On Thu, Dec 12, 2019 at 11:29 AM <k.bet...@gmail.com> wrote: > > On Wed, Dec 11, 2019 at 5:31 PM <k.betsis(a)gmail.com> wrote: > > > > Is VyOS installed on the host, or in a VM? > > > VyOS is installed on the ovirt node > > > > > > Does this mean that the VyOS VM on oVirt should forward layer 2 traffic > to > > the VyOS VM on proxmox? > > Is there a way to share a VLAN? (This would avoid additional tunneling.) > > Can you please share some details? > > > VLAN approach is not feasible unfortunatelly. > VyOS VM on oVirt should forward Layer 2 traffic over ovirtmgmt network. > So from oVirt's perspective there is no tunneling. > > > > > > If VyOS is a VM on oVirt, network filtering should be disabled on the > vNIC > > profile which sends and > > receives the unencapsulated traffic, before the oVirt VM is booted. > > > I have disabled all filters on the VM Network by selecting Network Port > Security: Disabled > > > > > > Don't understand. > I have created a VM Network with no filters on ovirt named auth_net with > the following parameters: > 1. VM Network, check > 2. MTU, custom 2000 > 3. Create on external provider, check > 3a. External provider: ovirt-provider-ovn >
I see. This will create an external OVN network. As far as I know, OVN networks do not allow mac spoofing, even if port security is disabled. Are you able to use physical networks (oVirt logical network with VM networking, optional VLAN tag, but not external) to connect the oVirt VMs? > 3b. Network Port Security: Disabled > > This is done as to allow me to attach VMs to this network. > > I have attached 3 VMs on this VM Network. > A firewall with IP e.g. 10.0.0.1 > The VyOS VM > An LDAP VM with IP e.g. 10.0.0.5 > > The VyOS VM is attached to the auth_net with no IP address and with L2TPv3 > via ovirtmgmt as to get the VM network Layer 2 traffic and forward it to > the proxmox network through the VyOS routers. > Even though i have not created any network filters traffic is dropped > before reaching VyOS VM from the LDAP Auth server. > TCPDUMP on the LDAP VM shows traffic leaving the LDAP VM. > TCPDUMP on the VyOS VM does not show traffic reaching the vnic. > _______________________________________________ > Users mailing list -- users@ovirt.org > To unsubscribe send an email to users-le...@ovirt.org > Privacy Statement: https://www.ovirt.org/site/privacy-policy/ > oVirt Code of Conduct: > https://www.ovirt.org/community/about/community-guidelines/ > List Archives: > https://lists.ovirt.org/archives/list/users@ovirt.org/message/BOEK5LTE6CMYTUKUXDJ7ZM6HAI4YOCFR/ >
_______________________________________________ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/site/privacy-policy/ oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/4KETATDBPV352XNGTYV4BJ3GNNLKMVDY/
