<tt><font size=2>"gustavo panizzo (gfa)" <gfa@zumbi.com.ar>
wrote on 04/27/2015 11:23:13 AM:<br>
<br>
> On 2015-04-27 22:59, Mike Spreitzer wrote:<br>
> > Uwe Sauter <uwe.sauter.de@gmail.com> wrote on 04/27/2015
10:54:15 AM:<br>
> >><br>
> >> What I suggested later on is that you probably don't need
any second<br>
> >> level bridge at all. Just create a second/third external<br>
> >> network with appropriate CIDR. As long as those networks
are<br>
> >> externally connected to your interface (and thus the bridge)
you<br>
> >> should be good to go.<br>
> > <br>
> > To be precise, are you suggesting that I have just one br-ex,
connected<br>
> > to the host NIC as usual, and in my bridge_mappings configuration<br>
> > statement, map all the external network names to br-ex?<br>
> <br>
> you can only have one flat network per bridge.<br>
> <br>
> i don't know what's your usercase but one i had the need to map 2<br>
> different public ip address to each vm vnic, i was going to do the<br>
> double bridge thing but i resolved it using allowed pairs extension.
it<br>
> may work for you<br>
</font></tt>
<br><tt><font size=2>My use case is that I have two behaviorally different
external subnets --- they are treated differently by stuff outside of OpenStack,
with consequences that are meaningful to tenants. Thus, I have two
categories of floating IP addresses, depending on which external subnet
holds the floating IP address. The difference is meaningful to tenants.
So I need to enable a tenant to request a floating IP address of
a specific category. Since Neutron equates floating IP address allocation
pool with network, I need two external networks.</font></tt>
<br>
<br><tt><font size=2>Both of these external subnets are present on the
same actual external LAN, thus both are reached through the same host NIC.</font></tt>
<br>
<br><tt><font size=2>It looks to me like the allowed mac/IP address pair
feature will not solve this problem.</font></tt>
<br>
<br><tt><font size=2>Thanks,</font></tt>
<br><tt><font size=2>Mike</font></tt>
<br>
<br>