Exactly right. There are good reasons we're using VLANs and untagged
server interfaces today.
I wouldn't trust my servers to choose which virtual network they want to
participate in, let alone my customers' servers.
Ivan
On 8/28/12 5:13 PM, Stiliadis, Dimitrios (Dimitri) wrote:
[...]
This is certainly only today's restriction. If nov3 takes off, there
certainly could be a pseudo-driver in Linux that could implement the
NVE (like a VLAN driver) without much additional overhead.
That doesn't work if you assume that tenants and DC operators are
different
entities. The DC operator cannot rely on the tenant to do the right
encapsulation. Different administrative and trust domains. That's why
in my original email I was talking about "trust boundaries".
Dimitri
_______________________________________________
nvo3 mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/nvo3
