Ask Your Question
0

Clarification on Tenant and Provider networking using VLAN

asked 2018-02-26 04:28:35 -0500

anonymous user

Anonymous

Hi networking experts,

Can I just clarify my understanding of openstack Tenant/Provider networking using VLANs to be 100% sure,

Admin creates a single Provider Network, VLAN based, on each Compute (bound to a certain NIC) with segmentation range 100:104 (so, 5 VLANs) (and has to provision his TOR accordingly).

I have 2 Tenants in my cloud A and B and Admin configures that Tenant networking using VLANs will be used.

If Tenant-A then creates 4 self-service Tenant nets , can I assume that Tenant-B will then only be able to create 1 tenant net (as all 5 VLANs of the underlying Provider segmentation range will have been used up).

(and yes, if above is true, can see major advantage of using VXLAN for Tenant networking separation, no limit effectively on number of tenant nets (<=16M) )

edit retag flag offensive close merge delete
add a comment

2 answers

Sort by ยป oldest newest most voted
0

answered 2018-02-26 07:48:22 -0500

TijoV gravatar image

Hello, Answers on this link will be useful.

edit flag offensive delete link more

Comments

yes but question is asking about specific use case of self-service networks using VLAN and link to underlying provider-net segmentation range

AndyW gravatar imageAndyW ( 2018-02-26 11:31:59 -0500 )edit
add a comment
0

answered 2018-03-02 16:39:58 -0500

Peter Slovak gravatar image

You're right, provided that you had set up non-admin tenants with the privilege to create physical networks (which comprises Flat and VLAN networks), they will be "fighting" for the VLAN pool. The situation will be the same with VXLAN or other tunnelled network, however those typically offer a much wider range of segmentation IDs.

So if the segmentation ID pool size is a concern AND you don't want to modify Neutron's default policies, I'd go with VXLAN.

edit flag offensive delete link more
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2018-02-26 04:28:35 -0500

Seen: 484 times

Last updated: Mar 02 '18

Related questions

802.1x port security on provider network

OpenStack (Rocky): VM not spawning on provider network though it is successfully getting spawned on self-service network.

Provider Network IP Not reachable on Router

What network configuration is required for a provider network?

openstack network create: bad request (HTTP 400)

openvswitch provider network fails upon VM creation

Cannot ping provider gateway from instance (OpenStack on VirtualBox)

Neutron - Linux Bridge Agent - pri Network not accessible

Problem with openvswitch and vlan

vm guest can ping first ip of floating ip range, but failed to ping gateway of floating ip