We want to share a common FOG with two different user groups where there
is an assurance of complete network isolation between the two groups
(different SLAs, network traffic, etc..). DHCP (Third party QIP) and
SRSS direction are strongly controlled by DTU MAC addresses resulting in
correct behavior on boot-up and initial session establishment.
We tested for isolation by creating a session on Server1, taking port
off line and watching for hang/DTU redirection to Server2 for new
session establishment. For non-existing sessions, DHCP option 49
redirects login to surviving Server2; for existing sessions, it finds
the original session via the back door across the router to the other
network; an undesired behavior. Utgstatus reports all network paths it
can find (the culprit?) but from DHCP policies to utadm -A x.x.12.0 and
utadm -A x.x.138.0, the DTUs on one subnet shouldn't even know about the
existence of the other services.
Below is a diagram; the goal is to share physical platforms but isolate
connections to just the subnet they are on. I would greatly value your
suggestions.
Craig
User Group A
l l
----------------------------------------------xx Default Router
138.1
l l l
l l l
x.x.138.45 x.x.138.46 l
SERVER1 SERVER2 l
x.x.12.172 x.x.12.173 l
l l l
l l l
---------------------------------------------------
l l
User Group B
_______________________________________________
SunRay-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/sunray-users
