Re: [lxc-users] Cloud agnostic containers

[Luis Michael Ibarra]

Brian,

This is fantastic. I'll be checking this information.

Thanks a lot.

2015-09-10 9:42 GMT-05:00 brian mullan :

> Luis
>
> I used PeerVPN (by Tobias Volk) to connect my LXC containers on AWS &
> Digital Ocean.   Servers on both were also connected in a mesh to a server
> here at my home.
>
> Tobias was a recent PHD graduate who wrote PeerVPN and after exchange of
> some emails w/him I learned he had already taken into consideration things
> such as auto-fragmentation & reassembly of large packets etc.
>
> PeerVPN is a full mesh vpn and w/auto-learning of any new nodes added.
>
> http://www.peervpn.net/
>
> The PeerVPN source files are on Github and you might find the PeerVPN
> config file comments/documentation very useful in regards to
> "capabilities/features":
> https://github.com/peervpn/peervpn/blob/master/peervpn.conf
>
> PeerVPN supports both IPv4 & IPv6, layer 2 & Layer 3 VPN and is *very
> simple* to configure compared to some other VPN solutions I looked at!
>
> I documented my initial proof-of-concept doing this but Flockport did a
> nice write-up of PeerVPN's
> use with LXC also which included the L3 config info you might want.
>
>
> https://www.flockport.com/build-layer2-and-layer-3-overlay-networks-with-peervpn/
>
> Brian
>
>


-- 
Luis M. Ibarra
___
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users

[lxc-users] Cloud agnostic containers

[brian mullan]

Luis

I used PeerVPN (by Tobias Volk) to connect my LXC containers on AWS &
Digital Ocean.   Servers on both were also connected in a mesh to a server
here at my home.

Tobias was a recent PHD graduate who wrote PeerVPN and after exchange of
some emails w/him I learned he had already taken into consideration things
such as auto-fragmentation & reassembly of large packets etc.

PeerVPN is a full mesh vpn and w/auto-learning of any new nodes added.

http://www.peervpn.net/

The PeerVPN source files are on Github and you might find the PeerVPN
config file comments/documentation very useful in regards to
"capabilities/features":
https://github.com/peervpn/peervpn/blob/master/peervpn.conf

PeerVPN supports both IPv4 & IPv6, layer 2 & Layer 3 VPN and is *very
simple* to configure compared to some other VPN solutions I looked at!

I documented my initial proof-of-concept doing this but Flockport did a
nice write-up of PeerVPN's
use with LXC also which included the L3 config info you might want.

https://www.flockport.com/build-layer2-and-layer-3-overlay-networks-with-peervpn/

Brian
___
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users

[lxc-users] Cloud agnostic containers

[Luis Michael Ibarra]

Hi all,

Some of my customers use cloud service providers like AWS or Rackspace, a
few use VPS services like Digital Ocean, and others use their own data
center.

Here is the problem, I've deployed lxc/lxd in each cloud environment with a
load balancer to communicate the containers network with the outside world.
Most part of the services deployed are web based. However, mantaining this
architecture is becoming a nightmare little by little.

I'm thinking to create a cluster of load balancers in a cloud provider X
and make a VPN network to communicate with each cloud environment to
redirect requests. The objective is to centralize the load balancers of
each cloud environment. However, issues arise:
1. A VPN will totally impact the response time.
2. I haven't found yet a cloud service to build a high availability load
balancer solution like haproxy + keepalived. Mostly because cloud services
disable multicasting by default, and it has to support some sort of
tunneling to communicate with other cloud providers.
3. if this idea it's even plausible, would you suggest it?

The idea of having clusters is more likely the idea behind docker
machine/docker swarm. However neither of those manage the load balancing
redirection.


Thanks for your input in advance

-- 
Luis M. Ibarra
___
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users