I had a large client ask me for PVLANs for their private cloud just two weeks ago.
If etiquette allows me to +1 then I'm in. Regards, Paul Angus S: +44 20 3603 0540 | M: +447711418784 paul.an...@shapeblue.com -----Original Message----- From: Chip Childers [mailto:chip.child...@sungard.com] Sent: 18 April 2013 02:00 To: dev@cloudstack.apache.org Subject: Re: [RFC][FS]PVLAN for isolation within a VLAN On Wed, Apr 17, 2013 at 05:49:23PM -0700, Sheng Yang wrote: > In fact that's the requirement for this design. We need this very strict > restriction to implement isolation for the VMs. PVLAN is the way we used to > approach this requirement. As a user, the whole point of this type of network is to support a "backend" management / monitoring network that can be connected to VMs regardless of the user of the VM. Using a VLAN per tenant isn't actually enough even, when you consider the N-Tier apps feature. If a user has 3 "tiers" using traditional VLAN isolation, you are basically tied to a model of 2 VLANs per tier, burning through VLANs much faster than necessary. PVLANs (and the equiv via OVS flows) are the normal way to accomplish this in a traditional hosting environment. Sheng - +1 to this feature and the FS. Nice work, and from someone who will use it, glad to see it being worked on! -chip This email and any attachments to it may be confidential and are intended solely for the use of the individual to whom it is addressed. Any views or opinions expressed are solely those of the author and do not necessarily represent those of Shape Blue Ltd or related companies. If you are not the intended recipient of this email, you must neither take any action based upon its contents, nor copy or show it to anyone. Please contact the sender if you believe you have received this email in error. Shape Blue Ltd is a company incorporated in England & Wales. ShapeBlue Services India LLP is operated under license from Shape Blue Ltd. ShapeBlue is a registered trademark.
