[Openstack] [Kuryr]: Nested containers in a VM

Farhad Sunavala fsbiz at yahoo.com
Thu May 19 21:48:10 UTC 2016

Hi guys,
I have a question on nested container support with Kuryr.
Once neutron has the VLAN aware VM functionality (see below), my understanding is thatKuryr will provide support for nested containers.https://review.openstack.org/#/c/273954/10/doc/source/devref/openvswitch_agent.rst,unified

Consider the diagram below.  C1 C2  C3

|     |    |

OVS Bridge

|    |

Virtual Machine (VM)


| (tagged traffic)




|(untagged traffic with thecorrect in_port)





I have two questions.1. Is there a design available for this?2. More specifically, will the three containers inside the VM be given three unique VLAN IDs or will the VLAN IDsfor the containers be per tenant.E.g. If C1,C2 are in tenant "alpha" and C3 is in tenant "beta", will the allocation of VLAN IDs to each container be uniqueor will they be unique per tenant ?

