From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from firstgate.proxmox.com (firstgate.proxmox.com [212.224.123.68]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by lists.proxmox.com (Postfix) with ESMTPS id ADB546038E for ; Thu, 24 Sep 2020 10:41:34 +0200 (CEST) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id 4531DE8BA for ; Thu, 24 Sep 2020 10:41:12 +0200 (CEST) Received: from kvmformation1.odiso.net (globalOdiso.M6Lille.odiso.net [89.248.211.242]) by firstgate.proxmox.com (Proxmox) with ESMTP id 52D99E7A3 for ; Thu, 24 Sep 2020 10:41:01 +0200 (CEST) Received: by kvmformation1.odiso.net (Postfix, from userid 0) id D139DE89BD; Thu, 24 Sep 2020 10:40:54 +0200 (CEST) From: Alexandre Derumier To: pve-devel@lists.proxmox.com Date: Thu, 24 Sep 2020 10:40:29 +0200 Message-Id: <20200924084054.611548-1-aderumier@odiso.com> X-Mailer: git-send-email 2.20.1 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-SPAM-LEVEL: Spam detection results: 1 AWL -0.598 Adjusted score from AWL reputation of From: address HEADER_FROM_DIFFERENT_DOMAINS 0.249 From and EnvelopeFrom 2nd level mail domains are different KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment KAM_LAZY_DOMAIN_SECURITY 1 Sending domain does not have any anti-forgery methods KHOP_HELO_FCRDNS 0.399 Relay HELO differs from its IP's reverse DNS SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_NONE 0.001 SPF: sender does not publish an SPF Record URIBL_BLOCKED 0.001 ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [vlanplugin.pm, generateconfig.pl, vnets.pm, powerdnsplugin.pm, dns.pm, vxlanplugin.pm, subnets.pm, plugin.pm, ipams.pm, vnetplugin.pm, simpleplugin.pm, subnetplugin.pm, pveplugin.pm, qinqplugin.pm, evpnplugin.pm] Subject: [pve-devel] [PATCH v8 pve-network 00/25] sdn: add subnets management X-BeenThere: pve-devel@lists.proxmox.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Proxmox VE development discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Sep 2020 08:41:34 -0000 This patch series add basic subnets managements. Subnets will be use for multiple things: - defined gateway ip on vnets - enable snat on a subnet - add cloudnit|dhcp default network configs (gateway, static routes, nameservers,searchdomain,....) - add ipam management. (ip registrations to external ipam, for vm|ct ip management) - add dns registration. (reverse dns for subnet, and searchdomain regisration in external dns like powerdns ) - ... Already implemented: - gateway option is implemented: It's currently replace ip management on vnets for layer3 plugins, through the option "gateway". If the option gateway is defined, for layer3 plugins (evpn && simple), the ip will be used for the vnet. A vnet can have multiple subnets, with multiples ipv4/ipv6. - ipam - dns registration Changelog v2: - add ipams plugins. Currently netbox && phpipam. - the subnet && the subnet gateway are registered to ipam - add/del/find_next_free ip are implemented, so it should be easy to use them in qemu && lxc config. Changelog v3: - add an internal ipam plugin Changelog v4: - fix pveipam plugin find_free_ip - detect ipv4/ipv6 in find_free_ip Changelog v5: - add vnets add_ip,del_ip,... should be ok for use in lxc/qemuserver Changelog v6: - add dns plugins - internal ipam fixes - rework vnet-subnet association - fixes && cleanup Changelog v7: - add snat to simple|evpn plugin - cleanup subnet options - fix reversedns Changelog v8: - move subnet api to /sdn/vnet//subnet - make ipam non optionnal && use pve ipam as default - don't allow subnets on vlanaware vnet - fixes && cleanup Alexandre Derumier (25): add subnet plugin vnets: add subnets add subnets verifications hooks zones: simple|evpn: add gateway ip from subnets to vnet zone: add vnet_update_hook vnets: subnets: use cidr subnet: fix on_delete_hook api2: subnet create: convert cidr to subnetid api2: increase version on apply/reload only add ipams plugins add pve internal ipam plugin vnets: find_free_ip : add ipversion detection vnets: add add_ip vnets: add del_ip + rework add_ip/find_free_ip add dns plugin Fix vnet gateway for routed setup + /32 pointopoint subnet ipam : pveplugin : fix find_next_free_ip add vnet to subnets && remove subnetlist from vnet zones: evpn|simple: add snat iptables rules subnet: disable route option for now and add dns domain format dns: fix reverse dns subnets: move api to /sdn/vnet//subnets && make vnet option not optionnal zones: evpn : fix raise exception subnet: make ipam not optionnal and use pve ipam as default don't allow subnets on vlanware vnet PVE/API2/Network/SDN.pm | 17 ++ PVE/API2/Network/SDN/Controllers.pm | 6 - PVE/API2/Network/SDN/Dns.pm | 242 +++++++++++++++++++++++ PVE/API2/Network/SDN/Ipams.pm | 242 +++++++++++++++++++++++ PVE/API2/Network/SDN/Makefile | 2 +- PVE/API2/Network/SDN/Subnets.pm | 250 ++++++++++++++++++++++++ PVE/API2/Network/SDN/Vnets.pm | 22 ++- PVE/API2/Network/SDN/Zones.pm | 6 - PVE/Network/SDN/Dns.pm | 57 ++++++ PVE/Network/SDN/Dns/Makefile | 8 + PVE/Network/SDN/Dns/Plugin.pm | 117 +++++++++++ PVE/Network/SDN/Dns/PowerdnsPlugin.pm | 201 +++++++++++++++++++ PVE/Network/SDN/Ipams.pm | 70 +++++++ PVE/Network/SDN/Ipams/Makefile | 8 + PVE/Network/SDN/Ipams/NetboxPlugin.pm | 169 ++++++++++++++++ PVE/Network/SDN/Ipams/PVEPlugin.pm | 166 ++++++++++++++++ PVE/Network/SDN/Ipams/PhpIpamPlugin.pm | 189 ++++++++++++++++++ PVE/Network/SDN/Ipams/Plugin.pm | 127 ++++++++++++ PVE/Network/SDN/Makefile | 4 +- PVE/Network/SDN/SubnetPlugin.pm | 182 +++++++++++++++++ PVE/Network/SDN/Subnets.pm | 257 +++++++++++++++++++++++++ PVE/Network/SDN/VnetPlugin.pm | 24 +-- PVE/Network/SDN/Vnets.pm | 65 +++++++ PVE/Network/SDN/Zones.pm | 4 +- PVE/Network/SDN/Zones/EvpnPlugin.pm | 55 +++++- PVE/Network/SDN/Zones/Plugin.pm | 7 +- PVE/Network/SDN/Zones/QinQPlugin.pm | 10 +- PVE/Network/SDN/Zones/SimplePlugin.pm | 46 ++++- PVE/Network/SDN/Zones/VlanPlugin.pm | 10 +- PVE/Network/SDN/Zones/VxlanPlugin.pm | 16 +- debian/control | 3 + test/generateconfig.pl | 3 +- 32 files changed, 2510 insertions(+), 75 deletions(-) create mode 100644 PVE/API2/Network/SDN/Dns.pm create mode 100644 PVE/API2/Network/SDN/Ipams.pm create mode 100644 PVE/API2/Network/SDN/Subnets.pm create mode 100644 PVE/Network/SDN/Dns.pm create mode 100644 PVE/Network/SDN/Dns/Makefile create mode 100644 PVE/Network/SDN/Dns/Plugin.pm create mode 100644 PVE/Network/SDN/Dns/PowerdnsPlugin.pm create mode 100644 PVE/Network/SDN/Ipams.pm create mode 100644 PVE/Network/SDN/Ipams/Makefile create mode 100644 PVE/Network/SDN/Ipams/NetboxPlugin.pm create mode 100644 PVE/Network/SDN/Ipams/PVEPlugin.pm create mode 100644 PVE/Network/SDN/Ipams/PhpIpamPlugin.pm create mode 100644 PVE/Network/SDN/Ipams/Plugin.pm create mode 100644 PVE/Network/SDN/SubnetPlugin.pm create mode 100644 PVE/Network/SDN/Subnets.pm -- 2.20.1