How to route provider IP direct to instance with L2 isolation?

asked 2018-06-14 08:45:11 -0500

SergeyC gravatar image

Dear Community!

I need to route provider IP direct to instance with L2 isolation?

What I mean: 1) I have 1.2.3.0/24 internet routed network from provider 2) I need set-up IP to instance direct (without any DNAT), so instance will have ip like 1.2.3.2,3,4,5... and gateway 1.2.3.1 3) I need isolate each instance L2.

How to solve it with OpenStack?

For example I think about such solution: 1) Each instance have own internal subnet 1.2.3.0/24 with own L3 router 1.2.3.1 and one uniq ip 1.2.3.X in pool. 2) Each L3 router connected to external network 10.10.0.0/16. 3) Physical L3 router (switch with routing ability) connected to same network and have 10.10.0.1 IP. 4) I write my own BGP agent which route /32 prefixes of 1.2.3.0/24 provider network to L3 routers of instances. 5) For connect between instance I need to turn on arp_proxy on each router.

I am not sure, may be there is some more pretty realisation.

edit retag flag offensive close merge delete