You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@cloudstack.apache.org by Mike Tutkowski <mi...@solidfire.com> on 2013/03/04 21:04:18 UTC
Networking Question
Hi,
I have not had the opportunity to make use of the Advanced Networking
features in CloudStack.
Can someone fill me in or point me to relevant docs regarding how we
isolate VMs from one another?
For example, in a Basic Networking CS environment, is each VM run on its
own VLAN?
Assuming that's the case, if you wanted to have multiple VMs of yours on
the same VLAN, is that only doable in the Advanced Networking mode of CS?
Thanks for any info! :)
--
*Mike Tutkowski*
*Senior CloudStack Developer, SolidFire Inc.*
e: mike.tutkowski@solidfire.com
o: 303.746.7302
Advancing the way the world uses the
cloud<http://solidfire.com/solution/overview/?video=play>
*™*
RE: Networking Question
Posted by kelcey Damage <ke...@backbonetechnology.com>.
For starters I would direct you to the wiki article I wrote, and then move
on to some more advanced wiki content:
Crash course Linux/KVM advanced networking:
https://cwiki.apache.org/confluence/display/CLOUDSTACK/Managing+advanced+net
work+zone+infrastructure
Ilya wrote this tutorial:
https://cwiki.apache.org/confluence/display/CLOUDSTACK/CloudStack+Advanced+N
etwork+Tutorial+-+Step+by+Step
Murali wrote this:
https://cwiki.apache.org/confluence/display/CLOUDSTACK/L4-L7+network+service
s+in+shared+network
Any un answered questions, I am happy to try and answer.
Thanks
-----Original Message-----
From: Mike Tutkowski [mailto:mike.tutkowski@solidfire.com]
Sent: Monday, March 04, 2013 3:22 PM
To: cloudstack-dev@incubator.apache.org
Subject: Re: Networking Question
Hi,
Thanks for the reply!
Yeah, I'd be interested in learning more about networking in CS. Whatever
kind of info you think might be relevant.
Thanks!
On Mon, Mar 4, 2013 at 1:17 PM, Kelceydamage@bbits <ke...@bbits.ca> wrote:
> Hi Mike, you can drop me an email directly if you want to talk about
> advanced networking features.
>
> The simple answer is that each isolated(default)NAT network created
> grabs a VLAN from the guest VLAN pool.
>
> You can have many VM under a domain sharing an isolated network.
>
> Sent from my iPhone
>
> On Mar 4, 2013, at 12:04 PM, Mike Tutkowski
> <mi...@solidfire.com>
> wrote:
>
> > Hi,
> >
> > I have not had the opportunity to make use of the Advanced
> > Networking features in CloudStack.
> >
> > Can someone fill me in or point me to relevant docs regarding how we
> > isolate VMs from one another?
> >
> > For example, in a Basic Networking CS environment, is each VM run on
> > its own VLAN?
> >
> > Assuming that's the case, if you wanted to have multiple VMs of
> > yours on the same VLAN, is that only doable in the Advanced Networking
mode of CS?
> >
> > Thanks for any info! :)
> >
> > --
> > *Mike Tutkowski*
> > *Senior CloudStack Developer, SolidFire Inc.*
> > e: mike.tutkowski@solidfire.com
> > o: 303.746.7302
> > Advancing the way the world uses the
> > cloud<http://solidfire.com/solution/overview/?video=play>
> > *T*
>
--
*Mike Tutkowski*
*Senior CloudStack Developer, SolidFire Inc.*
e: mike.tutkowski@solidfire.com
o: 303.746.7302
Advancing the way the world uses the
cloud<http://solidfire.com/solution/overview/?video=play>
*T*
Re: Networking Question
Posted by Mike Tutkowski <mi...@solidfire.com>.
Hi,
Thanks for the reply!
Yeah, I'd be interested in learning more about networking in CS. Whatever
kind of info you think might be relevant.
Thanks!
On Mon, Mar 4, 2013 at 1:17 PM, Kelceydamage@bbits <ke...@bbits.ca> wrote:
> Hi Mike, you can drop me an email directly if you want to talk about
> advanced networking features.
>
> The simple answer is that each isolated(default)NAT network created grabs
> a VLAN from the guest VLAN pool.
>
> You can have many VM under a domain sharing an isolated network.
>
> Sent from my iPhone
>
> On Mar 4, 2013, at 12:04 PM, Mike Tutkowski <mi...@solidfire.com>
> wrote:
>
> > Hi,
> >
> > I have not had the opportunity to make use of the Advanced Networking
> > features in CloudStack.
> >
> > Can someone fill me in or point me to relevant docs regarding how we
> > isolate VMs from one another?
> >
> > For example, in a Basic Networking CS environment, is each VM run on its
> > own VLAN?
> >
> > Assuming that's the case, if you wanted to have multiple VMs of yours on
> > the same VLAN, is that only doable in the Advanced Networking mode of CS?
> >
> > Thanks for any info! :)
> >
> > --
> > *Mike Tutkowski*
> > *Senior CloudStack Developer, SolidFire Inc.*
> > e: mike.tutkowski@solidfire.com
> > o: 303.746.7302
> > Advancing the way the world uses the
> > cloud<http://solidfire.com/solution/overview/?video=play>
> > *™*
>
--
*Mike Tutkowski*
*Senior CloudStack Developer, SolidFire Inc.*
e: mike.tutkowski@solidfire.com
o: 303.746.7302
Advancing the way the world uses the
cloud<http://solidfire.com/solution/overview/?video=play>
*™*
Re: Networking Question
Posted by "Kelceydamage@bbits" <ke...@bbits.ca>.
Hi,
Short answer: Shared networks let you create a manageable DMZ so to speak between domains.
If you have a multiple domains that need inter-guest communication without going over the public web.
Another use is that shared can be tagged or untagged letting you connect hardware into your networks.
Another use is to add direct public access to a guest in advanced networking enabling the VM to bypass the VR
The list of uses goes on, but I figure you have the picture :).
Thanks
Sent from my iPhone
On Mar 5, 2013, at 1:15 AM, Dave Cahill <dc...@midokura.com> wrote:
> Hi,
>
> I have a question or two that fit nicely in this thread, so I'll jump in. :)
>
> I'm pretty comfortable with the Advanced Isolated, Basic, and VPC modes,
> but a little unsure as to the purpose of Advanced Shared mode. I took a
> peek at the docs and articles above, but can't quite see the answer - if
> I'm missing it, please let me know.
>
> What are the advantages of Advanced Shared mode over Basic mode?
>
> What are the advantages of Advanced Shared mode over Advanced Isolated mode?
>
> Doc [2] in Jessica's mail mentions that "Shared Networks are isolated by
> security groups" and that security groups are only supported in basic
> zones. As far as I know, security groups support for Advanced Shared
> networks isn't in master / 4.1 just yet; does that mean that there is
> currently no tenant isolation in Advanced Shared mode?
>
> Thanks,
> Dave.
>
>
> On Tue, Mar 5, 2013 at 8:34 AM, Jessica Tomechak <jessica.tomechak@gmail.com
>> wrote:
>
>>>
>>> -----Original Message-----
>>> From: Kelceydamage@bbits [mailto:kelcey@bbits.ca]
>>> Sent: Monday, March 04, 2013 12:18 PM
>>> To: cloudstack-dev@incubator.apache.org
>>> Subject: Re: Networking Question
>>>
>>> Hi Mike, you can drop me an email directly if you want to talk about
>>> advanced networking features.
>>>
>>> The simple answer is that each isolated(default)NAT network created grabs
>>> a VLAN from the guest VLAN pool.
>>>
>>> You can have many VM under a domain sharing an isolated network.
>>>
>>> Sent from my iPhone
>>>
>>> On Mar 4, 2013, at 12:04 PM, Mike Tutkowski <
>> mike.tutkowski@solidfire.com>
>>> wrote:
>>>
>>>> Hi,
>>>>
>>>> I have not had the opportunity to make use of the Advanced Networking
>>>> features in CloudStack.
>>>>
>>>> Can someone fill me in or point me to relevant docs regarding how we
>>>> isolate VMs from one another?
>>>>
>>>> For example, in a Basic Networking CS environment, is each VM run on
>>>> its own VLAN?
>>>>
>>>> Assuming that's the case, if you wanted to have multiple VMs of yours
>>>> on the same VLAN, is that only doable in the Advanced Networking mode
>> of
>>> CS?
>>>>
>>>> Thanks for any info! :)
>>>>
>>>> --
>>>> *Mike Tutkowski*
>>>> *Senior CloudStack Developer, SolidFire Inc.*
>>>> e: mike.tutkowski@solidfire.com
>>>> o: 303.746.7302
>>>> Advancing the way the world uses the
>>>> cloud<http://solidfire.com/solution/overview/?video=play>
>>>> *™*
>>>
>>
>> There is a newly added section on networking in the upcoming 4.1
>> installation docs. I've excerpted it and posted it [1]. Also, there is the
>> existing section "Setting up networking for users" in the Admin Guide [2].
>> I hope this is useful!
>>
>> [1]
>>
>> http://people.apache.org/~jtomechak/Apache_CloudStack-Network_Setup-en-US.pdf
>>
>> [2]
>>
>> http://incubator.apache.org/cloudstack/docs/en-US/Apache_CloudStack/4.0.1-incubating/html-single/Admin_Guide/index.html#set-up-network-for-users
>>
>> Jessica T.
>>
Re: Networking Question
Posted by Dave Cahill <dc...@midokura.com>.
Hi,
I have a question or two that fit nicely in this thread, so I'll jump in. :)
I'm pretty comfortable with the Advanced Isolated, Basic, and VPC modes,
but a little unsure as to the purpose of Advanced Shared mode. I took a
peek at the docs and articles above, but can't quite see the answer - if
I'm missing it, please let me know.
What are the advantages of Advanced Shared mode over Basic mode?
What are the advantages of Advanced Shared mode over Advanced Isolated mode?
Doc [2] in Jessica's mail mentions that "Shared Networks are isolated by
security groups" and that security groups are only supported in basic
zones. As far as I know, security groups support for Advanced Shared
networks isn't in master / 4.1 just yet; does that mean that there is
currently no tenant isolation in Advanced Shared mode?
Thanks,
Dave.
On Tue, Mar 5, 2013 at 8:34 AM, Jessica Tomechak <jessica.tomechak@gmail.com
> wrote:
> >
> > -----Original Message-----
> > From: Kelceydamage@bbits [mailto:kelcey@bbits.ca]
> > Sent: Monday, March 04, 2013 12:18 PM
> > To: cloudstack-dev@incubator.apache.org
> > Subject: Re: Networking Question
> >
> > Hi Mike, you can drop me an email directly if you want to talk about
> > advanced networking features.
> >
> > The simple answer is that each isolated(default)NAT network created grabs
> > a VLAN from the guest VLAN pool.
> >
> > You can have many VM under a domain sharing an isolated network.
> >
> > Sent from my iPhone
> >
> > On Mar 4, 2013, at 12:04 PM, Mike Tutkowski <
> mike.tutkowski@solidfire.com>
> > wrote:
> >
> > > Hi,
> > >
> > > I have not had the opportunity to make use of the Advanced Networking
> > > features in CloudStack.
> > >
> > > Can someone fill me in or point me to relevant docs regarding how we
> > > isolate VMs from one another?
> > >
> > > For example, in a Basic Networking CS environment, is each VM run on
> > > its own VLAN?
> > >
> > > Assuming that's the case, if you wanted to have multiple VMs of yours
> > > on the same VLAN, is that only doable in the Advanced Networking mode
> of
> > CS?
> > >
> > > Thanks for any info! :)
> > >
> > > --
> > > *Mike Tutkowski*
> > > *Senior CloudStack Developer, SolidFire Inc.*
> > > e: mike.tutkowski@solidfire.com
> > > o: 303.746.7302
> > > Advancing the way the world uses the
> > > cloud<http://solidfire.com/solution/overview/?video=play>
> > > *™*
> >
>
> There is a newly added section on networking in the upcoming 4.1
> installation docs. I've excerpted it and posted it [1]. Also, there is the
> existing section "Setting up networking for users" in the Admin Guide [2].
> I hope this is useful!
>
> [1]
>
> http://people.apache.org/~jtomechak/Apache_CloudStack-Network_Setup-en-US.pdf
>
> [2]
>
> http://incubator.apache.org/cloudstack/docs/en-US/Apache_CloudStack/4.0.1-incubating/html-single/Admin_Guide/index.html#set-up-network-for-users
>
> Jessica T.
>
Re: Networking Question
Posted by Jessica Tomechak <je...@gmail.com>.
>
> -----Original Message-----
> From: Kelceydamage@bbits [mailto:kelcey@bbits.ca]
> Sent: Monday, March 04, 2013 12:18 PM
> To: cloudstack-dev@incubator.apache.org
> Subject: Re: Networking Question
>
> Hi Mike, you can drop me an email directly if you want to talk about
> advanced networking features.
>
> The simple answer is that each isolated(default)NAT network created grabs
> a VLAN from the guest VLAN pool.
>
> You can have many VM under a domain sharing an isolated network.
>
> Sent from my iPhone
>
> On Mar 4, 2013, at 12:04 PM, Mike Tutkowski <mi...@solidfire.com>
> wrote:
>
> > Hi,
> >
> > I have not had the opportunity to make use of the Advanced Networking
> > features in CloudStack.
> >
> > Can someone fill me in or point me to relevant docs regarding how we
> > isolate VMs from one another?
> >
> > For example, in a Basic Networking CS environment, is each VM run on
> > its own VLAN?
> >
> > Assuming that's the case, if you wanted to have multiple VMs of yours
> > on the same VLAN, is that only doable in the Advanced Networking mode of
> CS?
> >
> > Thanks for any info! :)
> >
> > --
> > *Mike Tutkowski*
> > *Senior CloudStack Developer, SolidFire Inc.*
> > e: mike.tutkowski@solidfire.com
> > o: 303.746.7302
> > Advancing the way the world uses the
> > cloud<http://solidfire.com/solution/overview/?video=play>
> > *™*
>
There is a newly added section on networking in the upcoming 4.1
installation docs. I've excerpted it and posted it [1]. Also, there is the
existing section "Setting up networking for users" in the Admin Guide [2].
I hope this is useful!
[1]
http://people.apache.org/~jtomechak/Apache_CloudStack-Network_Setup-en-US.pdf
[2]
http://incubator.apache.org/cloudstack/docs/en-US/Apache_CloudStack/4.0.1-incubating/html-single/Admin_Guide/index.html#set-up-network-for-users
Jessica T.
Re: Networking Question
Posted by "Kelceydamage@bbits" <ke...@bbits.ca>.
Hi Mike, you can drop me an email directly if you want to talk about advanced networking features.
The simple answer is that each isolated(default)NAT network created grabs a VLAN from the guest VLAN pool.
You can have many VM under a domain sharing an isolated network.
Sent from my iPhone
On Mar 4, 2013, at 12:04 PM, Mike Tutkowski <mi...@solidfire.com> wrote:
> Hi,
>
> I have not had the opportunity to make use of the Advanced Networking
> features in CloudStack.
>
> Can someone fill me in or point me to relevant docs regarding how we
> isolate VMs from one another?
>
> For example, in a Basic Networking CS environment, is each VM run on its
> own VLAN?
>
> Assuming that's the case, if you wanted to have multiple VMs of yours on
> the same VLAN, is that only doable in the Advanced Networking mode of CS?
>
> Thanks for any info! :)
>
> --
> *Mike Tutkowski*
> *Senior CloudStack Developer, SolidFire Inc.*
> e: mike.tutkowski@solidfire.com
> o: 303.746.7302
> Advancing the way the world uses the
> cloud<http://solidfire.com/solution/overview/?video=play>
> *™*