Rephrasing my last e-mail:
Working with open vswitch at the ovirt infrastructure level is NOT an easy task.
Marcos
From: Marcos Sungaila via Users <users(a)ovirt.org>
Sent: Monday, November 11, 2024 9:57 AM
To: Tim Walsh <mr_tim_walsh(a)hotmail.com>; users(a)ovirt.org
Subject: [ovirt-users] Re: [External] : open v-switch woes
Tim,
Working with open vswitch at the ovirt infrastructure level is an easy task.
Here you have some steps to start with it.
Deploying an OVN enabled system have the following requirements:
* Stand-alone Engine installed on a bare metal or a VM outside the ovirt cluster.
Running SHE is not possible since the default cluster will use Linux bridges, not
openvswitch
* No extra packages are required
* After the Engine is deployed, create a new cluster, set the switch type to OVS and
the default network provider to ovirt-provider-ovn
* Add a host to the new cluster, note that migrating a host from a Linux bridge
cluster to OVS may fail and may require you to clean-up all network configuration before
joining the host to the right cluster.
* In the network menu, you will need to create an ovn network for each tagged vlan, as
well as for the untagged network you may have
* If you enable network port security, you will need to create security groups and
security rules before any communication can happen between instances, and to/from external
ips
Marcos
From: Tim Walsh <mr_tim_walsh@hotmail.com<mailto:mr_tim_walsh@hotmail.com>>
Sent: Friday, October 25, 2024 6:00 PM
To: Marcos Sungaila
<marcos.sungaila@oracle.com<mailto:marcos.sungaila@oracle.com>>;
users@ovirt.org<mailto:users@ovirt.org>
Subject: Re: [External] : [ovirt-users] open v-switch woes
Yes, not only a desire to replicate the functionality of V-Switches on VM-Ware, but also
to have an isolated test environment.
Create a virtual firewall (using Opensense or pfSense or something) and create VMs behind
the firewall that can all talk to each other, but the firewall only passes out the
application traffic (for example a web app on Nginx, or Remote Desktop to the private
Environment).
Microsoft Hyper-V has "private" and "internal" switches that can be
set up, (and thats the case on either a standalone or a cluster) so I figured oVirt must
have something similar if not the same. these may or may not necessarily be tagged to a
VLAN on a physical switch.
Thanks,
Tim
________________________________
From: Marcos Sungaila
<marcos.sungaila@oracle.com<mailto:marcos.sungaila@oracle.com>>
Sent: Thursday, October 24, 2024 4:22 PM
To: Tim Walsh <mr_tim_walsh@hotmail.com<mailto:mr_tim_walsh@hotmail.com>>;
users@ovirt.org<mailto:users@ovirt.org>
<users@ovirt.org<mailto:users@ovirt.org>>
Subject: RE: [External] : [ovirt-users] open v-switch woes
Hey Tim,
Deploying an OVN-enabled cluster is not that trivial.
There are many caveats to make it run.
Is there any special use case you need to address to use OVS/OVN?
Marcos
From: Tim Walsh <mr_tim_walsh@hotmail.com<mailto:mr_tim_walsh@hotmail.com>>
Sent: Thursday, October 24, 2024 12:28 AM
To: users@ovirt.org<mailto:users@ovirt.org>
Subject: [External] : [ovirt-users] open v-switch woes
Hey community,
I'm trying to get open v-switch set up to work like it does in VMware. I am running
Rocky Linux 8.9 and oVirt 4.5.5 (el8)
I got the repos but online feedback recommends installing openvswitch, and ovn-northd,
ovn-central and ovn-host
I got openvswitch installed, but the other three: ovn-northd, ovn-central and ovn-host
seemt o be elusive even after adding the CentOS-Advanced-Virtualization.repo and
uipdating all "CentOS-" repost to point to "vault" instead of
"mirrorlist"
Can someo0ne help me with what I'm missing? I've tried Bing CoPilot and ChatGPT
LOL but they say add that repo and install those packages.
Thanks,
Tim