Guests and host can't communicate (VLAN, CentOS 7)

[ezekieldas]

I'm using CentOS 7 on everything (except the Mac noted below). Host has VirtualBox 5.1.8. Network is 192.168.10.0/24. There are no firewalls anywhere.

Everything works as expected in this scenario:

No VLAN tagging. Hosts and guests can communicate on any port, to/from any ip. Network interface on each guest is bridged. Life is good here.

This scenario fails:

I created VLAN interfaces on the host and each guest. We'll call this eth0.10, VLAN 10. Each guest continues to use eth0 (because using eth0.10 effectively removed it from the network). Network interface on each guest is bridged.

So here's the network problem. Please note: when I mention ping here I realize that's just ICMP but my tests have also included TCP tests. I'm just using ping for brevity...


All members of VLAN 10

Host = 192.168.10.50
Guest A = 192.168.10.5
Guest B = 192.168.10.10
Mac = 192.168.10.200

- Guest A can ping Guest B (and the reverse is true)
- Guest B can ping Guest A (this is the reverse)
- Guest A OR Guest B can NOT ping Host
- Host can NOT ping Guest A OR Guest B
- Mac can ping Guest A, Guest B, AND Host (and the reverse is true)

Since the Mac can talk to everybody, and the reverse, I ran Wireshark (packet sniffer) on the Mac. I used the filter 'vlan host 192.168.10.5' and I can see the vlan id 10 in the packet! The same is true for every single host in vlan 10.

So everybody but the host can see the guests. The guests can all see each other and everybody else but not the host. Crazy right?

I've read a few things about Open Vswitch (http://openvswitch.org) but I don't know if this is what I need. It seems that I'm overlooking something fundamental here but I've checked the work from so many angles now.

Any suggestions would be greatly appreciated!

[ezekieldas]

Is anyone using VLAN interfaces on Linux with host and guests?