[openstack-dev] Neutron: Internet not available in VM instances
Hello,
I am not able to connect to internet in teh spawned VM's.
Ethernet card details:
*Eth1 bridged through OVS(mybridge) - 172.27.10.76*
*Eth3-
192.168.182.251*
after executing the command
iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
iptables -t nat -A POSTROUTING -o mybridge -j MASQUERADE
- I see teh connectivity to VM's from my host name ie 172.27.10.76 also
affected.
root@VFSR1:~# ovs-vsctl show
37f38767-0a2b-45fd-9507-abef7fd2d5c9
Bridge br-int
fail_mode: secure
Port "qr-2ff64ff8-b8"
tag: 6
Interface "qr-2ff64ff8-b8"
type: internal
Port patch-tun
Interface patch-tun
type: patch
options: {peer=patch-int}
Port "qvo310233a4-9f"
tag: 6
Interface "qvo310233a4-9f"
Port br-int
Interface br-int
type: internal
Port "tap6bc359b6-f0"
tag: 6
Interface "tap6bc359b6-f0"
type: internal
Port "qvo703c764e-23"
tag: 5
Interface "qvo703c764e-23"
Port int-mybridge
Interface int-mybridge
type: patch
options: {peer=phy-mybridge}
Port "qg-333a2d2b-ca"
tag: 5
Interface "qg-333a2d2b-ca"
type: internal
* Bridge mybridgePort mybridgeInterface
mybridgetype: internalPort "eth1"
Interface "eth1"Port phy-mybridgeInterface
phy-mybridgetype: patchoptions:
{peer=int-mybridge}*
Bridge br-tun
fail_mode: secure
Port br-tun
Interface br-tun
type: internal
Port patch-int
Interface patch-int
type: patch
options: {peer=patch-tun}
ovs_version: "2.5.0"
Below is my network and router details
root@VFSR1:~# neutron net-list
+--+-+-+
| id | name|
subnets |
+--+-+-+
| 51739543-b7d1-414b-bec1-9b38c3e5d5d7 | public |
0db9fa02-27eb-4f38-8693-200719fc1fbf 172.27.10.0/24 |
| bf919707-b1eb-4d8f-90fe-5bcf0e07dce3 | private |
7fddc311-7938-44c4-abd4-e5095adba422 192.168.0.0/24 |
+--+-+-+
root@VFSR1:~# neutron router-list
+--++---+-+---+
| id | name |
external_gateway_info
| distributed | ha|
+--++---+-+---+
| 323a6782-46aa-458e-ad76-f9462d8ad955 | router | {"network_id":
"51739543-b7d1-414b-bec1-9b38c3e5d5d7", "enable_snat": true,
"external_fixed_ips": [{"subnet_id":
"0db9fa02-27eb-4f38-8693-200719fc1fbf", "ip_address": "172.27.10.101"}]} |
False | False |
+--++---+-+---+
Below are my instances created
root@VFSR1:~# nova list
+--++++-++
| ID | Name | Status | Task State |
Power State | Networks |
+--++++-++
| b737645b-317e-46be-b06a-f1b94f378d95 | test | ACTIVE | - |
Running | public=172.27.10.100 |
| 378b3776-dddb-4007-823a-8c4e2781dbdd | ubuntu | ACTIVE | - |
Running | private=192.168.0.3, 172.27.10.102 |
+--++++-+-
I have internet connectivity using the machine IP 172.27.10.76, but the
internet is not working in teh VM range 172.27.10.100,172,27.10.250.
I have attached the firewall log as well.
Please advise.
Regards
kamal
firewal
Description: Binary data
__
OpenStack
Re: [openstack-dev] [Openstack] Neutron: Internet not available in VM instances
Hi Mattei,
I just have these lines active in l3agent.ini
interface_driver =neutron.agent.linux.interface.OVSInterfaceDriver
external_network_bridge =
Hope that looks fine. Do we need to specify the external_network_bridge. Do
we need any other parameters.
Regards
Kamal
On Thu, Oct 6, 2016 at 3:36 PM, Remo Mattei <r...@italy1.com> wrote:
> what’s your l3agent.ini says about external?
>
> On Oct 6, 2016, at 06:16, kamalakannan sanjeevan <
> chirukamalakan...@gmail.com> wrote:
>
> Hello,
>
> I am not able to connect to internet in teh spawned VM's.
>
>
> Ethernet card details:
>
> *Eth1 bridged through OVS(mybridge) - 172.27.10.76*
> *Eth3-
> 192.168.182.251*
>
> after executing the command
>
> iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
>
> iptables -t nat -A POSTROUTING -o mybridge -j MASQUERADE
>
> - I see teh connectivity to VM's from my host name ie 172.27.10.76 also
> affected.
>
> root@VFSR1:~# ovs-vsctl show
> 37f38767-0a2b-45fd-9507-abef7fd2d5c9
> Bridge br-int
> fail_mode: secure
> Port "qr-2ff64ff8-b8"
> tag: 6
> Interface "qr-2ff64ff8-b8"
> type: internal
> Port patch-tun
> Interface patch-tun
> type: patch
> options: {peer=patch-int}
> Port "qvo310233a4-9f"
> tag: 6
> Interface "qvo310233a4-9f"
> Port br-int
> Interface br-int
> type: internal
> Port "tap6bc359b6-f0"
> tag: 6
> Interface "tap6bc359b6-f0"
> type: internal
> Port "qvo703c764e-23"
> tag: 5
> Interface "qvo703c764e-23"
> Port int-mybridge
> Interface int-mybridge
> type: patch
> options: {peer=phy-mybridge}
> Port "qg-333a2d2b-ca"
> tag: 5
> Interface "qg-333a2d2b-ca"
> type: internal
>
>
>
>
>
>
>
>
>
> * Bridge mybridgePort mybridgeInterface
> mybridgetype: internalPort "eth1"
> Interface "eth1"Port phy-mybridgeInterface
> phy-mybridgetype: patchoptions:
> {peer=int-mybridge}*
> Bridge br-tun
> fail_mode: secure
> Port br-tun
> Interface br-tun
> type: internal
> Port patch-int
> Interface patch-int
> type: patch
> options: {peer=patch-tun}
> ovs_version: "2.5.0"
>
>
> Below is my network and router details
>
> root@VFSR1:~# neutron net-list
> +--+-+--
> ---+
> | id | name|
> subnets |
> +--+-+--
> ---+
> | 51739543-b7d1-414b-bec1-9b38c3e5d5d7 | public |
> 0db9fa02-27eb-4f38-8693-200719fc1fbf 172.27.10.0/24 |
> | bf919707-b1eb-4d8f-90fe-5bcf0e07dce3 | private |
> 7fddc311-7938-44c4-abd4-e5095adba422 192.168.0.0/24 |
> +--+-+--
> ---+
> root@VFSR1:~# neutron router-list
> +--++---
>
>
> +---
> --+---+
> | id | name |
> external_gateway_info
>
> |
> distributed | ha|
> +--++---
>
>
> +---
> --+---+
> | 323a6782-46aa-458e-ad76-f9462d8ad955 | router | {"network_id":
> "51739543-b7d1-414b-bec1-9b38c3e5d5d7", "enable_snat": true,
> "external_fixed_ips": [{"subnet_id": "0db9fa02-27eb-4f38-8693-200719fc1fbf",
> "ip_address": "172.27.10.101"}]} | False
[openstack-dev] Neutron: ping to gateway in instance fails leading to failure in internet connectivity
Hello All,
I am using liberty on ubuntu 14.04.5. I have create a external network with
flat provider . I am able to ssh into the instance. The connectivity
through gateway fails and not able to connect to internet. Below are the
logs. Can anyone help me out?
root@scm:/opt/Openstack_liberty_scripts# neutron net-list
+--++--+
| id | name | subnets
|
+--++--+
| 5b2d3934-d07f-4d19-9ffc-6be5ed83c7ca | public-br-p4p1 |
edc648f9-e6dc-47b2-bb44-cdfe0e8125ae 10.0.1.0/24 |
+--++--+
root@scm:/opt/Openstack_liberty_scripts# neutron net-show
5b2d3934-d07f-4d19-9ffc-6be5ed83c7ca
+---+--+
| Field | Value|
+---+--+
| admin_state_up| True |
| id| 5b2d3934-d07f-4d19-9ffc-6be5ed83c7ca |
| mtu | 0|
| name | public-br-p4p1 |
| port_security_enabled | True |
|* provider:network_type | flat |*
*| provider:physical_network | public |*
| provider:segmentation_id | |
|* router:external | True |*
| shared| True |
| status| ACTIVE |
| subnets | edc648f9-e6dc-47b2-bb44-cdfe0e8125ae |
| tenant_id | 541ac2769dc1487d92ac2f5c45952d51 |
+---+--+
root@scm:/opt/Openstack_liberty_scripts# neutron subnet-show
edc648f9-e6dc-47b2-bb44-cdfe0e8125ae
+---+--+
| Field | Value|
+---+--+
| allocation_pools | {"start": "10.0.1.129", "end": "10.0.1.253"} |
| cidr | 10.0.1.0/24 |
| dns_nameservers | 192.168.0.1 |
| enable_dhcp | True |
|* gateway_ip| 10.0.1.1 |*
| host_routes | |
| id| edc648f9-e6dc-47b2-bb44-cdfe0e8125ae |
| ip_version| 4|
| ipv6_address_mode | |
| ipv6_ra_mode | |
| name | |
| network_id| 5b2d3934-d07f-4d19-9ffc-6be5ed83c7ca |
| subnetpool_id | |
| tenant_id | 541ac2769dc1487d92ac2f5c45952d51 |
+---+--+
root@scm:/opt/Openstack_liberty_scripts# neutron net-gateway-list
404 Not Found
The resource could not be found.
root@scm:/var/log/neutron# neutron security-group-rule-list
+--++---+---+---+--+
| id | security_group | direction |
ethertype | protocol/port | remote |
+--++---+---+---+--+
| 123bbf22-7167-4851-a567-dd3425a8eb58 | default| egress| IPv4
| any | any |
| 2d685879-89c5-4b06-bf81-8f7a2a7d293f | default| egress| IPv6
| any | any |
| 485dd762-fa50-47ab-ab5d-2309c543232d | default| ingress | IPv6
| any | default (group) |
| a29aec70-30c8-48cc-9c09-1a92b8dbe81a | default| ingress | IPv4
| any | default (group) |
| a80f593d-145b-47c1-97be-ccf6fc66d7fb | default| ingress | IPv4
| 22/tcp| 0.0.0.0/0 (CIDR) |
| a85eb9c3-1600-46cb-a03c-1a29d901164d | default| egress| IPv4
| any | any |
| af6b71fb-c6f1-4a7b-9f84-d55d4692435a | default| ingress | IPv4
| any | default (group) |
| b3eead61-4aed-4cb2-9dbb-d1aa4f2faada | default| ingress | IPv6
| any | default (group) |
| ced0f8bd-2ea8-4f06-b972-9c5c3aaa82a2 | default|
[openstack-dev] Magnum:
Hi All, I have installed Mitaka on ubuntu14.04. I have tried an all in one installation along with cinder using dd and then creating the cinder-volumes at /dev/loop2. The network neutron is using linuxbridge with vxlan. I am able to create instances that do not have internet reachability for same reason. I have then install magnum and the python-magnum-client I get the below error as shown in the logs Service list displays after installing python-magnumclient 2.3.0, with full path only. I did follow the magnum installation using http://docs.openstack.org/project-install-guide/container-infrastructure-management/draft/install-ubuntu.html The certificates are used *x509keypair* on mitaka root@VFSR1:/opt/mesos_image# /opt/python-magnumclient/.magnumclient-env/bin/magnum service-list ++-+--+---+--+-+---+---+ | id | host| binary | state | disabled | disabled_reason | created_at| updated_at| ++-+--+---+--+-+---+---+ | 1 | VFSR1.svcmgr.io | magnum-conductor | up| | - | 2016-09-30T05:24:19+00:00 | 2016-10-03T06:58:44+00:00 | ++-+--+---+--+-+---+---+ Images available as below root@VFSR1:/opt/mesos_image# glance image-list +--+--+ | ID | Name | +--+--+ | c1c8e84e-12ba-4b05-b382-e57850e5dd6d | cirros | | affb50c2-ca04-41fa-bf73-48ae526d2b15 | fedora-atomic-latest | | 94ee6d6e-93fa-47b2-844f-2d8d2ad1a788 | ubuntu-14.04.3-mesos | | f9acd880-f50f-493a-b6ed-46620b7b3481 | ubuntu-mesos | +--+--+ DNS configured on this machine root@VFSR1:/opt/mesos_image# cat /etc/resolv.conf # Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8) # DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN nameserver 172.27.10.76 nameserver 172.27.0.5 search svcmgr.io key pair and network list on this machine root@VFSR1:/opt/mesos_image# openstack keypair create --public-key ~/.ssh/id_rsa.pub testkey +-+-+ | Field | Value | +-+-+ | fingerprint | e0:9f:b5:91:e5:e4:39:90:c3:7d:7e:9a:ff:55:e3:29 | | name| testkey | | user_id | 3bb731e1886347a19e90c06185be8a9c| +-+-+ root@VFSR1:/opt/mesos_image# openstack network list +--+---+--+ | ID | Name | Subnets | +--+---+--+ | 02bb0e68-1454-49ba-a40b-98130f58d9f6 | private | 9e5dfec3-7394-4ffc-b2c9-b24110b6d495 | | 555fbf56-e7ac-40ef-96cb-573a862ae42f | private1 | 9abedee6-4c3c-4edc-a0cd-15571bc2ce51 | | 9ea39255-9e51-433f-95a1-cb8cf51543ea | public| 436bb0a4-e999-4874-844c-567e6312fe3e | | 069923b6-f657-4fca-8c5a-e0262c52f8c7 | public1 | 1a8dad61-3261-41a4-86c2-7ad107fd78cb | | a91b3943-ac8b-41ca-9767-ad9cf2c1dc60 | swarm-cluster-zhxyvth46o5c-fixed_network-xaz6nx43ec5e | 61789da1-17c9-431e-b728-22c4b923fd53 | +--+---+--+ Volumes and cinder on the machine root@VFSR1:/opt/mesos_image# vgs VG #PV #LV #SN Attr VSize VFree cinder-volumes 1 3 0 wz--n- 250.00g 223.00g ubuntu-vg1 2 0 wz--n- 3.64t 0 root@VFSR1:/opt/mesos_image# pvs PV VG Fmt Attr PSize PFree /dev/loop2 cinder-volumes lvm2 a-- 250.00g 223.00g /dev/sda3 ubuntu-vg lvm2 a--3.64t 0 root@VFSR1:/opt/mesos_image# df -kh /var/lib/cinder/ Filesystem Size Used Avail Use% Mounted on /dev/dm-0 3.5T 166G 3.2T 5% / root@VFSR1:/opt/mesos_image# /opt/python-magnumclient/.magnumclient-env/bin/magnum cluster-template-create --name mesos-cluster-template
