Recent content by tincboy

  1. Why we can't have more than 4094 vlan tag ID on OVS with GRE overly?

    Thanks for the info, would you please let me know how can I configure VNI id of an interface in Proxmox using OpenVSwitch Bridge?
  2. Why we can't have more than 4094 vlan tag ID on OVS with GRE overly?

    In vxlan, is VNI equevalent of vlanID ? by setting VNI to each interface of a VM, are we isolating the traffic of that customer of others?
  3. Why we can't have more than 4094 vlan tag ID on OVS with GRE overly?

    My case is to offer private network to our many clients, each client may have more than 1 private network and therefor 4095 vlan tag is not enough to fully isolate each client's private network.
  4. Why we can't have more than 4094 vlan tag ID on OVS with GRE overly?

    Using an other field, can't we assign both VLAN field IDs from Proxmox configs? If so then we can have more than 16 million separated private networks. right?
  5. clone an LVM on shared LVM storage

    For purpose of fast provisioning we need to be able to clone a base LVM, which is raw OS image on it, Is that possible like what below link said in shared storage environment? ( of course we have SAN storage device) http://www.andybotting.com/how-do-you-clone-an-lvm-partition
  6. How to disable Spectre , Meltdown , ... kernel patches

    In latest versions of kernel 5.2+ we can disable mitigations by "mitigation=off" kernel command, but as Proxmox 6 is using kernel 5.0 I've disabled them by using this grub config GRUB_CMDLINE_LINUX="net.ifnames=0 biosdevname=0 pti=off spectre_v2=off nospec_store_bypass_disable mds=off"
  7. How to disable Spectre , Meltdown , ... kernel patches

    For better Ceph performance, I need to disable all kind of kernel protections for CPU vulnerabilities, Is there any guide on how to ask kernel in Proxmox to do so? Servers are being used only for Ceph so I have no security concerns regarding disabling CPU vulnerabilities.
  8. Why we can't have more than 4094 vlan tag ID on OVS with GRE overly?

    That's correct, but doesn't OpenVSwitch supports IEEE_802.1ad ?
  9. Why we can't have more than 4094 vlan tag ID on OVS with GRE overly?

    I setup OVS switch on 10 nodes which are interconnected via GRE tunnels, but I can see Proxmox is not letting us create more than 4094 vlans because tag ID larger than 4094 is not validated in Proxmox interface or API. Is there any restriction based on GRE overlay that prevent us having more vlans?
  10. Prometheus guest exporter

    As far as I know recent versions of GuestAgent support executing any commands, therefor it should be possible to monitor guests from host, is that true?
  11. ovs rstp_designated_path_cost for GRE

    In proxmox documents I can see it's advised to set rstp_designated_path_cost for physical ports, but as I want to create a mesh network with openvswitch containing 20 nodes which all are connected together via GRE is it necessary to set path_cost for GRE too? I've tried command below but it...
  12. Prometheus guest exporter

    I wonder if there's any exporter that gather guest usage information from inside of them via GuestAgent and export them to prometheus? If not is it reasonable to use GuestAgent for gathering resource usage of VMs?
  13. iptables is not picking tap interface packets

    It fixed by using "-m physicaldev --physdev-in tap101i0" instead of -i, and it's because tap is layer 2 not layer 3
  14. iptables is not picking tap interface packets

    I've used a simple iptables rule to test some idea, but I can see it's not picking any packet on tap interface. Is that normal? root@node01:~# iptables -I FORWARD -i tap101i0 results: root@node01:~# iptables -L FORWARD -v -n Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) pkts bytes target...
  15. OVS on many servers

    So as I've L2 connectivity between all nodes, how can I avoid establishing GRE between all pairs of servers?

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE and Proxmox Mail Gateway. We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get your own in 60 seconds.

Buy now!