unable to connect instances to the external network

asked 2020-07-29 08:54:29 -0500

bigH gravatar image

Hello everyone need help please

My infra : openstack Train (on Centos 7) : 3 nodes Controller/Compute/Storage

  1. Nodes are vmware VM.
  2. All vmware nodes have two network interface. The two network interface (eth0 and eth1) is connected respectively to VLAN_PRIVATE (managed) and VLAN_PUBLIC (provider)
  3. Self managed network option is activated
  4. Private network created :
    1. selfservice 172.16.1.0
    2. Name selfservice
    3. ID 83a6b79f-e230-4b5f-8f04-61a598c216f7
    4. Project ID f36f64988f344628bc97903de842b301
    5. State Active
    6. Administrator state Active
    7. Shared no
    8. External network no
    9. MTU 1450

Provider Network :

     Network Type : vxlan

     Physical Network : -

     Segment ID : 2
  1. Provider network created named provider

    1. ID 09843fe6-ca3b-4ccd-87be-eb44669756e7

    2. Project ID f36f64988f344628bc97903de842b301

    3. State Active

    4. Administrator state Active

    5. Shared Yes

    6. External Network

    7. MTU 1500

Provider Network :

Network Type : flat

Physical Network : provider

Segment ID : -
  1. float IP pool created 188.130.X.2 => 188.130.X.20 (VLAN_PUBLIC)

But I'm not enable to ping from and to the created VM .. any ideas ??

https://ibb.co/CWRrHXx (image description)

edit retag flag offensive close merge delete

Comments

How did you create your cloud - manually or with a deployment tool like Packstack or Devstack?

Do you have a route to 188.130.x.y when you ping?

Can the VM ping the router?

Is there connectivity to/from the VM that is directly connected to the provider network?

Bernd Bausch gravatar imageBernd Bausch ( 2020-07-29 18:51:59 -0500 )edit

Can you share the output of openstack network show provider, and the Linuxbridge or Openvswitch agent config (or whatever other L2 agent you use)?

Bernd Bausch gravatar imageBernd Bausch ( 2020-07-29 18:52:06 -0500 )edit

@Bernd Bausch it was created manually and yes I have a route when I ping from compute and controller node not from outside .. also when I ping from the created instance I reach the public assigned IP.

bigH gravatar imagebigH ( 2020-07-30 10:53:22 -0500 )edit

Can it be this one https://ask.openstack.org/en/question/127119/openstack-neutron-ovs-external-network-not-reachable/https://ask.openstack.org/en/question/127119/openstack-neutron-ovs-external-network-not-reachable/ (https://ask.openstack.org/en/question...)

bigH gravatar imagebigH ( 2020-07-30 10:58:21 -0500 )edit

That's easy to check by enabling promiscuous mode on the external Vswitch.

Bernd Bausch gravatar imageBernd Bausch ( 2020-07-30 16:50:09 -0500 )edit