networking issue with openstack rocky poc deployment on aws

asked 2019-06-27 18:17:43 -0500

gtarnaras gravatar image

updated 2019-07-01 03:36:43 -0500

Hello all, i would appreciate some help solving below issue:

I need to create a POC openstack environment on AWS (lack of physical infrastructure). I have followed every step on https://docs.openstack.org/rocky/install/ (https://docs.openstack.org/rocky/inst...) and deployed openstack on ec2 instances. I have choses the selfservice networking architecture using linux bridges. The OS i am using is Centos7 AMI from marketplace. Everything seems to work fine but i cannot access the public internet from the VMs i am creating using the selfservice network. Any ideas? My ec2 instances:

controller - 2 nics

Private IPs
eth0=172.31.34.20 + <public ip>
eth1= 173.31.32.193

eth0 - 
BOOTPROTO=dhcp
DEVICE=eth0
HWADDR=0e:44:f1:72:61:14
ONBOOT=yes
TYPE=Ethernet
USERCTL=no

eth1 - 
BOOTPROTO="none"
DEVICE=eth1
ONBOOT=yes
TYPE=Ethernet
NM_CONTROLLED=no
MACADDR=00:0C:29:24:79:76

[centos@controller ~]$ ip netns
qrouter-a3da6290-eb4f-444c-9abc-ed75382c2484 (id: 1)
qdhcp-8532a1a3-baea-412a-8dc3-9ebab398957d (id: 0)

[root@controller centos]# ip netns exec qrouter-a3da6290-eb4f-444c-9abc-ed75382c2484 route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         173.31.32.1     0.0.0.0         UG    0      0        0 qg-7ca62d0d-e1
173.31.32.0     0.0.0.0         255.255.255.0   U     0      0        0 qg-7ca62d0d-e1
192.168.10.0    0.0.0.0         255.255.255.0   U     0      0        0 qr-db341d73-a1

[root@controller centos]# ip netns exec qrouter-a3da6290-eb4f-444c-9abc-ed75382c2484 ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: qr-db341d73-a1@if8: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue state UP group default qlen 10

    00
    link/ether fa:16:3e:54:40:56 brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet 192.168.10.1/24 brd 192.168.10.255 scope global qr-db341d73-a1
       valid_lft forever preferred_lft forever
    inet6 fe80::f816:3eff:fe54:4056/64 scope link
       valid_lft forever preferred_lft forever
3: qg-7ca62d0d-e1@if9: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether 0e:01:67:79:6c:6a brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet 173.31.32.119/24 brd 173.31.32.255 scope global qg-7ca62d0d-e1
       valid_lft forever preferred_lft forever
    inet6 fe80::c01:67ff:fe79:6c6a/64 scope link
       valid_lft forever preferred_lft forever

[root@controller centos]# ip netns exec qrouter-a3da6290-eb4f-444c-9abc-ed75382c2484 ping 8.8.8.8
PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.
From 173.31.32.119 icmp_seq=1 Destination Host Unreachable
From 173.31.32.119 icmp_seq=2 Destination Host Unreachable
From 173.31.32.119 icmp_seq=3 Destination Host Unreachable

root@controller centos]# brctl show
bridge name bridge id       STP enabled interfaces
brq8532a1a3-ba      8000.5a935abcf59d   no      tap214c0cbb-a0
                            tapdb341d73-a1
                            vxlan-60
brq8968bef7-a8      8000.0e0167796c6a ...
(more)
edit retag flag offensive close merge delete