Hi, You can create another physical network with Guest traffic type, with the same isolation method (VLAN) and the same network label (cloubrX of public). then you create a shared network on the new physical network refer to https://docs.cloudstack.apache.org/en/latest/adminguide/networking/advanced_zone_config.html
a bit complex, but feasible -Wei On Mon, Jun 16, 2025 at 2:33 PM Chi vediamo <tatay...@gmail.com> wrote: > Thank you Wei, > > Q1, Thank you, checking that now. > > Q2, I have Guest and Public on Different cloudbrX and VXLAN for guest, and > VLAN for public. > How can I provide the same functionality to a regular VM as a SystemVM - > with Guest Virtual interface and a Public Virtual Interface ? > > Thank you > > Tata Y. > > > On Jun 16, 2025, at 3:04 AM, Wei ZHOU <ustcweiz...@gmail.com> wrote: > > > > Hi, > > > > Q1, > > > > If you want to change the rules in SSVM, you can add them to > > systemvm/debian/etc/iptables/iptables-secstorage > > No need to change systemvm template, you need to update > > /usr/share/cloudstack-common/vms/cloud-scripts.tgz on all hosts > > > > > > Q2, > > > > The Public IP range is only used for system vms and virtual routers. > > but you can create a shared network in the same CIDR as the public IP > range > > if the public and guest network uses the same physical device (cloudbrX) > > and there are some free IPs in the CIDR. > > > > > > -Wei > > > > > > > > > > > > > > > > On Sat, Jun 14, 2025 at 11:49 PM Chi vediamo <tatay...@gmail.com> wrote: > > > >> Hello, > >> > >> Two questions: > >> Q1: > >> Independently of the reason. I need to have additional static routes on > >> the system VMs. Is there a Way to add a permanent static route to the > >> system VM, > >> I did try several options modifying the system syste, but every single > >> time the routes are whiped out after I reboot the System VM. > >> I did try /etc/sysconfig/network-scripts/route-eth2 > >> I also tried /etc/systemd/network/eth2.network.d/static.conf > >> rc.local nothing seems to work to add a static route on the System VM. > >> > >> Q2: > >> Is there a Way to add a VM in a shared network, and add another > Interface > >> tied to the Public Interface VLAN? Something litke the System VM. > >> > >> Thank you very much > >> > >> Tata Y. > >> > >> > >> > >
