OVS bridge setup question

G

gkovacs

Renowned Member
Dec 22, 2008
516
51
93
Budapest, Hungary
Let's say I have three nodes in a cluster. All 3 have a NIC that is connected to a LAN (vmbr0), and also have a NIC for external (vmbr1), but only one of the nodes actually has a connection to the internet. VM's that connect to the LAN only can be freely migrated since they will find the same LAN on vmbr0 on any node. VM's that need direct external connection however work only on the node that has the internet plugged in.

I'm interested in setting up OVS that would present a virtual bridge on all cluster nodes that would give external network connection to a VM the same way if it was on the internet-connected node. Any idea how that could be done? I would appreciate a detailed answer or a link to some tutorial, as I have no prior experience with OVS.

Another question: will my simple, unmanaged LAN switch be able to support this scenario, or do I need to upgrade to a VLAN-aware switch to forward OVS traffic?
 
Last edited:
gkovacs said:
Let's say I have three nodes in a cluster. All 3 have a NIC that is connected to a LAN (vmbr0), and also have a NIC for external (vmbr1), but only one of the nodes actually has a connection to the internet. VM's that connect to the LAN only can be freely migrated since they will find the same LAN on vmbr0 on any node. VM's that need direct external connection however work only on the node that has the internet plugged in.

I'm interested in setting up OVS that would present a virtual bridge on all cluster nodes that would give external network connection to a VM the same way if it was on the internet-connected node. Any idea how that could be done? I would appreciate a detailed answer or a link to some tutorial, as I have no prior experience with OVS.

Another question: will my simple, unmanaged LAN switch be able to support this scenario, or do I need to upgrade to a VLAN-aware switch to forward OVS traffic?
Click to expand...

Hi,
you need vlan-tagging for this (execept you use the same network for different networks, which is highly not recommend because every VM hear your internet-traffic (tcpdump)).

Udo
 
udo said:
Hi,
you need vlan-tagging for this (execept you use the same network for different networks, which is highly not recommend because every VM hear your internet-traffic (tcpdump)).

Udo
Click to expand...

What about GRE tunneling? According to this tutorial:
OVS can use GRE tunnels between hosts as a way of encapsulating traffic and creating an overlay network.
Click to expand...
http://blog.scottlowe.org/2013/05/07/using-gre-tunnels-with-open-vswitch/

Anyone have experience with this?
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom