So I guess yes: In each zone, you need to configure a range of reserved IP addresses for the management network. This network carries communication between the CloudStack Management Server and various system VMs, such as Secondary Storage VMs, Console Proxy VMs, and DHCP. The reserved IP addresses must be unique across the cloud. You cannot, for example, have a host in one zone which has the same private IP address as a host in another zone. The hosts in a pod are assigned private IP addresses. These are typically RFC1918 addresses. The Console Proxy and Secondary Storage system VMs are also allocated private IP addresses in the CIDR of the pod that they are created in.
So I guess the system reserved IP’s should indeed be the private ones and not public IP’s, which would lead to my next question I suppose I cannot give this a self-defined VLAN and should be with my management network which is already defined on cloudbr0? Should I give the management and KVM host an IP from this private subnet as well? -- Jimmy Van: Jimmy Huybrechts <ji...@linservers.com> Datum: woensdag, 1 november 2023 om 20:33 Aan: users@cloudstack.apache.org <users@cloudstack.apache.org> Onderwerp: System VM network Hi Team, I’m trying to built a lab of ACS 4.18 in Ubuntu 22 but I may be looking at the network and system vm’s the wrong way. I have a /27 my management server host has an IP out of and my KVM host has an IP out of lets call this range 192.168.10.0/27 (in reality this is a public subnet). Now when creating the zone and pods and such I created a Public range of 10.0.0.0/24 (or at least an internal range). When asked for the system reserved addresses I filled out 9 ip’s from my management subnet (192.168.10.0/27) under the impression that the console proxy etc would get an IP out of that range. When the System VM’s were built they yes had an IP from that management range but then as “Private IP”, the “Public IP” was an IP from 10.0.0.0/24 and of course I wasn’t able to use any of them not being reachable from the outside since the gateway and IP where the wrong one. Should I have set my management range as the public range with the ip’s it should use? And an internal range as system reserved addresses or what are the system reserved addresses for? -- Jimmy
