[TUTORIAL] Full mesh (routed setup) + EVPN + VM Bridge

Geco-iT

Member
Mar 24, 2021
17
23
8
France
www.geco-it.fr
At Geco-it, we use the SDS Linstor solution.

To connect our hypervisors without investing in switches we use a full mesh network

To use Linstor storage in VMs (container volumes), we need access to the Linstor satellite network.

So we need a VM Storage bridge...

To setup full mesh network, you must follow:

Infrastructure​


Code:
 +------------------+    +------------------+    +------------------+
 |     Node 1       |    |     Node 2       |    |      Node 3      |
 |                  |    |                  |    |                  |
 |                  |    |                  |    |                  |
 |+-----+           |    |           +-----+|    |           +-----+|
 || VM1 |           |    |           | VMx ||    |           | VMy ||
 ||     | <---------|----|------->   |     ||<---|-------->  |     ||
 |+-----+           |    |           +-----+|    |           +-----+|
 |+----------------+|    |+----------------+|    |+----------------+|
 || VM SDN Bridge  ||    || VM SDN Bridge  ||    || VM SDN Bridge  ||
 || "storage"      ||    || "storage"      ||    || "storage"      ||
 ||                ||    ||                ||    ||                ||
 |+----------------+|    |+----------------+|    |+----------------+|
 ||  eno1 ||  eno2 ||    ||  eno1 ||  eno2 ||    ||  eno1 ||  eno2 ||
 +------------------+    +------------------+    +------------------+
     ^         ^              v        ^              v         ^     
     |         +---------------        +---------------         |
     |                                                          |    
     -----------------------------------------------------------+     
.
.

Node NameLoopback IPOpenFabric Netword IDNIC Name 1NIC Name 2NIC's MTUVM SDN BridgeVM SDN Bridge IP
node110.255.255.11149.0001.1111.1111.1111.00eno1eno29000storage10.20.45.111/24
node210.225.255.11249.0001.2222.2222.2222.00eno1eno29000storage10.20.45.112/24
node310.255.255.11349.0001.3333.3333.3333.00eno1eno29000storage10.20.45.113/24

Configuration​


Add this in your /etc/network/interfaces (on each proxmox node)

Example for node1

Code:
...
##
# Storage Network (Openfabric mesh)
##
auto lo:0
iface lo:0 inet loopback
        address 10.255.255.111/32
        post-up echo 1 > /proc/sys/net/ipv4/ip_forward
#EVPN Routing
 
auto eno1
iface eno1 inet manual
        mtu 9000
 
auto eno2
iface eno2 inet manual
        mtu 9000
 
auto vxlan_storage
iface vxlan_storage
        vxlan-id 101
        vxlan-local-tunnelip 10.255.255.111
        bridge-learning off
        mtu 8950
 
iface storage
        address 10.20.45.111/24
        bridge_ports vxlan_storage

post-up /usr/bin/systemctl restart frr.service
...

SDN Configuration​

  • /etc/pve/sdn/controllers.cfg
Code:
...
evpn: vmbr1evpn
    asn 65000
    peers 10.255.255.111,10.255.255.112,10.255.255.113
...

  • /etc/pve/sdn/zones.cfg
Code:
...
simple: vmbr1
    ipam pve
    mtu 8950
...

  • /etc/pve/sdn/vnets.cfg
Code:
...
vnet: storage
    zone vmbr1
    alias DRBD Storage
...
  • /etc/pve/sdn/subnets.cfg
Code:
...
subnet: vmbr1-10.20.45.0-24
    vnet storage
...

Apply settings​

  • SDN
Bash:
pvesh set /cluster/sdn
  • Full network settings (on each node)
Bash:
systemctl restart networking.service

Now, if you create a VM with access to the storage bridge, you should be able to ping IPs 10.20.45.x
 

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!