.. _Configuring Node Network:

Configuring Node Network
------------------------

As described in **Planning Network** in the *Virtuozzo Infrastructure Platform Installation Guide*, Virtuozzo Infrastructure Platform requires two networks: a) an internal network for node traffic, and b) a public network for managing the cluster via the management panel and SSH, exporting the storage space, and providing external access from VMs. You need to configure these networks on the **INFRASTRUCTURE** > **Traffic types** screen on the management panel before you create the cluster.

By default, you have two preconfigured networks: **Public** and **Private**. 

You can choose what traffic types will be allowed in each network. Adding a traffic type to a network means that specific ports will be opened on node NICs connected to this network and the necessary ``iptables`` rules will be set.

The following traffic types can be added to networks:

- **Exclusive traffic types**. Exclusivity means that such a traffic type can be added only to one network.

  - **Management**. Internal traffic between the nodes and the management panel. By default, this traffic type is assigned to the **Private** network.

  - **Storage**. Internal traffic of data chunks between the storage nodes. By default, this traffic type is assigned to the **Private** network.

  - **OSTOR private**. Internal traffic of the S3 and NFS storage access points. By default, this traffic type is assigned to the **Private** network.

  - **ABGW private**. Internal traffic of the Acronis Backup gateway storage access point. By default, this traffic type is assigned to the **Private** network.

  - **VM private**. Internal traffic between VMs. By default, this traffic type is assigned to the **Private** network.

  - **Compute management**. Internal traffic between compute nodes and the management panel. By default, this traffic type is assigned to the **Public** network.

- **Traffic types**. The traffic types listed below are not exclusive and can be added to multiple networks.

  - **S3 public**. External traffic of the S3 storage access point. By default, this traffic type is assigned to the **Public** network.

  - **iSCSI**. External traffic of the iSCSI storage access point. By default, this traffic type is assigned to the **Public** network.

  - **NFS**. External traffic of the NFS storage access point. By default, this traffic type is assigned to the **Public** network.

  - **ABGW public**. External traffic of the Acronis Backup gateway storage access point. By default, this traffic type is assigned to the **Public** network.

  - **Web CP**. External traffic of web-based user interface data. By default, this traffic type is assigned to the **Public** network.

  - **SSH**. A remote connection traffic to the node via SSH. By default, this traffic type is added to both **Public** and **Private** networks.

  - **VM external**. Traffic from VMs outgoing to public networks (e.g., the Internet). By default, this traffic type is assigned to the **Public** network.

- **Custom traffic types**. Traffic types created by users can be added to multiple networks.

.. image:: ../../../images/stor_image81_1.png
   :align: center
   :class: align-center

.. _Traffic Types Limitations:

Traffic Types Limitations
~~~~~~~~~~~~~~~~~~~~~~~~~

After the corresponding services are deployed, you cannot change the traffic types in networks used by these services. For example:

-  The management traffic type cannot be removed from one network and added to another after installing the management component.

-  The storage traffic type cannot be removed from one network and added to another after creating the storage cluster.

-  The compute traffic types cannot be removed from networks after creating the compute cluster. But you can add the **VM external** traffic type to new networks.

.. Add info about conflicting traffic types. For example: Compute traffic may significantly affect the storage cluster performance. Place these traffic types in separate networks.

.. _Creating, Editing, and Deleting Networks:

Creating, Editing, and Deleting Networks
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

.. May need to expand this in the future with recommendations (or any information) on what one may want to add, in what scenarios, and what will happen.

If required, you can add a new network by doing as follows:

#. On the **INFRASTRUCTURE** > **Traffic types** screen, click **Add network**. 

#. In the **New network** window, specify a network name.

   .. note:: A network name must be alphanumerical.

   .. image:: ../../../images/stor_image81_2.png
      :align: center
      :class: align-center

#. Click **Create**.

#. Add the needed traffic types to the new network by ticking the corresponding checkboxes.

#. When finished, click **Save** to apply the changes.

To edit a network name or delete a custom network, click on the ellipsis icon next to it and select the action you want to perform.

   .. note:: You can only delete networks that are not assigned to any network adapters.

.. _Creating, Editing, and Deleting Traffic Types:

Creating, Editing, and Deleting Traffic Types
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

.. May need to expand this in the future with recommendations (or any information) on what one may want to add, in what scenarios, and what will happen.

If required, you can add a new traffic type by doing as follows:

#. On the **INFRASTRUCTURE** > **Traffic types** screen, click **New traffic type** in the **Custom traffic types** section.

#. In the **New traffic type** window, specify a traffic type name and port to open.

   .. note:: A traffic type name must be 3-15 characters long and contain only letters, numbers, spaces, dashes (-), and underscores (_).

   .. image:: ../../../images/stor_image81_3.png
      :align: center
      :class: align-center

#. Click **Create**.

#. Add the newly created traffic type to one or more of your networks by ticking the corresponding checkboxes.

#. When finished, click **Save** to apply the changes.

To edit or delete a custom traffic type, make sure it is excluded from all networks, click the ellipsis icon next to it, and select the desired action.
