Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

We used to do it, althouth later we saw no benefit over floating IPs NAT and discarded the use of static routes, but what we did was configure a static route on our firewall (route-eth1) with the following:

10.10.10.0/24 via 172.16.20.15 dev eth1

The 10.x.x.x is a tenant network, in openstack we defined our company's network (172.16.20.0/24) as a public network and interconnected the two using a neutron router. The static route uses the IP address (172.16.20.15) of the port the neutron router had taken from our public network.