[openstack-dev] [neutron][dvr]Why keep SNAT centralized and DNAT distributed?
changzhi at unitedstack.com
Sat Mar 26 05:52:42 UTC 2016
I have some questions about NAT in DVR.
In Neutron, we provide two NAT types. One is SNAT, we can associate a floating ip to router so that all vms attached this router can connect external network. The other NAT types is DNAT, we can connect a vm which associated floating ip from external network.
Question A, Why keep SNAT centralized? We put the SNAT namespace in compute node which running DVR l3 agent, don't we?
Question B, Why keep DNAT distributed? I think we can keep snat namespace and fip namespace in one node. Why not keep DNAT and SNAT together?
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OpenStack-dev