Re: Question on Compute Offerings.
Hello Palash, Adding to what Gary said about the CPU speed question, you should put at most the host's CPU speed that is returned in the "listHosts" API (You can also check the host's CPU speed on the UI: Infrastructure->Hosts->Select your host). This value is what ACS considers to be the host's max CPU capability, if you try to create a VM with a CPU speed higher than that, you'll get an "No destination found for a deployment for VM instance" error. About the "Network Rate" parameter, all network traffic will be restricted. Best regards, João Jandre On 12/6/23 06:59, Gary Dixon wrote: Hi Palesh The CPU MHz value is part of the equation for determining the CPU Shares a VM receives - you can see this as 'cputune' when you 'virsh dumpxml ' on a running instance It is calculated by "no. of CPU's allocated to the VM X CPU MHz value divided by your CPU over-commit ratio" So for example a VM using a compute offering with 24 CPU's at 2500MHZ with an over-commit ratio of 3 would have a CPU Shares value of 24X2500/3 = 2 There is an open issue about how this will affect KVM hosts running Ubuntu 22.04 here https://github.com/apache/cloudstack/issues/6744 - actually I see that support for cgroups v2 has now been added recently Gary Dixon Senior Technical Consultant 0161 537 4980 +44 7989717661 gary.di...@quadris.co.uk www.quadris.com Innovation House, 12‑13 Bredbury Business Park Bredbury Park Way, Bredbury, Stockport, SK6 2SN -Original Message- From: Palash Biswas Sent: Wednesday, December 6, 2023 5:23 AM To: users@cloudstack.apache.org Subject: Re: Question on Compute Offerings. Hi Gary, Sorry, I still cannot understand. Are you saying that specifying the MHZ actually does not take any effect? Then what is the purpose of it? Regards, palash Biswas On Tue, Dec 5, 2023 at 9:56 PM Gary Dixon wrote: > Hi Palash > > The CPU in Mhz is a bit of a misnomer as it doesn't really relate to > the actual CPU speed. It is used more as a CPU 'weight' and we set our > value to '1' and then hide the 'CPU in MHZ' from the UI. It also > relates to how CGroups on the underlying hypervisor are configured and > in our case - Ubuntu 20.04 there is a hard coded value in libvirt so > when we had a Compute offering with say 24 cores at 2000 MHZ we found > we could no longer deploy more VM's using this compute offering once > the libvirt cgroup limit was reached. It gets even worse in Ubuntu > 22.04 as the hard coded libvirt cgroup value is much less. > All of our running VM's still show the actual CPU speed in terms of > Ghz when using compute offerings with a value of just 1 Mhz > > > Gary Dixon > Senior Technical Consultant > 0161 537 4980 <0161%20537%204980> > +44 7989717661 <+44%207989717661> > gary.di...@quadris.co.uk > http://www.q/ > uadris.com%2F&data=05%7C01%7CGary.Dixon%40quadris.co.uk%7C71759c80bdec > 422fe3ed08dbf61ba764%7Cf1d6abf3d3b44894ae16db0fb93a96a2%7C0%7C0%7C6383 > 74370883026361%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2l > uMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=g2EyilhT0jer > QFRXSGi35U7JQ7nPiboe9PjFGJnpYy0%3D&reserved=0 > Innovation House, 12‑13 Bredbury Business Park Bredbury Park Way, > Bredbury, Stockport, SK6 2SN -Original Message- > From: Palash Biswas > Sent: Tuesday, December 5, 2023 12:57 PM > To: users@cloudstack.apache.org > Subject: Question on Compute Offerings. > > Hi Community, > > Question on Compute Offerings. > > - In the 'CPU (in MHZ)' section, does we put in the Base Clock Speed? > Or the Max Clock speed of the CPU? | > - Is the 'Network Rate (Mb/s) Parameter restrict only internet bandwidth? > Or does it also include traffic via Private Gateway (maybe to another > datacenter) > > Thank You >
RE: Question on Compute Offerings.
Hi Palesh The CPU MHz value is part of the equation for determining the CPU Shares a VM receives - you can see this as 'cputune' when you 'virsh dumpxml ' on a running instance It is calculated by "no. of CPU's allocated to the VM X CPU MHz value divided by your CPU over-commit ratio" So for example a VM using a compute offering with 24 CPU's at 2500MHZ with an over-commit ratio of 3 would have a CPU Shares value of 24X2500/3 = 2 There is an open issue about how this will affect KVM hosts running Ubuntu 22.04 here https://github.com/apache/cloudstack/issues/6744 - actually I see that support for cgroups v2 has now been added recently Gary Dixon Senior Technical Consultant 0161 537 4980 +44 7989717661 gary.di...@quadris.co.uk www.quadris.com Innovation House, 12-13 Bredbury Business Park Bredbury Park Way, Bredbury, Stockport, SK6 2SN -Original Message- From: Palash Biswas Sent: Wednesday, December 6, 2023 5:23 AM To: users@cloudstack.apache.org Subject: Re: Question on Compute Offerings. Hi Gary, Sorry, I still cannot understand. Are you saying that specifying the MHZ actually does not take any effect? Then what is the purpose of it? Regards, palash Biswas On Tue, Dec 5, 2023 at 9:56 PM Gary Dixon wrote: > Hi Palash > > The CPU in Mhz is a bit of a misnomer as it doesn't really relate to > the actual CPU speed. It is used more as a CPU 'weight' and we set our > value to '1' and then hide the 'CPU in MHZ' from the UI. It also > relates to how CGroups on the underlying hypervisor are configured and > in our case - Ubuntu 20.04 there is a hard coded value in libvirt so > when we had a Compute offering with say 24 cores at 2000 MHZ we found > we could no longer deploy more VM's using this compute offering once > the libvirt cgroup limit was reached. It gets even worse in Ubuntu > 22.04 as the hard coded libvirt cgroup value is much less. > All of our running VM's still show the actual CPU speed in terms of > Ghz when using compute offerings with a value of just 1 Mhz > > > Gary Dixon > Senior Technical Consultant > 0161 537 4980 <0161%20537%204980> > +44 7989717661 <+44%207989717661> > gary.di...@quadris.co.uk > http://www.q/ > uadris.com%2F&data=05%7C01%7CGary.Dixon%40quadris.co.uk%7C71759c80bdec > 422fe3ed08dbf61ba764%7Cf1d6abf3d3b44894ae16db0fb93a96a2%7C0%7C0%7C6383 > 74370883026361%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2l > uMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=g2EyilhT0jer > QFRXSGi35U7JQ7nPiboe9PjFGJnpYy0%3D&reserved=0 > Innovation House, 12‑13 Bredbury Business Park Bredbury Park Way, > Bredbury, Stockport, SK6 2SN -Original Message- > From: Palash Biswas > Sent: Tuesday, December 5, 2023 12:57 PM > To: users@cloudstack.apache.org > Subject: Question on Compute Offerings. > > Hi Community, > > Question on Compute Offerings. > > - In the 'CPU (in MHZ)' section, does we put in the Base Clock Speed? > Or the Max Clock speed of the CPU? | > - Is the 'Network Rate (Mb/s) Parameter restrict only internet bandwidth? > Or does it also include traffic via Private Gateway (maybe to another > datacenter) > > Thank You >
RE: IPv6 in Shared guest network
Hi Tobias, I'm not sure if it fits your use case (and Wido already gave you all the necessary advice on Shared networks and IPv6), but I'd like to highlight that there's support for IPv6 in Isolated Networks and VPCs as well. Cheers Alex -Original Message- From: Tobias Rehn Sent: Wednesday, December 6, 2023 9:45 AM To: Wido den Hollander Cc: users@cloudstack.apache.org Subject: Re: IPv6 in Shared guest network Hey Wido, thank you. That solves a lot of trouble in my head. :) The documentation is not that clear. IPv6 ist a must have for us We are using Juniper MX gear as gateways. I just have to check if we can do SLAAC with our current JUNOS version and setup as we are using EVPN+MPLS with all-active multihoming on the gateway side. Am Mi., 6. Dez. 2023 um 09:06 Uhr schrieb Wido den Hollander < w...@denhollander.io>: > Hi, > > Great to see you are deploying IPv6! > > Op 05/12/2023 om 16:05 schreef Tobias Rehn: > > Hey together, > > > > I am in the process of setting up IPv6 in a shared guest network. I > > have successfully added the network with both IPv4 and IPv6 address space. > > > > For IPv4 the whole thing is working perfectly but I am failing with > IPv6. I > > read the documentation and for me it is somehow unclear how the IPv6 > > addresses are installed on an instance. > > > > Speaking about the following document: > > http://docs.cloudstack.apache.org/en/4.18.1.0/plugins/ipv6.html > > > > In the documentation it says about Shared Networks... "The user VM > > generates an IPv6 link local address by itself, and gets an IPv6 > > global > or > > site local address through DHCPv6." > > > > You should enable IPv6 Router Advertisements so your router, not the > VR, advertises itself on the network as a gateway. In this message it > should also announce the prefix (usually /64) to be used in that network. > > Based on the IPv6 Prefix and it's MAC address the Instance will obtain > a unique address. > > Make sure that IPv6 privacy extentensions are disabled inside the VM > template. > > > But then further down... "The gateway of the guest network generates > Router > > Advisement and Response messages to Router Solicitation." > > > > Does the VR handle the DHCP6 requests? Or should this be handled by > > our gateways? > > > > DHCP is not used with IPv6, it's all using Router Advertisements and > SLAAC, StateLess Address Auto Configuration. > > What routers are you using for the shared network? > > Wido > > > Hopyfully, someone can point me to the right direction. Thanks. > > > > > > Best > > Tobias > > >
Re: IPv6 in Shared guest network
Hey Wido, thank you. That solves a lot of trouble in my head. :) The documentation is not that clear. IPv6 ist a must have for us We are using Juniper MX gear as gateways. I just have to check if we can do SLAAC with our current JUNOS version and setup as we are using EVPN+MPLS with all-active multihoming on the gateway side. Am Mi., 6. Dez. 2023 um 09:06 Uhr schrieb Wido den Hollander < w...@denhollander.io>: > Hi, > > Great to see you are deploying IPv6! > > Op 05/12/2023 om 16:05 schreef Tobias Rehn: > > Hey together, > > > > I am in the process of setting up IPv6 in a shared guest network. I have > > successfully added the network with both IPv4 and IPv6 address space. > > > > For IPv4 the whole thing is working perfectly but I am failing with > IPv6. I > > read the documentation and for me it is somehow unclear how the IPv6 > > addresses are installed on an instance. > > > > Speaking about the following document: > > http://docs.cloudstack.apache.org/en/4.18.1.0/plugins/ipv6.html > > > > In the documentation it says about Shared Networks... "The user VM > > generates an IPv6 link local address by itself, and gets an IPv6 global > or > > site local address through DHCPv6." > > > > You should enable IPv6 Router Advertisements so your router, not the VR, > advertises itself on the network as a gateway. In this message it should > also announce the prefix (usually /64) to be used in that network. > > Based on the IPv6 Prefix and it's MAC address the Instance will obtain a > unique address. > > Make sure that IPv6 privacy extentensions are disabled inside the VM > template. > > > But then further down... "The gateway of the guest network generates > Router > > Advisement and Response messages to Router Solicitation." > > > > Does the VR handle the DHCP6 requests? Or should this be handled by our > > gateways? > > > > DHCP is not used with IPv6, it's all using Router Advertisements and > SLAAC, StateLess Address Auto Configuration. > > What routers are you using for the shared network? > > Wido > > > Hopyfully, someone can point me to the right direction. Thanks. > > > > > > Best > > Tobias > > >
Re: How To Not Allow Domain Admin to create Network Offerings
Hi Palash, i am not sure what you are referring to exactly, because in my case a Domain Admin is not able to create Network Offerings. They can list network offerings, but not create. In case you are searching for a way to deny Domain Admins creating ServiceOfferings, you can create a new role, based on the Domain Admin Role. For this new role, you can deny various actions, for example select "Deny" for the actions "createComputeOffering" and "createDiskOffering" (in the UI look for the Rules tab of the role). Best regards, Stephan > Palash Biswas hat am 06.12.2023 07:36 CET geschrieben: > > > Hi Community, > > I do not want to allow Domain Admin to create any Network Offerings. > > It should only be created by Root Admins > > How do I achieve this? Thank you
Re: IPv6 in Shared guest network
Hi, Great to see you are deploying IPv6! Op 05/12/2023 om 16:05 schreef Tobias Rehn: Hey together, I am in the process of setting up IPv6 in a shared guest network. I have successfully added the network with both IPv4 and IPv6 address space. For IPv4 the whole thing is working perfectly but I am failing with IPv6. I read the documentation and for me it is somehow unclear how the IPv6 addresses are installed on an instance. Speaking about the following document: http://docs.cloudstack.apache.org/en/4.18.1.0/plugins/ipv6.html In the documentation it says about Shared Networks... "The user VM generates an IPv6 link local address by itself, and gets an IPv6 global or site local address through DHCPv6." You should enable IPv6 Router Advertisements so your router, not the VR, advertises itself on the network as a gateway. In this message it should also announce the prefix (usually /64) to be used in that network. Based on the IPv6 Prefix and it's MAC address the Instance will obtain a unique address. Make sure that IPv6 privacy extentensions are disabled inside the VM template. But then further down... "The gateway of the guest network generates Router Advisement and Response messages to Router Solicitation." Does the VR handle the DHCP6 requests? Or should this be handled by our gateways? DHCP is not used with IPv6, it's all using Router Advertisements and SLAAC, StateLess Address Auto Configuration. What routers are you using for the shared network? Wido Hopyfully, someone can point me to the right direction. Thanks. Best Tobias
