SDN VLAN zone with IPAM and DHCP

[PSz]

Will SDN IPAM and SDN DHCP work for all zone types?
I am using VLAN zone and I can't launch IPAM nor DHCP.
Is it possible?

 

[shanreich]

Currently not, but support for this is already on the mailinglist [1] and will be added soon.

https://lists.proxmox.com/pipermail/pve-devel/2023-December/061136.html

 

[mbarchein]

Is there any expected release including VLAN zone DHCP patches? Thanks!

 

[shanreich]

Is there any expected release including VLAN zone DHCP patches? Thanks!

No we don't have that currently. We have some conceptual issues, particularly with VLAN / QinQ / VXLAN zones that need to be ironed out / considered before we can release it - sorry. We'd rather get this 100% right, than delivering a half-working solution that causes issues.

 

[ajg]

How is this going? Really looking forward to seeing this feature.

 

[piefke]

No we don't have that currently. We have some conceptual issues, particularly with VLAN / QinQ / VXLAN zones that need to be ironed out / considered before we can release it - sorry. We'd rather get this 100% right, than delivering a half-working solution that causes issues.

PVE 9 was released. I may ask, if there may be any news (maybe for PVE 9.1) on planned progress for SDN with automatic DHCP for VLAN zones, hopefully?

 

[codym]

Am currently on PVE9 and ran into the same vlan SDN not having DHCP. This grinds SDN functionality/usability to a halt for me as Simple zones have DHCP but have no vlan control or from what I hear inter-cluster support, but Vlan zones do not have DHCP. I am either stuck with a simple zone and no control of where that traffic ends up on the trunk, or a VLAN zone that has no DHCP making server provisioning that much harder.

Might I ask what kind of issues enabling dhcp on the VLAN zone would cause and why it's still not an available option in more configs than the simple zone?

 

[shanreich]

Main issue is that every host would need a unique IP in the VNet, which currently isn't possible with how the VNets / Subnets are designed. There are some weird hacks with specific arp_ignore settings, that we'd rather not do. There's currently no one working on this due to shifting priorities, so the easiest way would be to just set up a virtual/physical pfsense or even just a simple dhcp server in a container that handles DHCP.

 

[codym]

Hmm, okay that makes sense. I ended up just giving each customer a vlan on our agg switch, and making a vlan vnet for each vlan on said agg where we configure dhcp. It's more config points then is optimal but is the only way to enforce a customer uses the right network and still gives them dhcp.

 

[F.F.]

We are interested in this feature, too. Is there a tracker we could subscribe to?

 

[snels.sm]

In the 2020s, managed services have become a top priority for any private cloud. In large-scale infrastructures, nobody wants to deal with routine tasks like deploying DHCP servers or manually configuring network gateways, and so on.

And that's just a small part of the odd decisions being made.

I certainly wish you luck in this challenging endeavor. But it seems you're starting to fall behind products that entered the market just a couple of years ago.

 

[hexx]

Any news?
We would like to move dhcp config form router to proxmox so we can implement vrrp on router