Private VLANs
Jul 24, 2007What's the benefits of these private VLANs I've seen advertised around? Anyone have a good understanding?
I've read a few things about them but have yet to fully grasp the concept.
What's the benefits of these private VLANs I've seen advertised around? Anyone have a good understanding?
I've read a few things about them but have yet to fully grasp the concept.
I am currently with the planet and am happy with them, however as part of a new venture I need to gather a list of hosts as well as the planet that will be able to cater to the ventures needs and go to tender with the requirements.
ThePlanet offer something called a virtual rack. This is cheaper than renting a dedicated rack, allows for Gb networking but doesnt not allow for a SAN. Do other providers offer something similar? The cost of putting a machine on the virtual rack is not that much more expensive than just renting the machine. I guess there isn't too much to these set-ups to be fair.
If not, then we are looking for dedicated racks, with the ability to host a SAN at some point, but starting off with say 3 servers (2 web servers, 1 storage server with raid5 6Tb of hdd). These servers will be dealing with network cameras although I don't think that many will be streaming at once but the network capacity does need to be there.
Who's door should I be knocking on to find out some prices?
One final thing, should I bother looking for co-lo providers as well? We are in the Uk but not precious about our host being in the same country at all (it would be nice but uk prices are ££). Really, all we would be able to do with co-lo is buy the hardware outright to save price as we are not interested in looking after the hardware.
how to add different IPs in different VLANs
My customer requests different IPs in different class C, that are belong to different VLANs in the switch. Let's say
- they have 1.1.1.10 already on their server with gateway value is 1.1.1.1
- now they want to have 1.1.2.10 too.
I have no trouble to provide them a new IP, but wonder how to setup on server now? Different range will use different gateways.
Is there a VPS provider that will sell me a VM , and put it up somewhere, and can make me another VM in the future, on the same VLAN as the original VM ?
For example, pretend VM #1 has a NIC at 10.0.0.100
in the future, I want another VM with a nic at 10.0.0.101
I was looking at Go-Grid , but I'm not sure how their pricing works.
I need a basic L3 switch for maybe 25 mbps that will do hopefully up to 50 VLANs and which will not require me to hire someone to configure it.
As much as I like Cisco, that rules them out.
The reason I'd like a Layer 3 switch is so that I can run my backups and inter-server transfers without adding to my bandwidth bill. Also, VLANS are a critical requirement as i have a lot of customers with root on their managed servers.
So i am looking at HP [gasp] switches. How "easy" is the web-based configuration widget? [I'm an advanced unix admin but networking is a mystery to me.]
This is a starter switch and once i have a full cab of servers I'll be able to spend $7K on a pair of 3560s and hire someone to configure them for me ... but until then what can i get to meet my requirements?
My switch 3COM 4500 (Layer3) ;
I want port 1 of switch work in all VLANS!
I created vlan2, vlan3 and add this trunk/hybrid port in all vlans and ping no work por port1.
I orded today new switch 3COM (48 port + 2giga + 2 fiber).
In WebPanel i created:
vlan2: port1 - port 20
vlan3: port21 - port40
I want configure switch for port 41-48 access all ports;
What solution for this cenary?
I'm trying to implement VLANs on my network and can't get connectivity to host servers. Here's how the network is configured. Pardon the bad ascii diagram.
In this example my upstream is providing two subnets:
111.111.111.16/28 (I'm using an IP from this subnet to manage the 3550)
222.222.222.16/29
I am attempting subdivide the /29 into two /30's in order to place a server into it's own /30 subnet & VLAN ............
I'm not sure exactly how to phrase the question. But, I'm researching how to PXE boot a server without having a DHCP/PXE server in each vlan.
Scenario: Datacenter with dozens of servers. 1 VLAN per server. Cisco switches and routers. Each server has a serial console available for remote management (OS and BIOS are configured for serial console). If an admin wants to re-install OS, they should be able to reboot the server and tell the BIOS to initiate a PXE boot request. A central install server is available to provide the DHCP and PXE boot images.
Has anyone tried this? I have been reading about the 'ip helper-address' for Cisco to relay DHCP requests. Interested in hearing about real-world setups. Or is there a better way to accomplish remote OS installs?
I have two servers both in a same vlan. Both may access Internet and be acceessed from Internet I setup db server and web server internal IP each as follows:
step 1: on web server:
vi /etc/sysconfig/network-scripts/ifcfg-eth0:0
add following:
DEVICE=eth0:0
BOOTPROTO=static
BROADCAST=192.168.1.255
IPADDR=192.168.1.5
NETMASK=255.255.255.248
NETWORK=192.168.1.0/24
ONBOOT=yes
TYPE=Ethernet
save and /etc/init.d/network restart
step 2: on db server:
vi /etc/sysconfig/network-scripts/ifcfg-eth0:0
add following:
DEVICE=eth0:0
BOOTPROTO=static
BROADCAST=192.168.1.255
IPADDR=192.168.1.10
NETMASK=255.255.255.248
NETWORK=192.168.1.0/24
ONBOOT=yes
TYPE=Ethernet
save and /etc/init.d/network restart
I used ifconfig to check both status, both of them are up. both of them may ping google, but when I try to ping their each other through internal IP, nothing returns.
I used command tracert to follow, found all packages were sent to Internet rather than an internal IP.
My host tells me to do it by making NAT, I have no idea on it. Anyone may help me out on how to do with NAT?
we are looking for a provider that provides public ip vlans' with dedicated server purchases,
so far,,
we have found few companies that offer this at no extra charge or minimal extra charge
1) softlayer (best choice)
2) singlehop
3) nocster/burst.net (not a good provider for business hosting / not reliable / no phone support)
does anyone know of any other dedicated server providers that offer public ip vlans for no extra charge or minimal extra charge?
I'm looking for a solution that I can place a firewall between 2 vlans on
a BigIron router with L3 enabled.
For this moment there is one big vlan2 with a ip-route 0.0.0.0 0.0.0.0
123.123.123.123 and a router-interface ve2 with the IP of the router, the
address I use as gateway on the machines behind it.
The WAN port has the IP address to communicate with to the GW of the
carrier-router (123.123.123.122)
Because I want to let the BigIron the routing I was thinking of 2 vlans,
one for the lan-vlan and one for the wan-vlan, but this will be a problem
because I only have one IP-block what I can use.
So the sitiuation must be as follow on the BigIron:
WAN => vlan2 => firewall => vlan3(lan)
Because of the fact that the firewall will be transparent, this should be
no problem to place it between the vlans. The actual problem is how to
manage this. In simple words, I should be able to replace the firewall
with a cross-cable and it should still work.
Cisco for an example has a SVI solution for this, but I can't find such
thing for a Foundry router.
Having a slight problem working with one of our Extreme Summit 48 (ugh) switches - I've figured out most of the basics, but I can't seem to find any way to add a secondary IP address to a VLAN! This, I would have thought, would be a pretty basic feature to have. Typing "config vlan [vlanname] ipaddress 1.2.3.4/24" works for setting the primary IP, but I can't figure out how to add any more - and doing the command again just overwrites the first one.
So... does anyone have any tricks up their sleeve, or is this something that Extreme neglected to add to this model switch?
We offer colocation & dedicated servers as well as shared & reseller hosting services.
Our colocation customers and dedicated server customers are definitely on their own VLANs for obvious reasons.
Up until now, we have been using separate VLANS and ip allocations for each of the servers in our shared & reseller server fleet. I'm starting to question this policy for many reasons:
1) We directly manage all of the servers and it is very rare that any servers are compromised to the point where they can steal an IP address.
2) We are wasting IP addresses - network, broadcast and gateway addresses are required for each vlan. Additionally, if a server needs 1 more IP address, we need to add a whole new block.
If all of the servers are under our direct management, does it make sense for us to use any vlans at all? It seems that it only serves to complicate things, waste ips and add management overhead.
I've read that all ethernet switches in a MST Region need the same Name, Revision number, and list of member vlans for each Instance. So what happens when you need to change the range of VLANs in a MSTI ? Let's say that you need to add a range of vlans to an instance that spans 20 switches? How would you do that?
View 1 Replies View RelatedCan you make a recommendation for a switch-based L3 router which can
- hold a moderate number of routes (interface routes, a few hundred statics + default)
- OSPF and BGP
- MST
- 1024 layer-3 dot1q subinterfaces (or maybe VLAN interfaces)
with
+ traffic policing in and out per subinterface/vlan
+ VRRP/HSRP/NSRP
- IPv4 & IPv6 native
- 2x GigE ports
- Not tip-over under 1gbps DDoS towards a VLAN interface.
I've been using 3560Gs, but they seem to lack the output traffic policing. I'd prefer to have subinterfaces which don't run spanning-tree, versus Vlan Interfaces to a trunk interface which runs spanning-tree. These switches sit at the L3 boundary between two L2 networks.
Cost is a big factor; but I also must carry vendor licenses & support contract, if the vendor asserts that not doing so is illegal in US.
We are co-located at a datacenter and host web sites, and corporate email systems, as well as host dedicated servers for customers.
We currently have two /25 internet facing subnets from our provider. We have a Watchguard X5500e 8 port gigabit firewall that supports routing as well as VLANs. We also currently own QTY4 2848 HP Gigabit switches.
We currently have each switch connected in a loop with 2 gigabit ports trunked using static LCAP. The switches are connected as follows:
A > B
B > C
C > D
D > A
Rapid STP is turned on. One thing is - is this the ideal trunking scheme?
The more important question is this. We would like to separate ips from each other using VLANing.
IE: we might have a client with 5 different IPs in one or more subnets and we would like to group them together.
We ideally do not want to break up the subnets into smaller ones as it makes it hard to reconfigure and it wastes ip addresses, as we do not have that many.
i try to install a vpn server on my vps ...
View 6 Replies View RelatedI have lost my 'rsa ssl private key' (it was accidentally deleted), but I have the certificate file which was generated with this private key. So, my question is is there a way to regenerate/recreate the ssl private key file from the cert or csr file?
View 1 Replies View RelatedI am in the process of building a database-driven website. The main purpose of the site is really for me to improve my PHP and MySQL, but I will be writing a forum and offer blogs to users, as well as the main point of the site, which is to allow users to upload text-based artwork (ie. stories, poems, etc). I don't expect the site to use up that much bandwidth (assuming my code is clean) or space, as I don't expect it to grow that large. Like I said, it's mainly a learning exercise.
Anyway, the point is, I am looking for a host. I am currently with DreamHost but am having a lot of trouble creating a custom php.ini (because I know absolutely no PERL and am just starting to learn shell commands). The main host I'm considering is MediaLayer. They advertise on their website that you have a private cgi-bin directory, but it was unclear whether this directory would have a private php.ini. This is pretty important for me as I don't have the skills (yet) to do anything too clever like what is required at DreamHost to change it.
Is anyone here a current or former MediaLayer customer? Is the php.ini in the cgi-bin? I know that DownTownHost have private cgi-bins, but the php-ini is not there.
I had a look on the forums but, although I found mostly good general feedback about MediaLayer, I couldn't find anything that specifically addressed the creation of a custom php.ini file.
how to have your own private name server indepedent of your hosting.
are there any private dns provider or hosts. fast and reliable if yes can whmcs/whm will be able to add records automatically
im running cpanel and i cant figure out how to get private dns setup...
example:
my client wants ns1/ns2.their.domain but i cant figure out the correct way to get it to work.
How many of you out there really use or need private network?
if a private network really justifies the extra cost of switches and motherboards with dual-nics.
Our server count with The Planet only seems to be increasing as of late and I'm now starting to drive myself nuts with bandwidth counts, costs, etc.
My main concern at the moment is our total bandwidth. While we might have a server with a 2500GB limit only use 50% we might have a 1500GB limit use 200%. I understand that any overages are our own fault, etc but there must be a way for us to combine all bandwidth across all servers!
Is it possible for The Planet or any of the other big boys to provide private racks with pooled bandwidth without going colo?
I have very specific needs for a VPS provider that can host a reverse engineered game server (NOT WoW) I want to run. I will not be using BitTorrent or IRC or the like, but I want to run an emulator that may or may not fall into DMCA reverse engineering issues (the legal implications just aren't all together clear with the DMCA). I just don't want to have to deal with getting unplugged constantly over something that is not illegal. I won't be hosting any copyrighted material or the like.
Here are my needs:
Windows 2003 Based VPS
384-512MB RAM upgradable if needed
10GB Disk space (Don't really need even that much)
150GB+ per month transfer
a good connection with semi-low latency (doesn't need to be as low as a counter-striker server or the like but needs to be solid and fast)
A control panel of some type is fine, but I only really need Remote Desktop access
Other than that I am pretty open. Country of origin doesn't matter too much and I would only like the company to be somewhat reliable. I want as cheap as possible of course, but I would be willing to spend ~$50 USD per month.
I’m summarizing below what we need.VPS with dedicated USA ip.
Private & secured proxy installed. Need to do SSH SOCKS tunnelling (Used for online communication/surfing by our helpdesk staff)
Ability to host 2 or 3 low traffic websites. (LAMP environment)
Our Budget: $10 to $15 per month. Paid thru Moneybookers.com on monthly basis.
Do u think any reliable VPS provider can offer the above? What disk space, bandwidth, control-panels and other features we should expect in the above budget?
I have been racking my brain trying to set up some private nameservers but with no luck.
The domain is hosted with godaddy I went through and added them via their domain control panel.
I have webmin as my control panel and my question is how do I set them up on my side?
We are looking of going with a VPS hosting for a secure dealer site. We won't need massive amounts of space, but bandwidth is more a concern, as we may need to serve video files for demos and such.
These are the 4 companies we are considering going with:
EV1Servers
ServerPowered
SteadFastNnetworks
PowerVPS
Has anybody here used any of these hosts? What have been your experiences with them?
I`m looking for VPS i have searck offer section but i wont to hear community suggestions too.
I need:
min 25GB max 30GB Space
min 600GB max 700GB traffic
Min 768mb max 1024mb dedicated ram
min 1536mb max 2048 bustable ram
Cpanel/WHM
Full management
I set max limit's because i do not wont to pay for something i will not use
rsync via private network
i need to take backup of specific account via private network
dc given the private network for me
69.xx.xx.01=10.xx.xx.01
69.xx.xx.xx.02=10.xx.xx.02
now i need to configure rsync via private network
both haveing root acess
but i like to give ftp for the client,who need to acess there file via ftp
please sugges the command for this work also cron for setup