Additional resources
A network bond aggregates physical and virtual network interfaces into a single logical one. The kernel exclusively handles all operations. You can create bonds on different device types, such as Ethernet or VLANs, for higher throughput or redundancy.
Red Hat Enterprise Linux provides administrators different options to configure bond devices. For example:
Use nmcli to configure bond connections using the command line.
Use the RHEL web console to configure bond connections using a web browser.
Use nmtui to configure bond connections in a text-based user interface.
Use the nm-connection-editor application to configure bond connections in a graphical interface.
Use nmstatectl to configure bond connections through the Nmstate API.
Use RHEL system roles to automate the bond configuration on one or multiple hosts.
Understanding the default behavior of NetworkManager when managing bond port interfaces helps you to troubleshoot problems more effectively.
Default behavior:
Starting the controller interface does not automatically start the port interfaces.
Starting a port interface always starts the controller interface.
Stopping the controller interface also stops the port interface.
A controller without ports can start static IP connections.
A controller without ports waits for ports when starting DHCP connections.
A controller with a DHCP connection waiting for ports completes when you add a port with a carrier.
A controller with a DHCP connection waiting for ports continues waiting when you add a port without a carrier.
Depending on the bonding mode you want to use, you must configure the ports on the switch.
Expand Bonding mode Configuration on the switch
0 - balance-rr
Requires static EtherChannel enabled, not Link Aggregation Control Protocol (LACP)-negotiated.
1 - active-backup
No configuration required on the switch.
2 - balance-xor
Requires static EtherChannel enabled, not LACP-negotiated.
3 - broadcast
Requires static EtherChannel enabled, not LACP-negotiated.
4 - 802.3ad
Requires LACP-negotiated EtherChannel enabled.
5 - balance-tlb
No configuration required on the switch.
6 - balance-alb
No configuration required on the switch.
Show more
For details how to configure your switch, see the documentation of the switch.
To configure a network bond on the command line, use the nmcli utility.
Prerequisites
Two or more physical or virtual network devices are installed on the server.
To use Ethernet devices as ports of the bond, the physical or virtual Ethernet devices must be installed on the server.
To use team, bridge, or VLAN devices as ports of the bond, you can either create these devices while you create the bond or you can create them in advance as described in:
Procedure
Create a bond interface:
nmcli connection add type bond con-name bond0 ifname bond0 bond.options "mode=active-backup"
# nmcli connection add type bond con-name bond0 ifname bond0 bond.options "mode=active-backup"
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
This command creates a bond named bond0 that uses the active-backup mode.
To additionally set a Media Independent Interface (MII) monitoring interval, add the miimon=interval option to the bond.options property, for example:
nmcli connection add type bond con-name bond0 ifname bond0 bond.options "mode=active-backup,miimon=1000"
# nmcli connection add type bond con-name bond0 ifname bond0 bond.options "mode=active-backup,miimon=1000"
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Display the network interfaces, and note names of interfaces you plan to add to the bond:
nmcli device status
# nmcli device status
DEVICE TYPE STATE CONNECTION
enp7s0 ethernet disconnected --
enp8s0 ethernet disconnected --
bridge0 bridge connected bridge0
bridge1 bridge connected bridge1
...
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
In this example:
enp7s0 and enp8s0 are not configured. To use these devices as ports, add connection profiles in the next step.
bridge0 and bridge1 have existing connection profiles. To use these devices as ports, modify their profiles in the next step.
Assign interfaces to the bond:
If the interfaces you want to assign to the bond are not configured, create new connection profiles for them:
nmcli connection add type ethernet slave-type bond con-name bond0-port1 ifname enp7s0 master bond0
nmcli connection add type ethernet slave-type bond con-name bond0-port2 ifname enp8s0 master bond0
# nmcli connection add type ethernet slave-type bond con-name bond0-port1 ifname enp7s0 master bond0
# nmcli connection add type ethernet slave-type bond con-name bond0-port2 ifname enp8s0 master bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
These commands create profiles for enp7s0 and enp8s0, and add them to the bond0 connection.
To assign an existing connection profile to the bond:
Set the master parameter of these connections to bond0:
nmcli connection modify bridge0 master bond0
nmcli connection modify bridge1 master bond0
# nmcli connection modify bridge0 master bond0
# nmcli connection modify bridge1 master bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
These commands assign the existing connection profiles named bridge0 and bridge1 to the bond0 connection.
Reactivate the connections:
nmcli connection up bridge0
nmcli connection up bridge1
# nmcli connection up bridge0
# nmcli connection up bridge1
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Configure the IPv4 settings:
To set a static IPv4 address, network mask, default gateway, and DNS server to the bond0 connection, enter:
nmcli connection modify bond0 ipv4.addresses '192.0.2.1/24' ipv4.gateway '192.0.2.254' ipv4.dns '192.0.2.253' ipv4.dns-search 'example.com' ipv4.method manual
# nmcli connection modify bond0 ipv4.addresses '192.0.2.1/24' ipv4.gateway '192.0.2.254' ipv4.dns '192.0.2.253' ipv4.dns-search 'example.com' ipv4.method manual
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
To use DHCP, no action is required.
If you plan to use this bond device as a port of other devices, no action is required.
Configure the IPv6 settings:
To set a static IPv6 address, network mask, default gateway, and DNS server to the bond0 connection, enter:
nmcli connection modify bond0 ipv6.addresses '2001:db8:1::1/64' ipv6.gateway '2001:db8:1::fffe' ipv6.dns '2001:db8:1::fffd' ipv6.dns-search 'example.com' ipv6.method manual
# nmcli connection modify bond0 ipv6.addresses '2001:db8:1::1/64' ipv6.gateway '2001:db8:1::fffe' ipv6.dns '2001:db8:1::fffd' ipv6.dns-search 'example.com' ipv6.method manual
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
To use stateless address autoconfiguration (SLAAC), no action is required.
If you plan to use this bond device as a port of other devices, no action is required.
Optional: If you want to set any parameters on the bond ports, use the following command:
nmcli connection modify bond0-port1 bond-port.<parameter> <value>
# nmcli connection modify bond0-port1 bond-port.<parameter> <value>
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Activate the connection:
nmcli connection up bond0
# nmcli connection up bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Verify that the ports are connected, and the CONNECTION column displays the port’s connection name:
nmcli device
# nmcli device
DEVICE TYPE STATE CONNECTION
...
enp7s0 ethernet connected bond0-port1
enp8s0 ethernet connected bond0-port2
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
When you activate any port of the connection, NetworkManager also activates the bond, but not the other ports of it. You can configure that Red Hat Enterprise Linux enables all ports automatically when the bond is enabled:
Enable the connection.autoconnect-slaves parameter of the bond’s connection:
nmcli connection modify bond0 connection.autoconnect-slaves 1
# nmcli connection modify bond0 connection.autoconnect-slaves 1
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Reactivate the bridge:
nmcli connection up bond0
# nmcli connection up bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Verification
Temporarily remove the network cable from one of the network devices and check if the other device in the bond is handling the traffic.
Note that there is no method to properly test link failure events using software utilities. Tools that deactivate connections, such as nmcli, show only the bonding driver’s ability to handle port configuration changes and not actual link failure events.
Display the status of the bond:
cat /proc/net/bonding/bond0
# cat /proc/net/bonding/bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Use the RHEL web console to configure a network bond if you prefer to manage network settings using a web browser-based interface.
Prerequisites
Two or more physical or virtual network devices are installed on the server.
To use Ethernet devices as members of the bond, the physical or virtual Ethernet devices must be installed on the server.
To use team, bridge, or VLAN devices as members of the bond, create them in advance as described in:
You have installed the RHEL 8 web console.
You have enabled the cockpit service.
Your user account is allowed to log in to the web console.
For instructions, see Installing and enabling the web console .
Procedure
Log in to the RHEL 8 web console.
For details, see Logging in to the web console .
Select the Networking
Click Add bond in the Interfaces
Enter the name of the bond device you want to create.
Select the interfaces that should be members of the bond.
Select the mode of the bond.
If you select Active backup Primary
Set the link monitoring mode. For example, when you use the Adaptive load balancing ARP.
Optional: Adjust the monitoring interval, link up delay, and link down delay settings. Typically, you only change the defaults for troubleshooting purposes.
Click Apply .
By default, the bond uses a dynamic IP address. If you want to set a static IP address:
Click the name of the bond in the Interfaces
Click Edit
Select Manual Addresses
In the DNS + button, and enter the IP address of the DNS server. Repeat this step to set multiple DNS servers.
In the DNS search domains + button, and enter the search domain.
If the interface requires static routes, configure them in the Routes
Click Apply
Verification
Select the Networking
Temporarily remove the network cable from one of the network devices and check if the other device in the bond is handling the traffic.
Note that there is no method to properly test link failure events using software utilities. Tools that deactivate connections, such as the web console, show only the bonding driver’s ability to handle member configuration changes and not actual link failure events.
Display the status of the bond:
cat /proc/net/bonding/bond0
# cat /proc/net/bonding/bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
The nmtui application provides a text-based user interface for NetworkManager. You can use nmtui to configure a network bond on a host without a graphical interface.
In nmtui:
Navigate by using the cursor keys.
Press a button by selecting it and hitting Enter .
Select and clear checkboxes by using Space .
To return to the previous screen, use ESC .
Prerequisites
Two or more physical or virtual network devices are installed on the server.
To use Ethernet devices as ports of the bond, the physical or virtual Ethernet devices must be installed on the server.
Procedure
If you do not know the network device names on which you want configure a network bond, display the available devices:
nmcli device status
# nmcli device status
DEVICE TYPE STATE CONNECTION
enp7s0 ethernet unavailable --
enp8s0 ethernet unavailable --
...
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Start nmtui:
nmtui
# nmtui
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Select Edit a connection Enter .
Press Add
Select Bond Enter .
Optional: Enter a name for the NetworkManager profile to be created.
On hosts with multiple profiles, a meaningful name makes it easier to identify the purpose of a profile.
Enter the bond device name to be created into the Device
Add ports to the bond to be created:
Press Add Slaves
Select the type of the interface you want to add as port to the bond, for example, Ethernet
Optional: Enter a name for the NetworkManager profile to be created for this bond port.
Enter the port’s device name into the Device
Press OK
Repeat these steps to add more ports to the bond.
Set the bond mode. Depending on the value you set, nmtui displays additional fields for settings that are related to the selected mode.
Depending on your environment, configure the IP address settings in the IPv4 configuration IPv6 configuration
Press OK
Press Back
Select Quit Enter to close the nmtui application.
Verification
Temporarily remove the network cable from one of the network devices and check if the other device in the bond is handling the traffic.
Note that there is no method to properly test link failure events using software utilities. Tools that deactivate connections, such as nmcli, show only the bonding driver’s ability to handle port configuration changes and not actual link failure events.
Display the status of the bond:
cat /proc/net/bonding/bond0
# cat /proc/net/bonding/bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
If you use Red Hat Enterprise Linux with a graphical interface, you can configure network bonds using the nm-connection-editor application.
Note that nm-connection-editor can add only new ports to a bond. To use an existing connection profile as a port, create the bond by using the nmcli utility as described in Configuring a network bond by using nmcli .
Prerequisites
Two or more physical or virtual network devices are installed on the server.
To use Ethernet devices as ports of the bond, the physical or virtual Ethernet devices must be installed on the server.
To use team, bond, or VLAN devices as ports of the bond, ensure that these devices are not already configured.
Procedure
Open a terminal, and enter nm-connection-editor:
nm-connection-editor
$ nm-connection-editor
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Click the + button to add a new connection.
Select the Bond Create .
On the Bond
Optional: Set the name of the bond interface in the Interface name
Click the Add button to add a network interface as a port to the bond.
Select the connection type of the interface. For example, select Ethernet
Optional: Set a connection name for the port.
If you create a connection profile for an Ethernet device, open the Ethernet Device
Click Save .
Repeat the previous step for each interface you want to add to the bond:
Optional: Set other options, such as the Media Independent Interface (MII) monitoring interval.
Configure the IP address settings on both the IPv4 Settings IPv6 Settings
Click Save .
Close nm-connection-editor.
Verification
Temporarily remove the network cable from one of the network devices and check if the other device in the bond is handling the traffic.
Note that there is no method to properly test link failure events using software utilities. Tools that deactivate connections, such as nmcli, show only the bonding driver’s ability to handle port configuration changes and not actual link failure events.
Display the status of the bond:
cat /proc/net/bonding/bond0
# cat /proc/net/bonding/bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
You can use the declarative Nmstate API to configure a network bond. Nmstate ensures that the result matches the configuration file or rolls back the changes.
Depending on your environment, adjust the YAML file accordingly. For example, to use different devices than Ethernet adapters in the bond, adapt the base-iface attribute and type attributes of the ports you use in the bond.
Prerequisites
Two or more physical or virtual network devices are installed on the server.
To use Ethernet devices as ports in the bond, the physical or virtual Ethernet devices must be installed on the server.
To use team, bridge, or VLAN devices as ports in the bond, set the interface name in the port list, and define the corresponding interfaces.
The nmstate package is installed.
Procedure
Create a YAML file, for example ~/create-bond.yml, with the following content:
---
interfaces:
- name: bond0
type: bond
state: up
ipv4:
enabled: true
address:
- ip: 192.0.2.1
prefix-length: 24
dhcp: false
ipv6:
enabled: true
address:
- ip: 2001:db8:1::1
prefix-length: 64
autoconf: false
dhcp: false
link-aggregation:
mode: active-backup
port:
- enp1s0
- enp7s0
- name: enp1s0
type: ethernet
state: up
- name: enp7s0
type: ethernet
state: up
routes:
config:
- destination: 0.0.0.0/0
next-hop-address: 192.0.2.254
next-hop-interface: bond0
metric: 300
- destination: ::/0
next-hop-address: 2001:db8:1::fffe
next-hop-interface: bond0
metric: 300
dns-resolver:
config:
search:
- example.com
server:
- 192.0.2.200
- 2001:db8:1::ffbb
---
interfaces :
- name : bond0
type : bond
state : up
ipv4 :
enabled : true
address :
- ip : 192.0.2.1
prefix-length : 24
dhcp : false
ipv6 :
enabled : true
address :
- ip : 2001: db8: 1: : 1
prefix-length : 64
autoconf : false
dhcp : false
link-aggregation :
mode : active- backup
port :
- enp1s0
- enp7s0
- name : enp1s0
type : ethernet
state : up
- name : enp7s0
type : ethernet
state : up
routes :
config :
- destination : 0.0.0.0/0
next-hop-address : 192.0.2.254
next-hop-interface : bond0
metric : 300
- destination : : : /0
next-hop-address : 2001: db8: 1: : fffe
next-hop-interface : bond0
metric : 300
dns-resolver :
config :
search :
- example.com
server :
- 192.0.2.200
- 2001: db8: 1: : ffbb
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
These settings define a network bond with the following settings:
Network interfaces in the bond: enp1s0 and enp7s0
Mode: active-backup
Static IPv4 address: 192.0.2.1 with a /24 subnet mask
Static IPv6 address: 2001:db8:1::1 with a /64 subnet mask
IPv4 default gateway: 192.0.2.254
IPv6 default gateway: 2001:db8:1::fffe
IPv4 DNS server: 192.0.2.200
IPv6 DNS server: 2001:db8:1::ffbb
DNS search domain: example.com
Apply the settings to the system:
nmstatectl apply ~/create-bond.yml
# nmstatectl apply ~/create-bond.yml
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Verification
Display the status of the devices and connections:
nmcli device status
# nmcli device status
DEVICE TYPE STATE CONNECTION
bond0 bond connected bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Display all settings of the connection profile:
nmcli connection show bond0
# nmcli connection show bond0
connection.id: bond0
connection.uuid: 79cbc3bd-302e-4b1f-ad89-f12533b818ee
connection.stable-id: --
connection.type: bond
connection.interface-name: bond0
...
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Display the connection settings in YAML format:
nmstatectl show bond0
# nmstatectl show bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
You can use the network RHEL system role to configure a network bond and, if a connection profile for the bond’s parent device does not exist, the role can create it as well.
You can combine network interfaces in a bond to provide a logical interface with higher throughput or redundancy. To configure a bond, create a NetworkManager connection profile. By using Ansible and the network RHEL system role, you can automate this process and remotely configure connection profiles on the hosts defined in a playbook.
Prerequisites
You have prepared the control node and the managed nodes .
You are logged in to the control node as a user who can run playbooks on the managed nodes.
The account you use to connect to the managed nodes has sudo permissions on them.
Two or more physical or virtual network devices are installed on the server.
Procedure
Create a playbook file, for example, ~/playbook.yml, with the following content:
---
- name: Configure the network
hosts: managed-node-01.example.com
tasks:
- name: Bond connection profile with two Ethernet ports
ansible.builtin.include_role:
name: redhat.rhel_system_roles.network
vars:
network_connections:
# Bond profile
- name: bond0
type: bond
interface_name: bond0
ip:
dhcp4: yes
auto6: yes
bond:
mode: active-backup
state: up
# Port profile for the 1st Ethernet device
- name: bond0-port1
interface_name: enp7s0
type: ethernet
controller: bond0
state: up
# Port profile for the 2nd Ethernet device
- name: bond0-port2
interface_name: enp8s0
type: ethernet
controller: bond0
state: up
---
- name : Configure the network
hosts : managed- node- 01.example.com
tasks :
- name : Bond connection profile with two Ethernet ports
ansible.builtin.include_role :
name : redhat.rhel_system_roles.network
vars :
network_connections :
- name : bond0
type : bond
interface_name : bond0
ip :
dhcp4 : yes
auto6 : yes
bond :
mode : active- backup
state : up
- name : bond0- port1
interface_name : enp7s0
type : ethernet
controller : bond0
state : up
- name : bond0- port2
interface_name : enp8s0
type : ethernet
controller : bond0
state : up
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
The settings specified in the example playbook include the following:
type: <profile_type>
Sets the type of the profile to create. The example playbook creates three connection profiles: One for the bond and two for the Ethernet devices.
dhcp4: yes
Enables automatic IPv4 address assignment from DHCP, PPP, or similar services.
auto6: yes
Enables IPv6 auto-configuration. By default, NetworkManager uses Router Advertisements. If the router announces the managed flag, NetworkManager requests an IPv6 address and prefix from a DHCPv6 server.
mode: <bond_mode>
Sets the bonding mode. Possible values are:
balance-rr (default)
active-backup
balance-xor
broadcast
802.3ad
balance-tlb
balance-alb.
Depending on the mode you set, you need to set additional variables in the playbook.
For details about all variables used in the playbook, see the /usr/share/ansible/roles/rhel-system-roles.network/README.md file on the control node.
Validate the playbook syntax:
ansible-playbook --syntax-check ~/playbook.yml
$ ansible-playbook --syntax-check ~/playbook.yml
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Note that this command only validates the syntax and does not protect against a wrong but valid configuration.
Run the playbook:
ansible-playbook ~/playbook.yml
$ ansible-playbook ~/playbook.yml
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Verification
Temporarily remove the network cable from one of the network devices and check if the other device in the bond is handling the traffic.
Note that there is no method to properly test link failure events using software utilities. Tools that deactivate connections, such as nmcli, show only the bonding driver’s ability to handle port configuration changes and not actual link failure events.
Configure a network bond in active-backup mode to maintain uninterrupted VPN access when switching between Ethernet and Wi-Fi.
RHEL users who connect their workstation to their company’s network typically use a VPN to access remote resources. However, if the workstation switches between an Ethernet and Wi-Fi connection, for example, if you release a laptop from a docking station with an Ethernet connection, the VPN connection is interrupted. To avoid this problem, you can create a network bond that uses the Ethernet and Wi-Fi connection in active-backup mode.
Prerequisites
The host contains an Ethernet and a Wi-Fi device.
An Ethernet and Wi-Fi NetworkManager connection profile has been created and both connections work independently.
This procedure uses the following connection profiles to create a network bond named bond0:
Docking_station associated with the enp11s0u1 Ethernet device
Wi-Fi associated with the wlp1s0 Wi-Fi device
Procedure
Create a bond interface in active-backup mode:
nmcli connection add type bond con-name bond0 ifname bond0 bond.options "mode=active-backup"
# nmcli connection add type bond con-name bond0 ifname bond0 bond.options "mode=active-backup"
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
This command names both the interface and connection profile bond0.
Configure the IPv4 settings of the bond:
If a DHCP server in your network assigns IPv4 addresses to hosts, no action is required.
If your local network requires static IPv4 addresses, set the address, network mask, default gateway, DNS server, and DNS search domain to the bond0 connection:
nmcli connection modify bond0 ipv4.addresses '192.0.2.1/24'
nmcli connection modify bond0 ipv4.gateway '192.0.2.254'
nmcli connection modify bond0 ipv4.dns '192.0.2.253'
nmcli connection modify bond0 ipv4.dns-search 'example.com'
nmcli connection modify bond0 ipv4.method manual
# nmcli connection modify bond0 ipv4.addresses '192.0.2.1/24'
# nmcli connection modify bond0 ipv4.gateway '192.0.2.254'
# nmcli connection modify bond0 ipv4.dns '192.0.2.253'
# nmcli connection modify bond0 ipv4.dns-search 'example.com'
# nmcli connection modify bond0 ipv4.method manual
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Configure the IPv6 settings of the bond:
If your router or a DHCP server in your network assigns IPv6 addresses to hosts, no action is required.
If your local network requires static IPv6 addresses, set the address, network mask, default gateway, DNS server, and DNS search domain to the bond0 connection:
nmcli connection modify bond0 ipv6.addresses '2001:db8:1::1/64'
nmcli connection modify bond0 ipv6.gateway '2001:db8:1::fffe'
nmcli connection modify bond0 ipv6.dns '2001:db8:1::fffd'
nmcli connection modify bond0 ipv6.dns-search 'example.com'
nmcli connection modify bond0 ipv6.method manual
# nmcli connection modify bond0 ipv6.addresses '2001:db8:1::1/64'
# nmcli connection modify bond0 ipv6.gateway '2001:db8:1::fffe'
# nmcli connection modify bond0 ipv6.dns '2001:db8:1::fffd'
# nmcli connection modify bond0 ipv6.dns-search 'example.com'
# nmcli connection modify bond0 ipv6.method manual
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Display the connection profiles:
nmcli connection show
# nmcli connection show
NAME UUID TYPE DEVICE
Docking_station 256dd073-fecc-339d-91ae-9834a00407f9 ethernet enp11s0u1
Wi-Fi 1f1531c7-8737-4c60-91af-2d21164417e8 wifi wlp1s0
...
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
You require the names of the connection profiles and the Ethernet device name in the next steps.
Assign the connection profile of the Ethernet connection to the bond:
nmcli connection modify Docking_station master bond0
# nmcli connection modify Docking_station master bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Assign the connection profile of the Wi-Fi connection to the bond:
nmcli connection modify Wi-Fi master bond0
# nmcli connection modify Wi-Fi master bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
If your Wi-Fi network uses MAC filtering to allow only MAC addresses on a allow list to access the network, configure that NetworkManager dynamically assigns the MAC address of the active port to the bond:
nmcli connection modify bond0 +bond.options fail_over_mac=1
# nmcli connection modify bond0 +bond.options fail_over_mac=1
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
With this setting, you must set only the MAC address of the Wi-Fi device to the allow list instead of the MAC address of both the Ethernet and Wi-Fi device.
Set the device associated with the Ethernet connection as primary device of the bond:
nmcli con modify bond0 +bond.options "primary=enp11s0u1"
# nmcli con modify bond0 +bond.options "primary=enp11s0u1"
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
With this setting, the bond always uses the Ethernet connection if it is available.
Configure that NetworkManager automatically activates ports when the bond0 device is activated:
nmcli connection modify bond0 connection.autoconnect-slaves 1
# nmcli connection modify bond0 connection.autoconnect-slaves 1
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Activate the bond0 connection:
nmcli connection up bond0
# nmcli connection up bond0
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Bonding aggregates multiple network interfaces into a single logical one. The behavior of a bonded interface depends on its bonding policy, also know as mode, which provides either load-balancing or hot standby services.
The Linux bonding driver supports the following modes:
Balance-rr (Mode 0)
Balance-rr uses the round-robin algorithm that sequentially transmits packets from the first available port to the last one. This mode provides load balancing and fault tolerance.
This mode requires switch configuration of a port aggregation group, also called EtherChannel or similar port grouping. An EtherChannel is a port link aggregation technology to group multiple physical Ethernet links to one logical Ethernet link.
The drawback of this mode is that it is not suitable for heavy workloads and if TCP throughput or ordered packet delivery is essential.
Active-backup (Mode 1)
Active-backup uses the policy that determines that only one port is active in the bond. This mode provides fault tolerance and does not require any switch configuration.
If the active port fails, an alternate port becomes active. The bond sends a gratuitous address resolution protocol (ARP) response to the network. The gratuitous ARP forces the receiver of the ARP frame to update their forwarding table. The Active-backup mode transmits a gratuitous ARP to announce the new path to maintain connectivity for the host.
The primary option defines the preferred port of the bonding interface.
Balance-xor (Mode 2)
Balance-xor uses the selected transmit hash policy to send the packets. This mode provides load balancing, fault tolerance, and requires switch configuration to set up an Etherchannel or similar port grouping.
To alter packet transmission and balance transmit, this mode uses the xmit_hash_policy option. Depending on the source or destination of traffic on the interface, the interface requires an additional load-balancing configuration. See description xmit_hash_policy bonding parameter .
Broadcast (Mode 3)
Broadcast uses a policy that transmits every packet on all interfaces. This mode provides fault tolerance and requires a switch configuration to set up an EtherChannel or similar port grouping.
The drawback of this mode is that it is not suitable for heavy workloads and if TCP throughput or ordered packet delivery is essential.
802.3ad (Mode 4)
802.3ad uses the same-named IEEE standard dynamic link aggregation policy. This mode provides fault tolerance. This mode requires switch configuration to set up a Link Aggregation Control Protocol (LACP) port grouping.
This mode creates aggregation groups that share the same speed and duplex settings and utilizes all ports in the active aggregator. Depending on the source or destination of traffic on the interface, this mode requires an additional load-balancing configuration.
By default, the port selection for outgoing traffic depends on the transmit hash policy. Use the xmit_hash_policy option of the transmit hash policy to change the port selection and balance transmit.
The difference between the 802.3ad and the Balance-xor is compliance. The 802.3ad policy negotiates LACP between the port aggregation groups. See description xmit_hash_policy bonding parameter
Balance-tlb (Mode 5)
Balance-tlb uses the transmit load balancing policy. This mode provides fault tolerance, load balancing, and establishes channel bonding that does not require any switch support.
The active port receives the incoming traffic. In case of failure of the active port, another one takes over the MAC address of the failed port. To decide which interface processes the outgoing traffic, use one of the following modes:
Value 0: Uses the hash distribution policy to distribute traffic without load balancing
Value 1: Distributes traffic to each port by using load balancing
With the bonding option tlb_dynamic_lb=0, this bonding mode uses the xmit_hash_policy bonding option to balance transmit. The primary option defines the preferred port of the bonding interface.
See description xmit_hash_policy bonding parameter .
Balance-alb (Mode 6)
Balance-alb uses an adaptive load balancing policy. This mode provides fault tolerance, load balancing, and does not require any special switch support.
This mode includes balance-transmit load balancing (balance-tlb) and receive-load balancing for IPv4 and IPv6 traffic. The bonding intercepts ARP replies sent by the local system and overwrites the source hardware address of one of the ports in the bond. ARP negotiation manages the receive-load balancing. Therefore, different ports use different hardware addresses for the server.
The primary option defines the preferred port of the bonding interface. With the bonding option tlb_dynamic_lb=0, this bonding mode uses the xmit_hash_policy bonding option to balance transmit. See description xmit_hash_policy bonding parameter .
The xmit_hash_policy load balancing parameter selects the transmit hash policy for a node selection in the balance-xor, 802.3ad, balance-alb, and balance-tlb modes. It is only applicable to mode 5 and 6 if the tlb_dynamic_lb parameter is 0.
The possible values of tlb_dynamic_lb are layer2, layer2+3, layer3+4, encap2+3, encap3+4, and vlan+srcmac.
Refer the table for details:
Expand
Policy or Network layers
Layer2
Layer2+3
Layer3+4
encap2+3
encap3+4
VLAN+srcmac
Uses
XOR of source and destination MAC addresses and Ethernet protocol type
XOR of source and destination MAC addresses and IP addresses
XOR of source and destination ports and IP addresses
XOR of source and destination MAC addresses and IP addresses inside a supported tunnel, for example, Virtual Extensible LAN (VXLAN). This mode relies on skb_flow_dissect() function to obtain the header fields
XOR of source and destination ports and IP addresses inside a supported tunnel, for example, VXLAN. This mode relies on skb_flow_dissect() function to obtain the header fields
XOR of VLAN ID and source MAC vendor and source MAC device
Placement of traffic
All traffic to a particular network peer on the same underlying network interface
All traffic to a particular IP address on the same underlying network interface
All traffic to a particular IP address and port on the same underlying network interface
Primary choice
If network traffic is between this system and multiple other systems in the same broadcast domain
If network traffic between this system and multiple other systems goes through a default gateway
If network traffic between this system and another system uses the same IP addresses but goes through multiple ports
The encapsulated traffic is between the source system and multiple other systems using multiple IP addresses
The encapsulated traffic is between the source system and other systems using multiple port numbers
If the bond carries network traffic, from multiple containers or virtual machines (VM), that expose their MAC address directly to the external network such as the bridge network, and you cannot configure a switch for Mode 2 or Mode 4
Secondary choice
If network traffic is mostly between this system and multiple other systems behind a default gateway
If network traffic is mostly between this system and another system
Compliant
802.3ad
802.3ad
Not 802.3ad
Default policy
This is the default policy if no configuration is provided
For non-IP traffic, the formula is the same as for the layer2 transmit policy
For non-IP traffic, the formula is the same as for the layer2 transmit policy
Show more 
Red Hat Summit
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}