Revision history [back]

click to hide/show revision 1
initial version

What traffic must be allowed in the underlay for Neutron VXLAN overlay?

I need to set up an OpenStack cluster on a small cluster of systems (half dozen). The hosts (hypervisors and controller nodes) are connected to a Juniper EX-3200 switch and on a shared VLAN. However, I want to minimize the traffic among the compute (Nova) nodes (through the underlay network).

What traffic do I have to permit (through the layer 3 packet filters in this switch) to allow the controllers and compute nodes to communicate ... and for the VXLAN traffic to get forwards among the VMs (to the Open vSwitch processes/fabric)?