[Chugalug] Linux VM Host Choices

Matt Keys mk6032 at yahoo.com
Sat Mar 15 01:08:01 UTC 2014


whoops, typo'd that the lamp vm is assigned to br1 on the kvm host, 
'lan' interface for pfsense. lamp vm has $wan_ip2 assigned.


On 03/14/2014 09:01 PM, Matt Keys wrote:
> Maybe this will help? I have a block of WAN IPs and ..
>
> kvm_host : $wan_ip1 is eth0 nic
> kvm_host bridge eth0 as br0
>
> now on the cli I create the equiv of a vswitch with ..
>
> $ sudo brctl addbr br1
> $ sudo ifconfig br1 up
> $ sudo virt-manager
>
> create pfsense vm with two nics, view/details, change the vnic0 to 
> br0, vnic1 to br1. pfsense uses vnic0/br0 as the 'wan' interface and 
> vnic1/br1 as the 'lan' interface.
>
> create lamp vm with 1 nic assigned to br0 and assign $wan_ip2.
>
> on pfsense forward wan port 80 to lan $wan_ip2
>
>
> On 03/14/2014 07:24 PM, Joseph Simoneau wrote:
>>
>> I've just noticed weird behaviors when you're actually using virtual 
>> networks, especially in routed mode.
>>
>> It almost seems like there's a firewall that I can't find a way to 
>> control and that limits access to VMs, seemingly regardless of any 
>> virtual routers you've set up.
>>
>> It mostly came up when I was building a small virtual NAS to test 
>> btrfs... when the VM was on a bridged adapter or host only, all was 
>> well. When I did it any other way, scanning and connecting (from the 
>> host) behaved as if there was something blocking NFS and iSCSI, but 
>> not ssh, etc., even with iptables off, regardless of virtual routers.
>>
>> I also could just have been missing something, but it wound up a lot 
>> more of a pain than doing the same thing with a physical L2/3 switch, 
>> which doesn't seem ideal.
>>
>> -js
>>
>> On Mar 14, 2014 6:49 PM, "Matt Keys" <mk6032 at yahoo.com 
>> <mailto:mk6032 at yahoo.com>> wrote:
>>
>>     The statement "it forces some choices that seem suboptimal once
>>     things get big or odd" has peeked my curiosity. Would you mind
>>     elaborating on that, particularly what you mean by big or odd?
>>
>>     Regards,
>>     Matt
>>
>>     On 03/13/2014 09:35 PM, Joseph Simoneau wrote:
>>
>>
>>         My homelab is currently on KVM, and it's alright. Compared to
>>         VMware  workstation, the network setup is weirder and
>>         possibly limiting.
>>
>>         If I were starting over today, I'd try ESXi (managed with
>>         workstation) and xen. I wouldn't rebuild with KVM because it
>>         forces some choices that seem suboptimal once things get big
>>         or odd.
>>
>>         The big plus with KVM and Xen, as I see it, is that you can
>>         use Ceph or something like it for the datastore instead of
>>         just direct disks or a NAS/SAN that adds other complexities.
>>
>>         -js
>>
>>
>>
>>     _______________________________________________
>>     Chugalug mailing list
>>     Chugalug at chugalug.org <mailto:Chugalug at chugalug.org>
>>     http://chugalug.org/cgi-bin/mailman/listinfo/chugalug
>>
>>
>>
>> _______________________________________________
>> Chugalug mailing list
>> Chugalug at chugalug.org
>> http://chugalug.org/cgi-bin/mailman/listinfo/chugalug
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://chugalug.org/pipermail/chugalug/attachments/20140314/85aa48b8/attachment-0001.html>


More information about the Chugalug mailing list