Agility0493 opened a new issue, #8983:
URL: https://github.com/apache/cloudstack/issues/8983
<!--
Verify first that your issue/request is not already reported on GitHub.
Also test if the latest release and main branch are affected too.
Always add information AFTER of these HTML comments, but no need to delete
the comments.
-->
##### ISSUE TYPE
* Documentation Report
##### COMPONENT NAME
~~~
OVS, openvswitch, Netplan, UI
~~~
##### CLOUDSTACK VERSION
~~~
4.19.0.1
~~~
##### CONFIGURATION
~~~
- Advanced Networking Mode
- KVM Hypervisor
- Openvswitch for network bridging
- We have 1 NIC to work with on this hypervisor host
~~~
##### OS / ENVIRONMENT
~~~
Ubuntu 22.04 LTS
~~~
##### SUMMARY
We are stuck and need your help with contributing to the docs
(https://docs.cloudstack.apache.org/en/4.19.0.1/installguide/hypervisor/kvm.html#configure-the-network-using-openvswitch).
The OVS section doesn't cover configuring networks on Ubuntu with Netplan.
Overall there is a lack of good documentation online. We are sharing our
research and starting this thread in hopes we can get unstuck and all can
contribute to the docs for future users as Debian based OS is very common.
##### STEPS TO REPRODUCE
Everything up to the network configuration section in the docs has been
successfully configured and completed.
Our VLAN Schema:
~~~
Management: < 500
Public: 500 - 599
Guest (Private): 600 - 699
Guest (Public): 700 - 799
Project Specific: 900 - 999
Future Use: > 1000
~~~
**Commands used:**
1. Follow official OVS install docs: #
https://docs.openvswitch.org/en/latest/intro/install/distributions/#debian-ubuntu
The apt package includes all that's needed for Apache Cloudstack.
`sudo apt install openvswitch-switch`
3. Next disable native bridging to not interfere with OVS. To check status
of Bridge module:
`lsmod | grep bridge`
The "denylist" is called blacklist.conf on ubuntu, use this command to edit
it:
`sudo nano /etc/modprobe.d/blacklist.conf `
Add the lines:
`#turn off native bridging to not interfere with openVswitch
blacklist bridge
#turn off native bridging br_netfilter module
alias netfilter/bridge off`
4. Apply the changes:
`sudo depmod -a to apply`
5. remove modules br_netfilter and bridge. Note that br_netfilter is
dependent on bridge and has to be removed first.
`sudo rmmod br_netfilter`
`sudo rmmod bridge`
6. confirm removal:
`lsmod | grep bridge`
#https://developers.redhat.com/articles/2022/04/06/introduction-linux-bridging-commands-and-features#basic_bridge_commands
7. Linux Ubuntu has the ifup-ovs and ifdown-ovs scripts in the directory
/etc/network check to confirm they are there.
Our Current Network Strategy:
Assign VLAN 100 to "Management traffic", VLAN 500 to "public traffic", VLAN
700 to "guest public" and VLAN 101 to "storage."
8. Now that OVS is installed use the following commands:
```
$ sudo ovs-vsctl add-br cloudbr
$ sudo ovs-vsctl add-port cloudbr eth0
$ sudo ovs-vsctl set port cloudbr trunks=100,101,500,600
$ sudo ovs-vsctl add-br mgmt0 cloudbr 100
$ sudo ovs-vsctl add-br stor0 cloudbr 101
$ sudo ovs-vsctl add-br public0 cloudbr 500
$ sudo ovs-vsctl add-br guestpub0 cloudbr 700
```
We're not sure if the above plan translates to the Apache Cloudstack GUI
Zone configuration traffic labels or if our naming is best practice: mgmt0 =
"Management" , stor0 = "Storage", public0 = "Public", guestpub0 = "Guest".
Please confirm.
9. Once the configurations are in place for OVS you can confirm by using:
`$ sudo ovs-vsctl show`
10. Next we need to configure linux netplan to work with OVS. We've put
together the following yaml in /etc/netplan/01-netcfg.yaml.
~~~
network:
version: 2
renderer: networkd
ethernets:
eno1:
addresses: [<ip-address>/24]
openvswitch:
external-ids:
iface-id: <mac-address>
other-config:
disable-in-band: false
eno2: {}
bridges:
cloudbr:
addresses: [<ip-address>/24]
interfaces: [eno1]
openvswitch:
protocols: [OpenFlow10, OpenFlow11, OpenFlow12]
controller:
addresses: [unix:/var/run/openvswitch/ovs0.mgmt]
connection-mode: out-of-band
fail-mode: secure
mcast-snooping: true
external-ids:
iface-id: <hostname> #not sure if hostname goes here.
other-config:
disable-in-band: true
mgmt0:
addresses: []
interfaces: [cloudbr 100]
openvswitch: {}
stor0:
addresses: []
interfaces: [cloudbr 101]
openvswitch: {}
public0:
addresses: []
interfaces: [cloudbr 500]
openvswitch: {}
guestpub0:
addresses: []
interfaces: [cloudbr 700]
openvswitch: {}
~~~
##### EXPECTED RESULTS
~~~
Receive no errors when running:
sudo netplan try
Successfully reboot ubuntu and have all networking working.
Be able to finalize Zone creation in Apache Cloudstack using the
configuration here.
~~~
##### ACTUAL RESULTS
~~~
We get the error:
$ sudo netplan try
ERROR:root:/etc/netplan/01-netcfg.yaml:53:11: Error in network definition:
public0: interface 'cloudbr 500' is not defined.
-cloudbr 500
^
~~~
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
