168.107.10 -itd alpine /bin/sh
docker run --net=ipnet105 --ip=192.168.105.11 -itd alpine /bin/sh
docker run --net=ipnet105 --ip=192.168.107.11 -itd alpine /bin/sh
docker run --net=ipnet105 -itd alpine /bin/sh
# Start Containers on network ipnet110
docker run --net=ipnet110 --name=ipnet110_test --ip=192.168.110.10 -itd alpine /bin/sh
docker run --net=ipnet110 --name=ipnet112_test --ip=192.168.112.10 -itd alpine /bin/sh
docker run --net=ipnet110 --ip=192.168.110.11 -itd alpine /bin/sh
docker run --net=ipnet110 --ip=192.168.112.11 -itd alpine /bin/sh
docker run --net=ipnet110 -itd alpine /bin/sh
### Create a .1q trunk attached to a sub-interface parent
docker network create -d ipvlan \
--subnet=192.168.68.0/24 \
--subnet=192.168.69.0/24 \
--gateway=192.168.68.254 \
--gateway=192.168.69.254 \
-o parent=eth0.69 \
-o macvlan_mode=l3 macnet68
# Start Containers
docker run --net=macnet68 --name=macnet68_test -itd alpine /bin/sh
docker run --net=macnet68 --ip=192.168.69.11 -itd alpine /bin/sh
}
############################################
# Macvlan Bridge Mode V4/V6 Dual Stack Tests
mcv_dual_stack() {
### Create multiple ipv4 bridge subnets along with a ipv6 subnet
### Note ipv6 requires an explicit --gateway= in this case fd19::10
docker network create -d macvlan \
--subnet=192.168.216.0/24 --subnet=192.168.218.0/24 \
--gateway=192.168.216.1 --gateway=192.168.218.1 \
--subnet=fd19::/64 --gateway=fd19::10 \
-o parent=${ETH}.218 \
-o macvlan_mode=bridge macnet216
# Start Containers
docker run --net=macnet216 --name=macnet216_test -itd alpine /bin/sh
docker run --net=macnet216 --name=macnet218_test -itd alpine /bin/sh
docker run --net=macnet216 --ip=192.168.216.11 -itd alpine /bin/sh
docker run --net=macnet216 --ip=192.168.218.11 -itd alpine /bin/sh
}
##############################################
# Ipvlan Ipvlan L2 Mode V4/V6 Dual Stack Tests
ipv_dual_stack_l2() {
### Create multiple ipv4 bridge subnets along with a ipv6 subnet
### Note ipv6 requires an explicit --gateway= in this case fd19::10
docker network create -d ipvlan \
--subnet=192.168.213.0/24 --subnet=192.168.215.0/24 \
--gateway=192.168.213.1 --gateway=192.168.215.1 \
--subnet=fd47::/64 --gateway=fd47::10 \
-o parent=${ETH}.213 \
-o macvlan_mode=bridge ipnet213
# Start containers
docker run --net=ipnet213 --name=ipnet213_test -itd alpine /bin/sh
docker run --net=ipnet213 --name=ipnet215_test -itd alpine /bin/sh
docker run --net=ipnet213 --ip=192.168.213.11 -itd alpine /bin/sh
docker run --net=ipnet213 --ip=192.168.215.11 -itd alpine /bin/sh
docker run --net=ipnet213 --ip=192.168.213.12 --ip6=fd47::20 -itd alpine /bin/sh
docker run --net=ipnet213 --ip=192.168.215.12 --ip6=fd47::21 -itd alpine /bin/sh
}
#######################################
# Ipvlan L3 Mode V4/V6 Dual Stack Tests
ipv_dual_stack_l3() {
# Create an IPv6+IPv4 Dual Stack Ipvlan L3 network
# Gateways for both v4 and v6 are set to a dev e.g. 'default dev eth0'
# --aux-address is excluding an address from IPAM on each network
# --ip-range is masking off a sub range in the network for IPAM allocation
# Example results in 192.168.133.2-192.168.133.127 for container addressing
docker network create -d ipvlan \
--subnet=192.168.131.0/24 --subnet=192.168.133.0/24 \
--subnet=fd14::/64 \
--aux-address="exclude1=fd14::2" \
--aux-address="exclude2=192.168.131.2" \
--aux-address="exclude3=192.168.133.2" \
--ip-range=192.168.131.0/25 \
--ip-range=192.168.133.0/25 \
-o parent=${ETH}.131 \
-o ipvlan_mode=l3 ipnet131
# Start containers on the network
docker run --net=ipnet131 -itd alpine /bin/sh
docker run --net=ipnet131 --ip=192.168.131.10 --ip6=fd14::10 -itd alpine /bin/sh
docker run --net=ipnet131 --ip6=fd14::11 -itd alpine /bin/sh
# Create an IPv6+IPv4 Dual Stack Ipvlan L3 network. Same example but verifying the --gateway= are ignored
# Gateway/Nexthop is ignored in L3 mode and eth0 is used instead 'default dev eth0'
docker network create -d ipvlan \
--subnet=192.168.119.0/24 --subnet=192.168.117.0/24 \
--gateway=192.168.119.1 --gateway=192.168.117.1 \
--subnet=fd16::/64 --gateway=fd16::27 \
-o parent=${ETH}.117 \
-o ipvlan_mode=l3 ipnet117
# Start a container on the network
docker run --net=ipnet117 -itd alpine /bin/sh
# Start a second container specifying the v6 address
docker run --net=ipnet117 --ip6=fd16::10 -itd alpine /bin/sh
# Start a third specifying the IPv4 address
docker run --net=ipnet117 --ip=192.168.117.50 -itd alpine /bin/sh
# Start a 4th specifying both the IPv4 and IPv6 addresses
docker run --net=ipnet117 --ip6=fd16::50 --ip=192.168.119.50 -itd alpine /bin/sh
# Mix of v4/v6 subnets some with and some without gateways
# Note, excluded --aux-addresses cannot be assigned at 'docker run'
docker network create -d ipvlan \
--subnet=192.168.214.0/24 --gateway=192.168.214.254 \
--subnet=192.168.217.0/24 --gateway=192.168.217.254 \
--subnet=192.168.219.0/24 \
--subnet=fd17::/64 --gateway=fd17::10 \
--subnet=fd27::/64 --gateway=fd27::10 \
--subnet=fd37::/64 \
-o parent=${ETH}.214 \
--aux-address="foo1=fd17::12" \
--aux-address="foo2=192.168.217.2" \
--aux-address="foo3=192.168.214.2" \
-o ipvlan_mode=l3 ipnet214
# Start containers
docker run --net=ipnet214 --name=ipnet214_test -itd alpine /bin/sh
docker run --net=ipnet214 --name=ipnet217_test -itd alpine /bin/sh
docker run --net=ipnet214 --ip=192.168.214.11 -itd alpine /bin/sh
docker run --net=ipnet214 --ip=192.168.217.11 -itd alpine /bin/sh
docker run --net=ipnet214 --ip=192.168.214.12 --ip6=fd17::14 -itd alpine /bin/sh
docker run --net=ipnet214 --ip=192.168.217.12 --ip6=fd27::11 -itd alpine /bin/sh
docker run --net=ipnet214 --ip=192.168.214.13 --ip6=fd37::12 -itd alpine /bin/sh
docker run --net=ipnet214 --ip=192.168.219.10 --ip6=fd37::10 -itd alpine /bin/sh
}
#################################################################################
# Macvlan Bridge Mode Dummy Networks without a parent interface being specified
mcv_internal_dual_stack() {
# Without a '-o parent=' is the same as a --internal flag
docker network create -d macvlan \
--subnet=192.168.222.0/24 --subnet=192.168.224.0/24 \
--subnet=fd18::/64 \
--aux-address="exclude1=fd18::2" \
--aux-address="exclude2=192.168.222.2" \
--aux-address="exclude3=192.168.224.2" \
--ip-range=192.168.222.0/25 \
--ip-range=192.168.224.0/25 \
-o macvlan_mode=bridge macnet222
# Start containers on the network
docker run --net=macnet222 -itd alpine /bin/sh
docker run --net=macnet222 --ip=192.168.222.10 --ip6=fd18::10 -itd alpine /bin/sh
docker run --net=macnet222 --ip6=fd18::11 -itd alpine /bin/sh
# Create v4 dummy network w/explicit gw
docker network create -d macvlan \
--subnet=192.168.242.0/24 \
--gateway=192.168.242.254 macnet242
# Start two containers on the network
docker run --net=macnet242 -itd alpine /bin/sh
docker run --net=macnet242 -itd alpine /bin/sh
# Create v6 dummy network w/explicit gw
docker network create -d macvlan \
--subnet=fd28::/64 \
--gateway=fd28::254 macnet240
# Start two containers on the network
docker run --net=macnet240 -itd alpine /bin/sh
docker run --net=macnet240 --ip6=fd28::10 -itd alpine /bin/sh
# Create v4 internal network w/explicit gw
docker network create -d macvlan \
--subnet=192.168.245.0/24 \
--gateway=192.168.245.254 \
macnet245
# Start two containers on the network
docker run --net=macnet245 -itd alpine /bin/sh
docker run --net=macnet245 -itd alpine /bin/sh
# Create network w/ --internal and override --parent
docker network create -d macvlan \
--subnet=192.168.243.0/24 \
--gateway=192.168.243.254 \
macnet243
# Start two containers on the network
docker run --net=macnet243 -itd alpine /bin/sh
docker run --net=macnet243 -itd alpine /bin/sh
# Create network w/ --internal and override --parent
docker network create -d macvlan \
--subnet=192.168.253.0/24 \
--gateway=192.168.253.254 \
--internal macnet253
# Start two containers on the network
docker run --net=macnet253 -itd alpine /bin/sh
docker run --net=macnet253 -itd alpine /bin/sh
# Create network w/ --internal and override --parent
docker network create -d macvlan \
--subnet=192.168.251.0/24 \
--gateway=192.168.251.254 \
macnet251
# Start two containers on the network
docker run --net=macnet251 -itd alpine /bin/sh
docker run --net=macnet251 -itd alpine /bin/sh
}
##################################################
# Ipvlan L2 Mode --internal iface without a parent
# interface being specified e.g. --internal)
ipv_internal_dual_stack_l2() {
### Create multiple subnets w/ --internal flag
# verifies -o parent is ignored with --internal
docker network create -d ipvlan \
--subnet=192.168.210.0/24 \
--subnet=192.168.212.0/24 \
--gateway=192.168.210.1 \
--gateway=192.168.212.1 \
-o parent=eth0.210 \
--internal \
-o ipvlan_mode=l2 ipnet210
# Start containers on 192.168.212.0/24
docker run --net=ipnet210 --ip=192.168.210.10 -itd alpine /bin/sh
docker run --net=ipnet210 --name=ipnet210_test --ip=192.168.210.11 -itd alpine /bin/sh
# Start containers on 192.168.210.0/24
docker run --net=ipnet210 --ip=192.168.212.10 -itd alpine /bin/sh
docker run --net=ipnet210 --name=ipnet212_test --ip=192.168.212.11 -itd alpine /bin/sh
}
##################################################
# Ipvlan L3 Mode --internal iface without a parent
# interface being specified e.g. --internal
ipv_internal_dual_stack_l3() {
### Gateway options --gateways are ignored in L3 mode
docker network create -d ipvlan \
--subnet=192.168.8.0/24 \
--subnet=192.168.9.0/24 \
--gateway=192.168.9.254 \
--subnet=fded:7a74:dec4:5a18::/64 \
--gateway=fded:7a74:dec4:5a18::254 \
--subnet=fded:7a74:dec4:5a19::/64 \
--gateway=fded:7a74:dec4:5a19::254 \
-o ipvlan_mode=l3 ipnet9
# Start containers on 192.168.8.0/24 & 7a74:dec4:5a18::/64
docker run --net=ipnet9 --ip6=fded:7a74:dec4:5a18::81 -itd alpine /bin/sh
docker run --net=ipnet9 --ip=192.168.8.80 -itd alpine /bin/sh
docker run --net=ipnet9 --ip=192.168.8.81 --ip6=fded:7a74:dec4:5a18::80 -itd alpine /bin/sh
# Start containers on 192.168.9.0/24 & 7a74:dec4:5a19::/64
docker run --net=ipnet9 --ip6=fded:7a74:dec4:5a18::91 -itd alpine /bin/sh
docker run --net=ipnet9 --ip=192.168.9.90 -itd alpine /bin/sh
docker run --net=ipnet9 --ip=192.168.9.91 --ip6=fded:7a74:dec4:5a18::90 -itd alpine /bin/sh
# Start containers on a mix of the v4/v6 networks create
docker run --net=ipnet9 --ip=192.168.9.100 --ip6=fded:7a74:dec4:5a18::100 -itd alpine /bin/sh
docker run --net=ipnet9 --ip=192.168.8.100 --ip6=fded:7a74:dec4:5a19::100 -itd alpine /bin/sh
}
################################################################################
# Manually Create a Macvlan Bridge mode 802.1q and pass it as the parent link
# Ensure an existing custom link that does not conform to parent.vlan_id works
mcv_8021q_manual() {
### Macvlan Manual .1q Test
# Create a sub-interface on eth0 with a vlan id of 28
ip link add link ${ETH} name ${ETH}.28 type vlan id 28
# enable the new sub-interface
ip link set ${ETH}.28 up
# now add networks and hosts as you would normally by attaching to the master (sub)interface that is tagged
docker network create -d ipvlan \
--subnet=192.168.28.0/24 \
--gateway=192.168.28.1 \
-o parent=${ETH}.28 macnet28
# Start two containers on the network
docker run --net=macnet28 -itd alpine /bin/sh
docker run --net=macnet28 -itd alpine /bin/sh
### Ipvlan Manual .1q Test
# Create a sub-interface on eth0 with a vlan id of 29
ip link add link ${ETH} name ${ETH}.29 type vlan id 29
# enable the new sub-interface
ip link set ${ETH}.29 up
# now add networks and hosts as you would normally by attaching to the master (sub)interface that is tagged
docker network create -d ipvlan \
--subnet=192.168.29.0/24 \
--gateway=192.168.29.1 \
-o parent=${ETH}.29 ipnet29
# Start two containers on the network
docker run --net=ipnet29 -itd alpine /bin/sh
docker run --net=ipnet29 -itd alpine /bin/sh
# Create a sub-interface on eth0 with a vlan id of 26
ip link add link ${ETH} name ${ETH}.26 type vlan id 26
# enable the new sub-interface
ip link set ${ETH}.26 up
# now add networks and hosts as you would normally by attaching to the master (sub)interface that is tagged
docker network create -d ipvlan \
--subnet=192.168.26.0/24 \
--gateway=192.168.26.1 \
-o parent=${ETH}.26 macnet26
# Start two containers on the network
docker run --net=macnet26 -itd alpine /bin/sh
docker run --net=macnet26 -itd alpine /bin/sh
}
################################################################################
# Manually Create a Ipvlan L2 mode 802.1q and pass it as the parent link
# Links that already exist can be used if you don't want libnetwork to create them
ipv_8021q_manual_l2() {
### Ipvlan L2 Manual .1q Test
# Create a sub-interface on eth0 with a vlan id of 27
ip link add link ${ETH} name ${ETH}.27 type vlan id 27
# enable the new sub-interface
ip link set ${ETH}.27 up
# now add networks and hosts as you would normally
# by attaching to the master sub-interface that is tagged
docker network create -d ipvlan \
--subnet=192.168.27.0/24 \
--gateway=192.168.27.1 \
-o parent=${ETH}.27 ipnet27
# Start two containers on the network
docker run --net=ipnet29 -itd alpine /bin/sh
docker run --net=ipnet29 -itd alpine /bin/sh
}
############################################
### Ipvlan L3 Pre-Existing 802.1q interface
# with a custom named parent interface
ipv_8021q_manual_l3() {
# Create a sub-interface on eth0 with a vlan_id: 19 name: foo creating: foo.19
ip link add link ${ETH} name ${RANDOM_LINK_NAME}.19 type vlan id 19
# enable the new sub-interface
ip link set ${RANDOM_LINK_NAME}.19 up
# now add networks and hosts as you would normally by attaching to the master (sub)interface that is tagged
docker network create -d ipvlan \
--subnet=192.168.19.0/24 \
--gateway=192.168.19.1 \
-o ipvlan_mode=l3 \
-o parent=${RANDOM_LINK_NAME}.19 macnet19
# Start two containers on the network
docker run --net=macnet19 -itd alpine /bin/sh
docker run --net=macnet19 -itd alpine /bin/sh
}
### First cleanup
first_cleanup() {
# Separate function so as to leave ip links in place that were created from first
# test so they can be tested as predefined existing links on the second path.
echo 'WARN -----> Deleting all containers and links created by the tests...'
echo 'INFO -----> Running: "docker rm -f `docker ps -qa`"'
docker rm -f `docker ps -qa` > /dev/null 2>&1
echo 'INFO -----> Deleting all networks with names containing: ipnet'
echo 'INFO -----> Running: "docker network rm $(docker network ls | grep ipnet | awk '\{print \$1\}')"'
docker network rm $(docker network ls | grep ipnet | awk '{print $1}') > /dev/null 2>&1
echo 'INFO -----> Deleting all networks with names containing: macnet'
echo 'INFO -----> Running: "docker network rm $(docker network ls | grep macnet | awk '\{print \$1\}')"'
docker network rm $(docker network ls | grep macnet | awk '{print $1}') > /dev/null 2>&1
echo 'INFO -----> Deleting manual 802.1q Links for 802.1q trunk testing'
subparent_cleanup
echo 'INFO -----> Completed deleting all Macvlan/Ipvlan networks and associated Links'
echo "#########################################################################################"
echo 'INFO -----> Running the same test one more time to ensure there'
echo 'INFO -----> are no issues with IPAM releases and/or local k/v cache'
echo "#########################################################################################"
}
# Same as first_cleanup but sub-interfaces
final_cleanup() {
echo 'WARN -----> Deleting all containers and links created by the tests...'
echo 'INFO -----> Running: "docker rm -f `docker ps -qa`"'
docker rm -f `docker ps -qa` > /dev/null 2>&1
echo 'INFO -----> Deleting all networks with names containing: ipnet'
echo 'INFO -----> Running: "docker network rm $(docker network ls | grep ipnet | awk '\{print \$1\}')"'
docker network rm $(docker network ls | grep ipnet | awk '{print $1}') > /dev/null 2>&1
echo 'INFO -----> Deleting all networks with names containing: macnet'
echo 'INFO -----> Running: "docker network rm $(docker network ls | grep macnet | awk '\{print \$1\}')"'
docker network rm $(docker network ls | grep macnet | awk '{print $1}') > /dev/null 2>&1
echo 'INFO -----> Deleting manual 802.1q Links for 802.1q trunk testing'
subparent_cleanup
echo 'INFO -----> Completed deleting all Macvlan/Ipvlan networks and associated Links'
echo "#########################################################################################"
}
# Cleanup subinterfaces
subparent_cleanup(){
echo "INFO -----> Running: ip link del ${ETH}.26"
ip link del ${ETH}.26 > /dev/null 2>&1
echo "INFO -----> Running: ip link del ${ETH}.27"
ip link del ${ETH}.27 > /dev/null 2>&1
echo "INFO -----> Running: ip link del ${ETH}.28"
ip link del ${ETH}.28 > /dev/null 2>&1
echo "INFO -----> Running: ip link del ${ETH}.29"
ip link del ${ETH}.29 > /dev/null 2>&1
echo "INFO -----> Running: ip link del ${RANDOM_LINK_NAME}.19"
ip link del ${RANDOM_LINK_NAME}.19 > /dev/null 2>&1
}
############################################
# Script executes from here:
############################################
# Ensure the dependencies are satisfied
check_setup
# Create networks and containers
run
# Compare actual count, to expected count of networks and containers
verify_results
# Delete all networks and containers
first_cleanup
# Create all networks and containers one more time to ensure
# IPAM releases and local k/v cache was properly cleaned
run
# Compare actual count, to expected count of networks and containers
verify_results
# Delete all networks and containers
final_cleanup
echo "INFO -----> Tests Complete"
echo "#########################################################################################"