OVH Community, your new community space.

HOWTO: Clean IP Failover/RIPE configuration notes

25-05-2011, 01:23
Any suggestion for configuring CentOS installer on a VPS?

It wants a gateway that is valid for the Failover IP's netmask. I tried a netmask of and using the correct gateway for my physical server but was never able to have the IP respond.

I tried using the IP address as its own gateway, which used to work, but to no avail.

Quite annoying that it used to work with bad config, which would at least do the job until the box had installed and had access to shell to configure it properly, but now nothing.

I wrote a custom system for Xen that installs CentOS VPS's with a kickstart script but it's no use if I can't get it to access network.

I guess I could run some sort of local bridge that would access a mirror hosted on each server but that would require wasting hundreds of GBs per host node on simply storing CentOS packages when they are already available on

I'll crack on and keep trying but if anyone has any insights I'd love to hear them!

02-07-2010, 18:54
We have 2 servers in a vrack. How do we get the IP's to work on the VM's? We want to be able to move VM's between servers in the vrack without having to worry about reconfiguring everything.

01-07-2010, 12:07
done No need for stick. It's only relevant now

30-06-2010, 19:14
why not stick this post in the how-to section?

23-06-2010, 22:30
Link to IPAlias for english speaking..

23-06-2010, 15:12
Hi everybody.

Let me provide you a little bit more information about our warning emails of IP's.

Why we send it?
ARP flooding due to faulty configurations on server do too many 'NOISES' in the network.
So we try to advise everybody about the bad configurations.

You can find 3 cases of errors and here are the solutions:

1) You are using a failover ip WITHOUT a virtual mac as a simple ALIAS:

Use the good configuration for your Failover IP:
important is that you use the good netmask and the right broadcast!

1a) your IP's are a BLOC RIPE NOT SPLITTED:

use the netmask and broadcast that you have received in the email for the allocation of the bloc.

1b) if your IP's are issued from a bloc ripe and if the bloc ripe is SPLITTED and if you DON'T use a virtual mac:

the rules are the same as for a normal failover ip !! (see case 1)

A simple failover has not to use a GATEWAY. The ip is routed over the physical IP.

2) you use a failover ip WITH a virtual mac:

so you must ensure that the GATEWAY for the IP is the REAL gateway of your server.
if the IP of your server is: the gateway of your server is

A failover WITH virtual mac on this host: must use:
- as gateway
- the assigned mac as mac for the virtual interface

3) you use a failover WITHOUT a virtual mac ON a VIRTUAL MACHINE throught 'NAT'

So your IP must NOT use the default gateway of server (ip.ser.ver.254) BUT the physical IP of your eth0!!
So the gateway for an IP failover in NAT mode is ip.of.your.server

VRACK customers did not use the explanations here. They have their OWN guides.!!
In vrack a lot of configurations and errors can be possible. This are too many cases to explain here but you are always welcome to ask us!

Some FAQ:

Why do I receive an alert for bad configuration when my IP works?

An IP can work and can have bad configuration. The IP works but not in the CLEAN way. 2 failovers with bad configuration 2 failovers with bad configuration
Sometimes ( or one of his failovers ) try to talk with an failover on
Bad configuration do that this not work (error ARP because the router can not update his ARP table) .
We have ARP that has in our SLA. This is not normal and so we sent an email.

5 minutes later the talk directly to and the ARP table is updated. Than the error ARP disappears. But not your bad configuration and than after I time, is happen again.
So is important to fix this errors.

How can I see what is happen?

Using tcpdump and guides for each configuration can help.
First check if the configuration of your usage is as explained in the guide.
Then check in tcpdump what's wrong.

I hope my little message can help you to understand that we have a lot of possibility of errors and that we not can provide 1 solution for everybody.