[lxc-users] "mesh networking" for lxc containers (similar to weave)?
Tomasz Chmielewski
mangoo at wpkg.org
Sat Jun 20 01:37:12 UTC 2015
I know this is just "normal networking", however, there are at least two
issues with your suggestions:
- it assumes the hosts are in the same subnet (say, connected to the
same switch), so it won't work if the hosts have two different public
IPs (i.e. 46.1.2.3 and 124.8.9.10)
- with just two hosts, you may overcome the above limitation with some
VPN magic; however, it becomes problematic as the number of hosts grows
(imagine 10 or more hosts, trying to set it up without SPOF / central
VPN server; ideally, the hosts should talk to themselves using the
shortest paths possible)
Therefore, I'm asking if there is any better "magic", as you say, for
lxc networking?
Possibly it could be achieved with tinc, running on hosts only -
http://www.tinc-vpn.org/ - but haven't really used it.
And maybe people have other ideas?
--
Tomasz Chmielewski
http://wpkg.org
On 2015-06-20 03:20, Christoph Lehmann wrote:
> There is no magic with lxcs networking. Its just a bridge and some
> iptables rules for NAT and a dhcp server.
>
> You can setup a bridge on your public interface, configure the
> container to use that bridge and do the same on your second host.
>
> Am 19. Juni 2015 18:15:23 MESZ, schrieb Tomasz Chmielewski
> <mangoo at wpkg.org>:
>
>> Are there any solutions which would let one build "mesh networking"
>> for
>> lxc containers, similar to what weave does for docker?
>>
>> Assumptions:
>>
>> - multiple servers (hosts) which are not in the same subnet (i.e. in
>>
>> different DCs in different countries),
>> - containers share the same subnet (i.e. 10.0.0.0/8 [1]), no matter
>> on which
>> host they are running
>> - if container is migrated to a different host, it is still
>> reachable on
>> the same IP address without any changes in the networking
>>
>> I suppose the solution would run only once on each of the hosts,
>> rather
>> than in each container.
>>
>> Is there something similar for lxc?
>
> --
> Diese Nachricht wurde von meinem Android-Mobiltelefon mit K-9 Mail
> gesendet.
> _______________________________________________
> lxc-users mailing list
> lxc-users at lists.linuxcontainers.org
> http://lists.linuxcontainers.org/listinfo/lxc-users
More information about the lxc-users
mailing list