Difference between revisions of "Agile testbed"

From PDP/Grid Wiki
Jump to navigationJump to search
Line 296: Line 296:
 
== Network ==
 
== Network ==
  
The network between these machines is a bit particular: They all live in the same VLAN (194.171.96.16/28) but they all have an extra alias interface in the 10.198.0.0/16 range. The Xen DomUs on each of the Xen machines that live in that address range are given connectivity to the other DomUs in the same VLAN without using NAT, and connectivity to the outside with SNAT. Here's an example of the iptables on span:
+
{|
Chain POSTROUTING (policy ACCEPT 58M packets, 3693M bytes)
+
! vlan
  pkts bytes target    prot opt in    out    source              destination       
+
! description
    0    0 ACCEPT    all  --  any    any    10.198.0.0/16        194.171.96.16/28   
+
! network
  436 63986 ACCEPT    all  --  any    any    10.198.0.0/16       10.198.0.0/16     
+
! gateway
    1  190 SNAT      all --  any    any    10.198.0.0/16       anywhere            to:194.171.96.28
+
! ACL
 
+
|-
So all traffic from a DomU on span will appear to have come from span to the outside.
+
| 2
 
+
| [[NDPF_System_Functions#P4CTB|P4CTB]]
Note that DomUs that have interfaces in the public address range do not need SNAT at all, they simply connect to the hosts xen bridge.
+
| 194.171.96.16/28
 +
| 194.171.96.30
 +
| No inbound traffic on privileged ports
 +
|-
 +
| 8
 +
| [[NDPF_System_Functions#Nordic (Open_Experimental)|Open/Experimental]]
 +
| 194.171.96.32/27
 +
| 194.171.96.62
 +
| Open
 +
|-
 +
| 17 (untagged)
 +
| local
 +
| 10.198.0.0/16
 +
| 10.198.3.1
 +
| testbed only
 +
|-
 +
| 4
 +
| [[NDPF System Functions#MGMNT/IPMI|IPMI and management]]
 +
| 172.20.0.0/16
 +
| 172.20.255.254
 +
| separate management network for IPMI
 +
|}
  
 
There is a separate network attached to each machine to allow IPMI management and Serial-Over-Lan.
 
There is a separate network attached to each machine to allow IPMI management and Serial-Over-Lan.
 
  
 
== Storage ==
 
== Storage ==

Revision as of 14:14, 22 February 2013