Return-Path: X-Original-To: apmail-cloudstack-users-archive@www.apache.org Delivered-To: apmail-cloudstack-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 0C9F0194C0 for ; Mon, 7 Mar 2016 13:37:52 +0000 (UTC) Received: (qmail 11906 invoked by uid 500); 7 Mar 2016 13:37:51 -0000 Delivered-To: apmail-cloudstack-users-archive@cloudstack.apache.org Received: (qmail 11855 invoked by uid 500); 7 Mar 2016 13:37:51 -0000 Mailing-List: contact users-help@cloudstack.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@cloudstack.apache.org Delivered-To: mailing list users@cloudstack.apache.org Received: (qmail 11844 invoked by uid 99); 7 Mar 2016 13:37:50 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd1-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 07 Mar 2016 13:37:50 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd1-us-west.apache.org (ASF Mail Server at spamd1-us-west.apache.org) with ESMTP id 7A3BAC28C9 for ; Mon, 7 Mar 2016 13:37:50 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd1-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 1.279 X-Spam-Level: * X-Spam-Status: No, score=1.279 tagged_above=-999 required=6.31 tests=[HTML_MESSAGE=2, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=disabled Received: from mx2-lw-eu.apache.org ([10.40.0.8]) by localhost (spamd1-us-west.apache.org [10.40.0.7]) (amavisd-new, port 10024) with ESMTP id YVl44CxhoS0P for ; Mon, 7 Mar 2016 13:37:47 +0000 (UTC) Received: from SNT004-OMC3S23.hotmail.com (snt004-omc3s23.hotmail.com [65.55.90.162]) by mx2-lw-eu.apache.org (ASF Mail Server at mx2-lw-eu.apache.org) with ESMTPS id E2D745FADD for ; Mon, 7 Mar 2016 13:37:46 +0000 (UTC) Received: from SNT407-EAS265 ([65.55.90.137]) by SNT004-OMC3S23.hotmail.com over TLS secured channel with Microsoft SMTPSVC(7.5.7601.23008); Mon, 7 Mar 2016 05:37:40 -0800 X-TMN: [7s1PzzRxDo6/echmPrLb1llUX2l1EKIo] X-Originating-Email: [cloudstackhelp@outlook.com] Message-ID: Date: Mon, 7 Mar 2016 13:37:40 +0000 From: To: In-Reply-To: References: Subject: RE: No public network on zone MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_13264_141989221.1457357860414" X-Mailer: Outlook for iOS and Android X-OriginalArrivalTime: 07 Mar 2016 13:37:40.0839 (UTC) FILETIME=[854DAF70:01D17876] ------=_Part_13264_141989221.1457357860414 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="utf-8" Hi all=2C I've played around more with the system. Am I correct to say that the follo= wing setup would not be possible? 1. Advanced group with security group isolation 2. Two separate NICs as Guest networks but only one with a public routable = subnet The only way would be to bond the dual NICs=2C trunk both subnets and hope = that either network doesn't overload the interface? I tried setting up a fresh zone with two physical NICs tagged as Guest traf= fic and it throws the error "failed to create a guest network for basic zon= e. Error: More than one physical networks exist in zone id=3D11 and no tags= are specified in order to make a choice". The problem is I selected the Ad= vanced zone. Is there something wrong with the UI? For the record=2C this is what I am trying to achieve: 1. System VMs that are able to take on both public and private IPs 2. Bandwidth throttling/limiting/control for public network but none for gu= est network 3. Users can control guest traffic isolation by putting up security group i= solations instead of starting separate guest VLANs as my switch can only tr= unk VLANs individually instead of by block 4. Ability to create an entire private network fronted by a single public I= P for VPN purposes to extend a physical network Help is greatly appreciated. I feel like I am almost getting what I require= . Thanks Josh On Mon=2C Mar 7=2C 2016 at 12:08 AM -0800=2C w= rote: Hi Sanjeev How does this traffic reach the VMs without a public network? How do I assi= gn public IPs to the VMs without being able to add them in the guest networ= k form if I can't select the NIC they should be routed via? Thanks On Mon=2C Mar 7=2C 2016 at 12:04 AM -0800=2C "Sanjeev Neelarapu" wrote: There is no way we can convert the zone type. Routable IPs means=2C any IPs reachable without any NAT devices in between. -----Original Message----- From: cloudstackhelp@outlook.com [mailto:cloudstackhelp@outlook.com] Sent: Monday=2C March 07=2C 2016 1:27 PM To: users@cloudstack.apache.org=3B users@cloudstack.apache.org Subject: RE: No public network on zone Is there a way to convert the zone type after creation and add the Public n= etwork or do I have to start with a fresh zone? What do you mean by routable public IPs? How do I add public IPs to the zon= e with security groups? Thanks Josh From: Sanjeev Neelarapu Sent: Monday=2C March 7=2C 13:30 Subject: RE: No public network on zone To: users@cloudstack.apache.org Hi Josh=2C In Advanced zone with Security Groups public traffic is not supported. Assu= mption is guest vms will have a routable public IPs. That's why we don't se= e the option to add public traffic. We can use updatePhysicalNetwork and updateTrafficType APIs for updating zo= ne and traffic types if it is supported. Thanks=2C Sanjeev N -----Original Message----- From: cloudstackhelp@outlook.com [ mailto:cloudstackhelp@outlook.com] Sent: Sunday=2C March 06=2C 2016 11:11 PM To: users@cloudstack.apache.org Subject: No public network on zone Hi all=2C Apologies for flooding. I feel like I've made new progress with understandi= ng CS. I have run into a bit more problems but I think I understand most of= it. It seems that I have setup my zone incorrectly. I accidentally clicked the = security groups isolation under advanced network and as a result I did not = have the Public network tag under the physical network setup screen. I didn= 't think much about it up and went about setting up everything including ad= ding a couple of XS hosts. Everything is nice except I have 0/0 public IP a= ddresses. Now I'm trying to add a public subnet to the zone but I can't select the Pu= blic network because I don't have it set up. I go to the Zone page and ther= e is no option to add physical network. I go to add a new zone=2C this time= not selecting the security group isolation option and I see the Public tag= on the next page. Surely there is a way to add the public network to the zone without creatin= g a new zone? I don't want to clear everything and start all over again. Thanks Josh DISCLAIMER =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D This e-mail may contain privileged and confidential information which is th= e property of Accelerite=2C a Persistent Systems business. It is intended o= nly for the use of the individual or entity to which it is addressed. If yo= u are not the intended recipient=2C you are not authorized to read=2C retai= n=2C copy=2C print=2C distribute or use this message. If you have received = this communication in error=2C please notify the sender and delete all copi= es of this message. Accelerite=2C a Persistent Systems business does not ac= cept any liability for virus infected mails. DISCLAIMER =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D This e-mail may contain privileged and confidential information which is th= e property of Accelerite=2C a Persistent Systems business. It is intended o= nly for the use of the individual or entity to which it is addressed. If yo= u are not the intended recipient=2C you are not authorized to read=2C retai= n=2C copy=2C print=2C distribute or use this message. If you have received = this communication in error=2C please notify the sender and delete all copi= es of this message. Accelerite=2C a Persistent Systems business does not ac= cept any liability for virus infected mails. ------=_Part_13264_141989221.1457357860414--