Configuring networks

Now that you have installed Virtuozzo Hybrid Infrastructure on the management and two secondary nodes, you need to set up networks and interfaces. Use separate networks for internal and public traffic. Doing so will prevent public traffic from affecting cluster I/O performance and also prevent possible denial-of-service attacks from the outside.

  1. To configure networks, go to the Infrastructure > Networks screen on the admin panel. The advanced configuration is discussed in the Administrator guide, but for our simplified deployment, it is enough to customize the default Public and Private networks as follows:

    Network Traffic types
    Public Compute API, S3 public, iSCSI, NFS, Backup (ABGW) public, Admin panel, SSH, VM public, SNMP, Self-service panel
    Private Storage, Internal management, OSTOR private, Backup (ABGW) private, VM private, Admin panel, SSH
  2. To configure interfaces, go to the Infrastructure > Nodes screen and click a node’s name. Go to the Network interfaces tab. For the management node, both interfaces are already set up. You still need, however, to configure public network interfaces for every secondary node. Select an interface and click Edit on the right menu. In the Network field, select Public. You should now have one interface connected to the private network and the other assigned to the public network. Repeat these steps for every secondary node to connect them to the private and the public networks.
  3. Ports that will be opened on cluster nodes depend on services that will run on the node and traffic types associated with them. For more information on the ports and services, refer to "Network ports" in the Administrator Guide.
  4. Make sure your DNS settings are correct. To do that, go to the Settings > Cluster DNS screen. Check that the cluster DNS is configured properly and points to a DNS that can resolve external host names.

The figure below shows the sample network infrastructure we are going to build for our evaluation scenario:

If you only have one network, do not connect one node to it via two interfaces. In case of one network, work with one public interface of the node.