<div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote">On Thu, Aug 4, 2016 at 11:50 PM, Fernando Fuentes <span dir="ltr"><<a href="mailto:ffuentes@darktcp.net" target="_blank">ffuentes@darktcp.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><u></u>
<div><div>Edward,<br></div>
<div><br></div>
<div>I am sorry that the diagram was not clear enough.<br></div>
<div><br></div>
<div>There is two bonds (4 phisical nic's, each pair is LACP). One for mgmt traffic only and one to carry untag and tag traffic.<br></div>
<div>But I do understand your point.<br></div>
<div>I will try to separate this and have everything on its own access port.<br></div>
<div><br></div>
<div>To move my current ovirtmgmt interface to a new one all I have to do is create one and assign it and remove the old one correct?<br></div>
<div>Thanks again!<br></div></div></blockquote><div><br></div><div>Separating the management to its own bond and everything else to a second bond sounds reasonable.<br></div><div>So in this case, it will be less risky to just leave the ovirtmgmt as is and move the other networks to the other bond.<br></div><div>If the current ovirtmgmt is on a non-vlan network, just set the switch that connects to this bond slaves as access ports of vlan 35.<br><br></div><div>It is preferable not to play too much with the management network, as you may loose the host (although VDSM has a safety<br>process in place that will revert the change in case Engine-Host connectivity is lost).<br><br></div><div>If you prefer to move ovirtmgmt, make sure you perform the network detach and attach steps (including any VLAN changes)<br>in one transaction (change what you need and then do an apply for everything).<br><br></div><div>Thanks,<br></div><div>Edy.<br></div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div></div><span class="">
<div><br></div>
<div>Regards,<br></div>
<div><br></div>
<div><br></div>
<div><br></div>
<div><div>--<br></div>
<div>Fernando Fuentes<br></div>
<div><a href="mailto:ffuentes@txweather.org" target="_blank">ffuentes@txweather.org</a><br></div>
<div><a href="http://www.txweather.org" target="_blank">http://www.txweather.org</a><br></div>
<div><br></div>
</div>
<div><br></div>
<div><br></div>
</span><div><div class="h5"><div>On Thu, Aug 4, 2016, at 02:07 AM, Edward Haas wrote:<br></div>
<blockquote type="cite"><div dir="ltr"><div><div><div><div><div><div><div><div><div><div><div><div>Hi Fernando,<br></div>
</div>
<div>From what I could understand, you would like to have 3 networks, all on the same bond:<br></div>
</div>
<div>(I do not understand from the diagram that you have two bonds, you mentioned only bond0)<br></div>
<div>- ovirtmgmt - vlan35@bond0<br></div>
</div>
<div>- dmz vm network - vlan42@bond0<br></div>
</div>
<div>- default vm network - untag@bond0<br></div>
<div><br></div>
</div>
<div>Based on the tag, traffic that enters bond0 will be forwarded to the relevant network.<br></div>
</div>
<div>Any traffic that enters bond0 and is either untag or has a tag that does not correspond to the defined vlans,<br></div>
</div>
<div>will be forwarded to the non-vlan network (default vm in this case).<br></div>
</div>
<div>Note that when packets pass a vlan interface, they are stripped of their tag.<br></div>
<div><br></div>
<div>I personally consider a mix of tag and untag on the same iface/port as bad practice, but there may be reasons to<br></div>
</div>
<div>choose it. If you can, try having all networks with vlans, and set the switch ports correctly to reflect that.<br></div>
</div>
<div>Any other device on the network, like the router, can be connected to the switch to an access port (say of vlan 100),<br></div>
<div>so traffic there is untag, and when traffic goes to the ovirt host, it will go tagged 100.<br></div>
</div>
<div>Thanks,<br></div>
<div>Edy.<br></div>
<div><div><div><div><div><div><div><div><div><div><div><div><div><div><div><div><br></div>
<div><div>On Tue, Aug 2, 2016 at 9:22 PM, Fernando Fuentes <span dir="ltr"><<a href="mailto:ffuentes@darktcp.net" target="_blank">ffuentes@darktcp.net</a>></span> wrote:<br></div>
<blockquote style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div><u></u><br></div>
<div><div>I answer my own question.<br></div>
<div>"I think" lol<br></div>
<div><br></div>
<div>I am going to create a new ovirtmgmt logical network with a vlan tag and than move my hosts in to it for management. This interface is not part of the vm network.<br></div>
<div><br></div>
<div>The rest of the logical networks with vlans will be tagged and part of the vm network.<br></div>
<div>I think that logic is right.<br></div>
<div>Thoughts?<br></div>
<div><span></span><br></div>
<div><span></span><br></div>
<div><span>Regards,</span><br></div>
<div><span></span><br></div>
<div><span></span><br></div>
<div><div><span>--</span><br></div>
<div><span>Fernando Fuentes</span><br></div>
<div><span><a href="mailto:ffuentes@txweather.org" target="_blank">ffuentes@txweather.org</a></span><br></div>
<div><span><a href="http://www.txweather.org" target="_blank">http://www.txweather.org</a></span><br></div>
<div><span></span><br></div>
</div>
<div><span></span><br></div>
<div><span></span><br></div>
<div><span></span><br></div>
<div><div><div>On Sun, Jul 31, 2016, at 11:43 PM, Fernando Fuentes wrote:<br></div>
</div>
</div>
<blockquote type="cite"><div><div><div>Right now as we stand boht ovirt management and LAN data crosses the same interface.<br></div>
<div>I have two bonds. I want to move ovirt management to its own bond and tag it with vlan id 35.<br></div>
<div><br></div>
<div>Than I wan to move my LAN which has no tag and my dmz that does have a tag in to my secondary bond.<br></div>
<div><br></div>
<div>The switch is all configured what I am not sure is when making the logical network do I make the LAN a "VM Network"?<br></div>
<div>And the same question for my dmz tagged vlan...<br></div>
<div><br></div>
<div>I attached a small diagram that explains what I am trying to accomplish... I hope :D<br></div>
<div><br></div>
<div><br></div>
<div>Thanks for the help.<br></div>
<div><br></div>
<div>Regards,<br></div>
<div><br></div>
<div><br></div>
<div><div>--<br></div>
<div>Fernando Fuentes<br></div>
<div><a href="mailto:ffuentes@txweather.org" target="_blank">ffuentes@txweather.org</a><br></div>
<div><a href="http://www.txweather.org" target="_blank">http://www.txweather.org</a><br></div>
<div><br></div>
</div>
<div><br></div>
<div><br></div>
<div>On Sun, Jul 31, 2016, at 12:50 PM, Edward Haas wrote:<br></div>
<blockquote type="cite"><div dir="ltr"><div><br></div>
<div><div><br></div>
<div><div>On Sun, Jul 31, 2016 at 7:19 PM, Fernando Fuentes <span dir="ltr"><<a href="mailto:ffuentes@darktcp.net" target="_blank">ffuentes@darktcp.net</a>></span> wrote:<br></div>
<blockquote style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0.8ex;border-left-width:1px;border-left-style:solid;border-left-color:rgb(204,204,204);padding-left:1ex"><div>Team,<br></div>
<div><br></div>
<div>Is it possible to move the ovirt management interface to a separate vlan<br></div>
<div>and keep it from been on the same interface as my LAN?<br></div>
</blockquote><div><br></div>
<div>Networks, including the management one, can be assign as non-vlan or as vlan on<br></div>
<div>different nics/bonds.<br></div>
<div>If you want to assign two or more networks on the same nic/bond, only one can remain<br></div>
<div>non-vlan, the rest must be set with a vlan.<br></div>
<div>Vlan networks require that traffic entering the nic/bond is tagged, therefore, the switch port<br></div>
<div><div>that the nic is connected to must be set as a trunk.<br></div>
</div>
<div>If you have a specific setup in mind, please draw a network diagram for us.<br></div>
<div><br></div>
<blockquote style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0.8ex;border-left-width:1px;border-left-style:solid;border-left-color:rgb(204,204,204);padding-left:1ex"><div><br></div>
<div>IE: assign a tag to ovirtmanagement and keep another interface as untag<br></div>
<div>for my LAN to use with the VM's<br></div>
<div><br></div>
<div>Thoughts ideas?<br></div>
<div><br></div>
<div>TIA!<br></div>
<div><br></div>
<div>Regards,<br></div>
<div><span><span style="color:rgb(136,136,136)"><br>--<br> Fernando Fuentes<br> <a href="mailto:ffuentes@txweather.org" target="_blank">ffuentes@txweather.org</a><br> <a href="http://www.txweather.org" target="_blank">http://www.txweather.org</a><br> ______________________________<wbr>_________________<br> Users mailing list<br> <a href="mailto:Users@ovirt.org" target="_blank">Users@ovirt.org</a><br> <a href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank">http://lists.ovirt.org/<wbr>mailman/listinfo/users</a></span></span></div>
</blockquote></div>
</div>
</div>
</blockquote><div><br></div>
<div><u>______________________________<wbr>_________________</u><br></div>
<div>Users mailing list<br></div>
<div><a href="mailto:Users@ovirt.org" target="_blank">Users@ovirt.org</a><br></div>
<div><a href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank">http://lists.ovirt.org/<wbr>mailman/listinfo/users</a><br></div>
</div>
</div>
<p>Email had 1 attachment:<br></p><ul><li><div><code>vlans.png</code><br></div>
<div> 353k (image/png)<br></div>
</li></ul></blockquote><div><br></div>
</div>
<div><br></div>
<div>______________________________<wbr>_________________<br></div>
<div> Users mailing list<br></div>
<div> <a href="mailto:Users@ovirt.org" target="_blank">Users@ovirt.org</a><br></div>
<div> <a href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank">http://lists.ovirt.org/<wbr>mailman/listinfo/users</a><br></div>
<div> <br></div>
</blockquote></div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</blockquote><div><br></div>
</div></div></div>
</blockquote></div><br></div></div>