Ask Your Question
0

Clarification on Tenant and Provider networking using VLAN

asked 2018-02-26 04:28:35 -0600

anonymous user

Anonymous

Hi networking experts,

Can I just clarify my understanding of openstack Tenant/Provider networking using VLANs to be 100% sure,

Admin creates a single Provider Network, VLAN based, on each Compute (bound to a certain NIC) with segmentation range 100:104 (so, 5 VLANs) (and has to provision his TOR accordingly).

I have 2 Tenants in my cloud A and B and Admin configures that Tenant networking using VLANs will be used.

If Tenant-A then creates 4 self-service Tenant nets , can I assume that Tenant-B will then only be able to create 1 tenant net (as all 5 VLANs of the underlying Provider segmentation range will have been used up).

(and yes, if above is true, can see major advantage of using VXLAN for Tenant networking separation, no limit effectively on number of tenant nets (<=16M) )

edit retag flag offensive close merge delete
add a comment

2 answers

Sort by ยป oldest newest most voted
0

answered 2018-02-26 07:48:22 -0600

TijoV gravatar image

Hello, Answers on this link will be useful.

edit flag offensive delete link more

Comments

yes but question is asking about specific use case of self-service networks using VLAN and link to underlying provider-net segmentation range

AndyW gravatar imageAndyW ( 2018-02-26 11:31:59 -0600 )edit
add a comment
0

answered 2018-03-02 16:39:58 -0600

Peter Slovak gravatar image

You're right, provided that you had set up non-admin tenants with the privilege to create physical networks (which comprises Flat and VLAN networks), they will be "fighting" for the VLAN pool. The situation will be the same with VXLAN or other tunnelled network, however those typically offer a much wider range of segmentation IDs.

So if the segmentation ID pool size is a concern AND you don't want to modify Neutron's default policies, I'd go with VXLAN.

edit flag offensive delete link more
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2018-02-26 04:28:35 -0600

Seen: 426 times

Last updated: Mar 02 '18

Related questions

802.1x port security on provider network

Cannot create provider network Openstack-Mitaka RHEL

How to isolate the tenants in terms of floating IPs?

How to bring up provider network using Mirantis 9

Traceroute floating IP of VM hosted by openstack shows 0 hops, but we have a virtual router which is connecting external network and tenant network.

Instance created with error status in Mitaka

what is tenant network or virtual tenant network !?

Neutron agent-list missing linux bridge agent

How to configure network with single NIC for Single node manual installation of Openstack

Q-in-Q for Private Tenant Networks