<div dir="ltr"><div><div><div><div><div><div><div><div><div><div><div><div>Hi,<br><br></div>I am trying to setup ovirt as shown below.<br><br></div>DataCenter1 ---------Cluster1 -----host1 ---- NFS1-Data Domain<br> |<br></div> |-----Cluster2 ------host2-----NFS2-Data Domain<br><br><br></div>As you see in above case I am trying to attach both NFS partition to Datacente1 and I got various behaviour:<br></div><br>1> Once one data domain attached to data center other is failing to attached <br></div>(e.g. let say NFS1-Data Domain is attached to DataCenter1 then after that NFS2-Data Domain failing to attach DataCenter1)<br><br></div>2> And sometime both data domain successfully got attached but after that host2 is not coming up by saying "host1 cannot access to NFS2-Data Domain and hence moving host1 to Non-Operational"<br>host1 firewall rules are :<br>--------------------------------------------------------------------------------------------------<br></div># iptables -L<br>Chain INPUT (policy ACCEPT)<br>target prot opt source destination <br>ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED<br>ACCEPT icmp -- anywhere anywhere <br>ACCEPT all -- anywhere anywhere <br>ACCEPT tcp -- anywhere anywhere tcp dpt:54321<br>ACCEPT tcp -- anywhere anywhere tcp dpt:54322<br>ACCEPT tcp -- anywhere anywhere tcp dpt:sunrpc<br>ACCEPT udp -- anywhere anywhere udp dpt:sunrpc<br>ACCEPT tcp -- anywhere anywhere tcp dpt:ssh<br>ACCEPT udp -- anywhere anywhere udp dpt:snmp<br>ACCEPT tcp -- anywhere anywhere tcp dpt:websm<br>ACCEPT tcp -- anywhere anywhere tcp dpt:16514<br>ACCEPT tcp -- anywhere anywhere multiport dports rockwell-csp2<br>ACCEPT tcp -- anywhere anywhere multiport dports rfb:6923<br>ACCEPT tcp -- anywhere anywhere multiport dports 49152:49216<br>ACCEPT tcp -- anywhere anywhere tcp dpt:sunrpc<br>ACCEPT tcp -- anywhere anywhere tcp dpt:nfs<br>ACCEPT udp -- anywhere anywhere udp dpt:nfs<br>ACCEPT udp -- anywhere anywhere udp dpt:sunrpc<br>ACCEPT udp -- anywhere anywhere udp dpt:892<br>ACCEPT tcp -- anywhere anywhere tcp dpt:892<br>ACCEPT tcp -- anywhere anywhere tcp dpt:ospf-lite<br>REJECT all -- anywhere anywhere reject-with icmp-host-prohibited<br><br>Chain FORWARD (policy ACCEPT)<br>target prot opt source destination <br>REJECT all -- anywhere anywhere PHYSDEV match ! --physdev-is-bridged reject-with icmp-host-prohibited<br><br>Chain OUTPUT (policy ACCEPT)<br>target prot opt source destination <br>--------------------------------------------------------------------------------------------------<br><br></div>Please help me to understand this issue.<br>1> Do ovirt support multiple-cluster to multiple-storage data domain ?<br></div>2> Are those firewall rules correct or wrong ?<br></div><div>3> Can host1 access storage domain created on another cluster say host2 m/c ? (NFS technology)<br></div><div><br><br></div>Thanks,<br></div>~Rohit<br></div>