Add Flat mode doc
This commit is contained in:
Dean Troyer
@@ -23,6 +23,7 @@ VLAN Network Mode is the default mode for Nova. It provides a private network
|
|||||||
segment for each project's instances that can be accessed via a dedicated
|
segment for each project's instances that can be accessed via a dedicated
|
||||||
VPN connection from the Internet.
|
VPN connection from the Internet.
|
||||||
|
|
||||||
|
|
||||||
Goals
|
Goals
|
||||||
-----
|
-----
|
||||||
|
|
||||||
@@ -40,12 +41,14 @@ Goals
|
|||||||
* metadata
|
* metadata
|
||||||
* dashboard
|
* dashboard
|
||||||
|
|
||||||
|
|
||||||
Limitations
|
Limitations
|
||||||
-----------
|
-----------
|
||||||
|
|
||||||
* Projects / cluster limited to available VLANs in switching infrastructure
|
* Projects / cluster limited to available VLANs in switching infrastructure
|
||||||
* Requires VPN for access to project segment
|
* Requires VPN for access to project segment
|
||||||
|
|
||||||
|
|
||||||
Implementation
|
Implementation
|
||||||
--------------
|
--------------
|
||||||
|
|
||||||
@@ -64,7 +67,8 @@ network node maps a dedicated public IP/port to the CloudPipe instance.
|
|||||||
Compute nodes have per-VLAN interfaces and bridges created as required.
|
Compute nodes have per-VLAN interfaces and bridges created as required.
|
||||||
These do NOT have IP addresses in the host to protect host access.
|
These do NOT have IP addresses in the host to protect host access.
|
||||||
Compute nodes have iptables/ebtables entries created per project and
|
Compute nodes have iptables/ebtables entries created per project and
|
||||||
instance to protect against IP/MAC spoofing.
|
instance to protect against IP/MAC address spoofing and ARP poisoning.
|
||||||
|
|
||||||
|
|
||||||
External Infrastructure
|
External Infrastructure
|
||||||
-----------------------
|
-----------------------
|
||||||
@@ -75,6 +79,7 @@ Nova assumes the following is available:
|
|||||||
* NTP
|
* NTP
|
||||||
* Internet connectivity
|
* Internet connectivity
|
||||||
|
|
||||||
|
|
||||||
Example
|
Example
|
||||||
-------
|
-------
|
||||||
|
|
||||||
@@ -85,6 +90,7 @@ routing and gateway functions.
|
|||||||
|
|
||||||
It uses a 10GB network for instance traffic and a 1GB network for management.
|
It uses a 10GB network for instance traffic and a 1GB network for management.
|
||||||
|
|
||||||
|
|
||||||
Hardware
|
Hardware
|
||||||
~~~~~~~~
|
~~~~~~~~
|
||||||
|
|
||||||
@@ -98,6 +104,7 @@ Hardware
|
|||||||
* switch needs to support enough simultaneous VLANs for number of projects
|
* switch needs to support enough simultaneous VLANs for number of projects
|
||||||
* production network configured as 802.1q trunk on switch
|
* production network configured as 802.1q trunk on switch
|
||||||
|
|
||||||
|
|
||||||
Operation
|
Operation
|
||||||
~~~~~~~~~
|
~~~~~~~~~
|
||||||
|
|
||||||
@@ -121,6 +128,7 @@ When starting an instance the compute node:
|
|||||||
* sets up a VLAN interface and bridge on each host as required when an
|
* sets up a VLAN interface and bridge on each host as required when an
|
||||||
instance is started on that host
|
instance is started on that host
|
||||||
|
|
||||||
|
|
||||||
Setup
|
Setup
|
||||||
~~~~~
|
~~~~~
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user