Hi Asai, You will have to go back to the drawing board with this one. In a basic zone your guest isolation is Layer 3 – in other words all down to network ACLs. In that scenario your network configuration may make sense – since you are restricting your L3 traffic to single subnets on a single VLAN.
Not so in an advanced zone – my guess is you are aiming for L2 VLAN guest isolation? If so you can’t restrict VLANs at the bridge level – since you are then asking CloudStack to assign VLANs to a bridge which is already using VLAN220. In addition to this your bridge configuration seems a bit over the top. I would propose you do the following: - NIC1/eth0 = cloudbr0 (192.168.100.202) - NIC2/eth1 = cloudbr1 – with *no VLAN assignment* - Configure you're the top of rack for eth1 to trunk all the VLANs you want to utilize – but set the default VLAN to your public VLAN 210. When you set up your advanced zone you can now tag your management network as “cloudbr0” and your guest / public as “cloudbr1” – then specify your private VLAN range / public range etc. Once you’re at this stage you can then start troubleshooting your SSVM – suggest you review our previous discussions. If you want some pointers on the KVM networking have a look at my blog on http://www.shapeblue.com/networking-kvm-for-cloudstack/ Regards, Dag Sonstebo Cloud Architect ShapeBlue On 19/11/2016, 18:04, "Asai" <a...@globalchangemusic.org> wrote: Hello, Hopefully I can gain some insight here. When I create a basic zone using the wizard, everything goes smoothly and the Secondary Storage works great. But--and I know I'm missing something here, I just don't know what--when I try to set up an advanced zone I always get this error: Secondary Storage Vm creation failure. zone: Av1, error details: null Secondary storage seems to be mounting normally now, and is in the same subnet as Management server and Pod. I have 1 NIC that's set up to support 2 VLANS and does management traffic on its NON VLAN IP. e.g. NIC 1 IP is 192.168.100.202 (cloudbr0), NIC 1 Public VLAN is VLAN 210 (cloudbr1), and NIC 1 Private for guest traffic is VLAN 220 (cloudbr2). Again, this setup seems to work OK with a basic zone, but not for advanced. Can anyone offer any direction? Thanks, Asai dag.sonst...@shapeblue.com www.shapeblue.com 53 Chandos Place, Covent Garden, London WC2N 4HSUK @shapeblue
