[ovirt-users] Re: Virtual office, how?

Hi, andres.b.dev(a)gmail.com writes: You've got a few problems here. First, if you have two networks, N1, and N2, you probably DO NOT want the same IP Network (192.168.122) on both N1 and N2. So for your sanity, if A and B are on N1 and C and D are on N2, you might want to use: A: 192.168.10.100 B: 192.168.10.101 C: 192.168.20.100 D: 192.168.20.101 I'm confused by this. What do you mean "has the same public ip"? None of the IPs here are public, they are all RFC1918 (private network) IPs. Do you mean that you've got a router, somewhere, that have a reverse NAT that will translate externally from some public addresses to these private addresses? Also, you will need that reverse NAT to be smart about how it routes. Specifically, once you have an active connection to A or B, it will need to ensure that the connection continues to the same (A or B) target. I'm not sure I understand what this means. What do you mean by "A can ssh on B"? This is probably a language issue. I think you mean that A and B can ssh to each other but can't reach C or D, and C and D can ssh to each other but can't reach A or B. If you renumber as above then you can do that by not routing between 192.168.10.0/24 and 192.168.20.0/24. However in your original configuration where all four hosts are on the same 192.168.122.0/24 network, there is no way (at the network level) to prevent A and B from talking with C and D. You can do this with OVS, or even with basic networking, but you will need to create actual separate networks. Good Luck, -derek -- Derek Atkins 617-623-3745 derek(a)ihtfp.com www.ihtfp.com Computer and Internet Security Consultant