cloudstack-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Derek Cole <>
Subject RE: Need help with advanced zone/2 nics
Date Fri, 24 Jan 2014 13:47:36 GMT
I saw those egress rules and I set it to allow all. If I try to ping
out, I can see the request going through all of my system vms and the
VR. Does this imply that this setup is correct and maybe I have some
vlan problem on my switch?

Sent from my Windows Phone From: Sanjeev Neelarapu
Sent: 1/23/2014 11:59 PM
Subject: RE: Need help with advanced zone/2 nics

If you have used the default network offering
(DefaultIsolatedNetworkOfferingWithSourceNatService) to create the
guest network then by default egress traffic is blocked because the
egress default policy is set to denied in the default offering.
You may need to allow the required traffic using egress rules.


-----Original Message-----
From: Derek Cole []
Sent: Friday, January 24, 2014 5:13 AM
Subject: Need help with advanced zone/2 nics


I have attempted to set up an advanced zone, using xenserver, and
giving my guest vm's their own CIDR of

I have two physical networks, and one of them i called "management"
and one i called "traffic"

I put public and guest traffic on "traffic" and storage and management
on "management"

My guest VM's get one network, which gives them an address from that network, and they can ping each other. My virtual router
has an internet connection and can ping out to the internet. What is
failing is gaining internet access from my guest VM's.
The VR gets 3 connections, a cloud_link_local_network, and an IP from
my public CIDR, and an IP from my guest CIDR.

It almost seems as if the VR isnt routing/NATing traffic to the
outside world from the guest VM's. Can anyone tell me what may be
wrong with my scenario?

Pertinent info:

storage range; gw vlan 200 Management range: gw public range: vlan 203 gw guest VLAN range 203-203

networks 10.20.0/24 and 10.20.4/24 are my enterprise networks that
provide connectivity out to the world.

Any insight is appreciated. THis is my first attempt at an advanced
network after getting a simpler basic network up and going

View raw message