Abbiamo creato una rete locale (LAN) privata, in ogni datacenter, alla quale i Linode possono collegarsi, senza doversi preoccupare che il trasferimento venga conteggiato nella loro quota di rete mensile. Questa funzione consente alcune interessanti possibilità. Ad esempio, la creazione di gruppi di Linodes server web front-end e di Linodes server database back-end che comunicano su questa rete privata. Vengono in mente anche la replica dei database, i backup e rsync. Inoltre, l'IP Failover funziona sia per gli IP pubblici che per quelli privati.
Per partecipare al divertimento, collegatevi al sito dei membri e andate a questa pagina. Fare clic sul pulsante per assegnare un indirizzo IP privato al proprio Linode. Riavviare il Linode e visualizzare il nuovo IP su eth1 - un esempio di comando per farlo è fornito nella pagina. È necessario completare questi passaggi per ogni Linode che si desidera sia in grado di comunicare sulla rete back-end.
Questo funziona solo per i Linode all'interno dello stesso datacenter. Non è necessario che i Linode siano sotto un unico account/collegati.
Quanto costa questa funzione? Avete indovinato: GRATIS!
Buon divertimento!
Commenti (13)
Sweet. Wondered when this would come about, remember a mention about it a long time ago
This is really great; I was recently thinking that something like this would be a great feature to add 🙂
I couldn’t find a link to this within the Linode manager. Am I looking in the wrong place (e.g. Utilities) or is there a reason this wasn’t added to the manager yet?
@marvinp the link is…linked in the article text. You’ll know when you get there. It’s the page titled “Lassie” lol.
Heh, thanks for the heads up jharrison, I’ve corrected that. The Private IP page is now linked from the Utilities page as well.
Mike
interesting feature 🙂 just wondering though whats the story with security? is this safe enough to treat like your average “internal LAN”? or should it be firewalled as well? you say they dont have to be apart of the same account, im guessing its one big subnet for everyone? just wondering if i should consider firewalling it or not 🙂
We filter traffic based on MAC and IP addresses. You can’t sniff traffic on the back-end LAN. You won’t see other people’s traffic. The only packets you’ll receive are those that are destined for your Linode. It works no differently from our public-networking filtering.
A follow up to the last security question:
‘The only packets you’ll receive are those destined for your Linode’.
This would include port scanning packets and connections from other Linode customers in the same data center correct?
Is there a way to form a vpn using the private IPs of just the nodes within your Linode account – to get LAN speed, no bandwidth charges for local traffic AND security?
It’s an open local network, so others in your facility can connect to services running on your local IP. You’ll want to firewall or ACL appropriately.
You can form VPNs as you typically would — openvpn for example.
I know this is a very old post but Is there any possibility of having my two linodes connected if they are on a different DC now? I would really love to have that since if a DC has a problem the other DC would still be working.
I’d like to see this feature improved to be available only between your own hosts and between DCs.
Hi,
I am trying to use this feature.
I use two vm in the same DC, one is for web app and other for MariaDB.
I bind the maria db server do private ip. When I try to connect to my db server from myweb I can’t connect.
I try a talnet command and the result is: No route to host
I do a nmap and only port 22 is open. I Don’t use any fw rules.
Hey Paulo. You’ll want to make sure that both Linodes have private IPs assigned to them; this is how they can both send and receive information over the private network.
This Community post does a nice job explaining how Linodes communicate with private IPs:
https://www.linode.com/community/questions/174/how-do-i-connect-two-linodes-by-private-ip
Otherwise, if you suspect there is an issue, I would recommend opening a ticket with our Support team so they can take a look.