Hi Fariborz, I think what you said is a valid issue with shared networks in advanced zones, but invalid in SG zones.
The zone type selection depends on your requirements. If you want to isolate VMs in the network, e.g. VMs belong to different customers, you'd better use a SG zone. If VM isolation is not important, e.g. VMs are used by a customer or a team/company, you can use an advanced zone. -Wei On Wed, 15 Jun 2022 at 00:14, Fariborz Navidan <mdvlinqu...@gmail.com> wrote: > HiWei, > > Just tested this method and found it not working. I get error " Only shared > guest network can be created in security group enabled zone" > > I guess I did a mistake that enabled SG at the time of the zone setup. The > reason was that I tought I can prevent other guest VMs to promote Dhcp to > the network which can conflict with VR's Dhcp and guests were obtaining IP > from user's VM and instead of VR. > > Regards. > > On Tue, Jun 14, 2022 at 11:00 PM Wei ZHOU <ustcweiz...@gmail.com> wrote: > > > Hi Fariborz, > > > > Can you try the following ? > > (1) create a network offering for L2 network, with specifyvlan=true > > (2) create a L2 network from the offering ? > > > > I have never tested it. If it does not work, it would be good to create a > > github issue. > > Most cloudstack users use advanced zone (without SG), some features only > > work in advanced zone. > > > > -Wei > > > > On Tue, 14 Jun 2022 at 20:07, Fariborz Navidan <mdvlinqu...@gmail.com> > > wrote: > > > > > Hi ACS Experts, > > > > > > Is it still impossible to add a L2 Network in an a SG enabled advanced > > zone > > > in CS 4.17? If not, is there anyway to add IP addresses that can be > > freely > > > floated across VMs in the same zone? > > > > > > Regards. > > > > > >
