Hi,
I am trying to setup ovirt as shown below.
DataCenter1 ---------Cluster1 -----host1 ---- NFS1-Data Domain
|
|-----Cluster2 ------host2-----NFS2-Data Domain
As you see in above case I am trying to attach both NFS partition to
Datacente1 and I got various behaviour:
1> Once one data domain attached to data center other is failing to
attached
(e.g. let say NFS1-Data Domain is attached to DataCenter1 then after that
NFS2-Data Domain failing to attach DataCenter1)
2> And sometime both data domain successfully got attached but after that
host2 is not coming up by saying "host1 cannot access to NFS2-Data Domain
and hence moving host1 to Non-Operational"
host1 firewall rules are :
--------------------------------------------------------------------------------------------------
# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere state
RELATED,ESTABLISHED
ACCEPT icmp -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp dpt:54321
ACCEPT tcp -- anywhere anywhere tcp dpt:54322
ACCEPT tcp -- anywhere anywhere tcp dpt:sunrpc
ACCEPT udp -- anywhere anywhere udp dpt:sunrpc
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
ACCEPT udp -- anywhere anywhere udp dpt:snmp
ACCEPT tcp -- anywhere anywhere tcp dpt:websm
ACCEPT tcp -- anywhere anywhere tcp dpt:16514
ACCEPT tcp -- anywhere anywhere multiport
dports rockwell-csp2
ACCEPT tcp -- anywhere anywhere multiport
dports rfb:6923
ACCEPT tcp -- anywhere anywhere multiport
dports 49152:49216
ACCEPT tcp -- anywhere anywhere tcp dpt:sunrpc
ACCEPT tcp -- anywhere anywhere tcp dpt:nfs
ACCEPT udp -- anywhere anywhere udp dpt:nfs
ACCEPT udp -- anywhere anywhere udp dpt:sunrpc
ACCEPT udp -- anywhere anywhere udp dpt:892
ACCEPT tcp -- anywhere anywhere tcp dpt:892
ACCEPT tcp -- anywhere anywhere tcp
dpt:ospf-lite
REJECT all -- anywhere anywhere reject-with
icmp-host-prohibited
Chain FORWARD (policy ACCEPT)
target prot opt source destination
REJECT all -- anywhere anywhere PHYSDEV match
! --physdev-is-bridged reject-with icmp-host-prohibited
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
--------------------------------------------------------------------------------------------------
Please help me to understand this issue.
1> Do ovirt support multiple-cluster to multiple-storage data domain ?
2> Are those firewall rules correct or wrong ?
3> Can host1 access storage domain created on another cluster say host2 m/c
? (NFS technology)
Thanks,
~Rohit