Ask Your Question
0

Packstack] Openstack virtual router can't ping external Gateway

asked 2019-05-26 10:18:59 -0500

Michal.1996 gravatar image

updated 2019-05-27 02:56:58 -0500

Hi OpenStack experts,

I have problem with my qrouter because he can ping Host (192.168.0.10), launched instances but he can't ping the external gateway(192.168.0.1) and outside world (8.8.8.8).

[root@localhost ~(keystone_admin)]# ip netns exec qrouter-f1651184-0784-4e71-aa37-5cb5c7c1600d ping 8.8.8.8
PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.
From 192.168.0.214 icmp_seq=9 Destination Host Unreachable
From 192.168.0.214 icmp_seq=10 Destination Host Unreachable
From 192.168.0.214 icmp_seq=11 Destination Host Unreachable
From 192.168.0.214 icmp_seq=12 Destination Host Unreachable
From 192.168.0.214 icmp_seq=13 Destination Host Unreachable
From 192.168.0.214 icmp_seq=14 Destination Host Unreachable

Shortly about my configuration:

I have installed Openstack Ocata in All-In-One Single Machine deployment. Before openstack installation I made the following steps:

  1. I have disabled NetworkManager and firewalld serivces and I have enabled network service
  2. I have disabled Selinux
  3. I set bridge adapter and promicious mode for enp0s3 VM interface

Then I ran the packstack installer with the following parameters:

packstack --allinone --provision-demo=n --os-neutron-ovs-bridge-mappings=extnet:br-ex --os-neutronml2-type-drivers=vxlan,flat

Next I edited interfaces:

[root@localhost ~(keystone_admin)]# cat /etc/sysconfig/network-scripts/ifcfg-enp0s3
TYPE=OVSPort
NAME=enp0s3
DEVICE=enp0s3
DEVICETYPE=ovs
OVS_BRIDGE=br-ex
ONBOOT=yes

[root@localhost ~(keystone_admin)]# cat /etc/sysconfig/network-scripts/ifcfg-br-ex
DEVICE=br-ex
DEVICETYPE=ovs
TYPE=OVSBridge
BOOTPROTO=static
IPADDR=192.168.0.10
PREFIX=24
GATEWAY=192.168.0.1
IPV4_FAILURE_FATAL=no
IPV6INIT=no
DNS1=8.8.8.8
ONBOOT=yes

At the end I created provider network and public subnet:

neutron net-create ext-net --provider:network_type flat --provider:physical_network extnet --router:external 
neutron subnet-create --name public_subnet --enable_dhcp=False --allocation-pool start=192.168.0.200,end=192.168.0.220 --gateway=192.168.0.1 external_network 192.168.0.0/24

I think that my setup is correctly configured but my qrouter and launched instances still can't ping external gateway (192.168.0.1). From Host(192.168.0.10) i can ping qrouter, external gateway, outside world and all instances.

My configuration:

[root@localhost ~(keystone_admin)]# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: enp0s3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master ovs-system state UP group default qlen 1000
    link/ether 08:00:27:12:e2:51 brd ff:ff:ff:ff:ff:ff
    inet6 fe80::a00:27ff:fe12:e251/64 scope link
       valid_lft forever preferred_lft forever
3: enp0s8: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000
    link/ether 08:00:27:2f:90:23 brd ff:ff:ff:ff:ff:ff
4: ovs-system: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000
    link/ether 1a:39 ...
(more)
edit retag flag offensive close merge delete

Comments

Does the gateway address 192.168.0.1 exist somewhere in the network? I was successful setting up Rocky and Stein with internet access: https://ask.openstack.org/en/question.... The Rocky parameters should work for Ocata as well.

Bernd Bausch gravatar imageBernd Bausch ( 2019-05-26 22:14:52 -0500 )edit

By the way, your title says Devstack, but you used Packstack to deploy the cloud.

Bernd Bausch gravatar imageBernd Bausch ( 2019-05-26 22:15:59 -0500 )edit

Hi Bernd, thank you for answer. The GW address 192.168.0.1 is gateway of my physical router. I can ping this address from my Host (192.168.0.1) but not from qrouter. Tcpdump shows that icmp requests are reaching interface enp0s3 (on br-ex interface aren't visible) when I ping 8.8.8.8 from qrouter.

Michal.1996 gravatar imageMichal.1996 ( 2019-05-27 17:52:55 -0500 )edit

1 answer

Sort by ยป oldest newest most voted
0

answered 2019-05-27 18:09:49 -0500

Michal.1996 gravatar image

Additional logs from tcpdump (ping 8.8.8.8 from qrouter is runing):

[root@localhost ~]# tcpdump -nn -i br-ex not tcp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on br-ex, link-type EN10MB (Ethernet), capture size 262144 bytes
00:57:39.765680 ARP, Request who-has 192.168.0.10 (08:00:27:12:e2:51) tell 192.168.0.104, length 46
00:57:39.765701 ARP, Reply 192.168.0.10 is-at 08:00:27:12:e2:51, length 28
00:57:42.810999 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:57:43.834062 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:57:44.858995 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:57:45.882825 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:57:46.481475 IP 192.168.0.104.57420 > 239.255.255.250.1900: UDP, length 174
00:57:46.906527 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:57:47.482695 IP 192.168.0.104.57420 > 239.255.255.250.1900: UDP, length 174
00:57:47.930647 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:57:48.483625 IP 192.168.0.104.57420 > 239.255.255.250.1900: UDP, length 174
00:57:48.954243 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:57:49.484029 IP 192.168.0.104.57420 > 239.255.255.250.1900: UDP, length 174
00:57:49.735593 ARP, Request who-has 192.168.0.104 tell 192.168.0.1, length 46
00:57:59.194201 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:58:00.218365 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:58:01.242325 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:58:02.266545 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:58:03.290216 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
00:58:03.766227 ARP, Request who-has 192.168.0.10 (08:00:27:12:e2:51) tell 192.168.0.104, length 46
00:58:03.766245 ARP, Reply 192.168.0.10 is-at 08:00:27:12:e2:51, length 28

[root@localhost ~]# tcpdump -nn -i enp0s3 not tcp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on enp0s3, link-type EN10MB (Ethernet), capture size 262144 bytes
01:03:49.018786 ARP, Request who-has 192.168.0.1 tell 192.168.0.200, length 28
01:03:49.402563 IP 192.168.0.200 > 8.8.8.8: ICMP echo request, id ...
(more)
edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2019-05-26 10:18:59 -0500

Seen: 78 times

Last updated: May 27