Ask Your Question

Revision history [back]

I have the same problem with floating IP's.

I am running one control node with quantum-server, L3 and openvswitch, and two compute nodes with nova-compute and openvswitch.

I am using namespaces. I am able to ping the private IP address from the namespace, but not the floating IP. I can see the (correctly NAT'd) traffic getting to the compute node on the bridge interface for the VM.

My default secgroup is:

[admin:admin] root@openstack-control:~# nova secgroup-list-rules default
+-------------+-----------+---------+-----------+--------------+ | IP Protocol | From Port | To Port | IP Range | Source Group | +-------------+-----------+---------+-----------+--------------+ | icmp | -1 | -1 | | | +-------------+-----------+---------+-----------+--------------+

When loading both: firewall_driver=nova.virt.firewall.NoopFirewallDriver libvirt_vif_driver=nova.virt.libvirt.vif.LibvirtOpenVswitchDriver

I can ping the VM on its public and floating IP.