Hello Stackers,

I would like to have an in depth view on how the tenant isolation is achieved in Openstack with a GRE/VXLAN overlay. Any good document/links are welcome

  1. How each tenants traffic is differentiated in the tunnel?
  2. Is there any limitation in 4096 vlans?

Thanks Ravargs

answered 2015-04-30 01:04:35 -0600

dbaxps gravatar image

updated 2015-04-30 01:16:54 -0600

View :-
GRE (VXLAN) segmentation ID is unique for ech tenant

No 4096 limit, due to tags are not real VLAN tags as 12-bit segment packets headers transmitted  via switch from Compute to Network Nodes. Tags used by GRE are only locally valuable to separate packets at br-int. As I wrote GRE(VXLAN)  segmentation ID identifies globally tenant's network.

