Hi !
I have installed a PVE hypervisor on the physical server.It is connected to the enterprise's shared network through the vmbr0 virtual switch created by default.
An IP address associated with vmbr0 has been assigned.My idea was to create a virtual machine inside the PVE and make this VM a virtual router.
After creating the VM, I connected vmbr0 to it and assigned it the same IP address that was previously linked to the PVE management.
Then I created 3 more virtual switches (vmbr1, vmbr2, vmbr3) and added them to the virtual router.
vmbr1 – for communication with other hardware hypervisors (clustering)
vmbr2 – for server VMs
vmbr3 – for virtual workstationsI assigned each of them my own IP address of a separate subnet and enabled address forwarding (IP forward).
Now, traffic from the enterprise network enters the virtual router, from which it is routed via vmbr1 to the PVE management.And the rest (vmbr2 and vmbr3) will be used only for accessing virtual machines.And now the task has appeared to install a second (and in the future a third) PVE, connect PVE1 and PVE2 through one physical server port. Connect them to each other via a switchboard.
And vmbr2 and vmbr3 can also be used on the second PVE.
But here's the problem... PVE does not allow you to pass multiple virtual switches through one physical server port. Only 1 to 1.
I'm not a network technology specialist, so I'm asking for your help.I would like to make sure that all 3 networks are connected to the rest of the PVE hosts. If I combine two PVE hosts into a cluster and the connection between them will be only through vmbr1 (clustering), then will the others (vmbr2 and vmbr3) connect? How viable is my approach to building a system at all?
Perhaps I did not plan everything correctly at all, but I would like to get a working system in exactly the configuration that I described above, because I want to have exactly divided subnets and control traffic between them (I'm talking about vmbr2 and vmbr3 networks).
I will be very grateful for any of your advice and your help…
I have installed a PVE hypervisor on the physical server.It is connected to the enterprise's shared network through the vmbr0 virtual switch created by default.
An IP address associated with vmbr0 has been assigned.My idea was to create a virtual machine inside the PVE and make this VM a virtual router.
After creating the VM, I connected vmbr0 to it and assigned it the same IP address that was previously linked to the PVE management.
Then I created 3 more virtual switches (vmbr1, vmbr2, vmbr3) and added them to the virtual router.
vmbr1 – for communication with other hardware hypervisors (clustering)
vmbr2 – for server VMs
vmbr3 – for virtual workstationsI assigned each of them my own IP address of a separate subnet and enabled address forwarding (IP forward).
Now, traffic from the enterprise network enters the virtual router, from which it is routed via vmbr1 to the PVE management.And the rest (vmbr2 and vmbr3) will be used only for accessing virtual machines.And now the task has appeared to install a second (and in the future a third) PVE, connect PVE1 and PVE2 through one physical server port. Connect them to each other via a switchboard.
And vmbr2 and vmbr3 can also be used on the second PVE.
But here's the problem... PVE does not allow you to pass multiple virtual switches through one physical server port. Only 1 to 1.
I'm not a network technology specialist, so I'm asking for your help.I would like to make sure that all 3 networks are connected to the rest of the PVE hosts. If I combine two PVE hosts into a cluster and the connection between them will be only through vmbr1 (clustering), then will the others (vmbr2 and vmbr3) connect? How viable is my approach to building a system at all?
Perhaps I did not plan everything correctly at all, but I would like to get a working system in exactly the configuration that I described above, because I want to have exactly divided subnets and control traffic between them (I'm talking about vmbr2 and vmbr3 networks).
I will be very grateful for any of your advice and your help…
