Return-Path: X-Original-To: apmail-incubator-cloudstack-dev-archive@minotaur.apache.org Delivered-To: apmail-incubator-cloudstack-dev-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 7D83491EA for ; Fri, 18 May 2012 17:26:13 +0000 (UTC) Received: (qmail 61907 invoked by uid 500); 18 May 2012 17:26:13 -0000 Delivered-To: apmail-incubator-cloudstack-dev-archive@incubator.apache.org Received: (qmail 61878 invoked by uid 500); 18 May 2012 17:26:13 -0000 Mailing-List: contact cloudstack-dev-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: cloudstack-dev@incubator.apache.org Delivered-To: mailing list cloudstack-dev@incubator.apache.org Received: (qmail 61870 invoked by uid 99); 18 May 2012 17:26:13 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 18 May 2012 17:26:13 +0000 X-ASF-Spam-Status: No, hits=-5.0 required=5.0 tests=RCVD_IN_DNSWL_HI,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of Chiradeep.Vittal@citrix.com designates 66.165.176.89 as permitted sender) Received: from [66.165.176.89] (HELO SMTP.CITRIX.COM) (66.165.176.89) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 18 May 2012 17:26:07 +0000 X-IronPort-AV: E=Sophos;i="4.75,618,1330923600"; d="scan'208";a="25339170" Received: from sjcpmailmx01.citrite.net ([10.216.14.74]) by FTLPIPO01.CITRIX.COM with ESMTP/TLS/RC4-MD5; 18 May 2012 13:25:45 -0400 Received: from SJCPMAILBOX01.citrite.net ([10.216.4.73]) by SJCPMAILMX01.citrite.net ([10.216.14.74]) with mapi; Fri, 18 May 2012 10:25:41 -0700 From: Chiradeep Vittal To: "cloudstack-dev@incubator.apache.org" Date: Fri, 18 May 2012 10:25:39 -0700 Subject: Re: basic zone for public clouds Thread-Topic: basic zone for public clouds Thread-Index: Ac01Gz/CofTJl+jUTb+GlseMTmuklQ== Message-ID: In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: user-agent: Microsoft-MacOutlook/14.13.0.110805 acceptlanguage: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 On 5/18/12 10:16 AM, "Murali Reddy" wrote: >> >> >> >>> When EIP feature is enabled, all tenant instances automatically get a >>> public IP that is 1:1 NAT to their RFC1918 IP. >> >>Is it true for SSVM and CPVM as well? If so, it will be a minor change >>for SSVM and CPVM to hand out the public IP backed by EIP to support the >>feature Murali asks. Otherwise, the public IP/VLAN has to be provided >>inside SSVM/CPVM, while currently SSVM and CPVM do not do that by >>default. >> > >I think SSVM, CPVM will have to use public IP backed by EIP model. >Directly assigning public IP to SSVM, CPVM may result them to be >non-routable. For e.g NetScaler that provides EIP/ELB service can be the >only data entry/exit point in a zone and may be setup in two-arm mode[1] >where only NetScaler is in public network. So SSVM/CPVM on the pod's >subnet may not be reachable even if they have public IP. > >[1]:http://support.citrix.com/proddocs/topic/netscaler-getting-started-map >- >91/ns-nw-twoarm-mul-sbnt-con.html In Advanced mode, the public VLAN is trunked down to the hypervisors as well as to external devices such as SRX and F5. This is exactly the same configuration. The public VLAN is trunked down to the hypervisors so that the system vms can get public ips. -- Chiradeep