I would be very gratefull if somebody will be able to point me to any articles or even google search terms to find any info about OpenNebula multi-tenant network best practices.
For example, is it possible to give rights to a user group to create their own private networks with their own (private) IP space (and without oneadmin intervention) in a secure way - I mean, in a way where users will not be able to join other user group or system networks? Something like it’s possible with openstack.
To be honest, I’ve read this chapter before. Do I understand it correctly that different users (group of users) will have an access to the reserved network parts of each other (cause they use the same bridge/VLAN configuration)?
You are right, In this case you setup a network and let users of the same
group to get subnetworks from there.
If the users needs to access different isolated networks, the safer way is
to pre-set the available network in your infrastructure and assigned them
to the users. You could also let the users create the networks by updating
the ACLs, but in this case they will need to define some low-level
parameters…
I would be very gratefull if somebody will be able to point me to any articles or even google search terms to find any info about OpenNebula multi-tenant network best practices.
For example, is it possible to give rights to a user group to create their own private networks with their own (private) IP space (and without oneadmin intervention) in a secure way - I mean, in a way where users will not be able to join other user group or system networks? Something like it’s possible with openstack.