How to set up networking for Openstack?

asked 2017-04-22 04:25:27 -0500

arsch.sharma gravatar image

I am trying to set up Openstack with the following networking setup: Controller node: 2 interfaces eth0 : 10.1.xx.xx eth1: 198.162.xx.xx

Compute node: 2 interfaces eth0: 10.1.xx.xx eth1: 198.162.xx.xx

The networks 10.1.xx.0/24 and 192.168.xx.0/24 are connected via a VyOS router with NAT operation on.

I have set 192.168.xx.0/24 as my provider network, and 10.1.xx.0/24 as my management network. Both have internet access. Inside Openstack, I am using 192.168.xx.0/24 as my external network and 172.16.xx.0/24 as my internal network. I can ping the openstack instance from my controller, but I can't access the internet from the instance. Please help.

edit retag flag offensive close merge delete



What core plugin is configured? I will assume ML2 for now. What mechanism driver? How do you map the agent to the physical network?

How is the instance connected to the provider network, directly or via router? Can you provide network, subnet, router details? Does the instance have a floating IP?

Bernd Bausch gravatar imageBernd Bausch ( 2017-04-22 06:57:17 -0500 )edit

core plugin is ML2. mechanism drivers are linuxbridge,l2population linuxbridge agent is used to map the physical and the virtual networks. instance is connected to the provider network via a router that links 172.16.xx.0/24 and 192.168.xx.0/24 instance floating ip 192.168.xx.111

arsch.sharma gravatar imagearsch.sharma ( 2017-04-22 07:17:02 -0500 )edit

You can ping the instance from the controller. Which address do you ping?

Can you provide Neutron network, subnet, router details?

I guess you map the agent to the physical network like this:

physical_interface_mappings = provider:eth1

on controller and compute, right?

Bernd Bausch gravatar imageBernd Bausch ( 2017-04-22 21:13:32 -0500 )edit

Inside the instance, can you ping the router? Probably 172.16.xx.1.

You may have to trace packets to get to the bottom of your problem. You need to know if the router is centralized or distributed, since tracing is quite different depending on router type.

Bernd Bausch gravatar imageBernd Bausch ( 2017-04-22 21:26:40 -0500 )edit

I can ping the instance's floating ip address from the controller by using the qrouter namespace.

#ip netns exec qrouter-router id ping floating-ip address

The Neutron router has the network 192.168.xx.0/24 set as the external network and it has an interface on the 172.16.xx.0/24 network.

arsch.sharma gravatar imagearsch.sharma ( 2017-04-24 05:22:54 -0500 )edit