You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/operator-nexus/quickstarts-tenant-workload-prerequisites.md
+16-38Lines changed: 16 additions & 38 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -32,34 +32,11 @@ You need to create various networks based on your workload needs. The following
32
32
- Determine the BGP peering info for each network, and whether the networks need to talk to each other. You should group networks that need to talk to each other into the same L3 isolation domain, because each L3 isolation domain can support multiple L3 networks.
33
33
- The platform provides a proxy to allow your VM to reach other external endpoints. Creating a `cloudservicesnetwork` instance requires the endpoints to be proxied, so gather the list of endpoints. You can modify the list of endpoints after the network creation.
34
34
35
-
## Create networks for tenant workloads
36
-
37
-
The following sections explain the steps to create networks for tenant workloads (VMs and Kubernetes clusters).
38
-
39
-
### Create isolation domains
40
-
41
-
Isolation domains enable creation of layer 2 (L2) and layer 3 (L3) connectivity between network functions running on Azure Operator Nexus. This connectivity enables inter-rack and intra-rack communication between the workloads.
42
-
You can create as many L2 and L3 isolation domains as needed.
43
-
44
-
You should have the following information already:
35
+
## Create isolation domains
45
36
46
-
- The network fabric resource ID to create isolation domains.
47
-
- VLAN and subnet info for each L3 network.
48
-
- Which networks need to talk to each other. (Remember to put VLANs and subnets that need to talk to each other into the same L3 isolation domain.)
49
-
- BGP peering and network policy information for your L3 isolation domains.
50
-
- VLANs for all your L2 networks.
51
-
- VLANs for all your trunked networks.
52
-
- MTU values for your networks.
37
+
The isolation-domains enable communication between workloads hosted in the same rack (intra-rack communication) or different racks (inter-rack communication). You can find more details about creating isolation domains [here](./howto-configure-isolation-domain.md).
Create a trunked network, if necessary, for your VM. Repeat the instructions for each required trunked network.
150
127
151
128
Gather the `resourceId` values of the L2 and L3 isolation domains that you created earlier to configure the VLANs for this network. You can include as many L2 and L3 isolation domains as needed.
152
129
153
-
### [Azure CLI](#tab/azure-cli)
130
+
####[Azure CLI](#tab/azure-cli)
154
131
155
132
```azurecli-interactive
156
133
az networkcloud trunkednetwork create --name "<YourTrunkedNetworkName>" \
@@ -167,7 +144,8 @@ Gather the `resourceId` values of the L2 and L3 isolation domains that you creat
To create an Operator Nexus virtual machine (VM) or Operator Nexus Kubernetes cluster, you must have a cloud services network. Without this network, you can't create a VM or cluster.
189
167
@@ -197,7 +175,7 @@ The egress endpoints must comply with the domain name structures and hostname sp
197
175
-`api.v1.contoso.com`: Incorporates two subdomains (`v1` and `api`) above the base domain contoso.com.
198
176
-`.api.contoso.com`: A wildcard for any subdomain under `api.contoso.com`, covering multiple third-level domains.
199
177
200
-
### [Azure CLI](#tab/azure-cli)
178
+
####[Azure CLI](#tab/azure-cli)
201
179
202
180
```azurecli-interactive
203
181
az networkcloud cloudservicesnetwork create --name "<YourCloudServicesNetworkName>" \
@@ -208,7 +186,7 @@ The egress endpoints must comply with the domain name structures and hostname sp
0 commit comments