Il 2014-03-10 13:28 Dietmar Maurer ha scritto:
Just a question about openvswitch
do you have plans to add even the tunnel iface?
OVSTunnel i intend
So far I have never used that. Would you mind to describe the use case
for that?
OK: i create a DMZ with a mute interface on three nodes
i've only two ethernet on each node
eth0->vmbr0 local
eth1->vmbr1 internet
auto vmbr0
iface vmbr0 inet static
address 192.168.0.55
netmask 255.255.255.0
gateway 192.168.0.253
ovs_type OVSBridge
ovs_ports eth0
auto vmbr1
iface vmbr1 inet static
address 192.168.1.55
netmask 255.255.255.0
ovs_type OVSBridge
ovs_ports eth1
auto vmbr2
iface vmbr2 inet static
address 10.168.1.55
netmask 255.255.255.0
ovs_type OVSBridge
ovs_ports gre1
ovs_ports gre2
post-up ovs-vsctl set bridge vmbr1 stp_enable=true
allow-vmbrs gre1
iface gre1 inet manual
ovs_type OVSTunnel
ovs-bridge vmbrs
ovs_tunnel_type gre
ovs_tunnel_options options:remote_ip=192.168.0.56 options:key=99
allow-vmbrs gre2
iface gre2 inet manual
ovs_type OVSTunnel
ovs-bridge vmbrs
ovs_tunnel_type gre
ovs_tunnel_options options:remote_ip=192.168.0.57 options:key=98
Doing this config with the appropriate changes on the other two nodes i
create a simple MESH DMZ zone...
i attach as many vm as i want on each node on vmbr2 and each vm could
speak with each other node...
and when a gre? goes down aftew 20 seconds the route will be replaced
on other node of the MESH
This is a simple example with a simple key
Diaolin
---
S’à destacà l’ultima föia dal bósch nét
crodàda l’ei, solàgna, ‘n mèzz ai sàssi
e ‘ntant fis-ciava ‘n zìfol de oseleti
a tegnìr vìo ‘l pensér che vèn matìna
[Diaolin]
_______________________________________________
pve-user mailing list
pve-user@pve.proxmox.com
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-user
