Feature #3387

Make OpenNebulaNetwork.conf settings overridable per network

Added by EOLE Team over 6 years ago. Updated about 4 years ago.

Status:ClosedStart date:11/28/2014
Priority:HighDue date:
Assignee:Javi Fontan% Done:

0%

Category:Drivers - Network
Target version:Release 5.4
Resolution:fixed Pull request:

Description

Hello,

We setup a new 4.10.1 ONE and would like to make some configuration specific to a single network.

Actually, we have to modify /var/lib/one/remotes/vnm/OpenNebulaNetwork.conf which is applied to all networks.

It could be interesting to have per network settings for MAC spoofing and arp cache poisoning.

I think each settings in CONF could be upper-cased and merged with the network configuration, with the per network configuration overriding the global one.

Regards.


Related issues

Related to Bug #4727: Openvswitch driver always add mac spoofing rules Closed 08/18/2016
Related to Bug #4680: Ebtables filtering too strict (can't talk to non-ONe host... Closed 07/25/2016

Associated revisions

Revision da5374c5
Added by Javi Fontan over 4 years ago

F #3387: parse and merge options from vnet CONF

Revision 85e3fda2
Added by Javi Fontan over 4 years ago

F #3387: validate vlan id only when enabled in conf

Revision 976e979f
Added by Javi Fontan over 4 years ago

F #3387: parse options into hash instead of array

Revision 51f5a388
Added by Javi Fontan over 4 years ago

F #3387: add oned.conf changes for vnet options

Revision 9e0413a1
Added by Javi Fontan over 4 years ago

F #3387, #4743, #4770: network conf documentation

History

#1 Updated by EOLE Team over 6 years ago

Related to #2348.

#2 Updated by Ruben S. Montero over 6 years ago

  • Tracker changed from Request to Backlog
  • Category set to Drivers - Network
  • Priority changed from Normal to High

Make sense...

#3 Updated by EOLE Team over 5 years ago

Maybe we can use FILTER_IP_SPOOFING and FILTER_MAC_SPOOFING ?

Regards.

#4 Updated by Ruben S. Montero almost 5 years ago

  • Tracker changed from Backlog to Feature
  • Target version set to Release 5.2

#5 Updated by EOLE Team almost 5 years ago

May we have restricted attributes per VM too?

Regards.

#6 Updated by Ruben S. Montero almost 5 years ago

  • Target version changed from Release 5.2 to Release 5.4

#7 Updated by Ruben S. Montero almost 5 years ago

  • Related to Bug #4727: Openvswitch driver always add mac spoofing rules added

#8 Updated by Ruben S. Montero almost 5 years ago

  • Related to Bug #4680: Ebtables filtering too strict (can't talk to non-ONe hosts on the same network) added

#9 Updated by Javi Fontan over 4 years ago

  • Assignee set to Javi Fontan

#10 Updated by Javi Fontan about 4 years ago

  • Status changed from Pending to Closed
  • Resolution set to fixed
################################################################################
# Bridge and Interface Creation Options
################################################################################
#
# These options will execute brctl commands with these values. For example,
# this option will execute:
#
#     brctl stp <bridge name> on
#
# :bridge_conf:
#     :stp: on
#
# These options will be added to the ip link add command. For example:
#
#     sudo ip link add lxcbr0.260  type vxlan id 260 group 239.0.101.4 \
#       ttl 16 dev lxcbr0 udp6zerocsumrx  tos 3
#
# :ip_link_conf:
#     :udp6zerocsumrx:
#     :tos: 3

################################################################################
# Overriding Options in Network Template
################################################################################
#
# Option can be overridden or added per network using this format
# in the network template:
#
#     CONF="vxlan_mc=239.0.100.0,test=false,validate_vlan_id=true" 
#     BRIDGE_CONF="sethello=6" 
#     IP_LINK_CONF="tos=10,udpcsum=,udp6zerocsumrx=__delete__" 
#
# Options can have empty value when they don't need a parameter. Also the
# special value "__delete__" can be used to delete parameters set here.

Also available in: Atom PDF