proxmox/flexiflow-debian-install

The template to use for configuring the NAT Add Bridge network.

This Param contains an Array of Strings that will define which task or tasks to dynamically add to the flexiflow-debian-install workflow on first boot. One or more tasks may be specified; and each task defined by this Param will be executed in the order found in the list.

This is generally used to specify the network configuration in the base Hypervisor, before creating any target DRP or Machine VMs.

For example, the following tasks set network configuration up:

  • network-simple-bridge-with-external-addressing

To create a simple bridge, with an IP address assigned block to allocate to the "external" interfaces of the DRP Endpoint Virtual Machines. IP addressing for the DRP Endpoints must be provided by the external network (external to the Hypervisor), either via DHCP, or static assignment. The DRP endpoints are essentially bridged to the Hypervisors physical external network.

Another example:

  • network-convert-interface-to-bridge

The above migrates the IP Address on the base interface on the Proxmox Hypervisor to a bridge (identified by the Param proxmox/lab-network-external-interface), the DRP Endpoint VMs external interface are then attached to this bridge.

Another example:

  • network-simple-single-bridge-with-nat

The above assumes that (typically) vmbr0 carries the hypervisors primary IP address, and that Machines will be directly attached to this bridge. The machines will use a secondary network space (defined by proxmox/network-external-subnet), but will be setup to NAT to the Bridges IP address for outbound internet connectivity.

No inbound NAT mappings are setup in this mode. If inbound IP connectivity to the VMs is required, then external routers need to route the proxmox/network-external-subnet to the Hypervisors IP, or additional NAT inbound mappings need to be arranged.

  • network-add-nat-bridge

The above creates an additional bridge to abstract the connection from the Hypervisors main NIC and Bridge, connecting the DPR Endpoints to this bridge. NAT Masquerading or similar constructs must be used to provide outbound network connectivity to the DRP Endpoints.

Warning

The network-add-nat-bridge current NAT Masquerading mechanisms do not appear to correctly work reliably. This method requires additional testing and development.