public ip problem

asked 2018-11-27 12:13:51 -0600

novainfinite gravatar image

i have two database three application tow haproxy and i use provider for giving them ip i do not want use self service becuse in self service beacuase all traffic goes to router in controller and i believe it can not handle all traffic. so i have 7 ip. 7 ip is behind firewall for security reason i want to use 5 diffrent ip for db and app and two ip for haproxy for my public ip that a person outsid of my private cloud can talk to haproxy what shoul i do?

edit retag flag offensive close merge delete

Comments

all traffic goes to router in controller only if you deploy a centralized router. With a DVR, most traffic is routed directly on the compute nodes.

What should you do? Assign 5 IP addresses to your database and application servers, and 2 addresses to your HA-Proxy. What is the problem?

Bernd Bausch gravatar imageBernd Bausch ( 2018-11-27 19:26:39 -0600 )edit

i do not want one range of ip for database and haproxy one range for database one range for haproxy and i believe using selfservice decrease my throuput

novainfinite gravatar imagenovainfinite ( 2018-11-28 02:54:30 -0600 )edit

Sorry but I don't understand your problem. I agree that throughput is a valid concern. By all means attach your instances to a provider network. But what is the problem with your IP addresses? One range is sufficient. You just need seven addresses.

Bernd Bausch gravatar imageBernd Bausch ( 2018-11-28 03:23:09 -0600 )edit

the security team said you should use two range for vm one of them for database and one range for haproxy so the one outside of company see just haproxy and can not attack to database the database ip should be local

novainfinite gravatar imagenovainfinite ( 2018-11-28 04:20:27 -0600 )edit

Try creating a second subnet on the provider network and connecting the DB and App instances to addresses in that subnet. I haven’t tried it.

Bernd Bausch gravatar imageBernd Bausch ( 2018-11-28 06:00:23 -0600 )edit