Configuring the service network for cloud tenant networks

Owned by MS (Unlicensed)
Last updated: Sept 05, 2023

The Abiquo service network is a VLAN network that includes the following virtual network types:

  • Private networks within the virtual datacenter

  • External networks belonging to enterprises that allow access to networks outside the virtual datacenter

  • Unmanaged networks belonging to enterprises that are assigned IP addresses outside the Abiquo environment

  • Public networks using public IP addresses for VMs

Abiquo virtual network types
Abiquo virtual network types

VMs on internal private networks can only communicate within the virtual datacenter. To communicate outside it, use a virtual gateway. VMs on public, external and unmanaged networks can communicate outside the virtual datacenter.

 

How Abiquo manages the service network

Abiquo can manage the service network with standard networking or software defined networking (SDN) integrations.

In standard networking, Abiquo manages virtual networks as separate VLANs. The Network Administrator configures VLANs in the top-of-rack switches.

  • When the Cloud Admin creates racks, they enter the VLAN range for private networks on the rack.

  • For each external, public, and unmanaged network, the Network Administrator should assign VLAN tags and the Cloud Admin should enter them into Abiquo.

Create a network with network tags
Create a network with network tags

With SDN integrations, the cloud admin should enter the provider ID of the public network.

How Abiquo assigns IP addresses to VMs

When a user deploys a VM, Abiquo generates a unique MAC address and binds it to an IP from the appropriate subnet and assigns it to the appropriate VLAN.

Abiquo can use the following options to assign the network:

Configure the service network in the switches

To configure the service network for standard networking, do these steps for the following hardware .

  1. Top-of-rack switch

    1. Configure all ports in trunk mode 

    2. Configure one port in access mode for each public VLAN ID for each hypervisor

      1. In Abiquo, create a public VLAN with each public VLAN tag

    3. For each external/unmanaged VLAN, configure one port in access mode with the corresponding VLAN IDs for each hypervisor

      1. In Abiquo, create external/unmanaged VLANs

      2. In Abiquo, edit each rack and exclude tags for external/public/unmanaged networks from the VLAN ranges for private networks

  2. Hypervisor hosts

    1. Connect every hypervisor in the rack to an 802.1Q trunk port in the top-of-rack switch

      • All VMs created in the hypervisors will have virtual NICs connected to virtual switches

      • Abiquo supports distributed virtual switches and standard virtual switches

    2. With each network interface on the hypervisor that is connected to a top-of-rack switch trunk port, connect to a virtual switch

      • Abiquo will create the VLANs/VNICs in the virtual switches.

  3. DHCP server

    1. Connect the DHCP server to an 802.1Q trunk port in the top-of-rack switch. 

    2. This is a requirement unless you are using SDN, guest setup, or only using unmanaged networks. See https://abiquo.atlassian.net/wiki/spaces/doc/pages/311375369

    3. To configure the DHCP Relay Server (or DHCP Server) that is providing VLAN support, for each VLAN, supply one IP address on the service network but outside of the virtual datacenter range

Default private network configuration

By default, each default private network will have its own VLAN but it will use the same IP address range. This means every tenant can create their own network (VLAN) with network address 192.168.0.0/24. Network administrators should be aware of this default configuration. For example:


Private network IP ranges

Enterprise/Customer 1 -> VirtualDC 1 Network C1 -> 192.168.0.0/24, will be in VLAN5 Enterprise/Customer 2 -> VirtualDC 2 Network C2 -> 192.168.0.0/24, will be in VLAN8



Related topics

Copyright © 2006-2024, Abiquo Holdings SL. All rights reserved