From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from firstgate.proxmox.com (firstgate.proxmox.com [212.224.123.68]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by lists.proxmox.com (Postfix) with ESMTPS id AE402619EB for ; Mon, 28 Sep 2020 10:44:17 +0200 (CEST) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id 7C1E42B4FF for ; Mon, 28 Sep 2020 10:43:47 +0200 (CEST) Received: from kvmformation1.odiso.net (globalOdiso.M6Lille.odiso.net [89.248.211.242]) by firstgate.proxmox.com (Proxmox) with ESMTP id C6CD42B402 for ; Mon, 28 Sep 2020 10:43:37 +0200 (CEST) Received: by kvmformation1.odiso.net (Postfix, from userid 0) id 9401CDB700; Mon, 28 Sep 2020 10:43:37 +0200 (CEST) From: Alexandre Derumier To: pve-devel@lists.proxmox.com Date: Mon, 28 Sep 2020 10:43:10 +0200 Message-Id: <20200928084336.3487196-1-aderumier@odiso.com> X-Mailer: git-send-email 2.20.1 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-SPAM-LEVEL: Spam detection results: 1 AWL -0.290 Adjusted score from AWL reputation of From: address HEADER_FROM_DIFFERENT_DOMAINS 0.078 From and EnvelopeFrom 2nd level mail domains are different KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment KAM_LAZY_DOMAIN_SECURITY 1 Sending domain does not have any anti-forgery methods KHOP_HELO_FCRDNS 0.399 Relay HELO differs from its IP's reverse DNS SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_NONE 0.001 SPF: sender does not publish an SPF Record Subject: [pve-devel] [PATCH v9 pve-network 00/26] add subnet plugin X-BeenThere: pve-devel@lists.proxmox.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Proxmox VE development discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 28 Sep 2020 08:44:17 -0000 This patch series add basic subnets managements. Subnets will be use for multiple things: - defined gateway ip on vnets - enable snat on a subnet - add cloudnit|dhcp default network configs (gateway, static routes, nameservers,searchdomain,....) - add ipam management. (ip registrations to external ipam, for vm|ct ip management) - add dns registration. (reverse dns for subnet, and searchdomain regisration in external dns like powerdns ) - ... Already implemented: - gateway option is implemented: It's currently replace ip management on vnets for layer3 plugins, through the option "gateway". If the option gateway is defined, for layer3 plugins (evpn && simple), the ip will be used for the vnet. A vnet can have multiple subnets, with multiples ipv4/ipv6. - ipam - dns registration Changelog v2: - add ipams plugins. Currently netbox && phpipam. - the subnet && the subnet gateway are registered to ipam - add/del/find_next_free ip are implemented, so it should be easy to use them in qemu && lxc config. Changelog v3: - add an internal ipam plugin Changelog v4: - fix pveipam plugin find_free_ip - detect ipv4/ipv6 in find_free_ip Changelog v5: - add vnets add_ip,del_ip,... should be ok for use in lxc/qemuserver Changelog v6: - add dns plugins - internal ipam fixes - rework vnet-subnet association - fixes && cleanup Changelog v7: - add snat to simple|evpn plugin - cleanup subnet options - fix reversedns Changelog v8: - move subnet api to /sdn/vnet//subnet - make ipam non optionnal && use pve ipam as default - don't allow subnets on vlanaware vnet - fixes && cleanup Changelog v9: - write running config on commit in /etc/pve/sdn/.running-config and use it as source for config generation,status Alexandre Derumier (26): add subnet plugin vnets: add subnets add subnets verifications hooks zones: simple|evpn: add gateway ip from subnets to vnet zone: add vnet_update_hook vnets: subnets: use cidr subnet: fix on_delete_hook api2: subnet create: convert cidr to subnetid api2: increase version on apply/reload only add ipams plugins add pve internal ipam plugin vnets: find_free_ip : add ipversion detection vnets: add add_ip vnets: add del_ip + rework add_ip/find_free_ip add dns plugin Fix vnet gateway for routed setup + /32 pointopoint subnet ipam : pveplugin : fix find_next_free_ip add vnet to subnets && remove subnetlist from vnet zones: evpn|simple: add snat iptables rules subnet: disable route option for now and add dns domain format dns: fix reverse dns subnets: move api to /sdn/vnet//subnets && make vnet option not optionnal zones: evpn : fix raise exception subnet: make ipam not optionnal and use pve ipam as default don't allow subnets on vlanware vnet generate sdn/.running-config on apply PVE/API2/Network/SDN.pm | 17 ++ PVE/API2/Network/SDN/Controllers.pm | 6 - PVE/API2/Network/SDN/Dns.pm | 242 +++++++++++++++++++++++ PVE/API2/Network/SDN/Ipams.pm | 242 +++++++++++++++++++++++ PVE/API2/Network/SDN/Makefile | 2 +- PVE/API2/Network/SDN/Subnets.pm | 250 +++++++++++++++++++++++ PVE/API2/Network/SDN/Vnets.pm | 22 ++- PVE/API2/Network/SDN/Zones.pm | 6 - PVE/Network/SDN.pm | 57 ++++-- PVE/Network/SDN/Controllers.pm | 12 +- PVE/Network/SDN/Dns.pm | 57 ++++++ PVE/Network/SDN/Dns/Makefile | 8 + PVE/Network/SDN/Dns/Plugin.pm | 117 +++++++++++ PVE/Network/SDN/Dns/PowerdnsPlugin.pm | 201 +++++++++++++++++++ PVE/Network/SDN/Ipams.pm | 70 +++++++ PVE/Network/SDN/Ipams/Makefile | 8 + PVE/Network/SDN/Ipams/NetboxPlugin.pm | 169 ++++++++++++++++ PVE/Network/SDN/Ipams/PVEPlugin.pm | 166 ++++++++++++++++ PVE/Network/SDN/Ipams/PhpIpamPlugin.pm | 189 ++++++++++++++++++ PVE/Network/SDN/Ipams/Plugin.pm | 127 ++++++++++++ PVE/Network/SDN/Makefile | 4 +- PVE/Network/SDN/SubnetPlugin.pm | 182 +++++++++++++++++ PVE/Network/SDN/Subnets.pm | 264 +++++++++++++++++++++++++ PVE/Network/SDN/VnetPlugin.pm | 24 +-- PVE/Network/SDN/Vnets.pm | 77 +++++++- PVE/Network/SDN/Zones.pm | 27 +-- PVE/Network/SDN/Zones/EvpnPlugin.pm | 55 +++++- PVE/Network/SDN/Zones/Plugin.pm | 7 +- PVE/Network/SDN/Zones/QinQPlugin.pm | 10 +- PVE/Network/SDN/Zones/SimplePlugin.pm | 46 ++++- PVE/Network/SDN/Zones/VlanPlugin.pm | 10 +- PVE/Network/SDN/Zones/VxlanPlugin.pm | 16 +- debian/control | 3 + test/generateconfig.pl | 5 +- 34 files changed, 2591 insertions(+), 107 deletions(-) create mode 100644 PVE/API2/Network/SDN/Dns.pm create mode 100644 PVE/API2/Network/SDN/Ipams.pm create mode 100644 PVE/API2/Network/SDN/Subnets.pm create mode 100644 PVE/Network/SDN/Dns.pm create mode 100644 PVE/Network/SDN/Dns/Makefile create mode 100644 PVE/Network/SDN/Dns/Plugin.pm create mode 100644 PVE/Network/SDN/Dns/PowerdnsPlugin.pm create mode 100644 PVE/Network/SDN/Ipams.pm create mode 100644 PVE/Network/SDN/Ipams/Makefile create mode 100644 PVE/Network/SDN/Ipams/NetboxPlugin.pm create mode 100644 PVE/Network/SDN/Ipams/PVEPlugin.pm create mode 100644 PVE/Network/SDN/Ipams/PhpIpamPlugin.pm create mode 100644 PVE/Network/SDN/Ipams/Plugin.pm create mode 100644 PVE/Network/SDN/SubnetPlugin.pm create mode 100644 PVE/Network/SDN/Subnets.pm -- 2.20.1