Hello Wei,
Q1: just tested adding the /usr/sbin/route add -net 10.x.x.x gw x.y.x.1 netmask 255.255.255.252 dev eth2 rebooted the systemVM and did not work Tata Y. > On Jun 16, 2025, at 9:16 AM, Wei ZHOU <ustcweiz...@gmail.com> wrote: > > Hi, > > You can create another physical network with Guest traffic type, with the > same isolation method (VLAN) and the same network label (cloubrX of public). > then you create a shared network on the new physical network > refer to > https://docs.cloudstack.apache.org/en/latest/adminguide/networking/advanced_zone_config.html > > a bit complex, but feasible > > > -Wei > > > On Mon, Jun 16, 2025 at 2:33 PM Chi vediamo <tatay...@gmail.com> wrote: > >> Thank you Wei, >> >> Q1, Thank you, checking that now. >> >> Q2, I have Guest and Public on Different cloudbrX and VXLAN for guest, and >> VLAN for public. >> How can I provide the same functionality to a regular VM as a SystemVM - >> with Guest Virtual interface and a Public Virtual Interface ? >> >> Thank you >> >> Tata Y. >> >>> On Jun 16, 2025, at 3:04 AM, Wei ZHOU <ustcweiz...@gmail.com> wrote: >>> >>> Hi, >>> >>> Q1, >>> >>> If you want to change the rules in SSVM, you can add them to >>> systemvm/debian/etc/iptables/iptables-secstorage >>> No need to change systemvm template, you need to update >>> /usr/share/cloudstack-common/vms/cloud-scripts.tgz on all hosts >>> >>> >>> Q2, >>> >>> The Public IP range is only used for system vms and virtual routers. >>> but you can create a shared network in the same CIDR as the public IP >> range >>> if the public and guest network uses the same physical device (cloudbrX) >>> and there are some free IPs in the CIDR. >>> >>> >>> -Wei >>> >>> >>> >>> >>> >>> >>> >>> On Sat, Jun 14, 2025 at 11:49 PM Chi vediamo <tatay...@gmail.com> wrote: >>> >>>> Hello, >>>> >>>> Two questions: >>>> Q1: >>>> Independently of the reason. I need to have additional static routes on >>>> the system VMs. Is there a Way to add a permanent static route to the >>>> system VM, >>>> I did try several options modifying the system syste, but every single >>>> time the routes are whiped out after I reboot the System VM. >>>> I did try /etc/sysconfig/network-scripts/route-eth2 >>>> I also tried /etc/systemd/network/eth2.network.d/static.conf >>>> rc.local nothing seems to work to add a static route on the System VM. >>>> >>>> Q2: >>>> Is there a Way to add a VM in a shared network, and add another >> Interface >>>> tied to the Public Interface VLAN? Something litke the System VM. >>>> >>>> Thank you very much >>>> >>>> Tata Y. >>>> >>>> >>>> >> >>
