Ask Your Question
0

VM can't access internet

asked 2017-05-18 06:07:24 -0500

zoubayer gravatar image

updated 2017-05-19 02:15:30 -0500

Bernd Bausch gravatar image

Hi everyone , i installed openstack newton and after creating networks ( provider and selfserver ) i still can't ping my router interface and thats why i cant access internet for my VMs .

hi Bernd ,
i used 4 nodes ( controller , compute , object storage and block storage ) , infact i followed the official documentation of openstack newton : i am using linuxbridge . i tryed to create a vm directly on the provider network using cirros image and at first it uses dhcp but when i execute ifconfig it is not configured , once i configure it it works and internet as well . my problem now is i need to make it work on selfservice network . and this is my neutron.conf ( controller node )

[DEFAULT]   
core_plugin = ml2   
service_plugins = router  
allow_overlapping_ips = True   
transport_url = rabbit://openstack:password@controller   
auth_strategy = keystone   
notify_nova_on_port_status_changes = True    
notify_nova_on_port_data_changes = True    
[database]  
connection = mysql+pymysql://neutron:password@controller/neutron  

[keystone_authtoken]

auth_uri = http://controller:5000   
auth_url = http://controller:35357   
memcached_servers = controller:11211    
auth_type = password   
project_domain_name = Default   
user_domain_name = Default   
project_name = service    
username = neutron     
password = password  
[nova]    
auth_url = http://controller:35357   
auth_type = password    
project_domain_name = Default   
user_domain_name = Default    
region_name = RegionOne    
project_name = service    
username = nova    
password = password

this is my ml12_conf.ini 

[ml2]   
type_drivers = flat,vlan,vxlan   
tenant_network_types = vxlan    
mechanism_drivers = linuxbridge,l2population   
extension_drivers = port_security    

[ml2_type_flat]   
flat_networks = provider   

[ml2_type_vxlan]    
vni_ranges = 1:1000

this is my linux bridge conf ( on controller i have eth0 for managment end eth1 with no address assigned to it ) 

[linux_bridge]   

physical_interface_mappings = provider:eth1   
[securitygroup]   
enable_security_group = True   
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver  
[vxlan]   
enable_vxlan = True   
local_ip = managment ip   
l2_population = True
edit retag flag offensive close merge delete

Comments

Provide more information: How did you install OpenStack, in particular the network; relevant contents of neutron.conf, ml2.ini and Neutron agent config files. From where you are trying to ping the router.

Bernd Bausch gravatar imageBernd Bausch ( 2017-05-18 06:28:29 -0500 )edit

The networking guide contains deployment examples. If your config file content doesn't provide enough information to troubleshoot the problem, you might have to trace packets based on that guide.

Bernd Bausch gravatar imageBernd Bausch ( 2017-05-18 06:30:10 -0500 )edit

The linuxbridge config should be on the NW and compute nodes, not the controller.

You can't ping the router from the VM? Can you reach it from the DHCP namespace?

Try to check bridges and wiring (see the NW guide).

Bernd Bausch gravatar imageBernd Bausch ( 2017-05-19 02:25:54 -0500 )edit
add a comment

1 answer

Sort by ยป oldest newest most voted
0

answered 2017-05-19 02:35:49 -0500

zoubayer gravatar image

hi Bernd,
infact i followed openstack newton documentation where neutron is configured in controller node and compute node there are no more network node in its architecture !
and yes i can ping the router from the VM !
so let me give you more details ! last night i reached internet when i created a VM attached directly to provider network. and from this VM i coudnt ping the router address.
why cant my router ping my provider network !

edit flag offensive delete link more

Comments

So you can:

  1. ping the router from a VM on the tenant NW
  2. access the internet from a VM on the tenant NW
  3. access the internet from a VM on the provider NW

But you can't

  1. ping the router from a VM on the provider NW

Correct?

Bernd Bausch gravatar imageBernd Bausch ( 2017-05-19 02:48:04 -0500 )edit

i can :
1/ ping the router from a VM on the tenant network
2/ access the internet from a VM on the provider NW
but i cant :
1/ access internet from a VM on the tenant NW
2/ ping the router from a VM on the provider NW

zoubayer gravatar imagezoubayer ( 2017-05-19 03:07:11 -0500 )edit
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2017-05-18 06:07:24 -0500

Seen: 79 times

Last updated: May 19

Related questions

can't ping my router

How to enable access between tenants?

Can we launch an instance that behaves as a router in Openstack?

One router port is always DOWN

How to isolate tenant networks connected to a shared router?

Quick question about pinging a router

l3-agent Cannot find device

Internal router ? [closed]

Specifying static IP for neutron router external gateway port

share router between multiple tenants