Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 07F6B200D03 for ; Sat, 9 Sep 2017 20:15:53 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 068DB1609B5; Sat, 9 Sep 2017 18:15:53 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id F24371609B3 for ; Sat, 9 Sep 2017 20:15:51 +0200 (CEST) Received: (qmail 12677 invoked by uid 500); 9 Sep 2017 18:15:50 -0000 Mailing-List: contact users-help@cloudstack.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@cloudstack.apache.org Delivered-To: mailing list users@cloudstack.apache.org Received: (qmail 12664 invoked by uid 99); 9 Sep 2017 18:15:50 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd1-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 09 Sep 2017 18:15:50 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd1-us-west.apache.org (ASF Mail Server at spamd1-us-west.apache.org) with ESMTP id E036CC3588 for ; Sat, 9 Sep 2017 18:15:49 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd1-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 4.61 X-Spam-Level: **** X-Spam-Status: No, score=4.61 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, RCVD_IN_SORBS_WEB=1.5, RDNS_NONE=3, T_DKIM_INVALID=0.01] autolearn=disabled Authentication-Results: spamd1-us-west.apache.org (amavisd-new); dkim=neutral reason="invalid (public key: not available)" header.d=eaxiom.net Received: from mx1-lw-us.apache.org ([10.40.0.8]) by localhost (spamd1-us-west.apache.org [10.40.0.7]) (amavisd-new, port 10024) with ESMTP id Nh6D57ThP7jY for ; Sat, 9 Sep 2017 18:15:48 +0000 (UTC) Received: from international.skybridgedomains.com (unknown [27.50.81.73]) by mx1-lw-us.apache.org (ASF Mail Server at mx1-lw-us.apache.org) with ESMTPS id D22395FD0C for ; Sat, 9 Sep 2017 18:15:47 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=eaxiom.net; s=default; h=Content-Transfer-Encoding:Content-Type:MIME-Version:Message-ID: Date:Subject:In-Reply-To:References:To:From:Sender:Reply-To:Cc:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=ZPmZdtNrgLyu5dYjCJYKJdiMzIXh1xAvSrSlB3d2djM=; b=eZhrHLP+naBhOxIO51Oyn9xnxz tYFlGRfDFMlPugLuZxC1KqwAbzDLFsoBOOShWKACNmSQ9rKOKScr36AAOYmbMbHk+hq2MMe7uzgxU Eqyx6NmTUgVQ1EBzzNAcCorh9ZVSYkFxVE+i+ZKOLs7CnRm3FT6yB7MPN//UFPwZTfARX3LPtFv6r H27+A35CjZhyHbPXn3Rie77iw/rJ3DO9lVzvenBqTLCsNZBK55NCoPkJH7Yq4k9OG/2wWeC0j3c6X vt4Xc/E9vvhUXT7jdZwrocXJKTPo5kxliUS3RIq6cBy7x8qepqi6SYDBCJ/ZWNFCr8/L/ICNkF7Gl smKMLoZQ==; Received: from [223.29.225.142] (port=17004 helo=staff1) by international.skybridgedomains.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.89) (envelope-from ) id 1dqkIB-0004DK-Tc; Sun, 10 Sep 2017 04:15:45 +1000 From: "Imran Ahmed" To: , "'Luis'" References: <1522564150.4801092.1504806130193.ref@mail.yahoo.com> <1522564150.4801092.1504806130193@mail.yahoo.com> <806114030.4890107.1504812713473@mail.yahoo.com> <2045108100.5277131.1504872523207@mail.yahoo.com> <12DF0C09-62ED-4C09-95CE-68BBAFCBC49C@persistent.co.in> <32829995.5374715.1504880990462@mail.yahoo.com> <1696870004.348588.1504930012519@mail.yahoo.com> <000f01d32928$5d17d530$17477f90$@net> <1348226859.481507.1504968959435@mail.yahoo.com> In-Reply-To: <1348226859.481507.1504968959435@mail.yahoo.com> Subject: RE: Configuring CS with Advance Networking for an internal laboratory Date: Sat, 9 Sep 2017 23:15:30 +0500 Message-ID: <002501d32997$a52285e0$ef6791a0$@net> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Mailer: Microsoft Office Outlook 12.0 Thread-Index: AdMpe+HO0GQUcN13QQesreZHV25ccAAG3Kkg Content-Language: en-us X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - international.skybridgedomains.com X-AntiAbuse: Original Domain - cloudstack.apache.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - eaxiom.net X-Get-Message-Sender-Via: international.skybridgedomains.com: authenticated_id: imran@eaxiom.net X-Authenticated-Sender: international.skybridgedomains.com: imran@eaxiom.net X-Source: X-Source-Args: X-Source-Dir: archived-at: Sat, 09 Sep 2017 18:15:53 -0000 Hi Luis, Please see if the bridge configuration is correct as per your = hypervisor.=20 -----Original Message----- From: Luis [mailto:lmartinez073@yahoo.com.INVALID]=20 Sent: Saturday, September 09, 2017 7:56 PM To: users@cloudstack.apache.org Subject: Re: Configuring CS with Advance Networking for an internal = laboratory Hi After removing Switchport mode access i am able to ping to the gateway = but not to internet, I have my resolv to 8.8.8.8 but unable to ping to = internet, any help or advice will be appreciated. thank you. From: Imran Ahmed To: users@cloudstack.apache.org=20 Sent: Saturday, September 9, 2017 12:59 AM Subject: RE: Configuring CS with Advance Networking for an internal = laboratory =20 I don=E2=80=99t think you need this line at least: Switchport mode access I assume that you use the LACP bond that bonds interfaces: Gi0/11 and = Gi0/12 to carry both public traffic as well as guest traffic. The next factor is the traffic labels you set in your Cloudstack = advanced zone setup . Another factor is the configuration of cloudbro and Cloudbr1 bridges = in your interface configurations. By the way are you using CentOS or Ubuntu or Suse or ..? Regards, Imran=20 -----Original Message----- From: Luis [mailto:lmartinez073@yahoo.com.INVALID]=20 Sent: Saturday, September 09, 2017 9:07 AM To: users@cloudstack.apache.org Cc: Paul Angus Subject: Re: Configuring CS with Advance Networking for an internal = laboratory Hi I am testing my CS with Advance Networking but it's not able to download = iso or the templates, I think this is because of my VLAN configuration, = s-vm or v-vm can't ping to internet, I did set up this parameter = (secstorage.allowed.internal.sites) to my manager and host ip. This is my VLAN configuration, please any advice on this issue conf tinterface range Gi0/11-12switchport trunk encapsulation dot1q = switchport mode trunkswitchport trunk allowed vlan 65,300-800switchport = mode accesschannel-group 4 mode activechannel-protocol lacpend=20 Thank you From: Sateesh Chodapuneedi To: Luis ; "users@cloudstack.apache.org" = =20 Cc: Paul Angus Sent: Friday, September 8, 2017 10:48 AM Subject: Re: Configuring CS with Advance Networking for an internal = laboratory =20 Hi Luis, >.Do I need to specify what port the vlan are going to use? Yes, selection of interfaces/ports need to be done. Please add command = =E2=80=9Cinterface range Gi0/9 =E2=80=93 10=E2=80=9D after command = =E2=80=9Cconf t=E2=80=9D Also add =E2=80=9Cno switchport mode access=E2=80=9D just before the = command =E2=80=9Cend=E2=80=9D Hope that helps. Regards, Sateesh Chodapuneedi, CloudStack Development, Engineering, http://accelerite.com Santa Clara, 95054, CA @accelerite From: Luis Reply-To: Luis Date: Friday, 8 September 2017 at 8:00 PM To: Sateesh Chodapuneedi , = "users@cloudstack.apache.org" Cc: Paul Angus Subject: Re: Configuring CS with Advance Networking for an internal = laboratory Thank you for your help Do I need to specify what port the vlan are going to use? 1.- create vlnas conf t vlan 65,300-800 end 2.- conf t switchport mode trunk switchport trunk encapsulation dot1q switchport trunk allowed vlan 65,300-800 end ________________________________ From: Sateesh Chodapuneedi To: "users@cloudstack.apache.org" ; Luis = Cc: Paul Angus Sent: Friday, September 8, 2017 9:42 AM Subject: Re: Configuring CS with Advance Networking for an internal = laboratory Hi Luis, I have configured Cisco 3750G switch for my CloudStack advanced mode = setup. Configuration should be the similar for Cisco 3560 as well, = probably might help you. >> 4 Nics: 2 for Management-Storage (LACP) and 2 for Public-Guest Make sure to setup the VLANs before configuring the switch ports for = interfaces meant for Public and Guest traffic conf t vlan , end Please note that the VLAN range meant for public traffic are routable = (with subnet assigned) Configure the switch ports for Public and Guest traffic switchport mode trunk switchport trunk encapsulation dot1q switchport trunk allowed vlan , Ex: If 100 is VLAN ID of routable VLAN meant for public traffic, and = VLAN IDs 500 to 600 are guest (zone) VLANs, then above command looks = like, switchport trunk allowed vlan 100,500-600 Regards, Sateesh Chodapuneedi, CloudStack Development, Engineering, http://accelerite.com Santa Clara, 95054, CA @accelerite -----Original Message----- From: Luis = > Reply-To: = "users@cloudstack.apache.org" = >, Luis = > Date: Friday, 8 September 2017 at 5:39 PM To: Paul Angus = >, = "users@cloudstack.apache.org" = > Subject: Re: Configuring CS with Advance Networking for an internal = laboratory Thank you Paul Your article is really helpful, I think my problem is finding the = correct commands to setup the switch, this is what I have CS 4.10: on Ubuntu 14.044 nics: 2 for management (LACP) and 2 for = Storage (LACP) XenServer for host4 Nics: 2 for Management-Storage (LACP) and 2 for = Public-Guest Is it possible for you or the group to help me with the lines to set = up correctly the Cisco Switch, I will appreciate your help Cisco Switch 3560Ports: 9 - 10 for Management-storageconf tinterface = range Gi0/9 - 10switchport mode accessno shutchannel-group 3 mode = activechannel-protocol lacpend Port 11 - 12 for Piblic-Guest conf tinterface range Gi0/11 - 12switchport mode accessno = shutchannel-group 4 mode activechannel-protocol lacpend From: Paul = Angus > To: = "users@cloudstack.apache.org" = >; Luis = > Sent: Friday, September 8, 2017 5:19 AM Subject: RE: Configuring CS with Advance Networking for an internal = laboratory Luis, You may find this blog from yester-year helpful: = http://www.shapeblue.com/understanding-cloudstacks-physical-networking-ar= chitecture/ Kind regards, Paul Angus paul.angus@shapeblue.com www.shapeblue.com 53 Chandos Place, Covent Garden, London WC2N 4HSUK @shapeblue -----Original Message----- From: Paul Angus = [mailto:paul.angus@shapeblue.com] Sent: 07 September 2017 22:12 To: Luis >; = users@cloudstack.apache.org Subject: RE: Configuring CS with Advance Networking for an internal = laboratory No problem Luis, 1. Advanced networking replies on VLANs (or some SDN isolation = method), so you need at have a range of VLANs free, that you tell = CloudStack that it can use. 2. The IP ranges I described were only an example you can you any = range you like, but =E2=80=98public=E2=80=99 traffic generally is going = to require a gateway in order to =E2=80=98go=E2=80=99 somewhere. 3. I looks to me like you are setting all of your interfaces as = access ports. You=E2=80=99ll need ports which deal with multiple VLANs = (like ones used for guest networks) to be trunk ports =E2=80=93 with the = VLANs which are allowed matching those that you have told CloudStack = that it can use. Kind regards, Paul Angus paul.angus@shapeblue.com www.shapeblue.com 53 Chandos Place, Covent Garden, London WC2N 4HSUK @shapeblue From: Luis = [mailto:lmartinez073@yahoo.com] Sent: 07 September 2017 20:32 To: Paul Angus = >; = users@cloudstack.apache.org Subject: Re: Configuring CS with Advance Networking for an internal = laboratory thank you for your help, I have some questions if you can help me to = answer this 1.- can i not use VLAN's for Advance Networking or are necessary for = the configuration 2.- Do I need to create an extra server ans use it as gateway for = this range of IP's? 3.- this is what I am using to create my vlan's on a Cisco 3560, is = this correct? conf t interface range Gi0/9 - 10 switchport mode access no shut switchport access vlan 65 channel-group 3 mode active channel-protocol lacp end Thank you for your help ________________________________ From: Paul Angus = >> To: = "users@cloudstack.apache.org>" = >>; Luis = >> Sent: Thursday, September 7, 2017 3:05 PM Subject: RE: Configuring CS with Advance Networking for an internal = laboratory Hi Luis, You can give CloudStack a range of RFC1918 addresses (ie private = addresses) to act as an 'internal' public network. 10.0.1.10 - 10.0.1.30 GW: 10.0.1.254 Netmask - 255.255.255.0 If the gateway at 10.0.1.254 can route to the outside world then = CloudStack will still be able to download templates, if not you can = always register a template which you are hosting on an internal network. If you do the second option ensure that the global setting = 'secstorage.allowed.internal.sites' includes the hosting server's IP = address. Kind regards, Paul Angus = paul.angus@shapeblue.com> = www.shapeblue.com> 53 Chandos Place, Covent Garden, London WC2N 4HSUK @shapeblue -----Original Message----- From: Luis = [mailto:lmartinez073@yahoo.com.INVALID>] Sent: 07 September 2017 18:42 To: Users = >> Subject: Configuring CS with Advance Networking for an internal = laboratory Hi I am configuring CS with Advance Networking for internal use without = rotatable IP's, this is for testing and lean CS Advance Networking, This = is what I have CS 4.10XenServer 7.0FreeNas CS is already installed but I = can't download any iso because V-Router can't ping outside my network, = any advice? Public IP:209.229.131.0Internal IP: 10.0.0.0 Thank you for your = help. DISCLAIMER =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D This e-mail may contain privileged and confidential information which is = the property of Accelerite, a Persistent Systems business. It is = intended only for the use of the individual or entity to which it is = addressed. If you are not the intended recipient, you are not authorized = to read, retain, copy, print, distribute or use this message. If you = have received this communication in error, please notify the sender and = delete all copies of this message. Accelerite, a Persistent Systems = business does not accept any liability for virus infected mails. =20 =20