Hello Wei, I just got the opportunity to test is not working:
If i try to run the CsAddress.py script alone I got an error from . import
CsHelper, even without adding the lines
# python3 /opt/cloud/bin/cs/CsAddress.py
Traceback (most recent call last):
File "/opt/cloud/bin/cs/CsAddress.py", line 23, in <module>
from . import CsHelper
And the static routes are not added.
Tata Y.
> On Jun 16, 2025, at 11:48 AM, Wei ZHOU <[email protected]> wrote:
>
> maybe better to add after line 375
>
> if self.dev == "eth2":
> route.set_route("10.x.x.x/30 via x.y.z.1 dev eth2")
>
> -Wei
>
> On Mon, Jun 16, 2025 at 5:23 PM Chi vediamo <[email protected]> wrote:
>
>> Hello Wei,
>>
>> I am going to test this now, Will you recommend
>>
>> after the : def post_configure(self, address): line 337 ?
>> or after the the whole definition like line 375
>>
>> Thank you again.
>>
>> Tata Y.
>>
>>
>>> On Jun 16, 2025, at 10:43 AM, Wei ZHOU <[email protected]> wrote:
>>>
>>> sorry I thought you want to add iptables rules
>>> :facepalm
>>>
>>>
>>> If you want to add a route, you can add a line to CsAddress.py
>>>
>> https://github.com/apache/cloudstack/blob/main/systemvm/debian/opt/cloud/bin/cs/CsAddress.py#L710C9-L710C27
>>> for example
>>> route.set_route("10.x.x.x/30 via x.y.z.1 dev eth2")
>>>
>>>
>>> -Wei
>>>
>>>
>>>
>>>
>>>
>>>
>>> On Mon, Jun 16, 2025 at 3:49 PM Chi vediamo <[email protected]> wrote:
>>>
>>>> Hello Wei,
>>>>
>>>>
>>>> Q1: just tested adding the /usr/sbin/route add -net 10.x.x.x gw x.y.x.1
>>>> netmask 255.255.255.252 dev eth2
>>>> rebooted the systemVM and did not work
>>>>
>>>> Tata Y.
>>>>
>>>>
>>>>
>>>>> On Jun 16, 2025, at 9:16 AM, Wei ZHOU <[email protected]> wrote:
>>>>>
>>>>> Hi,
>>>>>
>>>>> You can create another physical network with Guest traffic type, with
>> the
>>>>> same isolation method (VLAN) and the same network label (cloubrX of
>>>> public).
>>>>> then you create a shared network on the new physical network
>>>>> refer to
>>>>>
>>>>
>> https://docs.cloudstack.apache.org/en/latest/adminguide/networking/advanced_zone_config.html
>>>>>
>>>>> a bit complex, but feasible
>>>>>
>>>>>
>>>>> -Wei
>>>>>
>>>>>
>>>>> On Mon, Jun 16, 2025 at 2:33 PM Chi vediamo <[email protected]>
>> wrote:
>>>>>
>>>>>> Thank you Wei,
>>>>>>
>>>>>> Q1, Thank you, checking that now.
>>>>>>
>>>>>> Q2, I have Guest and Public on Different cloudbrX and VXLAN for guest,
>>>> and
>>>>>> VLAN for public.
>>>>>> How can I provide the same functionality to a regular VM as a
>> SystemVM -
>>>>>> with Guest Virtual interface and a Public Virtual Interface ?
>>>>>>
>>>>>> Thank you
>>>>>>
>>>>>> Tata Y.
>>>>>>
>>>>>>> On Jun 16, 2025, at 3:04 AM, Wei ZHOU <[email protected]> wrote:
>>>>>>>
>>>>>>> Hi,
>>>>>>>
>>>>>>> Q1,
>>>>>>>
>>>>>>> If you want to change the rules in SSVM, you can add them to
>>>>>>> systemvm/debian/etc/iptables/iptables-secstorage
>>>>>>> No need to change systemvm template, you need to update
>>>>>>> /usr/share/cloudstack-common/vms/cloud-scripts.tgz on all hosts
>>>>>>>
>>>>>>>
>>>>>>> Q2,
>>>>>>>
>>>>>>> The Public IP range is only used for system vms and virtual routers.
>>>>>>> but you can create a shared network in the same CIDR as the public IP
>>>>>> range
>>>>>>> if the public and guest network uses the same physical device
>>>> (cloudbrX)
>>>>>>> and there are some free IPs in the CIDR.
>>>>>>>
>>>>>>>
>>>>>>> -Wei
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> On Sat, Jun 14, 2025 at 11:49 PM Chi vediamo <[email protected]>
>>>> wrote:
>>>>>>>
>>>>>>>> Hello,
>>>>>>>>
>>>>>>>> Two questions:
>>>>>>>> Q1:
>>>>>>>> Independently of the reason. I need to have additional static routes
>>>> on
>>>>>>>> the system VMs. Is there a Way to add a permanent static route to
>> the
>>>>>>>> system VM,
>>>>>>>> I did try several options modifying the system syste, but every
>> single
>>>>>>>> time the routes are whiped out after I reboot the System VM.
>>>>>>>> I did try /etc/sysconfig/network-scripts/route-eth2
>>>>>>>> I also tried /etc/systemd/network/eth2.network.d/static.conf
>>>>>>>> rc.local nothing seems to work to add a static route on the System
>>>> VM.
>>>>>>>>
>>>>>>>> Q2:
>>>>>>>> Is there a Way to add a VM in a shared network, and add another
>>>>>> Interface
>>>>>>>> tied to the Public Interface VLAN? Something litke the System VM.
>>>>>>>>
>>>>>>>> Thank you very much
>>>>>>>>
>>>>>>>> Tata Y.
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>
>>>>>>
>>>>
>>>>
>>
>>
