Network Configuration
There are two options for deploying a Lightbits storage cluster on AWS: a new VPC (Virtual Private Cloud), or an existing VPC.
Option 1: Networking Configuration with a New VPC
New VPC is the default option; it refers to the CF that automates the creation of a new VPC and the placement of a cluster into it.
The following parameters will be used:
| Parameter | Description (New-VPC) | Default | Optional/Mandatory |
|---|---|---|---|
| AvailabilityZone | Make sure to set the AvailabilityZone to one of the AWS Zones available within the selected Region (note that not all AZs will have the required instances). | Mandatory | |
| ExistingVpcId | In order for the deployment to create a new VPC for the storage cluster, leave the ExistingVpcId field with its default value of 'create-new'. Once the VPC is created, CF continues to launch storage instances and configure Lightbits storage software on that new VPC. This new VPC can be used to deploy other EC2 client instances that can use the storage within the VPC. See the table below for deployment in an existing VPC. | 'create-new' | Mandatory |
| VpcCIDR | The VpcCIDR is used to define the IPV4 range for the new VPC. A private subnet will be created automatically based on this range. The expected VPC range is X.X.X.0/20 (16 Class C). In this case, assuming the use of the default automatic subnet creation, the private subnet for the cluster will use /24 (1 Class C) from the range. | 10.240.96.0/20 | Mandatory |
| PrivateSubnetId | Ignored on new-vpc | Ignored | |
| RouteTable | Ignored on new-vpc | Ignored | |
| ConnectivityCIDR | The ConnectivityCIDR is used to define an initial IP range that has access to the storage cluster as part of SecurityGroup on the new VPC. ConnectivityCIDR is used for connectivity to the storage cluster. Any client IP (or IP range) that will use or have volumes on the Lightbits storage cluster should be part of the CIDR. Setting 0.0.0.0/0 will enable access from any client IP. If the hosts’ connectivity is inside VPC, set the ConnectivityCIDR to the same as the VpcCIDR. It is also possible to set connectivity ranges or specific individual IPs after the deployment stack is up. This is possible by changing the SecurityGroup definition and adding ingress rules. Note: Changing the SecurityGroup, adding instances manually to the VPC, or in general performing any manual change to an already created resource by CF post-deployment, means you will need to revert these changes manually before you can delete the deployment stack. Otherwise, the stack delete operation will fail. | 3 | Mandatory |
Security group configuration should open port 4001 for communication between instances in a Lightbits storage cluster, and should block any communication outside of the storage cluster subnet.
Option 2: Networking Configuration with an Existing VPC
This option means that a user already created a VPC and wants to use it for the storage deployment. CF will use the existing VPC rather than creating a new one.
| Parameter | Description (Existing-VPC) | Default | Optional/Mandatory |
|---|---|---|---|
| AvailabilityZone | Make sure to set the AvailabilityZone to one of the AWS Zones available within the selected Region. | Mandatory | |
| ExistingVpcId | This field needs to be set with the ID of the VPC (i.e., 'vpc-12ab345'). | Mandatory | |
| VpcCIDR | Make sure the field of VpcCIDR matches the CIDR range defined in the VPC. | Mandatory | |
| PrivateSubnetId | This field should be set with a subnet-id that belongs to the VPC (e.g., subnet-0cd6c0c5df0e478d6). In “existing-vpc” mode, you must also create the subnet prior to the installation. PrivateSubnetIdCIDR subnet is used for the storage instances and for NLB (Network Load Balancer). These resources will be automatically created by CF. | Mandatory | |
| RouteTable | Existing route-table-id (of the form "rtb-04aff27f814e51154"), associated with the PrivateSubnetId. If the route table has not been pre-created and connected to the subnet specified in the PrivateSubnetId field, then the deployment will fail. | - | Mandatory |
| ConnectivityCIDR | The same as defined in the 'New VPC' option (see above). | Mandatory |
Was this page helpful?