The network design has changed to allow for a more fine-grained placement of VM’s and to incorporate a better segmented level of security. VM’s can now be placed into firewalled VLAN’s from vCenter itself.
As each node has three physical NIC’s, I have connected them to three separate switches.
1. physical: Management
This is the server VLAN where the nodes and all my other server-like hosts are connected. From within this VLAN, the nodes are managed.
The cabling is blue.
172.16.234.x /26 (62 hosts – subnet 192)
2. physical: TTG Storage Network (the 12-network)
I’ve separated the storage network and it runs on a seperate Netgear ProSafe switch. Each cluster node has an address in this range to be able to boot from NAS, and to provide access to the cluster shared storage. Connectivity takes place over iSCSI and authentication is Mutual CHAP.
The cabling is yellow.
172.16.12.x /28 (14 hosts – subnet 240)
3. Virtual: VM Front-end
This network connects physically to the MER switch however the VM’s can be virtually placed in several different VLAN’s depending on their role/use. Placement ranges from fully public on the Internet to DMZ and the internal Client and Server networks.
The cabling is green.
172.16.23x.x /26 (62 hosts per VLAN – subnet 192)
More information on the VLAN’s and available networks in the network configuration post later.