Re: [Openstack] How to utilize Neutron independently with veths

2017-05-23 Thread duhongwei
Thanks Kevin! I've made a big step forward! Till now, I've successfully connect vNIC directly into br-int without qbr, qvo, and qvb. And, it works well. However, following your scripts (connect vNIC into qbr, then connect qbr into br-int) exposes another problem. In this scenario, qbr won't f

Re: [Openstack] Openstack Routed Provider Networks Question

2017-05-23 Thread Chris Marino
Thanks Kevin, very helpfulother comments in line. CM On Mon, May 22, 2017 at 9:15 PM, Kevin Benton wrote: > On May 22, 2017 9:34 AM, "Chris Marino" wrote: > > I'm digging into how Routed Provider Networks work and have some questions > as well. I will presenting at the OpenStack Meetup >

Re: [Openstack] Openstack Routed Provider Networks Question

2017-05-23 Thread John Griessen
On 05/23/2017 08:31 AM, Chris Marino wrote: L3 to ToR and L2 in rack So, when you refer to providers of VMs do you still use these terms? ovh.com offers VMs built on openstack where one can create a vrack, (virtual rack). Does L3 to top of rack and L2 in rack apply to such vracks, or only ph

Re: [Openstack] Openstack Routed Provider Networks Question

2017-05-23 Thread Chris Marino
John, not really familiar with the OVH offering, but my quick scan indicated their vRack is a collection of servers on one or more VLANs. Doubt that these vRacks are tied in any way to actual physical racks. My use of the term 'top of rack' and ToR is meant

Re: [Openstack] How to utilize Neutron independently with veths

2017-05-23 Thread Dmitry Sutyagin
Afaik, iptables are set by Nova, and the driver is set via firewall_driver option in nova.conf On Tue, May 23, 2017 at 12:15 AM, duhongwei wrote: > > Thanks Kevin! I've made a big step forward! > > Till now, I've successfully connect *vNIC* directly into *br-int *without > *qbr*, *qvo*, and *qvb

Re: [Openstack] Openstack Routed Provider Networks Question

2017-05-23 Thread Sławek Kapłoński
Hello, Vrack based networks are little bit different. We made it by self in OVH. It allows users to create tenant networks and connect them with e.g. dedicated servers. From Openstack user point of view it is similar to vlan network but it’s done littlebit different. Traffic from host in differ

Re: [Openstack] How to utilize Neutron independently with veths

2017-05-23 Thread Kevin Benton
Neutron sets up the iptables rules if you have security groups enabled and the agent firewall is set to iptables_hybrid or neutron.agent.linux.iptables_firewall:OVSHybridIptablesFirewallDriver . What are you naming your vNIC? The iptables rules setup by the agent match specifically on 'tap' + port

Re: [Openstack] Openstack Routed Provider Networks Question

2017-05-23 Thread Kevin Benton
>Then describing the 'segment ID' as a VLAN ID Segment ID is not a VLAN ID. A segment ID is a UUID for a segment, which can contain a segmentation ID of a VLAN ID or VXLAN VNI or it might even be a flat network. It is unfortunate that we have both segment ID and segmentation ID, which is what let

[Openstack] [MassivelyDistributed] IRC Meeting tomorrow15:00 UTC

2017-05-23 Thread lebre . adrien
Dear all, A gentle reminder for our meeting tomorrow. As usual, the agenda is available at: https://etherpad.openstack.org/p/massively_distributed_ircmeetings_2017 (line 597) Please feel free to add items. Best, ad_rien_ ___ Mailing list: http://l