I looked at Security groups and I am not sure how this solves my problems. Sure
it provides guest isolation but that is through the virtual router correct? The
underlying physical network --outside of cloudstack-- is still layer 2? That is
what I am concerned with. When defining what IPs my
Please take a look at
http://s.apache.org/k8w
Slides 32-39 explain the networking layout in security groups in basic
networking.
The VR (one per pod) simply dispenses DHCP and user data. It is not a
firewall.
The firewall is implemented at the hypervisor level. This is what allows
it to scale
You can do bonded nics in basic zone. The limitation with basic zone is
that the Vms cannot have multiple nics. Did you need multiple nics for
your vms?
If you need advanced network services such as static NAT and load
balancing, advanced networking is probably your best bet (currently,
unless you
My team has been working for three weeks with CloudStack architecture design
and we are struggling to put together a network architecture that we feel will
scale. From everything I can tell, CloudStack requires a a very large layer 2
network when using shared guest networks. We are looking to