unable to connect instances to the external network

2020-07-29

Hello everyone need help please

My infra : openstack Train (on Centos 7) : 3 nodes Controller/Compute/Storage

  1. Nodes are vmware VM.
  2. All vmware nodes have two network interface. The two network interface (eth0 and eth1) is connected respectively to VLAN_PRIVATE (managed) and VLAN_PUBLIC (provider)
  3. Self managed network option is activated
  4. Private network created :
    1. selfservice
    2. Name selfservice
    3. ID 83a6b79f-e230-4b5f-8f04-61a598c216f7
    4. Project ID f36f64988f344628bc97903de842b301
    5. State Active
    6. Administrator state Active
    7. Shared no
    8. External network no
    9. MTU 1450

Provider Network :

     Network Type : vxlan

     Physical Network : -

     Segment ID : 2
  1. Provider network created named provider

    1. ID 09843fe6-ca3b-4ccd-87be-eb44669756e7

    2. Project ID f36f64988f344628bc97903de842b301

    3. State Active

    4. Administrator state Active

    5. Shared Yes

    6. External Network

    7. MTU 1500

Provider Network :

Network Type : flat

Physical Network : provider

Segment ID : -
  1. float IP pool created 188.130.X.2 => 188.130.X.20 (VLAN_PUBLIC)

But I'm not enable to ping from and to the created VM .. any ideas ??

https://ibb.co/CWRrHXx (image description)

How did you create your cloud - manually or with a deployment tool like Packstack or Devstack?

Do you have a route to 188.130.x.y when you ping?

Can the VM ping the router?

Is there connectivity to/from the VM that is directly connected to the provider network?

Can you share the output of openstack network show provider, and the Linuxbridge or Openvswitch agent config (or whatever other L2 agent you use)?

@Bernd Bausch it was created manually and yes I have a route when I ping from compute and controller node not from outside .. also when I ping from the created instance I reach the public assigned IP.

Can it be this one https://ask.openstack.org/en/question/127119/openstack-neutron-ovs-external-network-not-reachable/

That's easy to check by enabling promiscuous mode on the external Vswitch.

