Re: [Users] Networking. Hosted Setup. All in One Host. Hetzner
On Thu, Jan 16, 2014 at 11:51:25PM +, Peter Styk wrote: Greetings, I'm writing here as to share some of my findings about hosting with Hetzner. All in one setups on single remote host can be tricky. Provider mounted an extra /29 subnet to the main host but none is routed by default and host has to become router itself. At the same time single mistake in bridging configuration and lost access results in need for re-bootstrap. It's still tempting to try and with many trials I eventually got to see guests talking to the net. Scenario 1: Working. Package bridge-utils, oVirt engine, setup bridge, VDSM, add host to engine, add routing to host routing table. Networking by trial and error. Still something is not right. Occasionally on ping out I'm getting Redirect Host (New nexthop messages. http://styk.tv/wp-content/uploads/2014/01/oVirtHosted1_almost_working.png Unfortunately, I fail to understand what can be hampering your routing there. Assaf, do you have a guess? Which version of ovirt have you been using? Now, with source-routing implemented into ovirt-3.3, there is a danger in setting your own content into route-netname, as it would be overwritten if netname is reconfigured via Engine. Scenario 2: Dreaming. Private network with private router/dhcp/nat. Private 10.0.0.0/24 network. No problems with routing as gateway 10.0.0.1 would be on the same subnet. Thought of using pfSense but can't seem to bring up an instance with two network cards on two different networks. I thought this would be easy. Go to Networks, click create new network, type private, save ok. then go to new instance. point at iso, attach two network cards. save ok. Launch Host did not satisfy internal filter Network No idea what that is. Maybe I don't understand how this works. I do not understand where having an instance with two nics fail. Is the Host did not satisfy internal filter Network message coming from Hetzner management, or oVirt's? I even tried removing ovirtmgmt network and leaving private network by itself. Tried with all 3 network card types (rtl8139/e1000/VirtIO) http://styk.tv/wp-content/uploads/2014/01/oVirtHosted2_preferred.png Could you explain how you configured your provate network? In my experience, your easiest option is to define a dummy interface ip link add name dummy_private type dummy and set up a normal oVirt network on top of it, as if it were a true nic. Either way if you have a minute or two please take a look at both attached diagrams. Deliberately making it difficult by forcing all elements on single box in hosted environment. Maybe there is a way to have this all installed with Neutron or vSwitch on the same box or is that pushing it? ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Networking. Hosted Setup. All in One Host. Hetzner
Could you explain further why does the host need to do any routing? Assaf Muller, Cloud Networking Engineer Red Hat - Original Message - From: Dan Kenigsberg dan...@redhat.com To: Peter Styk polf...@gmail.com, amul...@redhat.com Cc: users@ovirt.org Sent: Wednesday, February 5, 2014 1:23:54 PM Subject: Re: [Users] Networking. Hosted Setup. All in One Host. Hetzner On Thu, Jan 16, 2014 at 11:51:25PM +, Peter Styk wrote: Greetings, I'm writing here as to share some of my findings about hosting with Hetzner. All in one setups on single remote host can be tricky. Provider mounted an extra /29 subnet to the main host but none is routed by default and host has to become router itself. At the same time single mistake in bridging configuration and lost access results in need for re-bootstrap. It's still tempting to try and with many trials I eventually got to see guests talking to the net. Scenario 1: Working. Package bridge-utils, oVirt engine, setup bridge, VDSM, add host to engine, add routing to host routing table. Networking by trial and error. Still something is not right. Occasionally on ping out I'm getting Redirect Host (New nexthop messages. http://styk.tv/wp-content/uploads/2014/01/oVirtHosted1_almost_working.png Unfortunately, I fail to understand what can be hampering your routing there. Assaf, do you have a guess? Which version of ovirt have you been using? Now, with source-routing implemented into ovirt-3.3, there is a danger in setting your own content into route-netname, as it would be overwritten if netname is reconfigured via Engine. Scenario 2: Dreaming. Private network with private router/dhcp/nat. Private 10.0.0.0/24 network. No problems with routing as gateway 10.0.0.1 would be on the same subnet. Thought of using pfSense but can't seem to bring up an instance with two network cards on two different networks. I thought this would be easy. Go to Networks, click create new network, type private, save ok. then go to new instance. point at iso, attach two network cards. save ok. Launch Host did not satisfy internal filter Network No idea what that is. Maybe I don't understand how this works. I do not understand where having an instance with two nics fail. Is the Host did not satisfy internal filter Network message coming from Hetzner management, or oVirt's? I even tried removing ovirtmgmt network and leaving private network by itself. Tried with all 3 network card types (rtl8139/e1000/VirtIO) http://styk.tv/wp-content/uploads/2014/01/oVirtHosted2_preferred.png Could you explain how you configured your provate network? In my experience, your easiest option is to define a dummy interface ip link add name dummy_private type dummy and set up a normal oVirt network on top of it, as if it were a true nic. Either way if you have a minute or two please take a look at both attached diagrams. Deliberately making it difficult by forcing all elements on single box in hosted environment. Maybe there is a way to have this all installed with Neutron or vSwitch on the same box or is that pushing it? ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Networking. Hosted Setup. All in One Host. Hetzner
On Wed, Feb 05, 2014 at 06:36:32AM -0500, Assaf Muller wrote: Could you explain further why does the host need to do any routing? From what I gather, the hosting service (Hetzner) allows only IP traffic out of the box, but Peter may correct me. ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[Users] Networking. Hosted Setup. All in One Host. Hetzner
Greetings, I'm writing here as to share some of my findings about hosting with Hetzner. All in one setups on single remote host can be tricky. Provider mounted an extra /29 subnet to the main host but none is routed by default and host has to become router itself. At the same time single mistake in bridging configuration and lost access results in need for re-bootstrap. It's still tempting to try and with many trials I eventually got to see guests talking to the net. Scenario 1: Working. Package bridge-utils, oVirt engine, setup bridge, VDSM, add host to engine, add routing to host routing table. Networking by trial and error. Still something is not right. Occasionally on ping out I'm getting Redirect Host (New nexthop messages. http://styk.tv/wp-content/uploads/2014/01/oVirtHosted1_almost_working.png Scenario 2: Dreaming. Private network with private router/dhcp/nat. Private 10.0.0.0/24 network. No problems with routing as gateway 10.0.0.1 would be on the same subnet. Thought of using pfSense but can't seem to bring up an instance with two network cards on two different networks. I thought this would be easy. Go to Networks, click create new network, type private, save ok. then go to new instance. point at iso, attach two network cards. save ok. Launch Host did not satisfy internal filter Network No idea what that is. Maybe I don't understand how this works. I even tried removing ovirtmgmt network and leaving private network by itself. Tried with all 3 network card types (rtl8139/e1000/VirtIO) http://styk.tv/wp-content/uploads/2014/01/oVirtHosted2_preferred.png Either way if you have a minute or two please take a look at both attached diagrams. Deliberately making it difficult by forcing all elements on single box in hosted environment. Maybe there is a way to have this all installed with Neutron or vSwitch on the same box or is that pushing it? Regards, Peter ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
