7:45 p.m.
Hi all
We running RHEV 4.1.10 on HPE Blade servers using Virtual Connect which
talk to Cisco switches.
I want to implement private VLANs, does the combination of oVirt + Cisco
switches + HPE Virtual Connect work with private VLANs?
To be clear, I want to have a couple of logical networks (i.e. VLANs) where
the nodes in that VLAN cannot talk directly but must go through the
router/firewall.
Thanks
CC
6:10 a.m.
On Tue, 15 May 2018 08:45:05 +0800
Colin Coe <colin.coe(a)gmail.com> wrote:
Hi all
We running RHEV 4.1.10 on HPE Blade servers using Virtual Connect
which talk to Cisco switches.
I want to implement private VLANs, does the combination of oVirt +
Cisco switches + HPE Virtual Connect work with private VLANs?
To be clear, I want to have a couple of logical networks (i.e. VLANs)
where the nodes in that VLAN cannot talk directly but must go through
the router/firewall.
What is a 'node' in you scenario?
Is this a oVirt host or a VM?
May I ask what would you like to achieve?
Does
https://bugzilla.redhat.com/show_bug.cgi?id=1009608
reflect what you want to achieve?
Unfortunately private VLANs are not directly supported by oVirt,
but there is the vdsm_hook isolatedprivatevlan in
https://github.com/oVirt/vdsm/tree/master/vdsm_hooks/isolatedprivatevlan
which might solve your issue.
Thanks
CC
7:44 a.m.
On Tue, May 15, 2018 at 2:45 AM, Colin Coe <colin.coe(a)gmail.com> wrote:
Hi all
We running RHEV 4.1.10 on HPE Blade servers using Virtual Connect which talk
to Cisco switches.
I want to implement private VLANs, does the combination of oVirt + Cisco
switches + HPE Virtual Connect work with private VLANs?
To be clear, I want to have a couple of logical networks (i.e. VLANs) where
the nodes in that VLAN cannot talk directly but must go through the
router/firewall.
Hello Colin,
do you mean hosts inside the same vlan cannot talk to each other
directly? Do you want to apply some security policies directly on
single nodes (microsegmentation)? Or you want that communication
between hosts placed in these two different vlans goes through
firewall?
Luca
--
"E' assurdo impiegare gli uomini di intelligenza eccellente per fare
calcoli che potrebbero essere affidati a chiunque se si usassero delle
macchine"
Gottfried Wilhelm von Leibnitz, Filosofo e Matematico (1646-1716)
"Internet è la più grande biblioteca del mondo.
Ma il problema è che i libri sono tutti sparsi sul pavimento"
John Allen Paulos, Matematico (1945-vivente)
Luca 'remix_tj' Lorenzetto, http://www.remixtj.net ,
<lorenzetto.luca(a)gmail.com>
2553
days inactive
2553
days old
2 comments
3 participants
participants (3)
-
Colin Coe -
Dominik Holler -
Luca 'remix_tj' Lorenzetto