Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 3FD52200D03 for ; Sat, 9 Sep 2017 22:06:02 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 351A61609BC; Sat, 9 Sep 2017 20:06:02 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 5A1351609BB for ; Sat, 9 Sep 2017 22:06:00 +0200 (CEST) Received: (qmail 18817 invoked by uid 500); 9 Sep 2017 20:05:58 -0000 Mailing-List: contact users-help@cloudstack.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@cloudstack.apache.org Delivered-To: mailing list users@cloudstack.apache.org Received: (qmail 18805 invoked by uid 99); 9 Sep 2017 20:05:58 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd2-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 09 Sep 2017 20:05:58 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org) with ESMTP id 7804F1A289A for ; Sat, 9 Sep 2017 20:05:57 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 3.994 X-Spam-Level: *** X-Spam-Status: No, score=3.994 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FORGED_MUA_MOZILLA=1.596, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_REPLYTO_END_DIGIT=0.25, HTML_MESSAGE=2, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=disabled Authentication-Results: spamd2-us-west.apache.org (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.com Received: from mx1-lw-us.apache.org ([10.40.0.8]) by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new, port 10024) with ESMTP id xrbSrm3jxOoF for ; Sat, 9 Sep 2017 20:05:52 +0000 (UTC) Received: from sonic305-4.consmr.mail.bf2.yahoo.com (sonic305-4.consmr.mail.bf2.yahoo.com [74.6.133.43]) by mx1-lw-us.apache.org (ASF Mail Server at mx1-lw-us.apache.org) with ESMTPS id B0E7560E17 for ; Sat, 9 Sep 2017 20:05:51 +0000 (UTC) X-YMail-OSG: ceZBz14VM1noM7gkLvSWJeMrZzBiGdAKRM0ZfgKnz0g13rScWXs43U3T6CNiICS wDfO_6SVvR9vNwXtcalE5awToEWr2dYl197emns29gyKkKJAUUN.lEVDoYf_MrpIY3zWtjOr0wsF 6kOOeN0ngpXKCRfEJhzyDpqN1bY_ZwnIo7RpoG6CKI9w_9sWV7Ugt.RYZGzAWVK3AzTtMk6t3DiS M0Ddm3AOJs1UNMCB4KnFFoln4kSKQOl4YKY8baUUqcIYqv4IFfZeXw_pDpOt5Nk4dH3.mKqK6jtU LXFvBbRbWeGlm0sLTgULfBHkFctUPzPbh776IfVEGqY5b5Oq.S.Mt2mIpOptmK8cnKPyNSDp0JJc GZWE0DOp5UiGPA9_aaZUZaxdErU5lTOEo4OFw9Le7Ey9cFm6aZZEr9gkexDN60cbg.VrV_kY9UxP hEvAEdOR_SBMwp4KIm83tRsjBwySw0V1YB0Sx2w4tUEs_XEk1Ywrd26zEMyeKzncMQTjsHyAlUTY rKuHy.uqBWdZjD8QEIG2p6IHR1ukKtdNyKLtutLhqTKQMnIpc5lObEVtCBr3phU2EUMwL8zIckz3 BwE8EeUq4HeY4ng0hC14l_pzMimMI6p41C.OeuIbWfkPp6Ru0UzPoZMtrIEhfV8embG3fnG6oHl_ C2CQDl81Tp8kAXGcUHEPyL8o00Ab.RSKu4Q3Awsz3nec_1HaDEBm6mxQ8wQEQxRHnQlVoijHvqLV Gm5tibpn4 Received: from sonic.gate.mail.ne1.yahoo.com by sonic305.consmr.mail.bf2.yahoo.com with HTTP; Sat, 9 Sep 2017 20:05:45 +0000 Date: Sat, 9 Sep 2017 20:05:44 +0000 (UTC) From: Luis Reply-To: Luis To: Imran Ahmed , "users@cloudstack.apache.org" Message-ID: <66908506.443236.1504987544340@mail.yahoo.com> In-Reply-To: <003301d329a3$6f876a70$4e963f50$@net> References: <1522564150.4801092.1504806130193.ref@mail.yahoo.com> <1522564150.4801092.1504806130193@mail.yahoo.com> <806114030.4890107.1504812713473@mail.yahoo.com> <2045108100.5277131.1504872523207@mail.yahoo.com> <12DF0C09-62ED-4C09-95CE-68BBAFCBC49C@persistent.co.in> <32829995.5374715.1504880990462@mail.yahoo.com> <1696870004.348588.1504930012519@mail.yahoo.com> <000f01d32928$5d17d530$17477f90$@net> <1348226859.481507.1504968959435@mail.yahoo.com> <002501d32997$a52285e0$ef6791a0$@net> <1267697094.490642.1504982573800@mail.yahoo.com> <002c01d329a0$88f83370$9ae89a50$@net> <215102318.528249.1504984888521@mail.yahoo.com> <003301d329a3$6f876a70$4e963f50$@net> Subject: Re: Configuring CS with Advance Networking for an internal laboratory MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_Part_443235_1331829285.1504987544340" X-Mailer: WebService/1.1.10495 YahooMailNeo Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36 archived-at: Sat, 09 Sep 2017 20:06:02 -0000 ------=_Part_443235_1331829285.1504987544340 Content-Type: multipart/alternative; boundary="----=_Part_443234_853319613.1504987544333" ------=_Part_443234_853319613.1504987544333 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Hi Imran I already have the label configuration From: Imran Ahmed To: users@cloudstack.apache.org; 'Luis' =20 Sent: Saturday, September 9, 2017 3:40 PM Subject: RE: Configuring CS with Advance Networking for an internal labora= tory =20 Please check out the traffic label settings=C2=A0 as=C2=A0 per the document= ation. Please refer this link : http://docs.cloudstack.apache.org/projects/cloudst= ack-installation/en/4.9/hypervisor/xenserver.html Regards, Imran -----Original Message----- From: Luis [mailto:lmartinez073@yahoo.com.INVALID]=20 Sent: Sunday, September 10, 2017 12:21 AM To: Imran Ahmed; users@cloudstack.apache.org Subject: Re: Configuring CS with Advance Networking for an internal laborat= ory No, I use XenServer for the Host and Ubuntu for the Manager =C2=A0 =C2=A0 =C2=A0 From: Imran Ahmed To: users@cloudstack.apache.org; lmartinez073@yahoo.com=20 Sent: Saturday, September 9, 2017 3:19 PM Subject: RE: Configuring CS with Advance Networking for an internal labora= tory =C2=A0=20 Do you use KVM hypervisor ? -----Original Message----- From: Luis [mailto:lmartinez073@yahoo.com.INVALID]=20 Sent: Saturday, September 09, 2017 11:43 PM To: imran@eaxiom.net; users@cloudstack.apache.org Subject: RE: Configuring CS with Advance Networking for an internal laborat= ory Hi I am using Ubuntu 14.04, do i need the bridge co figuratio? I didnt see tha= t part for Ubuntu in the instruction. Thank you Sent from Yahoo Mail on Android=20 =20 =C2=A0 On Sat, Sep 9, 2017 at 2:15 PM, Imran Ahmed wrote:= =C2=A0 Hi Luis, Please see if the bridge configuration is correct as per your hypervisor.= =20 -----Original Message----- From: Luis [mailto:lmartinez073@yahoo.com.INVALID]=20 Sent: Saturday, September 09, 2017 7:56 PM To: users@cloudstack.apache.org Subject: Re: Configuring CS with Advance Networking for an internal laborat= ory Hi After removing Switchport mode access i am able to ping to the gateway but = not to internet, I have my resolv to 8.8.8.8 but unable to ping to internet= , any help or advice will be appreciated. thank you. =C2=A0 =C2=A0 =C2=A0 From: Imran Ahmed To: users@cloudstack.apache.org=20 Sent: Saturday, September 9, 2017 12:59 AM Subject: RE: Configuring CS with Advance Networking for an internal labora= tory =C2=A0=20 I don=E2=80=99t think you need this line at least: Switchport mode access I assume that you use the LACP bond that bonds interfaces:=C2=A0 Gi0/11 and= Gi0/12=C2=A0 to carry both public traffic as well as guest traffic. The next factor is the=C2=A0 traffic labels you set in your=C2=A0 Cloudstac= k advanced zone setup . Another factor is the=C2=A0 configuration of=C2=A0 cloudbro and Cloudbr1=C2= =A0 bridges=C2=A0 in your interface configurations. By the way=C2=A0 are you using=C2=A0 CentOS or Ubuntu or Suse or ..? Regards, Imran=20 -----Original Message----- From: Luis [mailto:lmartinez073@yahoo.com.INVALID]=20 Sent: Saturday, September 09, 2017 9:07 AM To: users@cloudstack.apache.org Cc: Paul Angus Subject: Re: Configuring CS with Advance Networking for an internal laborat= ory Hi I am testing my CS with Advance Networking but it's not able to download is= o or the templates, I think this is because of my VLAN configuration, s-vm = or v-vm can't ping to internet, I did set up this parameter (secstorage.all= owed.internal.sites) to my manager and host ip. This is my VLAN configuration, please any advice on this issue conf tinterface range Gi0/11-12switchport trunk encapsulation dot1q switchp= ort mode trunkswitchport trunk allowed vlan 65,300-800switchport mode acces= schannel-group 4 mode activechannel-protocol lacpend=20 Thank you =C2=A0 =C2=A0 =C2=A0 From: Sateesh Chodapuneedi To: Luis ; "users@cloudstack.apache.org" =20 Cc: Paul Angus Sent: Friday, September 8, 2017 10:48 AM Subject: Re: Configuring CS with Advance Networking for an internal labora= tory =C2=A0=20 Hi Luis, >.Do I need to specify what port the vlan are going to use? Yes, selection of interfaces/ports need to be done. Please add command =E2= =80=9Cinterface range Gi0/9 =E2=80=93 10=E2=80=9D after command =E2=80=9Cco= nf t=E2=80=9D Also add =E2=80=9Cno switchport mode access=E2=80=9D just before the comman= d =E2=80=9Cend=E2=80=9D Hope that helps. Regards, Sateesh Chodapuneedi, CloudStack Development, Engineering, http://accelerite.com Santa Clara, 95054, CA @accelerite From: Luis Reply-To: Luis Date: Friday, 8 September 2017 at 8:00 PM To: Sateesh Chodapuneedi , "users@clou= dstack.apache.org" Cc: Paul Angus Subject: Re: Configuring CS with Advance Networking for an internal laborat= ory Thank you for your help Do I need to specify what port the vlan are going to use? 1.- create vlnas conf t vlan 65,300-800 end 2.- conf t switchport mode trunk switchport trunk encapsulation dot1q switchport trunk allowed vlan 65,300-800 end ________________________________ From: Sateesh Chodapuneedi To: "users@cloudstack.apache.org" ; Luis Cc: Paul Angus Sent: Friday, September 8, 2017 9:42 AM Subject: Re: Configuring CS with Advance Networking for an internal laborat= ory Hi Luis, I have configured Cisco 3750G switch for my CloudStack advanced mode setup.= Configuration should be the similar for Cisco 3560 as well, probably might= help you. >> 4 Nics: 2 for Management-Storage (LACP) and 2 for Public-Guest Make sure to setup the VLANs before configuring the switch ports for interf= aces meant for Public and Guest traffic conf t vlan , end Please note that the VLAN range meant for public traffic are routable (with= subnet assigned) Configure the switch ports for Public and Guest traffic switchport mode trunk switchport trunk encapsulation dot1q switchport trunk allowed vlan , Ex: If 100 is VLAN ID of routable VLAN meant for public traffic, and VLAN I= Ds 500 to 600 are guest (zone) VLANs, then above command looks like, switchport trunk allowed vlan 100,500-600 Regards, Sateesh Chodapuneedi, CloudStack Development, Engineering, http://accelerite.com Santa Clara, 95054, CA @accelerite -----Original Message----- From: Luis > Reply-To: "users@cloudstack.apache.org"= >, Luis > Date: Friday, 8 September 2017 at 5:39 PM To: Paul Angus >,= "users@cloudstack.apache.org" > Subject: Re: Configuring CS with Advance Networking for an internal laborat= ory =C2=A0 =C2=A0 Thank you Paul =C2=A0 =C2=A0 Your article is really helpful, I think my problem is finding= the correct commands to setup the switch, this is what I have =C2=A0 =C2=A0 CS 4.10: on Ubuntu 14.044 nics: 2 for management (LACP) and 2= for Storage (LACP) =C2=A0 =C2=A0 XenServer for host4 Nics: 2 for Management-Storage (LACP) and= 2 for Public-Guest =C2=A0 =C2=A0 Is it possible for you or the group to help me with the lines= to set up correctly=C2=A0 the Cisco Switch, I will appreciate your help =C2=A0 =C2=A0 Cisco Switch 3560Ports: 9 - 10 for Management-storageconf tin= terface range Gi0/9 - 10switchport mode accessno shutchannel-group 3 mode a= ctivechannel-protocol lacpend =C2=A0 =C2=A0 Port 11 - 12 for Piblic-Guest =C2=A0 =C2=A0 conf tinterface range Gi0/11 - 12switchport mode accessno shu= tchannel-group 4 mode activechannel-protocol lacpend=C2=A0 =C2=A0 =C2=A0 Fr= om: Paul Angus > =C2=A0 =C2=A0 To: "users@cloudstack.apache.org" >;= Luis > =C2=A0 =C2=A0 Sent: Friday, September 8, 2017 5:19 AM =C2=A0 =C2=A0 Subject: RE: Configuring CS with Advance Networking for an in= ternal laboratory =C2=A0 =C2=A0 Luis, =C2=A0 =C2=A0 You may find this blog from yester-year helpful: =C2=A0 =C2=A0 http://www.shapeblue.com/understanding-cloudstacks-physical-n= etworking-architecture/ =C2=A0 =C2=A0 Kind regards, =C2=A0 =C2=A0 Paul Angus =C2=A0 =C2=A0 paul.angus@shapeblue.com =C2=A0 =C2=A0 www.shapeblue.com =C2=A0 =C2=A0 53 Chandos Place, Covent Garden, London=C2=A0 WC2N 4HSUK =C2=A0 =C2=A0 @shapeblue =C2=A0 =C2=A0 -----Original Message----- =C2=A0 =C2=A0 From: Paul Angus [mailto:paul.angus@shapeblue.com] =C2=A0 =C2=A0 Sent: 07 September 2017 22:12 =C2=A0 =C2=A0 To: Luis >; users@cloudstack.apache.org =C2=A0 =C2=A0 Subject: RE: Configuring CS with Advance Networking for an in= ternal laboratory =C2=A0 =C2=A0 No problem Luis, =C2=A0 =C2=A0 =C2=A0 1.=C2=A0 Advanced networking replies on VLANs (or some= SDN isolation method), so you need at have a range of VLANs free, that you= tell CloudStack that it can use. =C2=A0 =C2=A0 =C2=A0 2.=C2=A0 The IP ranges I described were only an exampl= e you can you any range you like, but =E2=80=98public=E2=80=99 traffic gene= rally is going to require a gateway in order to =E2=80=98go=E2=80=99 somewh= ere. =C2=A0 =C2=A0 =C2=A0 3.=C2=A0 I looks to me like you are setting all of you= r interfaces as access ports. You=E2=80=99ll need ports which deal with mul= tiple VLANs (like ones used for guest networks) to be trunk ports =E2=80=93= with the VLANs which are allowed matching those that you have told CloudSt= ack that it can use. =C2=A0 =C2=A0 Kind regards, =C2=A0 =C2=A0 Paul Angus =C2=A0 =C2=A0 paul.angus@shapeblue.com =C2=A0 =C2=A0 www.shapeblue.com =C2=A0 =C2=A0 53 Chandos Place, Covent Garden, London=C2=A0 WC2N 4HSUK @sha= peblue =C2=A0 =C2=A0 From: Luis [mailto:lmartinez073@yahoo.com] =C2=A0 =C2=A0 Sent: 07 September 2017 20:32 =C2=A0 =C2=A0 To: Paul Angus >; users@cloudstack.apache.org =C2=A0 =C2=A0 Subject: Re: Configuring CS with Advance Networking for an in= ternal laboratory =C2=A0 =C2=A0 thank you for your help, I have some questions if you can hel= p me to answer this =C2=A0 =C2=A0 1.- can i not use VLAN's for Advance Networking or are necess= ary for the configuration =C2=A0 =C2=A0 2.- Do I need to create an extra server ans use it as gateway= for this range of IP's? =C2=A0 =C2=A0 3.- this is what I am using to create my vlan's on a Cisco 35= 60, is this correct? =C2=A0 =C2=A0 conf t =C2=A0 =C2=A0 interface range Gi0/9 - 10 =C2=A0 =C2=A0 switchport mode access =C2=A0 =C2=A0 no shut =C2=A0 =C2=A0 switchport access vlan 65 =C2=A0 =C2=A0 channel-group 3 mode active =C2=A0 =C2=A0 channel-protocol lacp =C2=A0 =C2=A0 end =C2=A0 =C2=A0 Thank you for your help =C2=A0 =C2=A0 ________________________________ =C2=A0 =C2=A0 From: Paul Angus >> =C2=A0 =C2=A0 To: "users@cloudstack.apache.org>" >>; Luis = >> =C2=A0 =C2=A0 Sent: Thursday, September 7, 2017 3:05 PM =C2=A0 =C2=A0 Subject: RE: Configuring CS with Advance Networking for an in= ternal laboratory =C2=A0 =C2=A0 Hi Luis, =C2=A0 =C2=A0 You can give CloudStack a range of RFC1918 addresses (ie priv= ate addresses) to act as an 'internal' public network. =C2=A0 =C2=A0 10.0.1.10 - 10.0.1.30 =C2=A0 =C2=A0 GW: 10.0.1.254 =C2=A0 =C2=A0 Netmask - 255.255.255.0 =C2=A0 =C2=A0 If the gateway at 10.0.1.254 can route to the outside world t= hen CloudStack will still be able to download templates, if not you can alw= ays register a template which you are hosting on an internal network. =C2=A0 =C2=A0 If you do the second option ensure that the global setting 's= ecstorage.allowed.internal.sites'=C2=A0 includes the hosting server's IP ad= dress. =C2=A0 =C2=A0 Kind regards, =C2=A0 =C2=A0 Paul Angus =C2=A0 =C2=A0 paul.angus@shapeblue.com> =C2=A0 =C2=A0 www.shapeblue.com> =C2=A0 =C2=A0 53 Chandos Place, Covent Garden, London=C2=A0 WC2N 4HSUK @sha= peblue =C2=A0 =C2=A0 -----Original Message----- =C2=A0 =C2=A0 From: Luis [mailto:lmartinez073@yahoo.com.INVALID>] =C2=A0 =C2=A0 Sent: 07 September 2017 18:42 =C2=A0 =C2=A0 To: Users >> =C2=A0 =C2=A0 Subject: Configuring CS with Advance Networking for an intern= al laboratory =C2=A0 =C2=A0 Hi =C2=A0 =C2=A0 I am configuring CS with Advance Networking for internal use = without rotatable IP's, this is for testing and lean CS Advance Networking,= This is what I have CS 4.10XenServer 7.0FreeNas CS is already installed bu= t I can't download any iso because V-Router can't ping outside my network, = any advice? =C2=A0 =C2=A0 Public IP:209.229.131.0Internal IP: 10.0.0.0 Thank you for yo= ur help. DISCLAIMER =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D This e-mail may contain privileged and confidential information which is th= e property of Accelerite, a Persistent Systems business. It is intended onl= y for the use of the individual or entity to which it is addressed. If you = are not the intended recipient, you are not authorized to read, retain, cop= y, print, distribute or use this message. If you have received this communi= cation in error, please notify the sender and delete all copies of this mes= sage. Accelerite, a Persistent Systems business does not accept any liabili= ty for virus infected mails. =C2=A0=20 =C2=A0=20 =C2=A0=20 =C2=A0=20 =20 ------=_Part_443234_853319613.1504987544333 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
Hi Imran

I already have the label configuration
<= div id=3D"yui_3_16_0_ym19_1_1504984834996_33557">
3D"Inline



=
From: Imran Ahmed <imran@eaxiom.net>
To: users@cloudstack.apache.org; 'Luis' = <lmartinez073@yahoo.com>
S= ent: Saturday, September 9, 2017 3:40 PM
Subject: RE: Configuring CS with Advance Netw= orking for an internal laboratory

= Please check out the traffic label settings  as  per the document= ation.
Please refer this link : http://docs.cloudstack.apache.= org/projects/cloudstack-installation/en/4.9/hypervisor/xenserver.html

Regards,

Imran

-----Original Message-----
From: Luis [mailto:lmart= inez073@yahoo.com.INVALID]
Sent: Sunday, September 1= 0, 2017 12:21 AM
To: Imran Ahmed; users@cloudstack.apache.org
Subject: Re: C= onfiguring CS with Advance Networking for an internal laboratory

No, I use XenServer for the Host and Ubuntu fo= r the Manager

      Fro= m: Imran Ahmed <imran@eaxiom.net>
= To: users@cloudstack.apache.org; lmartinez073@yahoo.com
Sent: = Saturday, September 9, 2017 3:19 PM
Subject: RE: Configu= ring CS with Advance Networking for an internal laboratory
 
Do you use KVM hypervisor ?
=
-----Original Message-----
From: Luis = [mailto:lmartinez073@yahoo.com.INVA= LID]
Sent: Saturday, September 09, 2017 11:43 PM
To: imran@eaxiom.net; users@cloudstack.apache.org
Subject: RE: = Configuring CS with Advance Networking for an internal laboratory

Hi
I am using Ubuntu 14.04, = do i need the bridge co figuratio? I didnt see that part for Ubuntu in the = instruction.

Thank you

Sent from Yahoo Mail on Android
<= br clear=3D"none">  On Sat, Sep 9, 2017 at 2:15 PM, Imran Ahmed<imran@eaxiom.net> wrote:  Hi Luis,
P= lease see if the bridge configuration is correct as per your hypervisor.
-----Original Message-----
From: Luis [mailto:lmartinez0= 73@yahoo.com.INVALID]
Sent: Saturday, September 09, = 2017 7:56 PM
To: users@= cloudstack.apache.org
Subject: Re: Configuring CS wit= h Advance Networking for an internal laboratory

Hi
After removing Switchport mode access i am a= ble to ping to the gateway but not to internet, I have my resolv to 8.8.8.8= but unable to ping to internet, any help or advice will be appreciated.
thank you.

      From: Imran Ahmed <imran@eaxi= om.net>
To: use= rs@cloudstack.apache.org
Sent: Saturday, September = 9, 2017 12:59 AM
Subject: RE: Configuring CS with Advanc= e Networking for an internal laboratory
 
I don=E2=80=99t think you need this line at least:

Switchport mode access

I assume that you use the LACP bond that bonds interfaces:  = Gi0/11 and Gi0/12  to carry both public traffic as well as guest traff= ic.

The next factor is the  traff= ic labels you set in your  Cloudstack advanced zone setup .

Another factor is the  configuration of&n= bsp; cloudbro and Cloudbr1  bridges  in your interface configurat= ions.


By the way&nb= sp; are you using  CentOS or Ubuntu or Suse or ..?
<= br clear=3D"none">
Regards,


Imran

--= ---Original Message-----
From: Luis [mailto:lmartinez073@yahoo.com.INVALID]
Sent: Saturday, September 09, 2017 9:07 AM
To: users@cloudstack.apache.org
Cc: Paul Angus
Subject: Re: Configuring CS with Adv= ance Networking for an internal laboratory

Hi

I am testing my CS with Advanc= e Networking but it's not able to download iso or the templates, I think th= is is because of my VLAN configuration, s-vm or v-vm can't ping to internet= , I did set up this parameter (secstorage.allowed.internal.sites) to my man= ager and host ip.
This is my VLAN configuration, please a= ny advice on this issue
conf tinterface range Gi0/11-12sw= itchport trunk encapsulation dot1q switchport mode trunkswitchport trunk al= lowed vlan 65,300-800switchport mode accesschannel-group 4 mode activechann= el-protocol lacpend

Thank you


      From:= Sateesh Chodapuneedi <sateesh.chodapuneedi@accelerite.com>
To: Luis &l= t;lmartinez073@yahoo.com>; "users@cloudstack.apache.org" <users@cloudstack.apache.org>
Cc: Pa= ul Angus <paul.angus@shapeblue.com> Sent: Friday, September 8, 2017 10:48 AM
Subject: Re: Configuring CS with Advance Networking for an internal labo= ratory
 
Hi Luis,

>.Do I need to specify what port the vlan are goin= g to use?
Yes, selection of interfaces/ports need to be d= one. Please add command =E2=80=9Cinterface range Gi0/9 =E2=80=93 10=E2=80= =9D after command =E2=80=9Cconf t=E2=80=9D
Also add =E2= =80=9Cno switchport mode access=E2=80=9D just before the command =E2=80=9Ce= nd=E2=80=9D

Hope that helps.

Regards,
Sateesh Chodapuneed= i,
CloudStack Development,
Engineering,= http:/= /accelerite.com<http://accelerite.com/>
Santa Clar= a, 95054, CA
@accelerite

From: Luis <lmartinez073@yahoo.com><= br clear=3D"none">Reply-To: Luis <lmartinez073@y= ahoo.com>
Date: Friday, 8 September 2017 at 8:00 P= M
To: Sateesh Chodapuneedi <sateesh.chodapuneedi@accelerite.com>, "users@cloudstack.apache.org" <users@cloudstack.apache.org>
Cc: Paul Angus <paul.angus@shapeblue.co= m>
Subject: Re: Configuring CS with Advance Networ= king for an internal laboratory

Thank = you for your help

Do I need to specify= what port the vlan are going to use?

= 1.- create vlnas
conf t
vlan 65,300-800=
end

2.-
conf t
switchport mode trunk
swi= tchport trunk encapsulation dot1q
switchport trunk allowe= d vlan 65,300-800
end


________________________________
Fro= m: Sateesh Chodapuneedi <sateesh.chodapuneedi@accelerite.com>
To: "users@cloudstack.apache.org" <users@cloudstack.apache.org>; Luis <lmartinez073@yahoo.com>
Cc: P= aul Angus <paul.angus@shapeblue.com><= br clear=3D"none">Sent: Friday, September 8, 2017 9:42 AM
Subject: Re: Configuring CS with Advance Networking for an internal labora= tory

Hi Luis,
I have= configured Cisco 3750G switch for my CloudStack advanced mode setup. Confi= guration should be the similar for Cisco 3560 as well, probably might help = you.

>> 4 Nics: 2 for Management= -Storage (LACP) and 2 for Public-Guest
Make sure to setup= the VLANs before configuring the switch ports for interfaces meant for Pub= lic and Guest traffic
conf t
vlan <P= UBLIC_VLAN_RANGE>,<ZONE_VLAN_RANGE>
end
Please note that the VLAN range meant for public traffic are rout= able (with subnet assigned)
Configure the switch ports fo= r Public and Guest traffic
switchport mode trunk
switchport trunk encapsulation dot1q
switchport= trunk allowed vlan <PUBLIC_VLAN_RANGE>,<ZONE_VLAN_RANGE>
Ex: If 100 is VLAN ID of routable VLAN meant for public traffi= c, and VLAN IDs 500 to 600 are guest (zone) VLANs, then above command looks= like,
switchport trunk allowed vlan 100,500-600

Regards,
Sateesh Chodapuneed= i,
CloudStack Development,
Engineering,= http:/= /accelerite.com<http://accelerite.com/>
Santa Clar= a, 95054, CA
@accelerite

-----Original Message-----
From: Luis <lmartinez073@yahoo.com.INVALID<mailt= o:lmartinez073@yahoo.com.INVALID>>
Reply-To: "u= sers@cloudstack.apache.org<mailto:= users@cloudstack.apache.org>" <= users@cloudstack.apache.org<mailto:users@cloudstack.apache.org>>, Luis <= lmartinez073@yahoo.com<mailto:lmartinez073@y= ahoo.com>>
Date: Friday, 8 September 2017 at 5:= 39 PM
To: Paul Angus <paul= .angus@shapeblue.com<mailto:paul.angus@s= hapeblue.com>>, "users@cloudsta= ck.apache.org<mailto:users@cloudst= ack.apache.org>" <users@cloudst= ack.apache.org<mailto:users@clouds= tack.apache.org>>
Subject: Re: Configuring CS w= ith Advance Networking for an internal laboratory

    Thank you Paul
    Yo= ur article is really helpful, I think my problem is finding the correct com= mands to setup the switch, this is what I have
  &nb= sp; CS 4.10: on Ubuntu 14.044 nics: 2 for management (LACP) and 2 for Stora= ge (LACP)
    XenServer for host4 Nics: 2 for M= anagement-Storage (LACP) and 2 for Public-Guest
  &n= bsp; Is it possible for you or the group to help me with the lines to set u= p correctly  the Cisco Switch, I will appreciate your help
    Cisco Switch 3560Ports: 9 - 10 for Management-storagec= onf tinterface range Gi0/9 - 10switchport mode accessno shutchannel-group 3= mode activechannel-protocol lacpend
    Port 1= 1 - 12 for Piblic-Guest
    conf tinterface ran= ge Gi0/11 - 12switchport mode accessno shutchannel-group 4 mode activechann= el-protocol lacpend      From: Paul Angus <paul.angus@shapeblue.com<mailto:paul.angus@shapeblue.com>>
    = To: "users@cloudstack.apache.org<= mailto:users@cloudstack.apache.org>= ;" <users@cloudstack.apache.org<= ;mailto:users@cloudstack.apache.org&g= t;>; Luis <lmartinez073@yahoo.com<mail= to:lmartinez073@yahoo.com>>
    Sent: Friday, September 8, 2017 5:19 AM
    Subject: RE: Configuring CS with Advance Networking for an = internal laboratory

    Luis= ,

    You may find this blog= from yester-year helpful:

  &nbs= p; http://www.shapeb= lue.com/understanding-cloudstacks-physical-networking-architecture/


    Kind reg= ards,

    Paul Angus

    pau= l.angus@shapeblue.com<mailto:paul.angus@= shapeblue.com>
    www.shapeblue.com
    53 Chandos Place, Covent Garden, London  = WC2N 4HSUK
    @shapeblue



&n= bsp;   -----Original Message-----
    From= : Paul Angus [mailto:paul.angus@shapeblue.com<mailto:paul.angus@shapeblue.com>]<= br clear=3D"none">    Sent: 07 September 2017 22:12
    To: Luis <lmartinez073@yahoo.= com<mailto:lmartinez073@yahoo.com>>= ;; users@cloudstack.apache.org<mai= lto:users@cloudstack.apache.org>=
    Subject: RE: Configuring CS with Advance N= etworking for an internal laboratory

&= nbsp;   No problem Luis,


      1.  Advanced networking replies on VLA= Ns (or some SDN isolation method), so you need at have a range of VLANs fre= e, that you tell CloudStack that it can use.
   = ;   2.  The IP ranges I described were only an example you can yo= u any range you like, but =E2=80=98public=E2=80=99 traffic generally is goi= ng to require a gateway in order to =E2=80=98go=E2=80=99 somewhere.
      3.  I looks to me like you are setting= all of your interfaces as access ports. You=E2=80=99ll need ports which de= al with multiple VLANs (like ones used for guest networks) to be trunk port= s =E2=80=93 with the VLANs which are allowed matching those that you have t= old CloudStack that it can use.


    Kind regards,

    Paul Angus


    paul.angus@shapeblue.co= m<mailto:paul.angus@shapeblue.com>= ;
    www.shapeblue.com
 = ;   53 Chandos Place, Covent Garden, London  WC2N 4HSUK @shapeblu= e



    From: Luis [mailto:lmartinez073@yah= oo.com<mailto:lmartinez073@yahoo.com>= ]
    Sent: 07 September 2017 20:32
    To: Paul Angus <paul.an= gus@shapeblue.com<mailto:paul.angus@shap= eblue.com>>; users@cloudstack.a= pache.org<mailto:users@cloudstack.= apache.org>
    Subject: Re: Configuring= CS with Advance Networking for an internal laboratory
    thank you for your help, I have some questio= ns if you can help me to answer this

&= nbsp;   1.- can i not use VLAN's for Advance Networking or are necessa= ry for the configuration

   = 2.- Do I need to create an extra server ans use it as gateway for this ran= ge of IP's?

    3.- this is = what I am using to create my vlan's on a Cisco 3560, is this correct?
    conf t
    interface= range Gi0/9 - 10
    switchport mode access    no shut
    switc= hport access vlan 65
    channel-group 3 mode a= ctive
    channel-protocol lacp
    end

    Tha= nk you for your help


    ________________________________
  &= nbsp; From: Paul Angus <paul.angus@shapeblue= .com<mailto:paul.angus@shapeblue.com= ><mailto:paul.angus@shapeblue.com<= mailto:paul.angus@shapeblue.com>>&g= t;
    To: "u= sers@cloudstack.apache.org<mailto:= users@cloudstack.apache.org><mailto:users@cloudstack.apache.org<mailto:users@cloudstack.apache.org>>" <users@cloudstack.apache.org<mailto:users@cloudstack.apache.org><mailto:users@cloudstack.apache.org<mailto:users@cloudstack.apache.org>>>; Luis <lmartinez073@yahoo.com<mailto:lmartinez073@yahoo.com><mailto:lmar= tinez073@yahoo.com<mailto:lmartinez073@yahoo= .com>>>
    Sent: Thursday, Septem= ber 7, 2017 3:05 PM
    Subject: RE: Configurin= g CS with Advance Networking for an internal laboratory
<= br clear=3D"none">    Hi Luis,

    You can give CloudStack a range of RFC1918 addresses (ie p= rivate addresses) to act as an 'internal' public network.

    10.0.1.10 - 10.0.1.30
&= nbsp;   GW: 10.0.1.254
    Netmask - 255.2= 55.255.0

    If the gateway = at 10.0.1.254 can route to the outside world then CloudStack will still be = able to download templates, if not you can always register a template which= you are hosting on an internal network.

    If you do the second option ensure that the global setting= 'secstorage.allowed.internal.sites'  includes the hosting server's IP= address.



    Kind regards,

=     Paul Angus

   = paul.angus@shapeblue.com<mailto:paul.angus@shapeblue.com><mailto:paul.angus@shapeblue.com<mailto:paul.angus@shapeblue.com>>
  &nbs= p; www.shapeblue.com<http://www.shapeblue.com<http://www.shapeblue.com/<= /a>>>
    53 Chandos Place, Covent Garden= , London  WC2N 4HSUK @shapeblue

<= br clear=3D"none">
    -----Original Message---= --
    From: Luis [mailto:lmartinez073@yahoo.com.INVALID<mailto:lmartinez073@yahoo.com.INVALID><mail= to:lmartinez073@yahoo.com.INVALID<mailto:lmartinez073@yahoo.com= .INVALID>>]
    Sent: 07 September 20= 17 18:42
    To: Users <users@cloudstack.apache.org<mailto:users@cloudstack.apache.org><mailto:users@cloudstack.apache.org<mailto:users@cloudstack.apache.org>>>
    Subject: Configuring CS with Advance Networking for= an internal laboratory

    = Hi
    I am configuring CS with Advance Network= ing for internal use without rotatable IP's, this is for testing and lean C= S Advance Networking, This is what I have CS 4.10XenServer 7.0FreeNas CS is= already installed but I can't download any iso because V-Router can't ping= outside my network, any advice?
    Public IP:= 209.229.131.0Internal IP: 10.0.0.0 Thank you for your help.






DISCLAIMER
=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D
This e-mail may contain privi= leged and confidential information which is the property of Accelerite, a P= ersistent Systems business. It is intended only for the use of the individu= al or entity to which it is addressed. If you are not the intended recipien= t, you are not authorized to read, retain, copy, print, distribute or use t= his message. If you have received this communication in error, please notif= y the sender and delete all copies of this message. Accelerite, a Persisten= t Systems business does not accept any liability for virus infected mails.<= br clear=3D"none">


=
 


 
 


 


------=_Part_443234_853319613.1504987544333-- ------=_Part_443235_1331829285.1504987544340--