On Mon, Oct 2, 2017 at 11:49 PM, ~Stack~ <i.am.stack@gmail.com> wrote:
Greetings,
For various reasons I have multiple networks that I am required to work with. I just want to ensure that I've understood the documentation for setting up Ovirt correctly.
- First is my BMC/ilo network. The security team wants as few entry points into this as possible and wants as much segregation as possible.
- Second is my "management" access network. For my other machines on this network this means admin-SSH/rsyslog/SaltStack configuration management/ect.
- Third is my high speed network where my NFS storage sits and applications that need the bandwidth do their thing.
- Fourth is my "public" access.
My Engine host has the "management" and "public" networks. My Hypervisor hosts have the "BMC/ilo", "management", and "storage" networks.
Is there a reason why I should add "public" on the hypervisors?
No, you should only plug the network to oVirt but not configure any ip on the hypervisors.
Is there a reason why I may need "BMC/ilo" or "storage" on the Engine host?
No, you don't need. I've only management on engine host. The hypervisors, instead have an ip on management and storage network, and no ip on the other networks. For bmc traffic we use routed access through a firewall that is dividing bmc network from the rest of the world. Luca -- "E' assurdo impiegare gli uomini di intelligenza eccellente per fare calcoli che potrebbero essere affidati a chiunque se si usassero delle macchine" Gottfried Wilhelm von Leibnitz, Filosofo e Matematico (1646-1716) "Internet è la più grande biblioteca del mondo. Ma il problema è che i libri sono tutti sparsi sul pavimento" John Allen Paulos, Matematico (1945-vivente) Luca 'remix_tj' Lorenzetto, http://www.remixtj.net , <lorenzetto.luca@gmail.com>