[PVE-User] Proxmox VE 3.2 released!

Mon Mar 10 14:12:17 CET 2014

Il 2014-03-10 13:28 Dietmar Maurer ha scritto:
>> Just a question about openvswitch
>> do you have plans to add even the tunnel iface?
>> 
>> OVSTunnel i intend
> 
> So far I have never used that. Would you mind to describe the use case 
> for that?

OK: i create a DMZ with a mute interface on three nodes

i've only two ethernet on each node

eth0->vmbr0 local
eth1->vmbr1 internet

auto vmbr0
iface vmbr0 inet static
         address  192.168.0.55
         netmask  255.255.255.0
         gateway 192.168.0.253
         ovs_type OVSBridge
         ovs_ports eth0

auto vmbr1
iface vmbr1 inet static
         address  192.168.1.55
         netmask  255.255.255.0
         ovs_type OVSBridge
         ovs_ports eth1

auto vmbr2
iface vmbr2 inet static
         address  10.168.1.55
         netmask  255.255.255.0
         ovs_type OVSBridge
         ovs_ports gre1
         ovs_ports gre2
         post-up ovs-vsctl set bridge vmbr1 stp_enable=true

allow-vmbrs gre1
iface gre1 inet manual
         ovs_type OVSTunnel
         ovs-bridge vmbrs
         ovs_tunnel_type gre
         ovs_tunnel_options options:remote_ip=192.168.0.56 options:key=99

allow-vmbrs gre2
iface gre2 inet manual
         ovs_type OVSTunnel
         ovs-bridge vmbrs
         ovs_tunnel_type gre
         ovs_tunnel_options options:remote_ip=192.168.0.57 options:key=98

Doing this config with the appropriate changes on the other two nodes i
create a simple MESH DMZ zone...

i attach as many vm as i want on each node on vmbr2 and each vm could
speak with each other node...

and when a gre? goes down aftew 20 seconds the route will be replaced
on other node of the MESH

This is a simple example with a simple key

Diaolin

---
S’à destacà l’ultima föia dal bósch nét
crodàda l’ei, solàgna, ‘n mèzz ai sàssi
e ‘ntant fis-ciava ‘n zìfol de oseleti
a tegnìr vìo ‘l pensér che vèn matìna
[Diaolin]