East West Traffic using multiple spaces

ben-ihelputech · 18 October 2022 15:04

East West Traffic without VLANs

Juju beginner speaking so thanks in advance for any help

I would like to configure applications to use LXD containers and still be able to communicate across multiple spaces.

Current Setup:

$ juju spaces
Name         Space ID  Subnets           
alpha        0                           
data-space   1         10.170.1.0/24     
                       1000:3bbb::/64    
admin-space  2         10.150.1.0/24     
                       10.160.1.0/24     
                       1000:3aaa::/64    
                       2a00:7b80:333::/48

$ maas ben subnets read
Success.
Machine-readable output follows:
[
    {
        "name": "1000:3bbb::/64",
        "description": "",
        "vlan": {
            "vid": 0,
            "mtu": 9000,
            "dhcp_on": true,
            "external_dhcp": null,
            "relay_vlan": null,
            "secondary_rack": null,
            "fabric_id": 0,
            "id": 5001,
            "primary_rack": "fxyrm8",
            "space": "data-space",
            "name": "untagged",
            "fabric": "datafab",
            "resource_uri": "/MAAS/api/2.0/vlans/5001/"
        },
        "cidr": "1000:3bbb::/64",
        "rdns_mode": 2,
        "gateway_ip": null,
        "dns_servers": [],
        "allow_dns": true,
        "allow_proxy": true,
        "active_discovery": false,
        "managed": true,
        "disabled_boot_architectures": [],
        "id": 2,
        "space": "data-space",
        "resource_uri": "/MAAS/api/2.0/subnets/2/"
    },
    {
        "name": "10.150.1.0/24",
        "description": "",
        "vlan": {
            "vid": 0,
            "mtu": 1500,
            "dhcp_on": false,
            "external_dhcp": null,
            "relay_vlan": null,
            "secondary_rack": null,
            "fabric_id": 1,
            "id": 5002,
            "primary_rack": null,
            "space": "admin-space",
            "name": "untagged",
            "fabric": "gigafab",
            "resource_uri": "/MAAS/api/2.0/vlans/5002/"
        },
        "cidr": "10.150.1.0/24",
        "rdns_mode": 2,
        "gateway_ip": "10.150.1.1",
        "dns_servers": [],
        "allow_dns": true,
        "allow_proxy": true,
        "active_discovery": false,
        "managed": true,
        "disabled_boot_architectures": [],
        "id": 3,
        "space": "admin-space",
        "resource_uri": "/MAAS/api/2.0/subnets/3/"
    },
    {
        "name": "2a00:7b80:333::/48",
        "description": "",
        "vlan": {
            "vid": 0,
            "mtu": 1500,
            "dhcp_on": false,
            "external_dhcp": null,
            "relay_vlan": null,
            "secondary_rack": null,
            "fabric_id": 1,
            "id": 5002,
            "primary_rack": null,
            "space": "admin-space",
            "name": "untagged",
            "fabric": "gigafab",
            "resource_uri": "/MAAS/api/2.0/vlans/5002/"
        },
        "cidr": "2a00:7b80:333::/48",
        "rdns_mode": 2,
        "gateway_ip": null,
        "dns_servers": [],
        "allow_dns": true,
        "allow_proxy": true,
        "active_discovery": false,
        "managed": true,
        "disabled_boot_architectures": [],
        "id": 4,
        "space": "admin-space",
        "resource_uri": "/MAAS/api/2.0/subnets/4/"
    },
    {
        "name": "1000:3aaa::/64",
        "description": "",
        "vlan": {
            "vid": 10,
            "mtu": 1500,
            "dhcp_on": true,
            "external_dhcp": null,
            "relay_vlan": null,
            "secondary_rack": null,
            "fabric_id": 1,
            "id": 5003,
            "primary_rack": "fxyrm8",
            "space": "admin-space",
            "name": "10",
            "fabric": "gigafab",
            "resource_uri": "/MAAS/api/2.0/vlans/5003/"
        },
        "cidr": "1000:3aaa::/64",
        "rdns_mode": 2,
        "gateway_ip": null,
        "dns_servers": [],
        "allow_dns": true,
        "allow_proxy": true,
        "active_discovery": false,
        "managed": true,
        "disabled_boot_architectures": [],
        "id": 6,
        "space": "admin-space",
        "resource_uri": "/MAAS/api/2.0/subnets/6/"
    },
    {
        "name": "10.160.1.0/24",
        "description": "",
        "vlan": {
            "vid": 10,
            "mtu": 1500,
            "dhcp_on": true,
            "external_dhcp": null,
            "relay_vlan": null,
            "secondary_rack": null,
            "fabric_id": 1,
            "id": 5003,
            "primary_rack": "fxyrm8",
            "space": "admin-space",
            "name": "10",
            "fabric": "gigafab",
            "resource_uri": "/MAAS/api/2.0/vlans/5003/"
        },
        "cidr": "10.160.1.0/24",
        "rdns_mode": 2,
        "gateway_ip": "10.160.1.1",
        "dns_servers": [
            "10.160.1.1"
        ],
        "allow_dns": true,
        "allow_proxy": true,
        "active_discovery": false,
        "managed": true,
        "disabled_boot_architectures": [],
        "id": 5,
        "space": "admin-space",
        "resource_uri": "/MAAS/api/2.0/subnets/5/"
    },
    {
        "name": "10.170.1.0/24",
        "description": "",
        "vlan": {
            "vid": 0,
            "mtu": 9000,
            "dhcp_on": true,
            "external_dhcp": null,
            "relay_vlan": null,
            "secondary_rack": null,
            "fabric_id": 0,
            "id": 5001,
            "primary_rack": "fxyrm8",
            "space": "data-space",
            "name": "untagged",
            "fabric": "datafab",
            "resource_uri": "/MAAS/api/2.0/vlans/5001/"
        },
        "cidr": "10.170.1.0/24",
        "rdns_mode": 2,
        "gateway_ip": "10.170.1.1",
        "dns_servers": [
            "10.170.1.10"
        ],
        "allow_dns": true,
        "allow_proxy": true,
        "active_discovery": false,
        "managed": true,
        "disabled_boot_architectures": [],
        "id": 1,
        "space": "data-space",
        "resource_uri": "/MAAS/api/2.0/subnets/1/"
    }
]

I have the data-space with an untagged vlan on a 10GB switch. I configured my three nodes to use this on ovn bridge br-ex1. I also have an admin space that is just a gigabit network that will serve as my north-south network for now. Each of the nodes can access it through br-ex2.

The problem I am running into is that when I try to deploy and application to a lxd container, I am unable to bind it to that space. I keep getting errors related to the container interface not having an address in the space.

ben-ihelputech · 18 October 2022 15:21

I may have answered my own question. I was able to deploy a charm to an lxd container by specifying the --bind option while deploying. Juju then provisioned a container that add an ip address in the data-space. It seems I was unable to run juju bind after the deployment to change the binding the application was deployed to.