Ask Your Question
2

how does kolla configure br-ex?

asked 2017-12-06 17:41:18 -0600

jcorkey gravatar image

I deployed using kolla/kolla-ansible 5.0.0 on one compute node and one control node.

How does kolla configure the br-ex bridge??? After deploying, I can see that there are three bridges br-int, br-tun, and br-ex by running ovs-vsctl show

But where is the ifcfg-br-ex files?? Do I need to add the ifcfg-br-ex? I am getting confused with things since openstack services are running within containers,. I am having uses with pinging the floating IP's and router in openstack and I think it is an issue with the br-ex.

I have added all the correct security groups so I know thats NOT the problem.

So I am trying to understand how much I am responsible for configuring the br-ex or does kolla do all that for me?

edit retag flag offensive close merge delete

Comments

check /etc/kolla/neutron-openvswitch-agent/ml2_conf.in .in this file there is ovs tag which defines bridge mapping. each neutron service has ml2 file in it.br-ex is configured by kolla itself in network node

akarki gravatar imageakarki ( 2017-12-06 23:01:16 -0600 )edit

Ok thanks. I’m still a little confused though. I see br-int, br-tun, br-ex when I run the ovs-vsctl show in the openvswitchd container and it all looks correct but when I run nmcli d or ip a br-int, br-tun, br-ex say they are unmanaged. Like in the output in the comment below. Why is that?

jcorkey gravatar imagejcorkey ( 2017-12-06 23:16:58 -0600 )edit

br-ex openvswitch unmanaged br-int openvswitch unmanaged br-tun openvswitch unmanaged ovs-system openvswitch unmanaged

jcorkey gravatar imagejcorkey ( 2017-12-06 23:27:03 -0600 )edit

br-ex br-int and br-tun are supposed to have no ip address and are in down state after deployement.

akarki gravatar imageakarki ( 2017-12-06 23:32:33 -0600 )edit
add a comment

1 answer

Sort by » oldest newest most voted
4

answered 2017-12-07 08:51:06 -0600

Eduardo Gonzalez gravatar image

Hi,

  • Kolla reads neutron_external_interface variable.
  • The create a bridge br-ex in OVS (not the host/hypervisor)
  • Lastly attach the interface into the bridge.

https://github.com/openstack/kolla/blob/master/docker/openvswitch/openvswitch-db-server/ovs_ensure_configured.sh#L12,#L21

The host does not need configuration file for the bridge nor the interface manually attached as OVSport in the bridge. Only need a interface UP with no IP address associated to it. When a network is created, the traffic will flow through:

bridge (br-ex) -> physical interface (eth2) -> external router/switch outside openstack (neutron gateway)

Regards

edit flag offensive delete link more

Comments

Eduardo, this is my globals.yml file (https://paste.ubuntu.com/26480292/). My controller (Centos) has two nics: eth0, eth1. eth1 has an IP address. When I create an external network, I'm not able to reach it. What is the problem then? According to your answer, I shouldn't do anything else.

sacha-m gravatar imagesacha-m ( 2018-01-28 16:39:30 -0600 )edit

And here are my interfaces: https://paste.fedoraproject.org/paste...

sacha-m gravatar imagesacha-m ( 2018-01-28 16:41:58 -0600 )edit

Also, in https://da.gd/PaqT0 is the output of "docker exec openvswitch_vswitchd ovs-vsctl list-br", "docker exec openvswitch_vswitchd ovs-vsctl list-ports br-ex", "...br-tun", "...br-int" and "cat /etc/sysconfig/network-scripts/ifcfg-eth1".

sacha-m gravatar imagesacha-m ( 2018-01-28 19:58:33 -0600 )edit

Issue is attaching tunnel_interface to eth1 which is also external interface, tunnel interface is where vxlan tunnels for private networks flow. Also external interface not need IP address. If not have a dedicated interface for tunnels use api_interface

Eduardo Gonzalez gravatar imageEduardo Gonzalez ( 2018-01-29 01:15:48 -0600 )edit

I changed cluster_interface from eth1 to eth0, unset the IP in eth1, redeploy and worked. Thanks!

sacha-m gravatar imagesacha-m ( 2018-01-29 09:17:16 -0600 )edit
add a comment

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2017-12-06 17:41:18 -0600

Seen: 2,693 times

Last updated: Dec 07 '17

Related questions

Cannot ssh or ping instance floating ip's in openstack

kolla-build fails to build ovsdpdk and kafka container images

kolla vs kolla-ansible

Do I need internet to deploy kolla?

Yet another "Can't ping my VM instance!" Now with Openstack Kolla over AWS

How to change which host glance services will run on

instance cannot ping external network

How do containers provide storage on demand basis?

Openstack fails to spawn instance!

ssh into vm is slow but only for some vm's on openstack