What traffic must be allowed in the underlay for Neutron VXLAN overlay?

asked 2016-08-24 17:13:09 -0500

JimDennis gravatar image

I need to set up an OpenStack cluster on a small cluster of systems (half dozen). The hosts (hypervisors and controller nodes) are connected to a Juniper EX-3200 switch and on a shared VLAN. However, I want to minimize the traffic among the compute (Nova) nodes (through the underlay network).

What traffic do I have to permit (through the layer 3 packet filters in this switch) to allow the controllers and compute nodes to communicate ... and for the VXLAN traffic to get forwards among the VMs (to the Open vSwitch processes/fabric)?

edit retag flag offensive close merge delete


VXLAN (vs VLAN ) EAST/WEST && SOUTH/NORTH traffic would come through any ( even pretty dumb switch) with no problems, Just causing some arp broadcast pressure on system, unless you activate L2Population , which will eliminate this VXLAN drawback.

dbaxps gravatar imagedbaxps ( 2016-08-25 13:59:09 -0500 )edit