Yes, I have read that documentation. And I understand different modes of networking and features available. What I am looking for is how a VM instance communicates with other VM instance-
1. if they belong to same user and thus in same VLAN
2. if they are in different VLANs
3. if they are in different clusters
Hello,
good questions. I assume here we are talking only about MANAGED mode.
If instances are from the same user and are in the same security group, then they can communicate directly with each other (as you noticed they are in the same vlan).
If they are on different security group (and thus vlan) then they will have to go through the CC to get 'out' of their subnet.
In the case of multi-cluster, the same logic applies, but now you have a virtual tunnel established between the CCs controlling the different clusters, so while ther logic is the same, the performance will be likely limited by it.
cheers
graziano
If they are on different security group (and thus vlan) then they will have to go through the CC to get 'out' of their subnet.
- My understanding was that two VMs can be in different security groups but same VLAN. This is because VLAN isolation is done by VLAN tagging which is at user level. A user can have several security groups. Thus, this concludes to - there can be different security groups of same user and thus on same VLAN and still not communicate. Is this understanding correct?
Are you saying that if users are in different security groups then they are in different VLANs?
a virtual tunnel established between the CCs controlling the different clusters
- I am not aware of this concept. Can you share some document explaining the same?
Hello,
well this is the way eucalyptus works right now: can you point out where you read about the different behavior you are expecting?
You can read our guide on multicluster: that case is needed only if you have multiple clusters in your installation.
cheers
graziano