Hi, all:
In this wiki, http://wiki.openstack.org/Nova/Rootwrap, the part of
security model results in This chain ensures that the nova user itself
is not in control of the configuration or modules used by the nova-rootwrap
executable. I understand that chain but I`m confused with this conclusion.
Hi Sean,I may be wrong, but I think there is not any "best" RAID strategy when it comes to the disk for the nodes or a "normal" one. All RAID type have their pros and cons.It'a all about security over performance against total space that would end up usable. What RAID controller is that?Regards,
Hi:
FYI, this is the python-keystoneclient I'm running currently:
Name: python-keystoneclient
Arch: noarch
Epoch : 1
Version : 0.1.3.27
Release : 1.el6
The http errors keep logging with any interaction in Horizon.
unable to retrieve service catalog with token
Hi,looks like your current user's credentials are not the one defined into KS.Check your .bashrc' following values :export OS_USERNAME=$KEYSTONE USERexport OS_PASSWORD=$KEYSTONE PASSWORDexport OS_TENANT_NAME=$YOUR TENANTRegards,
Razique Mahroua-Nuage Corazique.mahr...@gmail.comTel: +33 9 72 37 94
Hello,
I have a big doubt.
Cinder and Swift, are 2 separated services, but openstack talk about Storage
controller.
What Cinder and Switft does ?Can i use two NAS iSCSI with separated LUN for
those services or need servers for Swift?
Thanks a lot
Nope,it's just a metapackage, aptitude would have warned you in case of conflicting package. you can try though to reinstall after a purge :$ aptitude purge ~c
Razique Mahroua-Nuage Corazique.mahr...@gmail.comTel: +33 9 72 37 94 15
Le 11 janv. 2013 à 03:03, Sina Sadeghi s...@aptira.com a écrit :
Kun Huang wrote:
In this wiki, http://wiki.openstack.org/Nova/Rootwrap, the part of
security model results in This chain ensures that the nova user
itself is not in control of the configuration or modules used by the
nova-rootwrap executable. I understand that chain but I`m confused with
this
Hi Yonny,
OpenStack modules such as Cinder are dependent on the Vendor driver on
Openstack to achieve LUN provisioning and maintenance operations on the
respective storage controller.
Object Storage (Swift)
OpenStack Object Storage
(Swift)http://www.openstack.org/software/openstack-storage/ is
On Fri, Jan 11, 2013 at 11:32:08AM +0100, Thierry Carrez wrote:
Kun Huang wrote:
In this wiki, http://wiki.openstack.org/Nova/Rootwrap, the part of
security model results in This chain ensures that the nova user
itself is not in control of the configuration or modules used by the
Hi all,
it's possible to add an audio card to the domain definition when using
libvirt/kvm?
If yes, how it can be done?
I'm using the Folsom release.
Thanks in advance,
Davide.
___
Mailing list: https://launchpad.net/~openstack
Post to :
Daniel P. Berrange wrote:
FWIW, if you've got libguestfs available, the file injection code does
not require any rootwrap usage. Ironically the config drive stuff now
does require root if you configure it to use FAT instead of ISO9660 :-(
My issue is that we enable a very permissive
On Fri, Jan 11, 2013 at 12:29:35PM +0100, Davide Guerri wrote:
Hi all,
it's possible to add an audio card to the domain definition when using
libvirt/kvm?
If yes, how it can be done?
I'm using the Folsom release.
No, there isn't any support for audio devices in Nova / libvirt at this
Hi;
Thanks a lot Razique. I hadn't set OS_TENANT_NAME and now its working now.
I need to work with all openstack nova, glance, swift, keystone CLIs
follow variables I have currently set.
export NOVA_PROJECT_ID
export NOVA_USERNAME
export NOVA_API_KEY
export NOVA_URL
export OS_USERNAME
You only need these for being able to interact with all the endpointsexport SERVICE_TOKEN=admin
export OS_TENANT_NAME=admin
export OS_USERNAME=admin
export OS_PASSWORD=admin
export OS_AUTH_URL="http://10.10.10.2:5000/v2.0/"
export SERVICE_ENDPOINT=http://10.10.10.2:35357/v2.0
Razique Mahroua-Nuage
It's possible send to logs to remote server?
Currently it is configured to send to the local file
I believe it is in the file below
/etc/keystone/logging.conf
[logger_root]
level=DEBUG
handlers=file
[handler_production]
class=handlers.SysLogHandler
level=ERROR
formatter=normal_with_name
I had a long saga of installing devstack:
1. Started with Ubuntu Maverick. Can't install devstack on this
release. fake out apt-sources fails due to dependencies.
2. do-release-upgade on command lines fails in numerous ways:
overflow error -- apparently known
Daniel,
let me explain what I'm trying to do.
I'm trying to setup a simple virtual desktop infrastructure on the top of
OpenStack using both Windows (7 only atm) and Linux guests.
On Linux the missing audio board wouldn't be a problem since I'm planning to
use freeNX or x2go that in turn use
From the README.md
...
We also provide an environment file that you can use to interact with
your cloud via CLI:
# source openrc file to load your environment with osapi and ec2 creds
. openrc
# list instances
nova list
...
-Sean
On 01/11/2013 08:34 AM, Snider, Tim
Hi all,
I am using boto library to access an folsom installation, and I have a few
doubts regarding image IDs.
I understand that boto uses ec2-style id for images (something like ami
ami-16digit number) and that nova API converts glance IDs to EC2 id.
However, it seems that there is no way from
Davide,
If you use KVM, its possible to enable audio.
Please refer http://libvirt.org/formatdomain.html#elementsSound
Here is some infomation about how to enable it in nova:
http://www.gossamer-threads.com/lists/openstack/operators/21302
Haven't test it, I think the steps should be:
1. cp
Highlights of the week
Save the Date – OpenStack Summit Spring 2013
http://www.openstack.org/blog/2013/01/save-the-date-openstack-summit-spring-2013/
*It’s official – the Spring 2013 OpenStack Summit
https://www.openstack.org/summit/portland-2013/ will be held in
Portland,
On Fri, Jan 11, 2013 at 02:56:23PM +0100, Davide Guerri wrote:
Daniel,
let me explain what I'm trying to do.
I'm trying to setup a simple virtual desktop infrastructure on the
top of OpenStack using both Windows (7 only atm) and Linux guests.
On Linux the missing audio board wouldn't be a
On Fri, Jan 11, 2013 at 10:53:25PM +0800, 孙玉新 wrote:
Davide,
If you use KVM, it's possible to enable audio.
Please refer http://libvirt.org/formatdomain.html#elementsSound
Here is some infomation about how to enable it in nova:
Thanks for you reply.
I prefer to modify the Nova code.
2013/1/11 Daniel P. Berrange berra...@redhat.com
On Fri, Jan 11, 2013 at 10:53:25PM +0800, 孙玉新 wrote:
Davide,
If you use KVM, it's possible to enable audio.
Please refer http://libvirt.org/formatdomain.html#elementsSound
On Fri, Jan 11, 2013 at 3:47 AM, Sajid Akhtar mail2akh...@gmail.com wrote:
Hi Yonny,
OpenStack modules such as Cinder are dependent on the Vendor driver on
Openstack to achieve LUN provisioning and maintenance operations on the
respective storage controller.
Object Storage (Swift)
Daniel, 孙玉新
thanks you very much.
I'll try to make a clean patch and I'll submit it to OpenStack.
Cheers!
Davide.
On 11/gen/2013, at 16:11, Daniel P. Berrange berra...@redhat.com wrote:
On Fri, Jan 11, 2013 at 10:53:25PM +0800, 孙玉新 wrote:
Davide,
If you use KVM, it's possible to enable
Hi,
I am trying to setup a VM/instance with two NICs that should act as a gateway
and provide routing service between two quantum networks.
Steps to reproduce:
- Install OpenStack Folsom with Quantum and Horizon
- Quantum Configuration in nova.conf:
# Network settings
Hi Markus,
It kind of depends on exactly how you are routing on the gateway host, but it
might be libvirt-enabled ebtables filtering that is causing your problem here.
By default we block traffic from a machine that is not coming from the same
source ip and mac that is assigned to the
On 01/11/2013 07:31 AM, Alex Vitola wrote:
It's possible send to logs to remote server?
Logging is using the standard Python logging module:
In keystone/common/logging:
import logging
import logging.config
You should be able to configure this to use SysLog:
Sometimes when I boot a bunch of vms seconds apart, using the key_name
argument, some instance will not have its key injected.
I found a bug ticket marked won't fix with a comment from Vish that
key injection was for developer convenience[1]. Of course
the personality argument could also be
Key name is the recommended method, but injecting it into the guest is not. The
key should be downloaded from the metadata server using a guest process like
cloud-init.
Vish
On Jan 11, 2013, at 10:20 AM, David Kranz david.kr...@qrclab.com wrote:
Sometimes when I boot a bunch of vms seconds
Thanks, Thierry Carrez. Your explanation is easy to understand. I have got
why we need such a mechanism.
BTW, is root-wrap a general or popular way to keep security? I have no
experience on security, but I have heard the *root *should be banned
because of security. Ideally, should we ban *root
Thanks Vish, but I am still a little confused. I am using an ubuntu
precise cloudimg and normally when I pass a keyname to boot, the
public key shows up in ~ubuntu/.ssh/authorized_keys.
Looking at the console log, I presume it is the guest cloud-init that is
doing that. But sometimes not. This
If it isn't showing up sometimes, there should be some data in the guest
console log from cloud-init about failing to download the key or failing to get
metadata or something. If you could track down what is going on there it would
be very helpful. If you have some other means to login to the
During execution of stack.sh I get permission denied errors when keystone is
trying to start due to the wrong password being used to start mySQL.
The localrc file has the correct unencoded password:
root@84Server:~/devstack# cat localrc
FLOATING_RANGE=192.168.1.224/27
On Fri, Jan 11, 2013 at 7:34 AM, Snider, Tim tim.sni...@netapp.com wrote:
But then trying to run any of the exercises fails with X11 connection
rejected because of wrong authentication. What didn't I get setup correctly?
The first rulle of devstack is don't run as root. The second rule of
stack.sh isn't completing correctly, even after rerunning as a normal user. A
wrong password is being used when the database is accessed as root@localhost so
that generates permission denied errors and the script errors out fairly
quickly after that. A separate email was sent describing this
Hi guys.
We've created a swift cluster several months ago, the things is that righ
now we cant add hardware and we configured lots of partitions thinking
about the final picture of the cluster.
Today each datanodes is having 2500+ partitions per device, and even tuning
the background processes (
If effect, this would be a complete replacement of your rings, and that is
essentially a whole new cluster. All of the existing data would need to be
rehashed into the new ring before it is available.
There is no process that rehashes the data to ensure that it is still in the
correct
On Fri, Jan 11, 2013 at 2:13 PM, Snider, Tim tim.sni...@netapp.com wrote:
The localrc file has the correct unencoded password:
root@84Server:~/devstack# cat localrc
FLOATING_RANGE=192.168.1.224/27
FIXED_RANGE=10.0.0.0/24
FIXED_NETWORK_SIZE=256
Razique,
Let's think of the following scenario, we use Nova to build an EC2-kind of
compute cluster. For EC2, they offer
M1.Small = 1 vCPU + 1.7GB Mem + 160GB Disk
M1.Medium = 2vCPU + 3.75GB Mem + 410GB Disk
M1.Large = 4vCPU + 7.5GB Mem + 850GB Disk
M1.ExtraLarge = 8.vCPU + 15GB Mem + 1.7TB Dsik
This is for everybody. Look forward having you join us!
Sean Roberts
Infrastructure Strategy
sean...@yahoo-inc.com
Direct (408) 349-5234 Mobile (925) 980-4729
701 First Avenue, Sunnyvale, CA, 94089-0703, US
Phone (408) 349-3300 Fax (408) 349-3301
[http://forgood.zenfs.com/logos/yahoo.png]
On
Title: raring_grizzly_cinder_trunk
General InformationBUILD SUCCESSBuild URL:https://jenkins.qa.ubuntu.com/job/raring_grizzly_cinder_trunk/89/Project:raring_grizzly_cinder_trunkDate of build:Fri, 11 Jan 2013 04:16:12 -0500Build duration:4 min 53 secBuild cause:Started by user yolandaBuilt
Title: precise_grizzly_nova_trunk
General InformationBUILD SUCCESSBuild URL:https://jenkins.qa.ubuntu.com/job/precise_grizzly_nova_trunk/453/Project:precise_grizzly_nova_trunkDate of build:Fri, 11 Jan 2013 16:02:14 -0500Build duration:15 minBuild cause:Started by an SCM changeBuilt
Title: raring_grizzly_nova_trunk
General InformationBUILD SUCCESSBuild URL:https://jenkins.qa.ubuntu.com/job/raring_grizzly_nova_trunk/457/Project:raring_grizzly_nova_trunkDate of build:Fri, 11 Jan 2013 16:08:13 -0500Build duration:15 minBuild cause:Started by an SCM changeBuilt
at 20130111-1912Build needed 00:08:42
Title: precise_grizzly_nova_trunk
General InformationBUILD SUCCESSBuild URL:https://jenkins.qa.ubuntu.com/job/precise_grizzly_nova_trunk/455/Project:precise_grizzly_nova_trunkDate of build:Fri, 11 Jan 2013 19:31:04 -0500Build duration:15 minBuild cause:Started by an SCM changeBuilt
at 20130111
Title: precise_grizzly_deploy
General InformationBUILD FAILUREBuild URL:https://jenkins.qa.ubuntu.com/job/precise_grizzly_deploy/55/Project:precise_grizzly_deployDate of build:Fri, 11 Jan 2013 20:36:03 -0500Build duration:1 min 52 secBuild cause:Started by user adamBuilt on:masterHealth
49 matches
Mail list logo