Hi Grant,
You should have an IP address configured on the br-vxlan interface of each host.
- Can you confirm connectivity between the hosts using the IP
addresses assigned to br-vxlan? Ping from within the neutron_agents container,
as well, since this is ultimately where the Neutron na
I don’t have the exact steps offhand, but you should be able to create a veth
pair manually, attach one end to your existing bridge, and specify the other
end in the bridge_mappings section. Make sure you set both ends up using ‘ip
link set up’ prior to this. The veth pair will end up linking t
nation that is a single host. Is
there something I can do to establish a routing rule for a destination that is
a CIDR block?
Thanks,
Mike
From:Joseph Bajin mailto:josephba...@gmail.com>>
To: James Denton
mailto:james.den...@rackspace.com>>
Cc:Mike Spreitze
Hi Mike,
You should be able to update the subnet(s) and use the --host-route flag with
destination,nexthop pairs. The routes get pushed via DHCP.
James
Sent from my iPhone
On Apr 2, 2016, at 9:28 PM, Mike Spreitzer
mailto:mspre...@us.ibm.com>> wrote:
Is there a way to attach a routing rule t
Hi Chris,
>> If I set --router:external=False on the Public net, will that cause Neutron
>> to create a purely virtual router based on an instance instead of playing
>> games with the hardware NIC?
No. It simply means that routers cannot be attached to the network using the
router-gateway-set
Hi Adam,
If you're asking whether or not a VM can be attached to an 'external' network
so that the 'public' ip is the fixed IP of them VM, then yes. A Neutron router
can also be attached to the same network so that instances in non-routable
tenant networks can obtain floating IPs from the same
Hi Jason,
Certain commands can only be executed via admin url, which in your case may not
be routable from external networks. You would need to consider changing the
admin endpoint to an ip/FQDN that can be accessed externally (like public url)
or limit the ability to execute those particular c
If eth1 is used for the vxlan tunnel end points, it can't also be used in a
bridge ala provider_bridge_mappings. You should have a dedicated interface or a
vlan interface off eth1 (i.e. Eth1.20) that is dedicated to the overlay
traffic. Move the local_ip address to that interface on respective n
Hi Salman,
The external bridge, br-ex, does not require an IP address. When routers are
connected to the bridge, it is true they procure an address from the external
provider network. The address is applied to the qg interface within the router
namespace.
When instances send traffic out, the r
Hi Charles,
>> The port-security extension was implemented for ML2 with OVS in Kilo but I
>> cannot seem to find any similar implementation for linux-bridge.?
It also works with LinuxBridge in Kilo. To gain this functionality, you'll need
to upgrade the environment from Juno to Kilo.
To ena
In the /etc/neutron/plugins/ml2/ml2_conf.ini file, add the following under
[ml2] and restart the neutron-server service:
extension_drivers = port_security
You may experience the following bugs upon enabling port security:
https://bugs.launchpad.net/neutron/+bug/1461519
https://bugs.launchpa
nd any way to add routes to a router.
>
> I think. "#neutron router-interface-add" command internally add routes to
> router, right ?
>
> Could you please share the command which help us to add routes to a router ?.
>
> Thanks,
>
> Regards
> Saju M
Hi Saju,
Host routes added to a subnet get pushed to the instances in that subnet via
dhcp.
A route added to a router via router-create or router-update is added to the
routing table within the qrouter namespace and affects all connected
subnets/instances.
James
Sent from my iPhone
> On Ju
Hi Miguel,
An external network should really be a vlan or flat network that has some
external gateway in your environment. Although sometimes gre and vxlan network
types are defined in the external provider network configuration, it's usually
seen when the external bridge is br-ex (default) and
Hi Steven,
Can I ask how Kolla would differ from another project on StackForge known as
OpenStack Ansible Deployment (OSAD)? It deploys a production-ready multi-node
OpenStack cloud using containers and Ansible, and the team recently released
v11 based on Kilo. Hate to see duplication of effort
2015 at 5:43 AM, James Denton
mailto:james.den...@rackspace.com>> wrote:
Hi Geo,
When configuring multiple provider bridges, try to think of a 1:1 relationship
between a provider bridge and a physical interface on the host that connects to
a particular switching layer (in many cases). For
16 matches
Mail list logo
