[rhos-list] Setting Up Public/Private Networks Following Packstack Install

Lodgen, Brad Brad.Lodgen at centurylink.com
Thu Jul 10 21:24:35 UTC 2014 

Ignore the cirros errors, I uploaded the wrong file.


"Lodgen, Brad" <Brad.Lodgen at centurylink.com> wrote:

I completely rebuilt my environment (still using RHEL6.5 VM's on vSphere 5.5 hosts) to use nova networking, hoping to make it a bit simpler. This is likely to be my answer file being incorrect for my environment, at least I’m hoping that since I’m going into the exam tomorrow. Heh. Attached my sanitized answer file.


Start up a fresh instance with a RHEL6.5 KVM image and get these errors during startup:

-Starting udev: udevd[377]: can not read ‘/etc/udev/rules.d/75-persistent-net-generator.rules’
Udevd[377]: can not read ‘/etc/udev/rules.d/75-persistent-net-generator.rules’
udevadm settle – timeout of 180 seconds, the event queue contains: lots of stuff I couldn’t type fast enough
Udevadm settle – timeout of 0 seconds reached, the event queue contains:/sys/devices/virtual/net/lo (1317)
Udev still not settled. Waiting
-Did not get any network settings for eth0
-can’t reach 169.254.169.254 for metadata [Network is unreachable]
-Getting data from cloudinit failed



When loading a cirrOS image, it just keeps rebooting over and over:

--can’t find a bootable hard disk
--gpxe times out on DHCP
--no more network devices
--no bootable device, retrying in 60 seconds



-----Original Message-----
From: Perry Myers [mailto:pmyers at redhat.com]
Sent: Thursday, July 10, 2014 2:50 PM
To: Rhys Oxenham; Lodgen, Brad; Matthew Booth
Cc: rhos-list at redhat.com; Dave Maley; Brian Hamrick
Subject: Re: [rhos-list] Setting Up Public/Private Networks Following Packstack Install

On 07/10/2014 04:05 AM, Rhys Oxenham wrote:
> Hi Brad,
>
> Sorry you’ve not had a response to your questions.
>
> Having a quick look through… you mention you’re using VMware hosts,
> are these physical machines, or RHEL virtual machines running on-top
> of VMware?
>
> If the former, networking is going to be a bit more tricky to setup as
> you’ll either need to use nova-network, or VMware’s NSX. Open vSwitch
> won’t work as expected with VMware hypervisors.

Yeah, I'm pretty sure you need to just use Nova Networking if you're using ESX as the hypervisor through the vCenter Driver.  I've cc'd Matt Booth who works on the VMware integration for us, he may have more insight.

Worth noting that Packstack does not support NSX, so if using VMware/vCenter, it's Nova Net or nothing...

Can you provide the entire Packstack file as an attachment or fpaste?

Cheers,

Perry

> Cheers
> Rhys
>
> On 10 Jul 2014, at 04:37, Lodgen, Brad <Brad.Lodgen at centurylink.com> wrote:
>
>> Well, I worked with this all day and am still having issues. I think
>> it's because I'm not familiar with the naming conventions and how
>> packstack puts them to work. Could someone please show what the
>> packstack answers would be for the two scenarios in the RHEL-OSP V4
>> documentation Configuration Reference Guide, section 7.3.1.2 and
>> 7.3.1.3? I believe if I can see the differences between those two, I
>> could figure out how the differences are rolled out with packstack.
>> It would be greatly appreciated.
>>
>>
>> From: Lodgen, Brad
>> Sent: Wednesday, July 09, 2014 1:11 PM
>> To: 'rhos-list at redhat.com'
>> Subject: Setting Up Public/Private Networks Following Packstack
>> Install
>>
>> I’m working on learning networking today. Can I provide my situation,
>> my original packstack answers for Neutron (sanitized), the changes
>> I’ll make to the packstack answer file, and the follow-up steps in
>> horizon to complete it, then see if everyone agrees that’s the route
>> I should go? I hate to start rolling out things in packstack that I’m
>> not at least somewhat confident about and risk ruining my setup
>> (although these are VMware hosts and I just created snapshots of all
>> nodes).
>>
>> I’m assuming all I’ll need to do is change the answers file and run
>> it again, including only the controller and compute nodes (excluding
>> the storage nodes in EXCLUDE_SERVERS=). If that’s incorrect at this
>> point, please let me know.
>>
>> So, my lab setup is this:
>>
>> -5 VMware hosts
>> -1 controller, 2 compute, 2 storage (1 swift, 1 cinder) -Each node
>> has two “physical” interfaces
>> -eth0 belongs to port group A, with a public IP and a gateway to the
>> public internet
>> -eth1 belongs to port group B, with a private IP (172.16.1.0/24) and
>> no gateway
>>
>> -I would like to set up two networks for my instances in OpenStack
>> -Network 1 would be able to access ONLY the 172.16.1.0/24 network
>> (instances would have IP on that network and no gateway?) -Network 2
>> would be able to access BOTH the public internet AND the
>> 172.16.1.0/24 network (instances would have two interfaces, eth0 with
>> public IP/gateway, eth0 with private IP and no gateway?)
>>
>> -In my packstack answers file, I have the following (it may be worth
>> it to mention that none of the ML2 lines are in the RHEL-OSP
>> V4 documentation and some of the others, such as OVS_BRIDGE_IFACES,
>> aren’t either, so I’m not sure if they’re essential or not):
>>
>> CONFIG_NEUTRON_INSTALL=y
>> CONFIG_NEUTRON_SERVER_HOST={controller_ip}
>> CONFIG_NEUTRON_L3_HOSTS={controller_ip}
>> CONFIG_NEUTRON_L3_EXT_BRIDGE=br-ex
>> CONFIG_NEUTRON_DHCP_HOSTS={controller_ip}
>> CONFIG_NEUTRON_L2_PLUGIN=openvswitch
>> CONFIG_NEUTRON_METADATA_HOSTS={controller_ip}
>> CONFIG_NEUTRON_ML2_TYPE_DRIVERS=local
>> CONFIG_NEUTRON_ML2_TENANT_NETWORK_TYPES=local
>> CONFIG_NEUTRON_ML2_MECHANISM_DRIVERS=openvswitch
>> CONFIG_NEUTRON_ML2_FLAT_NETWORKS=*
>> CONFIG_NEUTRON_ML2_VLAN_RANGES=
>> CONFIG_NEUTRON_ML2_TUNNEL_ID_RANGES=
>> CONFIG_NEUTRON_ML2_VXLAN_GROUP=
>> CONFIG_NEUTRON_ML2_VNI_RANGES=
>> CONFIG_NEUTRON_L2_AGENT=openvswitch
>> CONFIG_NEUTRON_LB_TENANT_NETWORK_TYPE=local
>> CONFIG_NEUTRON_LB_VLAN_RANGES=
>> CONFIG_NEUTRON_LB_INTERFACE_MAPPINGS=
>> CONFIG_NEUTRON_OVS_TENANT_NETWORK_TYPE=local
>> CONFIG_NEUTRON_OVS_VLAN_RANGES=
>> CONFIG_NEUTRON_OVS_BRIDGE_MAPPINGS=
>> CONFIG_NEUTRON_OVS_BRIDGE_IFACES=
>> CONFIG_NEUTRON_OVS_TUNNEL_RANGES=
>> CONFIG_NEUTRON_OVS_TUNNEL_IF=
>> CONFIG_NEUTRON_OVS_VXLAN_UDP_PORT=4789
>>
>> What I believe it needs to be:
>>
>> CONFIG_NEUTRON_INSTALL=y
>> CONFIG_NEUTRON_SERVER_HOST={controller_ip}
>> CONFIG_NEUTRON_L3_HOSTS={controller_ip},{compute1},{compute2}
>> CONFIG_NEUTRON_L3_EXT_BRIDGE=br-ex
>> CONFIG_NEUTRON_DHCP_HOSTS={controller_ip},{compute1},{compute2}
>> CONFIG_NEUTRON_L2_PLUGIN=openvswitch
>> CONFIG_NEUTRON_METADATA_HOSTS={controller_ip}
>> CONFIG_NEUTRON_ML2_TYPE_DRIVERS=local
>> CONFIG_NEUTRON_ML2_TENANT_NETWORK_TYPES=local
>> CONFIG_NEUTRON_ML2_MECHANISM_DRIVERS=openvswitch
>> CONFIG_NEUTRON_ML2_FLAT_NETWORKS=*
>> CONFIG_NEUTRON_ML2_VLAN_RANGES=
>> CONFIG_NEUTRON_ML2_TUNNEL_ID_RANGES=
>> CONFIG_NEUTRON_ML2_VXLAN_GROUP=
>> CONFIG_NEUTRON_ML2_VNI_RANGES=
>> CONFIG_NEUTRON_L2_AGENT=openvswitch
>> CONFIG_NEUTRON_LB_TENANT_NETWORK_TYPE=local
>> CONFIG_NEUTRON_LB_VLAN_RANGES=
>> CONFIG_NEUTRON_LB_INTERFACE_MAPPINGS=
>> CONFIG_NEUTRON_OVS_TENANT_NETWORK_TYPE=local
>> CONFIG_NEUTRON_OVS_VLAN_RANGES=
>> CONFIG_NEUTRON_OVS_BRIDGE_MAPPINGS=public:br-eth0,private,br-eth1
>> CONFIG_NEUTRON_OVS_BRIDGE_IFACES=
>> CONFIG_NEUTRON_OVS_TUNNEL_RANGES=
>> CONFIG_NEUTRON_OVS_TUNNEL_IF=
>> CONFIG_NEUTRON_OVS_VXLAN_UDP_PORT=4789
>>
>>
>> The follow-up horizon steps would be:
>>
>> -Under admin (not project) tab, create two networks:
>> - One Public, assign to project, check external network box
>> - One Private, assign to project, leave external network box
>> unchecked
>>
>> -Under project tab, click networks, on each network, click “More”, click “Add Subnet”
>> - Public, “public subnet”, network x.x.x.x/x, IPv4, Gateway IP
>> x.x.x.x, uncheck Disable Gateway, Subnet Detail tab uncheck DHCP, add
>> DNS server, leave routes empty
>> - Private, “private subnet”, network 172.16.1.0/24, IPv4, Gateway IP
>> “blank”, check Disable Gateway,  Subnet Detail tab check DHCP, add
>> the pool, leave DNS empty (not needed), leave routes empty
>>
>> At this point, is it necessary to create a router, since there is a hardware router handling the public network?
>>
>> After all of the above, if I…
>> -Create an instance and assign the private network, that instance will be assigned a private ip via DHCP? Then, I can load up a RHEL6 KVM image and connect to the host via SSH using the keypair on the private network?
>> -Create an instance and assign the private AND public network, that instance will only be assigned a private ip via DHCP? Then, I can load up a RHEL6 KVM image, connect to the host via SSH using the keypair on the private network, and manually add a public IP?
>>
>> If you made it this far, my extreme thanks!
>>
>> -Brad
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/rhos-list/attachments/20140710/6b93c7a8/attachment.htm>

More information about the rhos-list mailing list