<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Wed, Sep 18, 2013 at 9:09 PM, Ramon Acedo <span dir="ltr"><<a href="mailto:ramon.acedo@ubuntu.com" target="_blank">ramon.acedo@ubuntu.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><span style="font-family:arial,sans-serif;font-size:13px">Hi Rahul,</span><br style="font-family:arial,sans-serif;font-size:13px">
<div class="gmail_extra" style="font-family:arial,sans-serif;font-size:13px">
<br><div class="gmail_quote"><div><div class="im">On 12 September 2013 18:58, Rahul Sharma <span dir="ltr"><<a href="mailto:rahulsharmaait@gmail.com" target="_blank">rahulsharmaait@gmail.com</a>></span> wrote:<br></div>
<blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex">
<div dir="ltr"><div><br></div><div class="im">Today we were able to achieve the end-to-end flow of traffic by adding rules manually to the openvswitch-switches in nova-compute vm. If support for the configuring flows in switches is added through API's, maybe we can support openvswitch as well. Though, ideally one should not use vSwitch as its having minimal capabilities and one should always go with the DVS for ESX.<br>
</div></div></blockquote><div><br></div></div><div class="im"><div>Would you mind sharing the rules you used for Open vSwitch to allow the traffic flow through the Nova Compute VM? </div><div><br></div><div>Using vSphere DVS or vSphere standard vSwitch shouldn't make any difference for this setup (it does in the vSphere network design though). </div>
<div><br></div></div></div></div></div></blockquote><div><br></div><div>Hmm, I am not sure whether vSphere DVS performs intelligent MAC learning which vSwitch lacks, but if it does, then we can use port-group br-int without adding it in promiscuous mode.<br>
<br></div><div>Ideally, nova-compute vm should not be dependent on its placement with respect to the physical compute node, so the design should be that all the traffic of instances should be sent out using br-int to physical switch, and then should be forwarded to eth2 of compute-vm. Also, segregation based on tenant can be achieved by creating port-groups of different vlan-id for each tenant and attaching those port-groups to instances, rather than the current "br-int" of vswitch. If all these things are taken care, and flows are added to OVS, then we can achieve quantum-networking using OVS in vSphere similar to the the one in KVM. <br>
</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div class="gmail_extra" style="font-family:arial,sans-serif;font-size:13px"><div class="gmail_quote">
<div class="im"><div></div><div>In the network plugin compatibility matrix with compute drivers [1] it says that only Nicira NVP and Plumgrid are supported with VMware ESXi as Nova Compute, which is different from the vSphere DVS (Distributed vSwitch). However, I believe that Open vSwitch has everything it's needed to provide the same level of functionality with ESXi/vCenter than with KVM OpenStack setups (including per tenant network isolation).</div>
<div><br></div></div></div></div></div></blockquote><div><br></div><div>Yes, I agree to that. Only thing which is missing is the proper design to achieve the same on ESXi/vCenter.<br></div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr"><div class="gmail_extra" style="font-family:arial,sans-serif;font-size:13px"><div class="gmail_quote"><div class="im"><div></div><div>Thanks!</div><div><br></div><div>[1] <a href="http://docs.openstack.org/trunk/openstack-network/admin/content/flexibility.html" target="_blank">http://docs.openstack.org/trunk/openstack-network/admin/content/flexibility.html</a></div>
</div></div></div></div>
</blockquote></div><br></div><div class="gmail_extra">-Regards<br></div><div class="gmail_extra">Rahul Sharma<br></div></div>