[ovirt-users] Upgrade method for 3.5 node
Hello, I have upgraded my engine to 3.6 (el6) and would now like to do the same on my 3.5 (el7) node. The node was built using a minimal Centos7 ISO and then I installed the 3.5 rpm. How best would I go about performing the upgrade please ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] noVNC not working
Any more ideas how I can get this working again please ? :( - On 4 Nov, 2015, at 14:26, Phil Daws ux...@splatnix.net wrote: > Hi Frank, > > Gave this a try by backleveling noVNC and still the same error :( > -- > Regards, Phil > > - On 2 Nov, 2015, at 22:23, Frank Wall f...@moov.de wrote: > >> Hi Phil, >> >> On Mon, Nov 02, 2015 at 04:38:14PM +, Phil Daws wrote: >>> have attempted to downgrade noVNC (novnc-0.4-7.el6.noarch) but it still down >>> not work. >> >> I was hit by the same issue. If I remember correctly I had to do the >> following >> to resurrect noVNC (on EL7): >> >> wget >> http://cbs.centos.org/kojifiles/packages/novnc/0.4/9.el7/noarch/novnc-0.4-9.el7.noarch.rpm >> rpm -Uvh --oldpackage novnc-0.4-9.el7.noarch.rpm >> wget >> http://cbs.centos.org/kojifiles/packages/python-websockify/0.5.1/2.el7/noarch/python-websockify-0.5.1-2.el7.noarch.rpm >> rpm -Uvh --oldpackage python-websockify-0.5.1-2.el7.noarch.rpm >> systemctl restart ovirt-websocket-proxy.service >> systemctl status ovirt-websocket-proxy.service >> >> https://bugzilla.redhat.com/show_bug.cgi?id=1202356 >> >> >> Regards >> - Frank > > > ___ > Users mailing list > Users@ovirt.org > http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[ovirt-users] oVirt 3.5 -> 3.6 engine upgrade failure
Hello, I have been having an issue with noVNC where it would not connect too the console of my machines. So, I though I would take the plunge and upgrade the engine which is standalone on a VM Workstation 10 guest running CentOS 6. The steps I followed were: # yum install http://resources.ovirt.org/pub/yum-repo/ovirt-release36.rpm # yum update "ovirt-engine-setup*" # engine-setup followed the prompts until completion: [ INFO ] Starting engine service [ INFO ] Restarting httpd [ INFO ] Stage: Clean up Log file is located at /var/log/ovirt-engine/setup/ovirt-engine-setup-20151105171406-g6bzdc.log [ INFO ] Generating answer file '/var/lib/ovirt-engine/setup/answers/20151105172125-setup.conf' [ INFO ] Stage: Pre-termination [ INFO ] Stage: Termination [ INFO ] Execution of setup completed successfully I then went to the shown URL https://engine-manager.mydomain.com:443/ovirt-engine and was greated with a 404 file not found error :( On checking /var/log/ovirt-engine/engine.log its reporting: 2015-11-05 17:21:44,025 ERROR [org.ovirt.engine.core.bll.Backend] (ServerService Thread Pool -- 41) [] Error during initialization: java.lang.RuntimeException: osinfo properties syntax error: /etc/ovirt-engine/osinfo.conf.d/10-osinfo.properties: 7, 32: error: Encountered " "numberOsCpus "" at line 7, column 33. Was expecting one of: "ram" ... "disksize" ... "numberOfCpus" ... at org.ovirt.engine.core.utils.osinfo.OsinfoPropertiesParser.parse(OsinfoPropertiesParser.java:31) [utils.jar:] at org.ovirt.engine.core.utils.osinfo.OsInfoPreferencesLoader.load(OsInfoPreferencesLoader.java:57) [utils.jar:] at org.ovirt.engine.core.utils.osinfo.OsInfoPreferencesLoader.init(OsInfoPreferencesLoader.java:37) [utils.jar:] It very much looks like the engine is not supported on a VM guest :( All help appreciated please! :) Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5 -> 3.6 engine upgrade failure
Hi Alex, Fixed the issue! It would appear that a previous coniguration in /etc/ovirt-engine/osinfo.conf.d/10-osinfo.properties was causing the issue due to missing parameters. I hashed out the entries and restart the engine and now all is working fine, plus it has resolved my noVNC issue! Appreciate the response. Thanks, Phil - On 5 Nov, 2015, at 17:30, Alex Crow ac...@integrafin.co.uk wrote: > Encountered " "numberOsCpus "" at line 7, column 33. > > Was expecting one of: "ram" ... "disksize" ... "numberOfCpus" > > Typo bug maybe? See "...Os..." vs "...Of..." > -- > This message is intended only for the addressee and may contain > confidential information. Unless you are that person, you may not > disclose its contents or use it in any way and are requested to delete > the message along with any attachments and notify us immediately. > This email is not intended to, nor should it be taken to, constitute advice. > The information provided is correct to our knowledge & belief and must not > be used as a substitute for obtaining tax, regulatory, investment, legal or > any other appropriate advice. > > "Transact" is operated by Integrated Financial Arrangements Ltd. > 29 Clement's Lane, London EC4N 7AE. Tel: (020) 7608 4900 Fax: (020) 7608 5300. > (Registered office: as above; Registered in England and Wales under > number: 3727592). Authorised and regulated by the Financial Conduct > Authority (entered on the Financial Services Register; no. 190856). > ___ > Users mailing list > Users@ovirt.org > http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] noVNC not working
Hi Frank, Gave this a try by backleveling noVNC and still the same error :( -- Regards, Phil - On 2 Nov, 2015, at 22:23, Frank Wall f...@moov.de wrote: > Hi Phil, > > On Mon, Nov 02, 2015 at 04:38:14PM +0000, Phil Daws wrote: >> have attempted to downgrade noVNC (novnc-0.4-7.el6.noarch) but it still down >> not work. > > I was hit by the same issue. If I remember correctly I had to do the following > to resurrect noVNC (on EL7): > > wget > http://cbs.centos.org/kojifiles/packages/novnc/0.4/9.el7/noarch/novnc-0.4-9.el7.noarch.rpm > rpm -Uvh --oldpackage novnc-0.4-9.el7.noarch.rpm > wget > http://cbs.centos.org/kojifiles/packages/python-websockify/0.5.1/2.el7/noarch/python-websockify-0.5.1-2.el7.noarch.rpm > rpm -Uvh --oldpackage python-websockify-0.5.1-2.el7.noarch.rpm > systemctl restart ovirt-websocket-proxy.service > systemctl status ovirt-websocket-proxy.service > > https://bugzilla.redhat.com/show_bug.cgi?id=1202356 > > > Regards > - Frank ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[ovirt-users] noVNC not working
Hello: I upgraded my engine manager (ovirt-engine-3.5.0.1-1.el6.noarch) at the weekend and noVNC is no longer working :( The error I am getting is: Failed to connect to server (code: 1006) have attempted to downgrade noVNC (novnc-0.4-7.el6.noarch) but it still down not work. CA.crt has been imported again and am using a commercial SSL certificate. Any ideas please ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] Jumbo Frames
I think it should be something like:
def addMTU(interface, mtusize):
mtu = interface.createElement('mtu')
add_attributes(mtu, 'size')
mtu.setAttribute('size', mtusize)
def main():
mtusize = os.environ.get('extnet_mtu')
if mtusize is not None:
doc = hooking.read_domxml()
addMTU(doc, mtusize)
hooking.write_domxml(doc)
- Original Message -
From: Antoni Segura Puimedon asegu...@redhat.com
To: Phil Daws ux...@splatnix.net
Cc: users users@ovirt.org
Sent: Friday, 21 November, 2014 11:40:10 AM
Subject: Re: [ovirt-users] Jumbo Frames
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users users@ovirt.org
Sent: Friday, November 21, 2014 11:45:10 AM
Subject: Re: [ovirt-users] Jumbo Frames
Hmm, if an property does not already exist how does one add it ?
def replaceMTU(interface, newmtu):
mtu = interface.getElementsByTagName('mtu')[0]
if not mtu.hasAttribute('size'):
mtu.setAttribute('mtu size', newmtu)
def main():
newmtu = os.environ.get('extnet_mtu')
if newmtu is not None:
doc = hooking.read_domxml()
interface, = doc.getElementsByTagName('interface')
replaceMTU(interface, newmtu)
hooking.write_domxml(doc)
When I test this code it throws and error:
mtu = interface.getElementsByTagName('mtu')[0]
IndexError: list index out of range
so somehow I need to detect that element needs to be set.
Could you please post how the libvirt xml should look like after the
current hook (if it supported setting the mtu?
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users users@ovirt.org
Sent: Friday, 21 November, 2014 10:16:48 AM
Subject: Re: [ovirt-users] Jumbo Frames
works with:
engine-config -s
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$;extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}};'
Now just need to sort out the Python code ;)
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users users@ovirt.org
Sent: Friday, 21 November, 2014 10:01:23 AM
Subject: Re: [ovirt-users] Jumbo Frames
Ah, it looks like I need to the MTU on the underlying vnet interface
therefore should be able to extend the hook to include mtu size=9000/.
Have tried to add an additional property using:
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};{extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}};'
but it fails with the following error:
Cannot set value {type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};{extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}}; to key CustomDeviceProperties. Invalid syntax, custom device
properties specification should conform to
\{type=(disk|interface|video|sound|controller|balloon|channel|redir|console|rng|smartcard|watchdog);prop=\{((([a-z_A-Z0-9])+)=(([^;])*)(;(([a-z_A-Z0-9])+)=(([^;])*))*;?)?\}\}[;]?
I did try:
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};prop={extnet_mtu=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$}};'
but that just gave me a new property of 'prop' :)
Any help appreciated please.
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: Dan Yasny dya...@gmail.com
Cc: users users@ovirt.org
Sent: Friday, 21 November, 2014 8:49:51 AM
Subject: Re: [ovirt-users] Jumbo Frames
Hello Dan:
We are using OVS for SFlow and OSPF functionality. You can see that the
bridge was correctly set:
ovirtmgmt: flags=4163UP,BROADCAST,RUNNING,MULTICAST mtu 9000
Very odd as OVS is unaware of whether its jumbo frames or not.
Thanks, Phil
- Original Message -
From: Dan Yasny dya...@gmail.com
To: Phil Daws ux...@splatnix.net
Cc: users users@ovirt.org
Sent: Friday, 21 November, 2014 1:39:32 AM
Subject: Re: [ovirt-users] Jumbo Frames
Why do you use OVS at all? If you have VLANs, all you need is to tag the mgmt
traffic, and create a VM traffic VLAN with a different MTU. The bridge and
underlying NICs will have MTU=9000 and the VM bridge will have MTU=1500
On Thu, Nov 20, 2014 at 7:40 PM, Phil Daws ux...@splatnix.net wrote:
Hello:
am really enjoying oVirt but have now hit an issue with iSCSI. As there is
only one NIC in the host I have had to enable an MTU of 9000 on ovirtmgmt.
Then have vNIC profiles on that interface which are using a custom hook for
Openvswitch. I have created a specific vLAN for iSCSI traffic and on the
initiator and targets have set their respective interface MTUs to be 9000.
When I connect to a LUN it is timing out straight away with a 1011 error. If
I drop the MTU back to 1500 all works okay. This is all fine on my other
KVM, non-oVirt, system so am wondering if I have missed a step ?
Thanks, Phil
___
Users mailing
Re: [ovirt-users] Jumbo Frames
Hello Dan: We are using OVS for SFlow and OSPF functionality. You can see that the bridge was correctly set: ovirtmgmt: flags=4163UP,BROADCAST,RUNNING,MULTICAST mtu 9000 Very odd as OVS is unaware of whether its jumbo frames or not. Thanks, Phil - Original Message - From: Dan Yasny dya...@gmail.com To: Phil Daws ux...@splatnix.net Cc: users users@ovirt.org Sent: Friday, 21 November, 2014 1:39:32 AM Subject: Re: [ovirt-users] Jumbo Frames Why do you use OVS at all? If you have VLANs, all you need is to tag the mgmt traffic, and create a VM traffic VLAN with a different MTU. The bridge and underlying NICs will have MTU=9000 and the VM bridge will have MTU=1500 On Thu, Nov 20, 2014 at 7:40 PM, Phil Daws ux...@splatnix.net wrote: Hello: am really enjoying oVirt but have now hit an issue with iSCSI. As there is only one NIC in the host I have had to enable an MTU of 9000 on ovirtmgmt. Then have vNIC profiles on that interface which are using a custom hook for Openvswitch. I have created a specific vLAN for iSCSI traffic and on the initiator and targets have set their respective interface MTUs to be 9000. When I connect to a LUN it is timing out straight away with a 1011 error. If I drop the MTU back to 1500 all works okay. This is all fine on my other KVM, non-oVirt, system so am wondering if I have missed a step ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] Jumbo Frames
Dan: How would you suggestion work as you can only assign one network to an interface? as mentioned we only have one NIC in the server so hence using OVS to VLAN. Thanks, Phil - Original Message - From: Dan Yasny dya...@gmail.com To: Phil Daws ux...@splatnix.net Cc: users users@ovirt.org Sent: Friday, 21 November, 2014 1:39:32 AM Subject: Re: [ovirt-users] Jumbo Frames Why do you use OVS at all? If you have VLANs, all you need is to tag the mgmt traffic, and create a VM traffic VLAN with a different MTU. The bridge and underlying NICs will have MTU=9000 and the VM bridge will have MTU=1500 On Thu, Nov 20, 2014 at 7:40 PM, Phil Daws ux...@splatnix.net wrote: Hello: am really enjoying oVirt but have now hit an issue with iSCSI. As there is only one NIC in the host I have had to enable an MTU of 9000 on ovirtmgmt. Then have vNIC profiles on that interface which are using a custom hook for Openvswitch. I have created a specific vLAN for iSCSI traffic and on the initiator and targets have set their respective interface MTUs to be 9000. When I connect to a LUN it is timing out straight away with a 1011 error. If I drop the MTU back to 1500 all works okay. This is all fine on my other KVM, non-oVirt, system so am wondering if I have missed a step ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] Jumbo Frames
Ah, it looks like I need to the MTU on the underlying vnet interface therefore
should be able to extend the hook to include mtu size=9000/.
Have tried to add an additional property using:
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};{extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}};'
but it fails with the following error:
Cannot set value {type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};{extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}}; to key CustomDeviceProperties. Invalid syntax, custom device
properties specification should conform to
\{type=(disk|interface|video|sound|controller|balloon|channel|redir|console|rng|smartcard|watchdog);prop=\{((([a-z_A-Z0-9])+)=(([^;])*)(;(([a-z_A-Z0-9])+)=(([^;])*))*;?)?\}\}[;]?
I did try:
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};prop={extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}};'
but that just gave me a new property of 'prop' :)
Any help appreciated please.
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: Dan Yasny dya...@gmail.com
Cc: users users@ovirt.org
Sent: Friday, 21 November, 2014 8:49:51 AM
Subject: Re: [ovirt-users] Jumbo Frames
Hello Dan:
We are using OVS for SFlow and OSPF functionality. You can see that the bridge
was correctly set:
ovirtmgmt: flags=4163UP,BROADCAST,RUNNING,MULTICAST mtu 9000
Very odd as OVS is unaware of whether its jumbo frames or not.
Thanks, Phil
- Original Message -
From: Dan Yasny dya...@gmail.com
To: Phil Daws ux...@splatnix.net
Cc: users users@ovirt.org
Sent: Friday, 21 November, 2014 1:39:32 AM
Subject: Re: [ovirt-users] Jumbo Frames
Why do you use OVS at all? If you have VLANs, all you need is to tag the mgmt
traffic, and create a VM traffic VLAN with a different MTU. The bridge and
underlying NICs will have MTU=9000 and the VM bridge will have MTU=1500
On Thu, Nov 20, 2014 at 7:40 PM, Phil Daws ux...@splatnix.net wrote:
Hello:
am really enjoying oVirt but have now hit an issue with iSCSI. As there is only
one NIC in the host I have had to enable an MTU of 9000 on ovirtmgmt. Then have
vNIC profiles on that interface which are using a custom hook for Openvswitch.
I have created a specific vLAN for iSCSI traffic and on the initiator and
targets have set their respective interface MTUs to be 9000. When I connect to
a LUN it is timing out straight away with a 1011 error. If I drop the MTU back
to 1500 all works okay. This is all fine on my other KVM, non-oVirt, system so
am wondering if I have missed a step ?
Thanks, Phil
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] Jumbo Frames
works with:
engine-config -s
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$;extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}};'
Now just need to sort out the Python code ;)
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users users@ovirt.org
Sent: Friday, 21 November, 2014 10:01:23 AM
Subject: Re: [ovirt-users] Jumbo Frames
Ah, it looks like I need to the MTU on the underlying vnet interface therefore
should be able to extend the hook to include mtu size=9000/.
Have tried to add an additional property using:
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};{extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}};'
but it fails with the following error:
Cannot set value {type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};{extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}}; to key CustomDeviceProperties. Invalid syntax, custom device
properties specification should conform to
\{type=(disk|interface|video|sound|controller|balloon|channel|redir|console|rng|smartcard|watchdog);prop=\{((([a-z_A-Z0-9])+)=(([^;])*)(;(([a-z_A-Z0-9])+)=(([^;])*))*;?)?\}\}[;]?
I did try:
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};prop={extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}};'
but that just gave me a new property of 'prop' :)
Any help appreciated please.
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: Dan Yasny dya...@gmail.com
Cc: users users@ovirt.org
Sent: Friday, 21 November, 2014 8:49:51 AM
Subject: Re: [ovirt-users] Jumbo Frames
Hello Dan:
We are using OVS for SFlow and OSPF functionality. You can see that the bridge
was correctly set:
ovirtmgmt: flags=4163UP,BROADCAST,RUNNING,MULTICAST mtu 9000
Very odd as OVS is unaware of whether its jumbo frames or not.
Thanks, Phil
- Original Message -
From: Dan Yasny dya...@gmail.com
To: Phil Daws ux...@splatnix.net
Cc: users users@ovirt.org
Sent: Friday, 21 November, 2014 1:39:32 AM
Subject: Re: [ovirt-users] Jumbo Frames
Why do you use OVS at all? If you have VLANs, all you need is to tag the mgmt
traffic, and create a VM traffic VLAN with a different MTU. The bridge and
underlying NICs will have MTU=9000 and the VM bridge will have MTU=1500
On Thu, Nov 20, 2014 at 7:40 PM, Phil Daws ux...@splatnix.net wrote:
Hello:
am really enjoying oVirt but have now hit an issue with iSCSI. As there is only
one NIC in the host I have had to enable an MTU of 9000 on ovirtmgmt. Then have
vNIC profiles on that interface which are using a custom hook for Openvswitch.
I have created a specific vLAN for iSCSI traffic and on the initiator and
targets have set their respective interface MTUs to be 9000. When I connect to
a LUN it is timing out straight away with a 1011 error. If I drop the MTU back
to 1500 all works okay. This is all fine on my other KVM, non-oVirt, system so
am wondering if I have missed a step ?
Thanks, Phil
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] Jumbo Frames
Hmm, if an property does not already exist how does one add it ?
def replaceMTU(interface, newmtu):
mtu = interface.getElementsByTagName('mtu')[0]
if not mtu.hasAttribute('size'):
mtu.setAttribute('mtu size', newmtu)
def main():
newmtu = os.environ.get('extnet_mtu')
if newmtu is not None:
doc = hooking.read_domxml()
interface, = doc.getElementsByTagName('interface')
replaceMTU(interface, newmtu)
hooking.write_domxml(doc)
When I test this code it throws and error:
mtu = interface.getElementsByTagName('mtu')[0]
IndexError: list index out of range
so somehow I need to detect that element needs to be set.
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users users@ovirt.org
Sent: Friday, 21 November, 2014 10:16:48 AM
Subject: Re: [ovirt-users] Jumbo Frames
works with:
engine-config -s
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$;extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}};'
Now just need to sort out the Python code ;)
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users users@ovirt.org
Sent: Friday, 21 November, 2014 10:01:23 AM
Subject: Re: [ovirt-users] Jumbo Frames
Ah, it looks like I need to the MTU on the underlying vnet interface therefore
should be able to extend the hook to include mtu size=9000/.
Have tried to add an additional property using:
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};{extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}};'
but it fails with the following error:
Cannot set value {type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};{extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}}; to key CustomDeviceProperties. Invalid syntax, custom device
properties specification should conform to
\{type=(disk|interface|video|sound|controller|balloon|channel|redir|console|rng|smartcard|watchdog);prop=\{((([a-z_A-Z0-9])+)=(([^;])*)(;(([a-z_A-Z0-9])+)=(([^;])*))*;?)?\}\}[;]?
I did try:
CustomDeviceProperties='{type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$};prop={extnet_mtu=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_
---]+|)$}};'
but that just gave me a new property of 'prop' :)
Any help appreciated please.
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: Dan Yasny dya...@gmail.com
Cc: users users@ovirt.org
Sent: Friday, 21 November, 2014 8:49:51 AM
Subject: Re: [ovirt-users] Jumbo Frames
Hello Dan:
We are using OVS for SFlow and OSPF functionality. You can see that the bridge
was correctly set:
ovirtmgmt: flags=4163UP,BROADCAST,RUNNING,MULTICAST mtu 9000
Very odd as OVS is unaware of whether its jumbo frames or not.
Thanks, Phil
- Original Message -
From: Dan Yasny dya...@gmail.com
To: Phil Daws ux...@splatnix.net
Cc: users users@ovirt.org
Sent: Friday, 21 November, 2014 1:39:32 AM
Subject: Re: [ovirt-users] Jumbo Frames
Why do you use OVS at all? If you have VLANs, all you need is to tag the mgmt
traffic, and create a VM traffic VLAN with a different MTU. The bridge and
underlying NICs will have MTU=9000 and the VM bridge will have MTU=1500
On Thu, Nov 20, 2014 at 7:40 PM, Phil Daws ux...@splatnix.net wrote:
Hello:
am really enjoying oVirt but have now hit an issue with iSCSI. As there is only
one NIC in the host I have had to enable an MTU of 9000 on ovirtmgmt. Then have
vNIC profiles on that interface which are using a custom hook for Openvswitch.
I have created a specific vLAN for iSCSI traffic and on the initiator and
targets have set their respective interface MTUs to be 9000. When I connect to
a LUN it is timing out straight away with a 1011 error. If I drop the MTU back
to 1500 all works okay. This is all fine on my other KVM, non-oVirt, system so
am wondering if I have missed a step ?
Thanks, Phil
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users
[ovirt-users] Jumbo Frames
Hello: am really enjoying oVirt but have now hit an issue with iSCSI. As there is only one NIC in the host I have had to enable an MTU of 9000 on ovirtmgmt. Then have vNIC profiles on that interface which are using a custom hook for Openvswitch. I have created a specific vLAN for iSCSI traffic and on the initiator and targets have set their respective interface MTUs to be 9000. When I connect to a LUN it is timing out straight away with a 1011 error. If I drop the MTU back to 1500 all works okay. This is all fine on my other KVM, non-oVirt, system so am wondering if I have missed a step ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5 NAT
With thanks to Antoni we have this working now. The working hook may be viewed
at http://paste.fedoraproject.org/152070/
- Original Message -
From: Phil Daws ux...@splatnix.net
To: Antoni Segura Puimedon asegu...@redhat.com
Cc: users users@ovirt.org
Sent: Monday, 17 November, 2014 3:30:09 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
Finally got chance to test this but unfortunately it did not work. I did make
a change to replace:
HOOK_NAME = 'extnet_pg'
with
HOOK_NAME = 'extnet_ovs'
and on the engine it looks okay:
CustomDeviceProperties: {type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$}} version: 3.5
and when I checked vdsm.log it is being called okay when the VM first starts
after adding the additional NICs.
How am I able to debug please ?
Thanks, Phil
- Original Message -
From: Antoni Segura Puimedon asegu...@redhat.com
To: Phil Daws ux...@splatnix.net
Cc: users@ovirt.org
Sent: Sunday, 2 November, 2014 2:21:20 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users@ovirt.org
Sent: Saturday, November 1, 2014 9:31:53 AM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
Is there anybody who can help with this please ?
Of course
Am pretty sure all I need
to be able to do know is create a network hook that changes a VM XML from:
interface type='bridge'
mac address='00:1a:4a:83:fb:00'/
source bridge='ovirtmgmt'/
target dev='vnet0'/
model type='virtio'/
filterref filter='vdsm-no-mac-spoofing'/
link state='up'/
bandwidth
/bandwidth
alias name='net0'/
address type='pci' domain='0x' bus='0x00' slot='0x03'
function='0x0'/
/interface
to something like:
interface type='network'
mac address='00:1a:4a:83:fb:00'/
source network='ovs-network' portgroup='vlan-20'/
model type='virtio'/
link state='up'/
alias name='net0'/
address type='pci' domain='0x' bus='0x00' slot='0x03'
function='0x0'/
/interface
so replacing the bridge with a network and setting the network to be the OVS
one I have defined.
Any ideas please ? Thanks, Phil
If you just need to do that it's relatively simple. You just need to create a
python executable and put it in:
- /usr/libexec/vdsm/hooks/before_device_create
- /usr/libexec/vdsm/hooks/before_nic_hotplug
Then, the content should be something like the following:
#!/usr/bin/env python
Tweak an interface defintion so that it uses a specific network and port
group.
It applies on a per vnic basis, it gets triggered and used by two different
events:
* before_device_create
* before_nic_hotplug
This hook can be used to force a VM to use a libvirt network that is managed
outside of ovirt, such as an openvswitch network, or libvirt's default
network.
import os
import sys
import traceback
import xml.dom
import hooking
HOOK_NAME = 'extnet_pg'
def replaceSource(interface, newnet, port_group=None):
source, = interface.getElementsByTagName('source')
source.removeAttribute('bridge')
source.setAttribute('network', newnet)
if port_group is not None:
source.setAttribute('portgroup', port_group)
interface.setAttribute('type', 'network')
def main():
newnet = os.environ.get('extnet')
if ':' in newnet:
newnet, port_group = newnet.split(':')
if newnet is not None:
doc = hooking.read_domxml()
interface, = doc.getElementsByTagName('interface')
replaceSource(interface, newnet)
hooking.write_domxml(doc)
def test():
interface = xml.dom.minidom.parseString(
interface type=bridge
address bus=0x00 domain=0x function=0x0 slot=0x03\
type=pci/
mac address=00:1a:4a:16:01:b0/
model type=virtio/
source bridge=ovirtmgmt/
filterref filter=vdsm-no-mac-spoofing/
link state=up/
boot order=1/
/interface
).getElementsByTagName('interface')[0]
print Interface before forcing network: %s % \
interface.toxml(encoding='UTF-8')
replaceSource(interface, 'yipee')
print Interface after forcing network: %s % \
interface.toxml(encoding='UTF-8')
replaceSource(interface, 'ovs-network', port_group='vlan-20')
print Interface after forcing network and port group: %s % \
interface.toxml(encoding='UTF-8')
if __name__ == '__main__':
try:
if '--test' in sys.argv:
test()
else:
main()
except:
hooking.exit_hook('extnet hook: [unexpected error]: %s\n
Re: [ovirt-users] oVirt 3.5 NAT
Yes, thank you Robert. The hook is working wonderfully! Have a single NIC on the VDSM host configured with public IP, then OVS installed, and VLANs hanging off that to a guest which is acting as the firewall to internal/NAT systems. [root@vmh01 ~]# ovs-vsctl show 077da472-acf6-4141-bd9d-8e42047d3efc Bridge ovsbr0 Port vnet4 tag: 14 Interface vnet4 Port vnet2 tag: 10 Interface vnet2 Port ovsbr0 Interface ovsbr0 type: internal Port vnet3 tag: 14 Interface vnet3 Port vnet1 tag: 8 Interface vnet1 ovs_version: 2.3.90 - Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Robert Story rst...@tislabs.com Cc: users@ovirt.org Sent: Wednesday, 19 November, 2014 3:28:22 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT - Original Message - From: Robert Story rst...@tislabs.com To: users@ovirt.org Sent: Wednesday, November 19, 2014 2:30:49 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT On Wed, 19 Nov 2014 09:03:44 + (GMT) Phil wrote: PD With thanks to Antoni we have this working now. The working hook may PD be viewed at http://paste.fedoraproject.org/152070/ I'd hate for this info to get lost, so I added a page in the oVirt wiki. I haven't actually tried it, but just pulled info from this thread. Can you review the page and see if it look right to you, or if I missed anything? http://www.ovirt.org/VDSM-Hooks/network-nat Thanks Robert! Robert -- Senior Software Engineer @ Parsons ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5 NAT
Finally got chance to test this but unfortunately it did not work. I did make
a change to replace:
HOOK_NAME = 'extnet_pg'
with
HOOK_NAME = 'extnet_ovs'
and on the engine it looks okay:
CustomDeviceProperties: {type=interface;prop={extnet_ovs=^[a-zA-Z0-9_
---]+(:[a-zA-Z0-9_ ---]+|)$}} version: 3.5
and when I checked vdsm.log it is being called okay when the VM first starts
after adding the additional NICs.
How am I able to debug please ?
Thanks, Phil
- Original Message -
From: Antoni Segura Puimedon asegu...@redhat.com
To: Phil Daws ux...@splatnix.net
Cc: users@ovirt.org
Sent: Sunday, 2 November, 2014 2:21:20 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users@ovirt.org
Sent: Saturday, November 1, 2014 9:31:53 AM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
Is there anybody who can help with this please ?
Of course
Am pretty sure all I need
to be able to do know is create a network hook that changes a VM XML from:
interface type='bridge'
mac address='00:1a:4a:83:fb:00'/
source bridge='ovirtmgmt'/
target dev='vnet0'/
model type='virtio'/
filterref filter='vdsm-no-mac-spoofing'/
link state='up'/
bandwidth
/bandwidth
alias name='net0'/
address type='pci' domain='0x' bus='0x00' slot='0x03'
function='0x0'/
/interface
to something like:
interface type='network'
mac address='00:1a:4a:83:fb:00'/
source network='ovs-network' portgroup='vlan-20'/
model type='virtio'/
link state='up'/
alias name='net0'/
address type='pci' domain='0x' bus='0x00' slot='0x03'
function='0x0'/
/interface
so replacing the bridge with a network and setting the network to be the OVS
one I have defined.
Any ideas please ? Thanks, Phil
If you just need to do that it's relatively simple. You just need to create a
python executable and put it in:
- /usr/libexec/vdsm/hooks/before_device_create
- /usr/libexec/vdsm/hooks/before_nic_hotplug
Then, the content should be something like the following:
#!/usr/bin/env python
Tweak an interface defintion so that it uses a specific network and port
group.
It applies on a per vnic basis, it gets triggered and used by two different
events:
* before_device_create
* before_nic_hotplug
This hook can be used to force a VM to use a libvirt network that is managed
outside of ovirt, such as an openvswitch network, or libvirt's default
network.
import os
import sys
import traceback
import xml.dom
import hooking
HOOK_NAME = 'extnet_pg'
def replaceSource(interface, newnet, port_group=None):
source, = interface.getElementsByTagName('source')
source.removeAttribute('bridge')
source.setAttribute('network', newnet)
if port_group is not None:
source.setAttribute('portgroup', port_group)
interface.setAttribute('type', 'network')
def main():
newnet = os.environ.get('extnet')
if ':' in newnet:
newnet, port_group = newnet.split(':')
if newnet is not None:
doc = hooking.read_domxml()
interface, = doc.getElementsByTagName('interface')
replaceSource(interface, newnet)
hooking.write_domxml(doc)
def test():
interface = xml.dom.minidom.parseString(
interface type=bridge
address bus=0x00 domain=0x function=0x0 slot=0x03\
type=pci/
mac address=00:1a:4a:16:01:b0/
model type=virtio/
source bridge=ovirtmgmt/
filterref filter=vdsm-no-mac-spoofing/
link state=up/
boot order=1/
/interface
).getElementsByTagName('interface')[0]
print Interface before forcing network: %s % \
interface.toxml(encoding='UTF-8')
replaceSource(interface, 'yipee')
print Interface after forcing network: %s % \
interface.toxml(encoding='UTF-8')
replaceSource(interface, 'ovs-network', port_group='vlan-20')
print Interface after forcing network and port group: %s % \
interface.toxml(encoding='UTF-8')
if __name__ == '__main__':
try:
if '--test' in sys.argv:
test()
else:
main()
except:
hooking.exit_hook('extnet hook: [unexpected error]: %s\n' %
traceback.format_exc())
This is a modification of the existing extnet hook. Then, to use it, go to the
engine machine's command line and do:
sudo engine-config -s CustomDeviceProperties=\
'{type=interface;prop={extnet_pg=^[a-zA-Z0-9_ ---]+(:[a-zA-Z0-9_ ---]+|)$}}'
Verify that it was properly added
sudo engine
[ovirt-users] noVNC
Hi: I have my VDSM service and engine up and running now am trying to create a VM. As my client machine is Windows 8.1 Pro I am trying to use noVNC to connect. Am not using a self signed SSL cert but every time I try and connect it says connect timeout. Port on the engine is listening fine: tcp0 0 0.0.0.0:61000.0.0.0:* LISTEN 1964/python What could I be doing wrong please ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] noVNC
VM guest is CentOS 7 and it is at install time. -Original Message- From: Anatoly Litvosky [tlito...@redhat.com] Received: Sunday, 16 Nov 2014, 15:50 To: Phil Daws [ux...@splatnix.net] CC: users@ovirt.org Subject: Re: [ovirt-users] noVNC Can you ping the win guest ? On Sun, 2014-11-16 at 15:37 +, Phil Daws wrote: Hi: I have my VDSM service and engine up and running now am trying to create a VM. As my client machine is Windows 8.1 Pro I am trying to use noVNC to connect. Am not using a self signed SSL cert but every time I try and connect it says connect timeout. Port on the engine is listening fine: tcp0 0 0.0.0.0:61000.0.0.0:* LISTEN 1964/python What could I be doing wrong please ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] noVNC
resolved. CN mismatch even though using wildcard cert. - Original Message - From: Phil Daws phil.d...@innovot.com To: ux...@splatnix.net, tlito...@redhat.com Cc: users@ovirt.org Sent: Sunday, 16 November, 2014 4:33:32 PM Subject: RE: [ovirt-users] noVNC VM guest is CentOS 7 and it is at install time. -Original Message- From: Anatoly Litvosky [tlito...@redhat.com] Received: Sunday, 16 Nov 2014, 15:50 To: Phil Daws [ux...@splatnix.net] CC: users@ovirt.org Subject: Re: [ovirt-users] noVNC Can you ping the win guest ? On Sun, 2014-11-16 at 15:37 +, Phil Daws wrote: Hi: I have my VDSM service and engine up and running now am trying to create a VM. As my client machine is Windows 8.1 Pro I am trying to use noVNC to connect. Am not using a self signed SSL cert but every time I try and connect it says connect timeout. Port on the engine is listening fine: tcp 0 0 0.0.0.0:6100 0.0.0.0:* LISTEN 1964/python What could I be doing wrong please ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[ovirt-users] Multiple ISO Storage Domains
Hello: How does one create multiple ISO domains ? if I try it just throws a general error Error while executing action New NFS Storage Domain: Error creating a storage domain. And if the question is asked why would one require multiple ISO domains its when one has clusters in multiple data centers. Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] Multiple ISO Storage Domains
Answered this myself! :( - Original Message - From: Phil Daws ux...@splatnix.net To: users users@ovirt.org Sent: Wednesday, 12 November, 2014 2:54:19 PM Subject: [ovirt-users] Multiple ISO Storage Domains Hello: How does one create multiple ISO domains ? if I try it just throws a general error Error while executing action New NFS Storage Domain: Error creating a storage domain. And if the question is asked why would one require multiple ISO domains its when one has clusters in multiple data centers. Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] Multiple ISO Storage Domains
Exactly. That is why I answered it myself and moved to the bottom of the class :( Thanks. - Original Message - From: Itamar Heim ih...@redhat.com To: Phil Daws ux...@splatnix.net, users users@ovirt.org Sent: Wednesday, 12 November, 2014 3:25:51 PM Subject: Re: [ovirt-users] Multiple ISO Storage Domains On 11/12/2014 04:58 PM, Phil Daws wrote: Answered this myself! :( - Original Message - From: Phil Daws ux...@splatnix.net To: users users@ovirt.org Sent: Wednesday, 12 November, 2014 2:54:19 PM Subject: [ovirt-users] Multiple ISO Storage Domains Hello: How does one create multiple ISO domains ? if I try it just throws a general error Error while executing action New NFS Storage Domain: Error creating a storage domain. And if the question is asked why would one require multiple ISO domains its when one has clusters in multiple data centers. Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users you can create multiple ISO domains, but could be you can only connect one iso domain per DC. if you are using clusters in different data centers, why not use separate data centers? ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5 NAT
Is there anybody who can help with this please ? Am pretty sure all I need to be able to do know is create a network hook that changes a VM XML from: interface type='bridge' mac address='00:1a:4a:83:fb:00'/ source bridge='ovirtmgmt'/ target dev='vnet0'/ model type='virtio'/ filterref filter='vdsm-no-mac-spoofing'/ link state='up'/ bandwidth /bandwidth alias name='net0'/ address type='pci' domain='0x' bus='0x00' slot='0x03' function='0x0'/ /interface to something like: interface type='network' mac address='00:1a:4a:83:fb:00'/ source network='ovs-network' portgroup='vlan-20'/ model type='virtio'/ link state='up'/ alias name='net0'/ address type='pci' domain='0x' bus='0x00' slot='0x03' function='0x0'/ /interface so replacing the bridge with a network and setting the network to be the OVS one I have defined. Any ideas please ? Thanks, Phil - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 28 October, 2014 12:18:47 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT Am starting to believe may have to give up on oVirt and move back to straight KVM and Openvswitch as that just worked which is a real shame :( - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Monday, 27 October, 2014 5:51:53 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT I believe am really missing the point somewhere along the line :( on my straight KVM and OVS system I see: brctl show bridge name bridge id STP enabled interfaces virbr0 8000.fe5400552ed9 yes vnet5 vnet8 ovs-vsctl show 55a2af2f-daf5-4f01-a757-9bccaf4f6932 Bridge ovsbr0 Port vnet0 Interface vnet0 Port vnet1 tag: 8 Interface vnet1 Port vnet13 tag: 14 Interface vnet13 Port vnet9 tag: 10 Interface vnet9 Port mgmt0 Interface mgmt0 type: internal Port vnet14 tag: 8 Interface vnet14 Port ovsbr0 Interface ovsbr0 type: internal Port vnet11 tag: 8 Interface vnet11 and on the new oVirt system I see: brctl show bridge name bridge id STP enabled interfaces ;vdsmdummy; 8000. no ovirtmgmt 8000.c81f66c42c76 no em1 vnet0 ovs-vsctl show 08554d11-3ba7-4303-b9d5-6a09f23c9057 Bridge ovsbr0 Port ovsbr0 Interface ovsbr0 type: internal so I have the ovirtmgmt bridge running fine and that is responding to traffic. If I bond an IP to the ovsbr0 it responds okay: ip add add 88.XXX.XXX.XXX/29 dev ovsbr0 so network traffic is flowing in and out of OVS. The next step would be to create a VM that will act as the firewall with a public facing interface on ovsbr0, but then all internal networks would need specific vlans behind that. I have already defined a new network called ovs-network: network nameovs-network/name uuid76152e72-34da-43bc-864a-85e727025bc9/uuid forward mode='bridge'/ bridge name='ovsbr0' / virtualport type='openvswitch'/ portgroup name='vlan-08' vlan tag id='8'/ /vlan /portgroup portgroup name='vlan-10' vlan tag id='10'/ /vlan /portgroup portgroup name='vlan-13' vlan tag id='13'/ /vlan /portgroup portgroup name='vlan-14' vlan tag id='14'/ /vlan /portgroup portgroup name='vlan-20' vlan tag id='20'/ /vlan /portgroup portgroup name='vlan-99' default='yes' /portgroup /network and then I should just be able to assign the network and vlan IDs to each VM NIC: interface type='network' mac address='54:52:00:02:01:02'/ source network='ovs-network' portgroup='vlan-08'/ model type='virtio'/ address type='pci' domain='0x' bus='0x00' slot='0x08' function='0x0'/ /interface interface type='network' mac address='54:52:00:02:01:03'/ source network='ovs-network' portgroup='vlan-10'/ model type='virtio'/ address type='pci' domain='0x' bus='0x00' slot='0x09' function='0x0'/ /interface so where should I start to put all this together please ? I believe am 90% there its just how to get the source-network and port-group to be assigned to a VM guest when its built ? Guess probably need to create a new hook similar to https://github.com/oVirt/vdsm/blob/master/vdsm_hooks/macspoof/macspoof_vnic.py that changes this in each guests VM definition from bridge to a network: interface type='bridge' mac address='00:1a
Re: [ovirt-users] oVirt 3.5 NAT
Am starting to believe may have to give up on oVirt and move back to straight
KVM and Openvswitch as that just worked which is a real shame :(
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users@ovirt.org
Sent: Monday, 27 October, 2014 5:51:53 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
I believe am really missing the point somewhere along the line :( on my
straight KVM and OVS system I see:
brctl show
bridge name bridge id STP enabled interfaces
virbr0 8000.fe5400552ed9 yes vnet5
vnet8
ovs-vsctl show
55a2af2f-daf5-4f01-a757-9bccaf4f6932
Bridge ovsbr0
Port vnet0
Interface vnet0
Port vnet1
tag: 8
Interface vnet1
Port vnet13
tag: 14
Interface vnet13
Port vnet9
tag: 10
Interface vnet9
Port mgmt0
Interface mgmt0
type: internal
Port vnet14
tag: 8
Interface vnet14
Port ovsbr0
Interface ovsbr0
type: internal
Port vnet11
tag: 8
Interface vnet11
and on the new oVirt system I see:
brctl show
bridge name bridge id STP enabled interfaces
;vdsmdummy; 8000. no
ovirtmgmt 8000.c81f66c42c76 no em1
vnet0
ovs-vsctl show
08554d11-3ba7-4303-b9d5-6a09f23c9057
Bridge ovsbr0
Port ovsbr0
Interface ovsbr0
type: internal
so I have the ovirtmgmt bridge running fine and that is responding to traffic.
If I bond an IP to the ovsbr0 it responds okay:
ip add add 88.XXX.XXX.XXX/29 dev ovsbr0
so network traffic is flowing in and out of OVS. The next step would be to
create a VM that will act as the firewall with a public facing interface on
ovsbr0, but then all internal networks would need specific vlans behind that.
I have already defined a new network called ovs-network:
network
nameovs-network/name
uuid76152e72-34da-43bc-864a-85e727025bc9/uuid
forward mode='bridge'/
bridge name='ovsbr0' /
virtualport type='openvswitch'/
portgroup name='vlan-08'
vlan
tag id='8'/
/vlan
/portgroup
portgroup name='vlan-10'
vlan
tag id='10'/
/vlan
/portgroup
portgroup name='vlan-13'
vlan
tag id='13'/
/vlan
/portgroup
portgroup name='vlan-14'
vlan
tag id='14'/
/vlan
/portgroup
portgroup name='vlan-20'
vlan
tag id='20'/
/vlan
/portgroup
portgroup name='vlan-99' default='yes'
/portgroup
/network
and then I should just be able to assign the network and vlan IDs to each VM
NIC:
interface type='network'
mac address='54:52:00:02:01:02'/
source network='ovs-network' portgroup='vlan-08'/
model type='virtio'/
address type='pci' domain='0x' bus='0x00' slot='0x08'
function='0x0'/
/interface
interface type='network'
mac address='54:52:00:02:01:03'/
source network='ovs-network' portgroup='vlan-10'/
model type='virtio'/
address type='pci' domain='0x' bus='0x00' slot='0x09'
function='0x0'/
/interface
so where should I start to put all this together please ? I believe am 90%
there its just how to get the source-network and port-group to be assigned to a
VM guest when its built ? Guess probably need to create a new hook similar to
https://github.com/oVirt/vdsm/blob/master/vdsm_hooks/macspoof/macspoof_vnic.py
that changes this in each guests VM definition from bridge to a network:
interface type='bridge'
mac address='00:1a:4a:83:fb:00'/
source bridge='ovirtmgmt'/
target dev='vnet0'/
model type='virtio'/
filterref filter='vdsm-no-mac-spoofing'/
link state='up'/
bandwidth
/bandwidth
alias name='net0'/
address type='pci' domain='0x' bus='0x00' slot='0x03'
function='0x0'/
/interface
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users@ovirt.org
Sent: Monday, 27 October, 2014 5:16:05 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
How does one add multiple custom properties ? tried:
engine-config -s
CustomDeviceProperties='{type=interface;prop={vlan=^[a-zA-Z0-9_
---]+$}}{type=interface;prop={bridge=^[a-zA-Z0-9_ ---]+$}}'
but ended up with one call vlan and the other prop :) If can add vlan and
bridge then should be able to use a vNIC profile for adding an interface
directly to OVS using a custom hook.
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users@ovirt.org
Sent: Monday, 27 October, 2014 3:04:20 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
Well, in fact have got something to work now! Left ovirtmgmt and em1 alone but
ran
Re: [ovirt-users] oVirt 3.5 NAT
That is what I tried but oVirt appears to overwrite the bridge information on boot :( Thanks, Phil - Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Phil Daws ux...@splatnix.net Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, 27 October, 2014 8:00:33 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT - Original Message - From: Phil Daws ux...@splatnix.net To: Dan Kenigsberg dan...@redhat.com Cc: users@ovirt.org Sent: Saturday, October 25, 2014 5:02:59 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT Hmmm, this is becoming difficult .. I have added into the engine the custom hook and understand how that will work. The issue is how can a single NIC use two different bridges ? Example with OVS would be that one requires: em1 -+ ovirtmgmt (bridge) - management IP (public) + ovs (bridge) - firewall IP (public) | + vlan 1 + vlan 2 this works fine when using OVS and KVM, without oVirt, so there must be a way to hook the two together without a Neutron appliance. Any thoughts ? Thanks, Phil. I haven't tried this, and it may not work, but what happens if you add the ovirtmgmt bridge as a port of the ovs bridge? - Original Message - From: Dan Kenigsberg dan...@redhat.com To: Phil Daws ux...@splatnix.net Cc: users@ovirt.org Sent: Wednesday, 22 October, 2014 3:54:46 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT On Wed, Oct 22, 2014 at 03:12:09PM +0100, Phil Daws wrote: Thanks Dan Antoni: I wonder then if I could replace the standard libvirt defined network with an OpenVSwitch one like I have on my dev system? That is just straight KVM with OVS integrated. Maybe a bit more overhead in administration but possibly less than having to spin up a Neutron Appliance. Once you start to use the vdsm-hook-extnet, all that you need to do is to replace the libvirt-side definition of the external network. This may well be an OpenVSwitch-based network e.g. http://libvirt.org/formatnetwork.html#elementVlanTag ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5 NAT
Hi Antoni: Yes, prior to the reboot it did work okay. This is how it should look I believe: Bridge ovirtmgmt Port mgmt0 Interface mgmt0 type: internal Port ovsbr0 Interface ovsbr0 type: internal So the bridge would be defined by oVirt then I guess with a custom hook that would then be added to the OVS stack ? Thanks, Phil - Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Phil Daws ux...@splatnix.net Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, 27 October, 2014 9:56:38 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT - Original Message - From: Phil Daws ux...@splatnix.net To: Antoni Segura Puimedon asegu...@redhat.com Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, October 27, 2014 10:37:18 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT That is what I tried but oVirt appears to overwrite the bridge information on boot :( Thanks, Phil But before rebooting, does it work as you intended? If so, you could just make a vdsm hook that adds ovirtmgmt to the ovs bridge after it is set up. (I could give more directions into how to do it). - Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Phil Daws ux...@splatnix.net Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, 27 October, 2014 8:00:33 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT - Original Message - From: Phil Daws ux...@splatnix.net To: Dan Kenigsberg dan...@redhat.com Cc: users@ovirt.org Sent: Saturday, October 25, 2014 5:02:59 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT Hmmm, this is becoming difficult .. I have added into the engine the custom hook and understand how that will work. The issue is how can a single NIC use two different bridges ? Example with OVS would be that one requires: em1 -+ ovirtmgmt (bridge) - management IP (public) + ovs (bridge) - firewall IP (public) | + vlan 1 + vlan 2 this works fine when using OVS and KVM, without oVirt, so there must be a way to hook the two together without a Neutron appliance. Any thoughts ? Thanks, Phil. I haven't tried this, and it may not work, but what happens if you add the ovirtmgmt bridge as a port of the ovs bridge? - Original Message - From: Dan Kenigsberg dan...@redhat.com To: Phil Daws ux...@splatnix.net Cc: users@ovirt.org Sent: Wednesday, 22 October, 2014 3:54:46 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT On Wed, Oct 22, 2014 at 03:12:09PM +0100, Phil Daws wrote: Thanks Dan Antoni: I wonder then if I could replace the standard libvirt defined network with an OpenVSwitch one like I have on my dev system? That is just straight KVM with OVS integrated. Maybe a bit more overhead in administration but possibly less than having to spin up a Neutron Appliance. Once you start to use the vdsm-hook-extnet, all that you need to do is to replace the libvirt-side definition of the external network. This may well be an OpenVSwitch-based network e.g. http://libvirt.org/formatnetwork.html#elementVlanTag ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5 NAT
Darn, looks like this will not work :( the problem is that oVirt creates the bridge ovirtmgmt and binds that to your interface eg. em1. So at that point you have network running. If you then try to add that to the OVS stack your networking stop :( I tried to add it as a port using ovs-vsctl add-port ovsbr0 ovirtmgmt which is accepted but then networking stops. As soon as I remove again networking comes back to life. There does not seem to be a way to have two co-existing bridges :( Thanks, Phil - Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Phil Daws ux...@splatnix.net Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, 27 October, 2014 12:13:30 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT - Original Message - From: Phil Daws ux...@splatnix.net To: Antoni Segura Puimedon asegu...@redhat.com Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, October 27, 2014 11:41:56 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT Hi Antoni: Yes, prior to the reboot it did work okay. This is how it should look I believe: Bridge ovirtmgmt Port mgmt0 Interface mgmt0 type: internal Port ovsbr0 Interface ovsbr0 type: internal So the bridge would be defined by oVirt then I guess with a custom hook that would then be added to the OVS stack ? exactly! You could just make a hook script that runs an after_network_setup hook that does the ovs-vsctl for you ;-) Here you can see the presentation I gave last February at devconf about extending with configurators and hooks. http://blog.antoni.me/devconf14/#/8/1 I linked directly to a before_network_setup hook sample, because it works just like the after_network_setup hook. Instead of logging to systemd, just add that if 'remove' is not in data and network == 'ovirtmgmt', it adds the network bridge to the vswitch with python's subprocess.call or subprocess.check_output. You can send it if you want me to take a look ;-) PS: It is possible to write the hooks in bash, c, perl, etc. But we only have the convenience read_json methods and such for python. If you wanted to, you could have a simple bash hook that just checked if there was an ovirtmgmt bridge and it would add it doing ovs-vsctl in the before_vdsm_start hooking point. That would have the drawback that changing the ovirtmgmt bridge with oVirt UI would leave it disconnected again. Thanks, Phil - Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Phil Daws ux...@splatnix.net Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, 27 October, 2014 9:56:38 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT - Original Message - From: Phil Daws ux...@splatnix.net To: Antoni Segura Puimedon asegu...@redhat.com Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, October 27, 2014 10:37:18 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT That is what I tried but oVirt appears to overwrite the bridge information on boot :( Thanks, Phil But before rebooting, does it work as you intended? If so, you could just make a vdsm hook that adds ovirtmgmt to the ovs bridge after it is set up. (I could give more directions into how to do it). - Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Phil Daws ux...@splatnix.net Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, 27 October, 2014 8:00:33 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT - Original Message - From: Phil Daws ux...@splatnix.net To: Dan Kenigsberg dan...@redhat.com Cc: users@ovirt.org Sent: Saturday, October 25, 2014 5:02:59 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT Hmmm, this is becoming difficult .. I have added into the engine the custom hook and understand how that will work. The issue is how can a single NIC use two different bridges ? Example with OVS would be that one requires: em1 -+ ovirtmgmt (bridge) - management IP (public) + ovs (bridge) - firewall IP (public) | + vlan 1 + vlan 2 this works fine when using OVS and KVM, without oVirt, so there must be a way to hook the two together without a Neutron appliance. Any thoughts ? Thanks, Phil. I haven't tried this, and it may not work, but what happens if you add the ovirtmgmt bridge as a port of the ovs bridge? - Original Message - From: Dan Kenigsberg dan...@redhat.com To: Phil Daws ux...@splatnix.net Cc: users@ovirt.org Sent: Wednesday, 22 October, 2014 3:54:46 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT On Wed, Oct 22, 2014 at 03:12:09PM +0100, Phil Daws wrote: Thanks Dan Antoni: I wonder then if I
Re: [ovirt-users] oVirt 3.5 NAT
Well, in fact have got something to work now! Left ovirtmgmt and em1 alone but ran: $ ovs-vsctl add-br ovsbr0 $ ip link add name veth0 type veth peer name veth1 $ brctl addif ovirtmgmt veth0 $ ovs-vsctl add-port ovsbr veth1 $ ip add add XXX.XXX.XXX.XXX/29 dev veth1 $ ip link set veth0 up ip link set veth1 up and now veth1 is responding as-well as veth0. ovs-vsctl show 08554d11-3ba7-4303-b9d5-6a09f23c9057 Bridge ovsbr0 Port veth1 Interface veth1 Port ovsbr0 Interface ovsbr0 type: internal so what I think should do now is create a custom parameter on the Engine Manager that allows one to define an OVS bridge name and VLAN so when a virtual guest is created it can be assigned to the new bridge; with the use of a custom hook. Thanks, Phil - Original Message - From: Phil Daws ux...@splatnix.net To: Antoni Segura Puimedon asegu...@redhat.com Cc: users@ovirt.org Sent: Monday, 27 October, 2014 2:10:34 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT Darn, looks like this will not work :( the problem is that oVirt creates the bridge ovirtmgmt and binds that to your interface eg. em1. So at that point you have network running. If you then try to add that to the OVS stack your networking stop :( I tried to add it as a port using ovs-vsctl add-port ovsbr0 ovirtmgmt which is accepted but then networking stops. As soon as I remove again networking comes back to life. There does not seem to be a way to have two co-existing bridges :( Thanks, Phil - Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Phil Daws ux...@splatnix.net Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, 27 October, 2014 12:13:30 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT - Original Message - From: Phil Daws ux...@splatnix.net To: Antoni Segura Puimedon asegu...@redhat.com Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, October 27, 2014 11:41:56 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT Hi Antoni: Yes, prior to the reboot it did work okay. This is how it should look I believe: Bridge ovirtmgmt Port mgmt0 Interface mgmt0 type: internal Port ovsbr0 Interface ovsbr0 type: internal So the bridge would be defined by oVirt then I guess with a custom hook that would then be added to the OVS stack ? exactly! You could just make a hook script that runs an after_network_setup hook that does the ovs-vsctl for you ;-) Here you can see the presentation I gave last February at devconf about extending with configurators and hooks. http://blog.antoni.me/devconf14/#/8/1 I linked directly to a before_network_setup hook sample, because it works just like the after_network_setup hook. Instead of logging to systemd, just add that if 'remove' is not in data and network == 'ovirtmgmt', it adds the network bridge to the vswitch with python's subprocess.call or subprocess.check_output. You can send it if you want me to take a look ;-) PS: It is possible to write the hooks in bash, c, perl, etc. But we only have the convenience read_json methods and such for python. If you wanted to, you could have a simple bash hook that just checked if there was an ovirtmgmt bridge and it would add it doing ovs-vsctl in the before_vdsm_start hooking point. That would have the drawback that changing the ovirtmgmt bridge with oVirt UI would leave it disconnected again. Thanks, Phil - Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Phil Daws ux...@splatnix.net Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, 27 October, 2014 9:56:38 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT - Original Message - From: Phil Daws ux...@splatnix.net To: Antoni Segura Puimedon asegu...@redhat.com Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, October 27, 2014 10:37:18 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT That is what I tried but oVirt appears to overwrite the bridge information on boot :( Thanks, Phil But before rebooting, does it work as you intended? If so, you could just make a vdsm hook that adds ovirtmgmt to the ovs bridge after it is set up. (I could give more directions into how to do it). - Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Phil Daws ux...@splatnix.net Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org Sent: Monday, 27 October, 2014 8:00:33 AM Subject: Re: [ovirt-users] oVirt 3.5 NAT - Original Message - From: Phil Daws ux...@splatnix.net To: Dan Kenigsberg dan...@redhat.com Cc: users@ovirt.org Sent: Saturday, October 25, 2014 5:02:59 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT Hmmm, this is becoming difficult .. I have added into the engine the custom hook and understand how that will work. The issue is how can
Re: [ovirt-users] oVirt 3.5 NAT
How does one add multiple custom properties ? tried:
engine-config -s
CustomDeviceProperties='{type=interface;prop={vlan=^[a-zA-Z0-9_
---]+$}}{type=interface;prop={bridge=^[a-zA-Z0-9_ ---]+$}}'
but ended up with one call vlan and the other prop :) If can add vlan and
bridge then should be able to use a vNIC profile for adding an interface
directly to OVS using a custom hook.
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users@ovirt.org
Sent: Monday, 27 October, 2014 3:04:20 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
Well, in fact have got something to work now! Left ovirtmgmt and em1 alone but
ran:
$ ovs-vsctl add-br ovsbr0
$ ip link add name veth0 type veth peer name veth1
$ brctl addif ovirtmgmt veth0
$ ovs-vsctl add-port ovsbr veth1
$ ip add add XXX.XXX.XXX.XXX/29 dev veth1
$ ip link set veth0 up ip link set veth1 up
and now veth1 is responding as-well as veth0.
ovs-vsctl show
08554d11-3ba7-4303-b9d5-6a09f23c9057
Bridge ovsbr0
Port veth1
Interface veth1
Port ovsbr0
Interface ovsbr0
type: internal
so what I think should do now is create a custom parameter on the Engine
Manager that allows one to define an OVS bridge name and VLAN so when a virtual
guest is created it can be assigned to the new bridge; with the use of a custom
hook.
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: Antoni Segura Puimedon asegu...@redhat.com
Cc: users@ovirt.org
Sent: Monday, 27 October, 2014 2:10:34 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
Darn, looks like this will not work :( the problem is that oVirt creates the
bridge ovirtmgmt and binds that to your interface eg. em1. So at that point you
have network running. If you then try to add that to the OVS stack your
networking stop :( I tried to add it as a port using ovs-vsctl add-port ovsbr0
ovirtmgmt which is accepted but then networking stops. As soon as I remove
again networking comes back to life. There does not seem to be a way to have
two co-existing bridges :( Thanks, Phil
- Original Message -
From: Antoni Segura Puimedon asegu...@redhat.com
To: Phil Daws ux...@splatnix.net
Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org
Sent: Monday, 27 October, 2014 12:13:30 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
- Original Message -
From: Phil Daws ux...@splatnix.net
To: Antoni Segura Puimedon asegu...@redhat.com
Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org
Sent: Monday, October 27, 2014 11:41:56 AM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
Hi Antoni:
Yes, prior to the reboot it did work okay. This is how it should look I
believe:
Bridge ovirtmgmt
Port mgmt0
Interface mgmt0
type: internal
Port ovsbr0
Interface ovsbr0
type: internal
So the bridge would be defined by oVirt then I guess with a custom hook that
would then be added to the OVS stack ?
exactly! You could just make a hook script that runs an after_network_setup
hook that does the ovs-vsctl for you ;-)
Here you can see the presentation I gave last February at devconf about
extending
with configurators and hooks.
http://blog.antoni.me/devconf14/#/8/1
I linked directly to a before_network_setup hook sample, because it works just
like
the after_network_setup hook. Instead of logging to systemd, just add that if
'remove' is not in data and network == 'ovirtmgmt', it adds the network bridge
to
the vswitch with python's subprocess.call or subprocess.check_output.
You can send it if you want me to take a look ;-)
PS: It is possible to write the hooks in bash, c, perl, etc. But we only have
the
convenience read_json methods and such for python. If you wanted to, you could
have
a simple bash hook that just checked if there was an ovirtmgmt bridge and it
would
add it doing ovs-vsctl in the before_vdsm_start hooking point. That would have
the
drawback that changing the ovirtmgmt bridge with oVirt UI would leave it
disconnected
again.
Thanks, Phil
- Original Message -
From: Antoni Segura Puimedon asegu...@redhat.com
To: Phil Daws ux...@splatnix.net
Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org
Sent: Monday, 27 October, 2014 9:56:38 AM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
- Original Message -
From: Phil Daws ux...@splatnix.net
To: Antoni Segura Puimedon asegu...@redhat.com
Cc: Dan Kenigsberg dan...@redhat.com, users@ovirt.org
Sent: Monday, October 27, 2014 10:37:18 AM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
That is what I tried but oVirt appears to overwrite the bridge information
on
boot :( Thanks, Phil
But before rebooting, does it work as you intended? If so, you could just
make
a vdsm hook that adds ovirtmgmt to the ovs bridge after it is set up. (I
could
give more directions into how to do it).
- Original Message -
From: Antoni Segura Puimedon asegu...@redhat.com
Re: [ovirt-users] oVirt 3.5 NAT
I believe am really missing the point somewhere along the line :( on my
straight KVM and OVS system I see:
brctl show
bridge name bridge id STP enabled interfaces
virbr0 8000.fe5400552ed9 yes vnet5
vnet8
ovs-vsctl show
55a2af2f-daf5-4f01-a757-9bccaf4f6932
Bridge ovsbr0
Port vnet0
Interface vnet0
Port vnet1
tag: 8
Interface vnet1
Port vnet13
tag: 14
Interface vnet13
Port vnet9
tag: 10
Interface vnet9
Port mgmt0
Interface mgmt0
type: internal
Port vnet14
tag: 8
Interface vnet14
Port ovsbr0
Interface ovsbr0
type: internal
Port vnet11
tag: 8
Interface vnet11
and on the new oVirt system I see:
brctl show
bridge name bridge id STP enabled interfaces
;vdsmdummy; 8000. no
ovirtmgmt 8000.c81f66c42c76 no em1
vnet0
ovs-vsctl show
08554d11-3ba7-4303-b9d5-6a09f23c9057
Bridge ovsbr0
Port ovsbr0
Interface ovsbr0
type: internal
so I have the ovirtmgmt bridge running fine and that is responding to traffic.
If I bond an IP to the ovsbr0 it responds okay:
ip add add 88.XXX.XXX.XXX/29 dev ovsbr0
so network traffic is flowing in and out of OVS. The next step would be to
create a VM that will act as the firewall with a public facing interface on
ovsbr0, but then all internal networks would need specific vlans behind that.
I have already defined a new network called ovs-network:
network
nameovs-network/name
uuid76152e72-34da-43bc-864a-85e727025bc9/uuid
forward mode='bridge'/
bridge name='ovsbr0' /
virtualport type='openvswitch'/
portgroup name='vlan-08'
vlan
tag id='8'/
/vlan
/portgroup
portgroup name='vlan-10'
vlan
tag id='10'/
/vlan
/portgroup
portgroup name='vlan-13'
vlan
tag id='13'/
/vlan
/portgroup
portgroup name='vlan-14'
vlan
tag id='14'/
/vlan
/portgroup
portgroup name='vlan-20'
vlan
tag id='20'/
/vlan
/portgroup
portgroup name='vlan-99' default='yes'
/portgroup
/network
and then I should just be able to assign the network and vlan IDs to each VM
NIC:
interface type='network'
mac address='54:52:00:02:01:02'/
source network='ovs-network' portgroup='vlan-08'/
model type='virtio'/
address type='pci' domain='0x' bus='0x00' slot='0x08'
function='0x0'/
/interface
interface type='network'
mac address='54:52:00:02:01:03'/
source network='ovs-network' portgroup='vlan-10'/
model type='virtio'/
address type='pci' domain='0x' bus='0x00' slot='0x09'
function='0x0'/
/interface
so where should I start to put all this together please ? I believe am 90%
there its just how to get the source-network and port-group to be assigned to a
VM guest when its built ? Guess probably need to create a new hook similar to
https://github.com/oVirt/vdsm/blob/master/vdsm_hooks/macspoof/macspoof_vnic.py
that changes this in each guests VM definition from bridge to a network:
interface type='bridge'
mac address='00:1a:4a:83:fb:00'/
source bridge='ovirtmgmt'/
target dev='vnet0'/
model type='virtio'/
filterref filter='vdsm-no-mac-spoofing'/
link state='up'/
bandwidth
/bandwidth
alias name='net0'/
address type='pci' domain='0x' bus='0x00' slot='0x03'
function='0x0'/
/interface
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users@ovirt.org
Sent: Monday, 27 October, 2014 5:16:05 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
How does one add multiple custom properties ? tried:
engine-config -s
CustomDeviceProperties='{type=interface;prop={vlan=^[a-zA-Z0-9_
---]+$}}{type=interface;prop={bridge=^[a-zA-Z0-9_ ---]+$}}'
but ended up with one call vlan and the other prop :) If can add vlan and
bridge then should be able to use a vNIC profile for adding an interface
directly to OVS using a custom hook.
Thanks, Phil
- Original Message -
From: Phil Daws ux...@splatnix.net
To: users@ovirt.org
Sent: Monday, 27 October, 2014 3:04:20 PM
Subject: Re: [ovirt-users] oVirt 3.5 NAT
Well, in fact have got something to work now! Left ovirtmgmt and em1 alone but
ran:
$ ovs-vsctl add-br ovsbr0
$ ip link add name veth0 type veth peer name veth1
$ brctl addif ovirtmgmt veth0
$ ovs-vsctl add-port ovsbr veth1
$ ip add add XXX.XXX.XXX.XXX/29 dev veth1
$ ip link set veth0 up ip link set veth1 up
and now veth1 is responding as-well as veth0.
ovs-vsctl show
08554d11-3ba7
Re: [ovirt-users] oVirt 3.5 NAT
Hmmm, this is becoming difficult .. I have added into the engine the custom hook and understand how that will work. The issue is how can a single NIC use two different bridges ? Example with OVS would be that one requires: em1 -+ ovirtmgmt (bridge) - management IP (public) + ovs (bridge) - firewall IP (public) | + vlan 1 + vlan 2 this works fine when using OVS and KVM, without oVirt, so there must be a way to hook the two together without a Neutron appliance. Any thoughts ? Thanks, Phil. - Original Message - From: Dan Kenigsberg dan...@redhat.com To: Phil Daws ux...@splatnix.net Cc: users@ovirt.org Sent: Wednesday, 22 October, 2014 3:54:46 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT On Wed, Oct 22, 2014 at 03:12:09PM +0100, Phil Daws wrote: Thanks Dan Antoni: I wonder then if I could replace the standard libvirt defined network with an OpenVSwitch one like I have on my dev system? That is just straight KVM with OVS integrated. Maybe a bit more overhead in administration but possibly less than having to spin up a Neutron Appliance. Once you start to use the vdsm-hook-extnet, all that you need to do is to replace the libvirt-side definition of the external network. This may well be an OpenVSwitch-based network e.g. http://libvirt.org/formatnetwork.html#elementVlanTag ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[ovirt-users] cloud-init install
Hello: if one has already created a VM, with hostname, IP address etc, are you then able to switch it to use cloud-init so that it reports back the IP address and hostname to the engine manager ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5 NAT
Thanks Dan Antoni: I wonder then if I could replace the standard libvirt defined network with an OpenVSwitch one like I have on my dev system? That is just straight KVM with OVS integrated. Maybe a bit more overhead in administration but possibly less than having to spin up a Neutron Appliance. - Original Message - From: Dan Kenigsberg dan...@redhat.com To: Phil Daws ux...@splatnix.net Cc: users@ovirt.org Sent: Wednesday, 22 October, 2014 2:13:34 PM Subject: Re: [ovirt-users] oVirt 3.5 NAT On Mon, Oct 20, 2014 at 08:02:01PM +0100, Phil Daws wrote: Hello All! Am really enjoying experimenting with oVirt but have come across a question; how does one enable NAT for a VM ? Would like my guests to be able to update their software by bridging the host public IP. I could not see anything in the WUI to allow this ? Unfortunately, this is not yet available out of the box. You need to create the natted network in libvirt, and then connect your vNic to it via a vdsm hook. This mailing list has seen various suggestions on this subject (such as [1]). While searching for them, I found a recent blog using the extent hook for that[2] (ymmv). [1] http://lists.ovirt.org/pipermail/users/2012-April/001751.html [2] http://blog.lofyer.org/blog/2014/05/04/add-nat-ovirt-vdsm-hooks/ Dan. ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[ovirt-users] oVirt 3.5 Neutron (Will this work?)
Hello: have installed oVirt 3.5 on two cloud based servers and then managing them from a local engine using a VPN link. On each server I would like to use the Neutron VM appliance so that I can provision the networks using OpenVswitch as I would like to learn about using OSPF between the two diverse systems. The question is that only physical NIC is enabled (public facing), and occupies the ovirtmgmt network, so would I still be able to use Neutron on the second NIC even though it is not connected to anything ? Or could I bind the Neutron network to the same one as the ovirtmgmt ? Basically wish to run the VMs with private IPs and then NAT through a VM firewall to the public address. Any help would be gratefully appreciated. Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5 Neutron (Will this work?)
Hmmm, this is interesting as it would appear you can only use the Neutron appliance with a brand new host ?!? so how does one switch to use it on a current system ? Thanks, Phil - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 21 October, 2014 1:31:09 PM Subject: [ovirt-users] oVirt 3.5 Neutron (Will this work?) Hello: have installed oVirt 3.5 on two cloud based servers and then managing them from a local engine using a VPN link. On each server I would like to use the Neutron VM appliance so that I can provision the networks using OpenVswitch as I would like to learn about using OSPF between the two diverse systems. The question is that only physical NIC is enabled (public facing), and occupies the ovirtmgmt network, so would I still be able to use Neutron on the second NIC even though it is not connected to anything ? Or could I bind the Neutron network to the same one as the ovirtmgmt ? Basically wish to run the VMs with private IPs and then NAT through a VM firewall to the public address. Any help would be gratefully appreciated. Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5 Neutron (Will this work?)
Hi Moti: thank you for detailed response. I will diagram what I am thinking as that should explain it a whole lot better :) Thanks, Phil - Original Message - From: Moti Asayag masa...@redhat.com To: Phil Daws ux...@splatnix.net Cc: users users@ovirt.org Sent: Tuesday, 21 October, 2014 4:50:45 PM Subject: Re: [ovirt-users] oVirt 3.5 Neutron (Will this work?) Hi Phil, See answers/questions inline. - Original Message - From: Phil Daws ux...@splatnix.net To: users users@ovirt.org Sent: Tuesday, October 21, 2014 6:05:55 PM Subject: Re: [ovirt-users] oVirt 3.5 Neutron (Will this work?) Hmmm, this is interesting as it would appear you can only use the Neutron appliance with a brand new host ?!? so how does one switch to use it on a current system ? A new host is not mandatory. You need to move an existing host to maintenance and reinstall it. On the Re-install dialog select the details of the network provider. Thanks, Phil - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 21 October, 2014 1:31:09 PM Subject: [ovirt-users] oVirt 3.5 Neutron (Will this work?) Hello: have installed oVirt 3.5 on two cloud based servers and then managing them from a local engine using a VPN link. On each server I would like to use the Neutron VM appliance so that I can provision the networks using OpenVswitch as I would like to learn about using OSPF between the two diverse systems. Do you intend to use a single neutron appliance for each host or to use a single neutron appliance to manage connectivity on the two hosts ? The question is that only physical NIC is enabled (public facing), and occupies the ovirtmgmt network, so would I still be able to use Neutron on the second NIC even though it is not connected to anything ? Is there L2 connectivity between the hosts ? Or by not connected to anything you actually mean there is no wiring between the hosts ? If this is the first case, you should be able to define for each subnet a gateway via the 'Add subnet' dialog on the engine. That gateway should be used for obtaining connectivity for the vms to the public/external network. You'll have to configure it manually though (doesn't covered as part of the ovirt-neutron integration). If there is really no connectivity between the hosts and the only outgoing traffic from each host is via the ovirtmgmt network - it is problematic. According to [1], you'll have to specify as bridge mappings on the network provider agent details: br-neutron:ovirtmgmt, where ovirtmgmt will replace the neutron. But that also implies that you'll share any traffic going through the integration bridge of neutron and the hosts with the management network and respectively with the public network, hence the dhcp agents connected to br-int (which is connected to br-neutron and to ovirtmgmt) will receive request from the 'ovirtmgmt' network as well. Haven't tried it myself, and can't expect the results. [1] http://www.ovirt.org/images/2/2a/Neutron-appliance-topology.png Or could I bind the Neutron network to the same one as the ovirtmgmt ? Basically wish to run the VMs with private IPs and then NAT through a VM firewall to the public address. Any help would be gratefully appreciated. Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5 Neutron (Will this work?)
Hi Moti: Have thrown together a diagram of how I think it should look :- https://cloudvault.innoffice247.com/public.php?service=filest=9e57686453ce6b71fdce1dd1eb18fe4a As each oVirt host has a single activated NIC am trying to see how I can use OVS, to provide OSPF SFLOW, and vLAN capability like I have used manually with KVM and OVS. From my dev machine this is how OVS looks: [root@dev01 ~]# ovs-vsctl show 55a2af2f-daf5-4f01-a757-9bccaf4f6932 Bridge ovsbr0 Port vnet0 Interface vnet0 Port vnet1 tag: 8 Interface vnet1 Port vnet13 tag: 14 Interface vnet13 Port vnet9 tag: 10 Interface vnet9 Port mgmt0 Interface mgmt0 type: internal Port vnet14 tag: 8 Interface vnet14 Port ovsbr0 Interface ovsbr0 type: internal Port vnet11 tag: 8 Interface vnet11 Port vnet10 tag: 13 Interface vnet10 Port vnet12 tag: 13 Interface vnet12 Port em1 Interface em1 Port vnet3 tag: 14 Interface vnet3 Port vnet4 tag: 20 Interface vnet4 Port vnet2 tag: 10 Interface vnet2 ovs_version: 2.3.90 So I have a single NIC with a public facing IP and then I present that IP as a gateway, via the bridge, to a VM firewall which then handles the vlans inside that. Hope that makes sense ? Thanks, Phil - Original Message - From: Phil Daws ux...@splatnix.net To: Moti Asayag masa...@redhat.com Cc: users users@ovirt.org Sent: Tuesday, 21 October, 2014 5:26:33 PM Subject: Re: [ovirt-users] oVirt 3.5 Neutron (Will this work?) Hi Moti: thank you for detailed response. I will diagram what I am thinking as that should explain it a whole lot better :) Thanks, Phil - Original Message - From: Moti Asayag masa...@redhat.com To: Phil Daws ux...@splatnix.net Cc: users users@ovirt.org Sent: Tuesday, 21 October, 2014 4:50:45 PM Subject: Re: [ovirt-users] oVirt 3.5 Neutron (Will this work?) Hi Phil, See answers/questions inline. - Original Message - From: Phil Daws ux...@splatnix.net To: users users@ovirt.org Sent: Tuesday, October 21, 2014 6:05:55 PM Subject: Re: [ovirt-users] oVirt 3.5 Neutron (Will this work?) Hmmm, this is interesting as it would appear you can only use the Neutron appliance with a brand new host ?!? so how does one switch to use it on a current system ? A new host is not mandatory. You need to move an existing host to maintenance and reinstall it. On the Re-install dialog select the details of the network provider. Thanks, Phil - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 21 October, 2014 1:31:09 PM Subject: [ovirt-users] oVirt 3.5 Neutron (Will this work?) Hello: have installed oVirt 3.5 on two cloud based servers and then managing them from a local engine using a VPN link. On each server I would like to use the Neutron VM appliance so that I can provision the networks using OpenVswitch as I would like to learn about using OSPF between the two diverse systems. Do you intend to use a single neutron appliance for each host or to use a single neutron appliance to manage connectivity on the two hosts ? The question is that only physical NIC is enabled (public facing), and occupies the ovirtmgmt network, so would I still be able to use Neutron on the second NIC even though it is not connected to anything ? Is there L2 connectivity between the hosts ? Or by not connected to anything you actually mean there is no wiring between the hosts ? If this is the first case, you should be able to define for each subnet a gateway via the 'Add subnet' dialog on the engine. That gateway should be used for obtaining connectivity for the vms to the public/external network. You'll have to configure it manually though (doesn't covered as part of the ovirt-neutron integration). If there is really no connectivity between the hosts and the only outgoing traffic from each host is via the ovirtmgmt network - it is problematic. According to [1], you'll have to specify as bridge mappings on the network provider agent details: br-neutron:ovirtmgmt, where ovirtmgmt will replace the neutron. But that also implies that you'll share any traffic going through the integration bridge of neutron and the hosts with the management network and respectively with the public network, hence the dhcp agents connected to br-int (which is connected to br-neutron and to ovirtmgmt) will receive request from the 'ovirtmgmt' network as well. Haven't tried it myself, and can't expect the results. [1] http://www.ovirt.org/images/2/2a/Neutron-appliance-topology.png Or could I bind the Neutron network to the same one as the ovirtmgmt ? Basically wish to run the VMs with private IPs and then NAT through a VM firewall to the public address. Any help would be gratefully appreciated. Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman
[ovirt-users] oVirt 3.5 NAT
Hello All! Am really enjoying experimenting with oVirt but have come across a question; how does one enable NAT for a VM ? Would like my guests to be able to update their software by bridging the host public IP. I could not see anything in the WUI to allow this ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] CentOS 7 + oVirt 3.5 + OpenVPN
User error. - Original Message - From: Phil Daws ux...@splatnix.net To: users users@ovirt.org Sent: Saturday, 18 October, 2014 1:45:34 PM Subject: [ovirt-users] CentOS 7 + oVirt 3.5 + OpenVPN Hello: have installed oVirt 3.5 VDSM on a CentOS 7 node and then OpenVPN. The problem I have is that when I start OpenVPN I receive the message: Oct 18 13:29:50 kvm01 openvpn[4159]: /usr/sbin/ip link set dev tun0 up mtu 1500 Oct 18 13:29:50 kvm01 openvpn[4159]: /usr/sbin/ip addr add dev tun0 192.168.124.200/25 broadcast 192.168.124.255 Oct 18 13:29:50 kvm01 openvpn[4159]: /usr/sbin/ip route add 192.168.0.0/16 via 192.168.124.1 Oct 18 13:29:50 kvm01 openvpn[4159]: ERROR: Linux route add command failed: external program exited with error status: 2 and if I run the route command manually: [root@kvm01 sysconfig]# /usr/sbin/ip route add 192.168.0.0/16 via 192.168.124.1 RTNETLINK answers: No such process It would appear the tunnel is up: [root@kvm01 sysconfig]# ip add ls 1: lo: LOOPBACK,UP,LOWER_UP mtu 65536 qdisc noqueue state UNKNOWN link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: bond0: BROADCAST,MULTICAST,MASTER mtu 1500 qdisc noop state DOWN link/ether f2:c9:ce:e5:ac:32 brd ff:ff:ff:ff:ff:ff 3: em1: BROADCAST,MULTICAST,UP,LOWER_UP mtu 1500 qdisc mq master ovirtmgmt state UP qlen 1000 link/ether c8:1f:66:c4:2c:76 brd ff:ff:ff:ff:ff:ff inet6 fe80::ca1f:66ff:fec4:2c76/64 scope link valid_lft forever preferred_lft forever 4: em2: BROADCAST,MULTICAST mtu 1500 qdisc noop state DOWN qlen 1000 link/ether c8:1f:66:c4:2c:77 brd ff:ff:ff:ff:ff:ff 6: ;vdsmdummy;: BROADCAST,MULTICAST mtu 1500 qdisc noop state DOWN link/ether 46:af:6e:9a:1e:4b brd ff:ff:ff:ff:ff:ff 8: ovirtmgmt: BROADCAST,MULTICAST,UP,LOWER_UP mtu 1500 qdisc noqueue state UP link/ether c8:1f:66:c4:2c:76 brd ff:ff:ff:ff:ff:ff inet XXX.XXX.XXX.XXX/23 brd 88.150.253.255 scope global ovirtmgmt valid_lft forever preferred_lft forever inet6 fe80::ca1f:66ff:fec4:2c76/64 scope link valid_lft forever preferred_lft forever 10: tun0: POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP mtu 1500 qdisc pfifo_fast state UNKNOWN qlen 100 link/none inet 192.168.124.200/25 brd 192.168.124.255 scope global tun0 valid_lft forever preferred_lft forever Any thoughts as to why the route will not work ? Rationale for this approach is its a cloud server and wish to use a private network to reach the install VMs on that node. Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[ovirt-users] CentOS 7 + oVirt 3.5 + OpenVPN
Hello: have installed oVirt 3.5 VDSM on a CentOS 7 node and then OpenVPN. The problem I have is that when I start OpenVPN I receive the message: Oct 18 13:29:50 kvm01 openvpn[4159]: /usr/sbin/ip link set dev tun0 up mtu 1500 Oct 18 13:29:50 kvm01 openvpn[4159]: /usr/sbin/ip addr add dev tun0 192.168.124.200/25 broadcast 192.168.124.255 Oct 18 13:29:50 kvm01 openvpn[4159]: /usr/sbin/ip route add 192.168.0.0/16 via 192.168.124.1 Oct 18 13:29:50 kvm01 openvpn[4159]: ERROR: Linux route add command failed: external program exited with error status: 2 and if I run the route command manually: [root@kvm01 sysconfig]# /usr/sbin/ip route add 192.168.0.0/16 via 192.168.124.1 RTNETLINK answers: No such process It would appear the tunnel is up: [root@kvm01 sysconfig]# ip add ls 1: lo: LOOPBACK,UP,LOWER_UP mtu 65536 qdisc noqueue state UNKNOWN link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: bond0: BROADCAST,MULTICAST,MASTER mtu 1500 qdisc noop state DOWN link/ether f2:c9:ce:e5:ac:32 brd ff:ff:ff:ff:ff:ff 3: em1: BROADCAST,MULTICAST,UP,LOWER_UP mtu 1500 qdisc mq master ovirtmgmt state UP qlen 1000 link/ether c8:1f:66:c4:2c:76 brd ff:ff:ff:ff:ff:ff inet6 fe80::ca1f:66ff:fec4:2c76/64 scope link valid_lft forever preferred_lft forever 4: em2: BROADCAST,MULTICAST mtu 1500 qdisc noop state DOWN qlen 1000 link/ether c8:1f:66:c4:2c:77 brd ff:ff:ff:ff:ff:ff 6: ;vdsmdummy;: BROADCAST,MULTICAST mtu 1500 qdisc noop state DOWN link/ether 46:af:6e:9a:1e:4b brd ff:ff:ff:ff:ff:ff 8: ovirtmgmt: BROADCAST,MULTICAST,UP,LOWER_UP mtu 1500 qdisc noqueue state UP link/ether c8:1f:66:c4:2c:76 brd ff:ff:ff:ff:ff:ff inet XXX.XXX.XXX.XXX/23 brd 88.150.253.255 scope global ovirtmgmt valid_lft forever preferred_lft forever inet6 fe80::ca1f:66ff:fec4:2c76/64 scope link valid_lft forever preferred_lft forever 10: tun0: POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP mtu 1500 qdisc pfifo_fast state UNKNOWN qlen 100 link/none inet 192.168.124.200/25 brd 192.168.124.255 scope global tun0 valid_lft forever preferred_lft forever Any thoughts as to why the route will not work ? Rationale for this approach is its a cloud server and wish to use a private network to reach the install VMs on that node. Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt 3.5
Fantastic to see 3.5 has gone GA :) Now on to a couple of questions about how best one should configure the system. I have three servers, one is effectively by desktop but has KVM running, and the other two at present have a vanilla CentOS 7 installed. The two CentOS 7 are in the cloud with a public IP address on each, whereas the other is sat in my home office. Am thinking that I should set up a local KVM guess with CentOS 6.5 and install the engine, then create a VPN network to the other two and install them as nodes with private IP addresses initially. Then as I need to expose them to the outside work I can configure NAT addresses. Does this appear to be the most sensible approach ? or should I look to use the hosted engine configuration ? Any help and advice would be appreciated. Thank you, Phil. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Thursday, 16 October, 2014 2:20:21 PM Subject: [ovirt-users] oVirt 3.5 Hello: I now have two servers that I would like to install CentOS7 on and run the latest release of 3.5 on. Have taken a look at http://resources.ovirt.org/pub/ and there appears to be quite a few different versions. Would http://resources.ovirt.org/pub/ovirt-3.5-snapshot/ be the most appropriate release to use ? And if I may ask which document should I digest for installation ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[ovirt-users] oVirt 3.5
Hello: I now have two servers that I would like to install CentOS7 on and run the latest release of 3.5 on. Have taken a look at http://resources.ovirt.org/pub/ and there appears to be quite a few different versions. Would http://resources.ovirt.org/pub/ovirt-3.5-snapshot/ be the most appropriate release to use ? And if I may ask which document should I digest for installation ? Thanks, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] oVirt status in EL7
Waiting on 3.5 release I believe (like myself :)) - Original Message - From: Igor Gnatenko ignatenkobr...@fedoraproject.org To: users@ovirt.org Sent: Tuesday, 14 October, 2014 4:33:50 PM Subject: [ovirt-users] oVirt status in EL7 Hi, What status of support EL7 in oVirt? I mean as host OS. -- -Igor Gnatenko ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[ovirt-users] To oVirt or not to oVirt
Good day all! have been a KVM user/admin for the last few years and have configured all aspects using either VirtManager or CLI where required. am about to reinstall my development system and started to look at using CentOS7 as the host, and to get a more recent version of KVM. After a little search around I came across oVirt and am considering whether to install this now and use it as the main configuration tool. do have a couple of questions which hopefully somebody will be able to help with? at present I am using OpenVSwitch with KVM so that I could use the vlan capabilities and wish to ask whether will need to move away from that to a different solution ? On my host I already have about 10 VMs that I wish to keep and whether I could migrate them into oVirt ? I have been using LVM volumes as raw storage for the VM images so presume would need to convert them to a different format for use ? one of my VMs actually acts as a storage provider, using Quantastor, which then presents storage to other VMs using iSCSI which hope I can still use in oVirt ? Apologies if these questions are a little vague but am trying to get my head around how it would all work. Thank you, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] To oVirt or not to oVirt
Further to this if I wished to use oVirt do I need to completely wipe the CentOS7 server or could I install the upcoming oVirt 3.5 directly over the top ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 10:32:32 AM Subject: [ovirt-users] To oVirt or not to oVirt Good day all! have been a KVM user/admin for the last few years and have configured all aspects using either VirtManager or CLI where required. am about to reinstall my development system and started to look at using CentOS7 as the host, and to get a more recent version of KVM. After a little search around I came across oVirt and am considering whether to install this now and use it as the main configuration tool. do have a couple of questions which hopefully somebody will be able to help with? at present I am using OpenVSwitch with KVM so that I could use the vlan capabilities and wish to ask whether will need to move away from that to a different solution ? On my host I already have about 10 VMs that I wish to keep and whether I could migrate them into oVirt ? I have been using LVM volumes as raw storage for the VM images so presume would need to convert them to a different format for use ? one of my VMs actually acts as a storage provider, using Quantastor, which then presents storage to other VMs using iSCSI which hope I can still use in oVirt ? Apologies if these questions are a little vague but am trying to get my head around how it would all work. Thank you, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] To oVirt or not to oVirt
Would this be the way to integrate OVS http://www.ovirt.org/OVirt_Neutron_GRE_Integration_-_How_To ? or in 3.5 are you able to import OVS networks now ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 12:51:37 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt Further to this if I wished to use oVirt do I need to completely wipe the CentOS7 server or could I install the upcoming oVirt 3.5 directly over the top ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 10:32:32 AM Subject: [ovirt-users] To oVirt or not to oVirt Good day all! have been a KVM user/admin for the last few years and have configured all aspects using either VirtManager or CLI where required. am about to reinstall my development system and started to look at using CentOS7 as the host, and to get a more recent version of KVM. After a little search around I came across oVirt and am considering whether to install this now and use it as the main configuration tool. do have a couple of questions which hopefully somebody will be able to help with? at present I am using OpenVSwitch with KVM so that I could use the vlan capabilities and wish to ask whether will need to move away from that to a different solution ? On my host I already have about 10 VMs that I wish to keep and whether I could migrate them into oVirt ? I have been using LVM volumes as raw storage for the VM images so presume would need to convert them to a different format for use ? one of my VMs actually acts as a storage provider, using Quantastor, which then presents storage to other VMs using iSCSI which hope I can still use in oVirt ? Apologies if these questions are a little vague but am trying to get my head around how it would all work. Thank you, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] To oVirt or not to oVirt
Hello Dan, Options mainly as would like to start using SFlow down the line for protocol analysis across the VMs; plus GRE etc. Thanks, P. - Original Message - From: Dan Yasny dya...@gmail.com To: Phil Daws ux...@splatnix.net Cc: users users@ovirt.org Sent: Tuesday, 7 October, 2014 2:29:39 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt Why do you need OVS? oVirt supports VLANs out of the box without the extra hurdle On Tue, Oct 7, 2014 at 9:21 AM, Phil Daws ux...@splatnix.net wrote: Would this be the way to integrate OVS http://www.ovirt.org/OVirt_Neutron_GRE_Integration_-_How_To ? or in 3.5 are you able to import OVS networks now ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 12:51:37 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt Further to this if I wished to use oVirt do I need to completely wipe the CentOS7 server or could I install the upcoming oVirt 3.5 directly over the top ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 10:32:32 AM Subject: [ovirt-users] To oVirt or not to oVirt Good day all! have been a KVM user/admin for the last few years and have configured all aspects using either VirtManager or CLI where required. am about to reinstall my development system and started to look at using CentOS7 as the host, and to get a more recent version of KVM. After a little search around I came across oVirt and am considering whether to install this now and use it as the main configuration tool. do have a couple of questions which hopefully somebody will be able to help with? at present I am using OpenVSwitch with KVM so that I could use the vlan capabilities and wish to ask whether will need to move away from that to a different solution ? On my host I already have about 10 VMs that I wish to keep and whether I could migrate them into oVirt ? I have been using LVM volumes as raw storage for the VM images so presume would need to convert them to a different format for use ? one of my VMs actually acts as a storage provider, using Quantastor, which then presents storage to other VMs using iSCSI which hope I can still use in oVirt ? Apologies if these questions are a little vague but am trying to get my head around how it would all work. Thank you, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] To oVirt or not to oVirt
am reading through the release notes for 3.5 as I believe one can install the engine on a VM now. As I only have one server at present my thoughts are to install CentOS7, then oVirt 3.5 node (vdsm), and then create a VM which would be the oVirt Engine. Then as I add on another server I can just build that as a node and the Engine can be moved between. Is that correct ? Thanks, P. - Original Message - From: Dan Yasny dya...@gmail.com To: Phil Daws ux...@splatnix.net Cc: users users@ovirt.org Sent: Tuesday, 7 October, 2014 2:29:39 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt Why do you need OVS? oVirt supports VLANs out of the box without the extra hurdle On Tue, Oct 7, 2014 at 9:21 AM, Phil Daws ux...@splatnix.net wrote: Would this be the way to integrate OVS http://www.ovirt.org/OVirt_Neutron_GRE_Integration_-_How_To ? or in 3.5 are you able to import OVS networks now ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 12:51:37 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt Further to this if I wished to use oVirt do I need to completely wipe the CentOS7 server or could I install the upcoming oVirt 3.5 directly over the top ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 10:32:32 AM Subject: [ovirt-users] To oVirt or not to oVirt Good day all! have been a KVM user/admin for the last few years and have configured all aspects using either VirtManager or CLI where required. am about to reinstall my development system and started to look at using CentOS7 as the host, and to get a more recent version of KVM. After a little search around I came across oVirt and am considering whether to install this now and use it as the main configuration tool. do have a couple of questions which hopefully somebody will be able to help with? at present I am using OpenVSwitch with KVM so that I could use the vlan capabilities and wish to ask whether will need to move away from that to a different solution ? On my host I already have about 10 VMs that I wish to keep and whether I could migrate them into oVirt ? I have been using LVM volumes as raw storage for the VM images so presume would need to convert them to a different format for use ? one of my VMs actually acts as a storage provider, using Quantastor, which then presents storage to other VMs using iSCSI which hope I can still use in oVirt ? Apologies if these questions are a little vague but am trying to get my head around how it would all work. Thank you, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] To oVirt or not to oVirt
Thank Dan, your wise comments are very much appreciated. am just wondering whether to go CentOS 6.X or 7 at this time especially as 7 has only just come out the stable gate. a question would be whether oVirt would work best on the 6.X or 7 version, especially as its developing so quickly. Just looking at my two systems there is quite a gap already: C6 -- qemu-kvm-0.12.1.2-2.415.el6_5.10.x86_64 C7 -- qemu-kvm-1.5.3-60.el7_0.7.0.1.x86_64 All thoughts appreciated. Thanks, P. - Original Message - From: Dan Yasny dya...@gmail.com To: Phil Daws ux...@splatnix.net Cc: users users@ovirt.org Sent: Tuesday, 7 October, 2014 2:40:39 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt If you really intend to use that, you will need to install neutron with whatever plugins you need and use it as an external provider for the VMs. If this is just a matter of I can haz this cool tech, but really, regular bridging with VLAN support, custom MTUs and a bunch of other features (especially a very easy graphical setup) are enough, I'd stick with oVirt native networking - it's pretty powerful in it's own right. On Tue, Oct 7, 2014 at 9:37 AM, Phil Daws ux...@splatnix.net wrote: Hello Dan, Options mainly as would like to start using SFlow down the line for protocol analysis across the VMs; plus GRE etc. Thanks, P. - Original Message - From: Dan Yasny dya...@gmail.com To: Phil Daws ux...@splatnix.net Cc: users users@ovirt.org Sent: Tuesday, 7 October, 2014 2:29:39 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt Why do you need OVS? oVirt supports VLANs out of the box without the extra hurdle On Tue, Oct 7, 2014 at 9:21 AM, Phil Daws ux...@splatnix.net wrote: Would this be the way to integrate OVS http://www.ovirt.org/OVirt_Neutron_GRE_Integration_-_How_To ? or in 3.5 are you able to import OVS networks now ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 12:51:37 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt Further to this if I wished to use oVirt do I need to completely wipe the CentOS7 server or could I install the upcoming oVirt 3.5 directly over the top ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 10:32:32 AM Subject: [ovirt-users] To oVirt or not to oVirt Good day all! have been a KVM user/admin for the last few years and have configured all aspects using either VirtManager or CLI where required. am about to reinstall my development system and started to look at using CentOS7 as the host, and to get a more recent version of KVM. After a little search around I came across oVirt and am considering whether to install this now and use it as the main configuration tool. do have a couple of questions which hopefully somebody will be able to help with? at present I am using OpenVSwitch with KVM so that I could use the vlan capabilities and wish to ask whether will need to move away from that to a different solution ? On my host I already have about 10 VMs that I wish to keep and whether I could migrate them into oVirt ? I have been using LVM volumes as raw storage for the VM images so presume would need to convert them to a different format for use ? one of my VMs actually acts as a storage provider, using Quantastor, which then presents storage to other VMs using iSCSI which hope I can still use in oVirt ? Apologies if these questions are a little vague but am trying to get my head around how it would all work. Thank you, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [ovirt-users] To oVirt or not to oVirt
Appreciated Daniel. If add more hosts down the line may the engine configuration be migrated back to a VM for resilience ? Thanks, P. - Original Message - From: Daniel Helgenberger daniel.helgenber...@m-box.de To: Phil Daws ux...@splatnix.net, users users@ovirt.org Sent: Tuesday, 7 October, 2014 3:00:07 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt Hi Phil, On 07.10.2014 15:42, Phil Daws wrote: am reading through the release notes for 3.5 as I believe one can install the engine on a VM now. Indeed, this is called Hosted Engine. In 3.5, witch is expected to be released in a few days/week you can also use a prebuild virtual appliance for this purpose. Also, the ovirt Node, witch is a prebuld minimal OS, will have the feature to support Hosted Engine. If you are running only one host, I would advice deploying more hosts or take the traditional approach and put the engine in bare metal box for production. Maybe you stumbled over the admin guide [1] already? The doc is quite new and reflects oVirt 3.4 Keep in mind, EL7 is sopported as HOST in 3.5 only atm, your Engine still needs to run Fedora 19 / EL6.5 As I only have one server at present my thoughts are to install CentOS7, then oVirt 3.5 node (vdsm), and then create a VM which would be the oVirt Engine. There is a script, called hosted-engine --depoly for that. All you need to do is to enable the repos in yum and install ovirt-hosted-engine, desirably from a minimal install. Please read [2]. Then as I add on another server I can just build that as a node and the Engine can be moved between. Is that correct ? Thanks, P. Also, for testing you can use ovirt all in one [3]. This is a HV host plus engine (but not as a VM IIRC). I would not recommend this for production. [1] http://www.ovirt.org/OVirt_Administration_Guide [2] http://www.ovirt.org/Features/Self_Hosted_Engine [3] http://www.ovirt.org/Feature/AllInOne - Original Message - From: Dan Yasny dya...@gmail.com To: Phil Daws ux...@splatnix.net Cc: users users@ovirt.org Sent: Tuesday, 7 October, 2014 2:29:39 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt Why do you need OVS? oVirt supports VLANs out of the box without the extra hurdle On Tue, Oct 7, 2014 at 9:21 AM, Phil Daws ux...@splatnix.net wrote: Would this be the way to integrate OVS http://www.ovirt.org/OVirt_Neutron_GRE_Integration_-_How_To ? or in 3.5 are you able to import OVS networks now ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 12:51:37 PM Subject: Re: [ovirt-users] To oVirt or not to oVirt Further to this if I wished to use oVirt do I need to completely wipe the CentOS7 server or could I install the upcoming oVirt 3.5 directly over the top ? Thank you. - Original Message - From: Phil Daws ux...@splatnix.net To: users@ovirt.org Sent: Tuesday, 7 October, 2014 10:32:32 AM Subject: [ovirt-users] To oVirt or not to oVirt Good day all! have been a KVM user/admin for the last few years and have configured all aspects using either VirtManager or CLI where required. am about to reinstall my development system and started to look at using CentOS7 as the host, and to get a more recent version of KVM. After a little search around I came across oVirt and am considering whether to install this now and use it as the main configuration tool. do have a couple of questions which hopefully somebody will be able to help with? at present I am using OpenVSwitch with KVM so that I could use the vlan capabilities and wish to ask whether will need to move away from that to a different solution ? On my host I already have about 10 VMs that I wish to keep and whether I could migrate them into oVirt ? I have been using LVM volumes as raw storage for the VM images so presume would need to convert them to a different format for use ? one of my VMs actually acts as a storage provider, using Quantastor, which then presents storage to other VMs using iSCSI which hope I can still use in oVirt ? Apologies if these questions are a little vague but am trying to get my head around how it would all work. Thank you, Phil ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users -- Daniel Helgenberger m box bewegtbild GmbH P: +49/30/2408781-22 F: +49/30/2408781-10 ACKERSTR. 19 D-10115 BERLIN www.m-box.de www.monkeymen.tv Geschäftsführer
