What would cause a VM to not be able to ping a neutron router on a second external flat network?

asked 2017-03-01 16:50:18 -0500

cableguy gravatar image

Hello... I have a 7 node Mitaka ML2 OVS setup (controller, neutron, compute1-5 and storage) and am having trouble adding a second external provider network. VM's have been issued a floating IP, are reachable and can access the outside world via (ext-net) br-ex without issue. A second NIC in the Neutron node has been configured as br-qam. A second flat network (qam-net) has been created and I am able to assign a second floating IP to a VM. A second router (qam-router) has been created and interfaces to br-qam and the tenant network have been added. The router can ping the external default gateway, the VM and itself. My issue is that VM's cannot ping the router or the external gateway.

Supporting Details:

    root@neutron1:~# neutron net-list
+--------------------------------------+-------------+-----------------------------------------------------+
| id                                   | name        | subnets                                             |
+--------------------------------------+-------------+-----------------------------------------------------+
| 044cc270-cb23-4205-bd1e-10f0559809a8 | qam-net     | 07a895b3-9f1e-4c52-9c21-52e78416e537 172.16.10.0/24 |
| baeaab77-5e47-48eb-810e-de2355004c5b | ext-net     | da444dce-1533-4991-9823-1d94981b1bee 10.0.0.0/24    |
| 1f3e398c-e640-4e6e-a824-732782ebc6f2 | demo-net    | 31dbdb08-02e8-4be6-958a-93fddfc6446a 192.168.2.0/24 |
| a5174752-656a-4953-aa9e-0b6764eaf007 | rain-net    | d2647846-e708-49ff-800f-588e7d7c5391 192.168.1.0/24 |
| 78f1f996-213d-4ce4-bfd8-8ac0332911c7 | Drop-VOD    | 8e9f965e-aa64-4bcc-8004-4118e8b2599f 192.168.4.0/24 |
| 6cd5b93a-2d22-435b-9723-76d923ed327d | Drop-Linear | a2f57b06-e214-4476-b74e-ca71d4cc9a0d 192.168.3.0/24 |
+--------------------------------------+-------------+-----------------------------------------------------+


root@neutron1:~# neutron net-show qam-net
+---------------------------+--------------------------------------+
| Field                     | Value                                |
+---------------------------+--------------------------------------+
| admin_state_up            | True                                 |
| availability_zone_hints   |                                      |
| availability_zones        |                                      |
| created_at                | 2017-02-28T14:28:43                  |
| description               |                                      |
| id                        | 044cc270-cb23-4205-bd1e-10f0559809a8 |
| ipv4_address_scope        |                                      |
| ipv6_address_scope        |                                      |
| is_default                | False                                |
| mtu                       | 1500                                 |
| name                      | qam-net                              |
| port_security_enabled     | True                                 |
| provider:network_type     | flat                                 |
| provider:physical_network | qamnet                               |
| provider:segmentation_id  |                                      |
| router:external           | True                                 |
| shared                    | False                                |
| status                    | ACTIVE                               |
| subnets                   | 07a895b3-9f1e-4c52-9c21-52e78416e537 |
| tags                      |                                      |
| tenant_id                 | c1a771834b904373b3b9374acaf6cb62     |
| updated_at                | 2017-02-28T14:28:43                  |
+---------------------------+--------------------------------------+


root@neutron1:~# cat /etc/neutron/plugins/ml2/ml2_conf.ini
[ml2]
# (ListOpt) List of network type driver entrypoints to be loaded from
# the neutron.ml2.type_drivers namespace.
#
type_drivers = flat,vlan,vxlan

# (ListOpt) Ordered list of network_types to allocate as tenant
# networks. The default value 'local' is useful for single-box testing
# but provides no connectivity between hosts.
#
tenant_network_types = vxlan

# (ListOpt) Ordered list of networking mechanism driver entrypoints
# to be loaded from the neutron.ml2.mechanism_drivers namespace.
mechanism_drivers = openvswitch,l2population

# (ListOpt) Ordered list of extension driver entrypoints
# to be loaded from the neutron.ml2.extension_drivers namespace.
extension_drivers = port_security
# Example: extension_drivers = anewextensiondriver

[ml2_type_flat]
# (ListOpt) List of physical_network names with which flat networks
# can be created. Use * to allow flat networks with arbitrary
# physical_network names.
#
flat_networks = external,qamnet

[ml2_type_vlan]
# (ListOpt) List of <physical_network>[:<vlan_min>:<vlan_max>] tuples
# specifying physical_network names usable for VLAN provider and
# tenant networks, as well as ranges of VLAN tags on each
# physical_network available for allocation as tenant networks.
#
# network_vlan_ranges =
network_vlan_ranges = external:1000:2999,qamnet:1000:2999

[ml2_type_gre]
# (ListOpt) Comma-separated list of <tun_min>:<tun_max> tuples enumerating ranges of GRE tunnel IDs that are available for tenant network allocation
#tunnel_id_ranges = 1000:2999

[ml2_type_vxlan]
# (ListOpt) Comma-separated list of <vni_min>:<vni_max> tuples enumerating
# ranges of VXLAN VNI IDs that are available for tenant network allocation.
#
# vni_ranges =

# (StrOpt) Multicast group for the VXLAN interface. When configured, will
# enable sending all broadcast traffic to this multicast group. When left
# unconfigured, will disable multicast VXLAN mode.
#
# vxlan_group =
# Example: vxlan_group = 239.1.1.1

[ml2_type_geneve]
# (ListOpt) Comma-separated list of <vni_min>:<vni_max> tuples enumerating
# ranges of Geneve VNI IDs that are available for tenant network allocation.
#
# vni_ranges =

[securitygroup ...
(more)
edit retag flag offensive close merge delete