On 07/23/2013 11:41 PM, David Kang wrote:
A Redhat manual suggests the following rule to enable forwarding packets
among VMs and external network.
https://access.redhat.com/site/documentation/en-US/Red_Hat_OpenStack/2/pdf/Release_Notes/Red_Hat_OpenStack-2-Release_Notes-en-US.pdf
iptables
If I remove the following REJECT rules, it works perfectly.
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
With them, it looks like that the packets are dropped at the bridge before
they can be forwarded.
I ran the iptables
On 07/24/2013 10:42 AM, David Kang wrote:
If I remove the following REJECT rules, it works perfectly.
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
With them, it looks like that the packets are dropped at the bridge before
Thanks, Brian.
My answers are put in your email with --.
David
- Original Message -
On 07/24/2013 10:42 AM, David Kang wrote:
If I remove the following REJECT rules, it works perfectly.
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with
Just some more notes.
It looks like you're running this system as both a network node and compute
node, I think the pdf you found from Redhat assumed the system was a dedicated
network node, i.e. it only had qr- and qg- interfaces, and not ns- as created by
plug() when an instance is booted.
It is strange.
The node is only for Quantum-{linuxbridge, dhcp, l3}-agent.
As far as I know, the quantum private network that is not associated with a
quantum router
has only ns-xxx interface.
The quantum private network otherwise have both ns-xxx and qr-xxx interfaces.
Thanks,
David
-
Hi,
We are running OpenStack Folsom on CentOS 6.4.
Quantum-linuxbridge-agent is used.
By default, the Quantum node has the following entries in its
/etc/sysconfig/iptables file.
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
@lists.launchpad.net
Sent: Tuesday, July 23, 2013 7:22 PM
Subject: [Openstack] [Quantum/Neutron] VM cannot get IP address from DHCP server
Hi,
We are running OpenStack Folsom on CentOS 6.4.
Quantum-linuxbridge-agent is used.
By default, the Quantum node has the following entries in its
/etc/sysconfig
: David Kang dk...@isi.edu
To: openstack@lists.launchpad.net (openstack@lists.launchpad.net)
openstack@lists.launchpad.net
Sent: Tuesday, July 23, 2013 7:22 PM
Subject: [Openstack] [Quantum/Neutron] VM cannot get IP address from
DHCP server
Hi,
We are running OpenStack Folsom on CentOS
Sent: Tuesday, July 23, 2013 7:22 PM
Subject: [Openstack] [Quantum/Neutron] VM cannot get IP address from
DHCP server
Hi,
We are running OpenStack Folsom on CentOS 6.4.
Quantum-linuxbridge-agent is used.
By default, the Quantum node has the following entries in its
/etc/sysconfig
.
Regards,
Gabriel
From: David Kang dk...@isi.edu
To: openstack@lists.launchpad.net (openstack@lists.launchpad.net)
openstack@lists.launchpad.net
Sent: Tuesday, July 23, 2013 7:22 PM
Subject: [Openstack] [Quantum/Neutron] VM cannot get IP address
from
DHCP server
)
openstack@lists.launchpad.net
Sent: Tuesday, July 23, 2013 7:59 PM
Subject: Re: [Openstack] [Quantum/Neutron] VM cannot get IP address from DHCP
server
Thank you for your suggestion.
We are using Quantum/Neutron not nova-network.
So, we don't use br100.
(I believe you are using nova
.
Regards,
Gabriel
From: David Kang dk...@isi.edu
To: openstack@lists.launchpad.net ( openstack@lists.launchpad.net
)
openstack@lists.launchpad.net
Sent: Tuesday, July 23, 2013 7:22 PM
Subject: [Openstack] [Quantum/Neutron] VM cannot get IP address from
DHCP
: [Openstack] [Quantum/Neutron] VM cannot get IP address
from
DHCP server
Hi,
We are running OpenStack Folsom on CentOS 6.4.
Quantum-linuxbridge-agent is used.
By default, the Quantum node has the following entries in its
/etc/sysconfig/iptables file.
-A INPUT -j REJECT
On 07/23/2013 12:22 PM, David Kang wrote:
Hi,
We are running OpenStack Folsom on CentOS 6.4.
Quantum-linuxbridge-agent is used.
By default, the Quantum node has the following entries in its
/etc/sysconfig/iptables file.
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A
Thank you, Brian.
David
- Original Message -
On 07/23/2013 12:22 PM, David Kang wrote:
Hi,
We are running OpenStack Folsom on CentOS 6.4.
Quantum-linuxbridge-agent is used.
By default, the Quantum node has the following entries in its
/etc/sysconfig/iptables file.
A Redhat manual suggests the following rule to enable forwarding packets
among VMs and external network.
https://access.redhat.com/site/documentation/en-US/Red_Hat_OpenStack/2/pdf/Release_Notes/Red_Hat_OpenStack-2-Release_Notes-en-US.pdf
iptables -t filter -I FORWARD -i qr-+ -o qg-+ -j ACCEPT
17 matches
Mail list logo
