Ask Your Question
0

Quantum shared networks

asked 2013-01-06 07:08:17 -0600

Hi All,

How are shared networks realized in Quantum? Is it possible for VMs from tenant's other(private) networks to be able to talk to VMs on shared networks? If yes, how does it work considering VLANs are being used for network virtualization.

thanks Asif

edit retag flag offensive close merge delete

7 answers

Sort by ยป oldest newest most voted
0

answered 2013-01-07 03:23:02 -0600

gongysh gravatar image

only admin can add other tenants' subnet into a router.

so for VMs from other tenant's private networks to talk to VMs on other tnenats' subnets, only admin user can do it.

edit flag offensive delete link more
0

answered 2013-01-07 03:42:32 -0600

kong gravatar image

@Yong sheng:

"only admin can add other tenants' subnet into a router." --If admin did this, could VMs from different subnets talk with each other without any configuration? If the answer is yes, how does it work in the physical host? what are the relative commands?

edit flag offensive delete link more
0

answered 2013-01-07 03:50:08 -0600

gongysh gravatar image

in admin context: quantum router-create router1 quantum router-interface-add router1 tenanta_subnet quantum router-interface-add router1 tenantb_subnet xxx after that, the Vms on tenanta_subnet and tenantb_subnet should be able to access each other.

edit flag offensive delete link more
0

answered 2013-01-06 20:59:17 -0600

Interesting, I feel if you have both tenant private network and shared network interfaces attached to the router. It should be possible. I would like to know from others if this is possible!

edit flag offensive delete link more
0

answered 2013-01-06 11:48:54 -0600

kong gravatar image

In my opinion shared network just means that you can see and use that network(e.g. create port on it)

"Is it possible for VMs from tenant's other(private) networks to be able to talk to VMs on shared networks? " I think if VM has no floatingIP, the answer is no.

edit flag offensive delete link more
0

answered 2013-01-07 04:14:29 -0600

kong gravatar image

I have another question, in add_router_interface() function, I see: " policy.enforce(context, "extension:router:add_router_interface", self._make_router_dict(router)) "

in the default policy.json: "admin_or_owner": [["role:admin"], ["tenant_id:%(tenant_id)s"]], "extension:router:add_router_interface": [["rule:admin_or_owner"]],

so I think tenant(not admin) of the router can use "quantum router-interface-add"(because tenant_id in context is the same as owner of the router), am I wrong? Maybe I should figure it out on my machine.

edit flag offensive delete link more
0

answered 2013-01-07 12:02:09 -0600

I think we will atleast have to configure default route for each network in the VMs. e.g if we have two subnets 10.0.0.0/8 and 30.0.0.0/8 on different networks then we will have to specify 30.0.0.1 as GW for 30.0.0.0/8 in VMs running on 10.0.0.0/8 subnets and vice versa. Or it is automatically taken care of via some configuration?

thanks Asif

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2013-01-06 07:08:17 -0600

Seen: 13 times

Last updated: Jan 07 '13