On 16 February 2015 at 21:29, Angus Lees <[email protected]> wrote: > Conntrack synchronisation gets us HA on the SNAT node, but that's a long way > from distributed SNAT. > > Distributed SNAT (in at least one implementation) needs a way to allocate > unique [IP + ephemeral port ranges] to hypervisors, and then some sort of > layer4 loadbalancer capable of forwarding the ingress traffic to that IP > back to the right hypervisor/guest based on the ephemeral port range. It's > basically very much like floating IPs, only you're handing out a sub-slice > of a floating-IP to each machine - if you like.
Or a pool of SNAT addresses ~= to the size of the hypervisor count. -Rob -- Robert Collins <[email protected]> Distinguished Technologist HP Converged Cloud __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: [email protected]?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
