vic-machine create should verify that no other VCH is already using the bridge network

vmware / vic

vSphere Integrated Containers Engine is a container runtime for vSphere.

http://vmware.github.io/vic

Other

639 stars 173 forks source link

vic-machine create should verify that no other VCH is already using the bridge network #2409

Open mhagen-vmware opened 8 years ago

mhagen-vmware commented 8 years ago

We have requirement that each VCH has a unique bridge network, we should enforce that with vic-machine create

hickeng commented 5 years ago

This is a misconfiguration I have seen live at a customer site, and has also burned us with the selenium nimbus tests. Options are:

scan all VCHs in the vCenter and check what their bridge network configuration is
check whether there is an ARP response from a different VM for the bridge IP address via the bridge NIC both before and after assigning the IP.

Both would be best, but scanning VC with a large number of VCHs may be prohibitive from a performance perspective.

renmaosheng commented 5 years ago

it is very hard to solve in an VLAN network environment, we need to make sure not using the same bridge network port group, also need to make sure different bridge network port group not located in the same VLAN. so currently for the selenium tests, we are moving them to nsx-t environment, which is vxlan based to avoid the conflict. @yuyangbj @luwang-vmware for more comments.