Am trying to get a setup
Hi,
I am trying to add a Linode to a VLAN (IPAM selected is 192.0.2.0/24), but I see the Internal IP address of the Linode is not a part of this CIDR range. Maybe I am not getting the purpose of the IPAM. But is this an error, or is what I am seeing expected.
My usecase:
I am hoping to get a setup of a MEAN stack (web server, api server, db server), where the DB resides on a linode. And the web, api server on kubernetes-linode with a NodeBalancer. I want to safeguard the DB, so want to assign a VLAN to it. Is that possible, or does Firewall work better for this usecase?
2 Replies
I’m not sure if this is your problem, but your VLAN IP range should not be a publicly-routable range.
Your chosen range (192.0.2.0/24) is reserved for documentation only and should not be used in a live network, therefore some network devices/software may be preventing it from being configured.
Private ranges designated for things like this are:
- 10.0.0.0 to 10.255.255.255.
- 172.16.0.0 to 172.31.255.255.
- 192.168.0.0 to 192.168.255.255.
Please note that Linodes can also have an IP on the private network - 192.168.x.x.
Therefore I’d suggest using a 10.x.x.x address for your VLAN to avoid any routing issues.
Then make sure your bind your DB software just to the VLAN IP and use a firewall to restrict all other traffic to your DB Linode.
Nice