Documentation

Skip to end of metadata
Go to start of metadata

External Networks belong to a single enterprise and they may have public or private IP addresses. Virtual machines in more than one virtual datacenter can use IP addresses on the same external network. You can make an external network the default for an enterprise's datacenters or virtual datacenters, thus streamlining the configuration of access to networks outside the virtual datacenter.

Create External Networks in Abiquo

External networks can use public or private IP addresses and they can be shared across one or more virtual datacenters. 

Before you begin:

  • Before you can create an external network in Abiquo, your Network Administrator must create this network in your network architecture
    • Abiquo 3.8.3+: the Abiquo NSX integration now supports external networks
  • Obtain the network address, network mask and tag, and other network details from your Network Administrator

To create an external network:

  1. Open Infrastructure view and select the datacenter or public cloud region 
  2. On the Networks tab, select the External page
  3. Click the add button  at the top of the Networks list and complete the form. 

Tag Availability Info

The Check button will check if the tag is available for all the racks of the Abiquo datacenter. An external network can be used with VMs on servers on any rack and should be tagged in the same way on all racks. For tags in use by other networks, Abiquo will display a yellow warning signal but you can still use them. For tags that are invalid because they are not assigned in Abiquo for use on the rack, Abiquo will display a red error signal and you will not be able to use them.

External IPv4 Networks

Field

Value

Name

The name of the external or unmanaged VLAN. The name can contain up to 128 characters

IPv6Mark this checkbox to create an IPv6 network. See Create External IPv6 Networks

Net. Address

The network address of the VLAN as created by the Network Administrator

Netmask (CIDR)

The network mask with an integer value between 16 and 30 inclusive

Gateway

The gateway of the network. Make sure the gateway is an IP address inside the range defined by the network address and the network mask

Tag*

Enter the tag supplied by the Network Administrator and check its availability

Network service typeChoose the Network Service Type, which represents a Network Interface on the hypervisors. Configure Network Service Types when you configure physical machines.

Unmanaged

Mark this checkbox if you will manage IP addresses outside Abiquo

Enterprise**

Required field. You must click browse and choose an enterprise that the external or unmanaged VLAN will be assigned to.

DeviceOptional: to manage IP addresses with a network virtualization system, select the Abiquo device that defines this system. You must have pre-created this external network directly in this virtualization system. The IP addresses of this network will be managed by the selected network virtualization system and may be assigned using its DHCP service. You may need to ensure that virtual machines deployed on this network allow traffic to the appropriate ports for a DHCP connection.

Primary DNS

Primary DNS

Secondary DNS

Secondary DNS

DNS suffix

The default DNS suffix

Static Routes

Click "Manage" to add and modify static routes for external networks only. See Configuring Static Routes Using DHCP.

When you create an external IPv4 network, Abiquo only precreates an IP addresss for the gateway.

Configure Static Routes Using DHCP for External Networks

Abiquo allows you to configure Static Routes in the Abiquo DHCP Server when you create or edit an Abiquo network. Static Routes allow you to configure a path to a second network apart from the default route. For example, you can use them to allow access to both the corporate network and the internet. Virtual machines will obtain their static routes from the DHCP server when they are deployed and started up. Changes to static routes will be received by the virtual machines when they reconnect to the DCHP server; for example, after they are restarted.

To add a Static Route, click the Manage button. The Static Routes dialog box will open. For each static route, enter its details. For example, to add a static route to the network/netmask 1.1.1.0/24 via the gateway/next hop 192.168.0.250, you would enter the details in the table below.

Field

Description

Example

Netmask

Destination network mask

255.255.255.0

Network ID

Destination network or host

1.1.1.0

Gateway IP

Next hop (on your network)

10.10.10.100

Abiquo will add the static routes to the DHCP server leases as option 249 for the Microsoft Classless Static Route Option and option 121 for the Classless Static Route Option in RFC3442.

For information on how to set up the DHCP server and clients (CentOS or Windows), see DHCP RFC3442 Classless Static Route Configuration.

To delete a static route, click the delete button ("X") beside the static route details.

External IPv6 Networks

Field

Value

Name

The name of the external or unmanaged VLAN. The name can contain up to 128 characters

IPv6Mark this checkbox to create an IPv6 network
StrictIf Strict is selected , Abiquo will automatically generate EUI64 IP addresses and you will not be able to manually generate them. To be able to manually generate IP addresses, do not select Strict.

Netmask

The network mask of 64, 56 or 48

Address

The network address of the VLAN

Tag*

Choose the VLAN tag to use for this VLAN and check its availability

Network service typeChoose the Network Service Type, which represents a Network Interface on the hypervisors. Configure Network Service Types when you configure physical machines.

Unmanaged

Mark this checkbox if you will manage IP addresses outside Abiquo

Enterprise**

Required field. You must click browse and choose an enterprise that the external or unmanaged VLAN will be assigned to.

Primary DNS

Primary DNS

Secondary DNS

Secondary DNS

DNS suffix

The default DNS suffix

Static routesStatic routes are not available for Unmanaged networks

Abiquo does not pre-create IP addressses for IPv6 networks.

Add IP Addresses

To add IPv6 addresses to your network, click the Add an IPv6 address link in the top right-hand corner of the Networks page.

The IP addresses you create will be automatically made available to users of the enterprise that owns the network. If you do not wish to make all the IP addresses available, click the Available IPs link.

Add IP Addresses

When you request the creation of a range of IP addresses, enter a starting address that does not already exist in the network.

The platform will try to create the number of IPs you requested, starting with the next available IP addresses. See #Examples of Adding IP Addresses

  • It is the administrator's responsibility to create IPs in network ranges with sufficient free space
  • If the platform cannot create IP addresses in the range, it will display an error message and create an error event with details of the addresses that could not be created

 

Add IPv4 Addresses

Request a a sequence of IP addresses in IPv4 networks. Enter the number of IPs to create and the starting IP address.

If the starting address has already been created, the creation will fail with an error.

 

Add IPv6 Addresses on Strict Networks

 

Add IPv6 Addresses on Non-Strict Networks

Abiquo recommends that you create an automatic IP address. Select the Automatic IP creation checkbox, enter the number of IPs to create, and click Accept.   

Or for non-strict networks, you can unselect the Automatic IP creation checkbox and enter an IP address manually.

 

Examples of Adding IP Addresses

For example, if you have the existing IPs as shown in this table:

IP Addresses
30.30.30.1
30.30.30.2
30.30.30.15

If you then try to add 2 IPs from IP address: 30.30.30.20, the platform will create the IPs as follows with the new IP addresses shown in green.

IP Addresses
30.30.30.1
30.30.30.2
30.30.30.15
30.30.30.20
30.30.30.21

It will be the administrator's responsibility to go back and create the earlier addresses in the free ranges, from 30.30.30.3 to 30.30.30.14, for example.

If an IP already exists in the range you are trying to create, Abiquo will try to create the next possible IP.

IP Addresses
30.30.30.30
30.30.30.33
30.30.30.34

If you request 3 new IPs from 30.30.30.31, the new IPs created should be as follows:

IP Addresses
30.30.30.30
30.30.30.31
30.30.30.32
30.30.30.33
30.30.30.34
30.30.30.35

 

 

Make IP addresses Available

After you create IP addresses, they will automatically be available to all users.  Abiquo recommends that you should make unavailable any IP addresses that will be used for administration purposes, for example, the IPv4 gateway network address.

To edit the available IP addresses

  1. Select the network, then click the Available IPs link in the top right-hand corner of the external IPs page. The Edit network popup for Available IPs will open
    • By default, all IPs will be in the Available column
  2. To move an IP, drag and drop it or select it and click a single arrow button. 
  3. To move all IPs to the other column, use the double arrow buttons to move IPs in the direction indicated by the arrows

External IPs in use will not be shown

You cannot change an external IP address that is in use on a virtual machine to make it Not Available

Make an external network the default

You can make an external network the default for:

  • An enterprise in a datacenter 
  • A virtual datacenter

To make the external network the default for an enterprise's datacenter:

  1. Go to Users view and edit the enterprise
  2. Select the Datacenters tab and edit an allowed datacenter
  3. On the Default VLAN tab, select the external network
    • This default will override the platform default network

To assign an external network as the default for a virtual datacenter:

  1. Open the virtual datacenter at the network tab
  2. Select the virtual datacenter's external network and click the edit button
  3. Select the Default network checkbox 
    • You cannot edit any other fields
    • This default will override the platform default network and the network set for the enterprise in the datacenter

Edit Network Information

To edit the Network Information for an external network, select it in the Networks list on the external page. Then click the edit button  above Networks list and select 'Edit' from the menu. 

You can modify the following fields if there are no virtual machines deployed in the network.

FieldDescription

Name

The name of the external or unmanaged VLAN

GatewayIPv4 only. The gateway of the network. Make sure the gateway is an IP address inside the range defined by the network address and the network mask

Tag*

The VLAN tag to use for this VLAN. First Check its availability

Network service typeThe Network Service Type, which represents a Network Interface on the hypervisors. Configure Network Service Types when you configure physical machines.
EnterpriseThe tenant that the network will belong to
DeviceThe device pointing to the network virtualization system to use for SDN

You can modify these fields at any time but the changes will only apply to virtual machines deployed after the changes are made.

FieldDescription

Primary DNS

The address of the primary DNS server for your network

Secondary DNSThe address of the secondary DNS server for your network

DNS suffix

The DNS suffix for your network

Delete external networks

Before you begin:

  1. Check that there are no virtual machines using IP addresses from this network

To delete an external network:

  1. Select it in the Networks list on the External page
  2. Click the delete button .

Restrictions on deleting networks

You cannot delete an external network if any of its IP addresses are in use on virtual machines.

View the IP List

On the right side of the screen, in the External IPs pane, you will see details of the IPs of the selected network. Click in the header of a column to sort by that column, use the Search button to filter the results by any field and navigate through the pages with the page scroll. The VLAN type is shown in the bottom right section of the VLAN details when you click on the VLAN name.

How to put an IP on a denylist

Occasionally a user may misuse a Public IP. If this happens, the DNS providers can block this IP. Abiquo also enables you to mark an IP to quarantine it. This prevents another enterprise from reserving this IP and attaching it to another VM. Just select the problem IP and mark the quarantine checkbox. Then click Yes to confirm. The following screenshot shows all external networks with the IP addresses sorted by the Quarantine column.