Hi all, The extra route extension allows setting up an hierarchical network topology where there is a compute instance or an internal router that separates an internal network from an external router. Traffic can be routed by using extra routes on the external router, however, it is not possible to assign floating IPs to an instance on the internal network. This is because there is a code that validates reachability from the external router to the internal network that does not take into account the availability of extra routes.
The described setup is important to users who wish to place a custom gateway that provides VPN, firewall or other functionality to a publicly accessible network behind the gateway. There is a bug opened about this issue: https://bugs.launchpad.net/neutron/+bug/1250105 There is a patch set for review: https://review.openstack.org/55987 It was suggested that this may be considered as new functionality as opposed to fixing a flaw, and should be proposed as a blueprint and discussed on the dev mailing list. A blueprint is available for discussion: https://blueprints.launchpad.net/neutron/+spec/floating-ip-extra-route Thanks, -Ofer Barkai _______________________________________________ OpenStack-dev mailing list OpenStack-dev@lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
