Ask Your Question
0

instance can't access to external

asked 2013-11-27 11:14:24 -0600

ronan-lanore gravatar image

hi,

My instance can't access to external network via routeur.

My install is multinode

1/ Controller/Network 2/ Compute

Network configuration is "per-tenant routers with private networks" I have following this guide:

http://docs.openstack.org/havana/install-guide/install/apt/content/demo_per_tenant_router_network_config.html (http://docs.openstack.org/havana/inst...)

My instance can get IP from DHCP I can ping it from routeur

/etc/neutron/l3_agent.ini:external_network_bridge = br-ext

network create via:

neutron net-create Ext-Net --provider:network_type local --router:external true neutron subnet-create Ext-Net 10.1.0.0/16 --disable-dhcp --allocation-pool start=10.1.35.1,end=10.1.35.3

Create network for Projet 1

neutron --os-tenant-name Projet1 --os-username adminProj1 --os-password adminProj1 --os-auth-url=http://localhost:5000/v2.0 net-create projet1-net

neutron --os-tenant-name Projet1 --os-username adminProj1 --os-password adminProj1 --os-auth-url=http://localhost:5000/v2.0 subnet-create projet1-net 192.168.99.0/24

neutron --os-tenant-name Projet1 --os-username adminProj1 --os-password adminProj1 --os-auth-url=http://localhost:5000/v2.0 router-create projet1-R1

neutron --os-tenant-name Projet1 --os-username adminProj1 --os-password adminProj1 --os-auth-url=http://localhost:5000/v2.0 router-interface-add projet1-R1 0a814593-c8e1-4807-b794-fab973c61fda

neutron --os-tenant-name Projet1 --os-username adminProj1 --os-password adminProj1 --os-auth-url=http://localhost:5000/v2.0 router-gateway-set projet1-R1 Ext-Net

ip netns qrouter-b746f058-dc0f-4b57-bfa2-f67455a9191a qdhcp-3e2cfbdd-c2bb-4e6d-8774-142050eccf99

ovs-vsctl show http://paste.openstack.org/show/54048/

ovs-ofctl show br-ext http://paste.openstack.org/show/54049/

controller route -n: http://paste.openstack.org/show/54050/

controller ifconfig : http://paste.openstack.org/show/54051/

qrouteur namespace ifconfig: http://paste.openstack.org/show/54052/

qrouteur namespace route: http://paste.openstack.org/show/54053/

ip netns exec qrouter-b746f058-dc0f-4b57-bfa2-f67455a9191a ping 10.1.101.51 PING 10.1.101.51 (10.1.101.51) 56(84) bytes of data. From 10.1.35.1 icmp_seq=1 Destination Host Unreachable From 10.1.35.1 icmp_seq=2 Destination Host Unreachable From 10.1.35.1 icmp_seq=3 Destination Host Unreachable

tcpdump don't show anything icmp traffic on br-ext or eth3 ??

thanks

edit retag flag offensive close merge delete

5 answers

Sort by ยป oldest newest most voted
0

answered 2013-12-03 14:35:21 -0600

ronan-lanore gravatar image

solved.

A NIC cards on host system ( with no linux configuration no IP,etc ... ) accountable to this issue.

edit flag offensive delete link more
0

answered 2013-11-29 15:34:39 -0600

ronan-lanore gravatar image

more info again/

ip of qg-xxxx is : 10.1.35.1/16

ip of controller/network node: 10.1.20.254/16

computer A : 10.1.101.51/16

computer B: 10.1.101.52/16

computer A can NOT ping qg (10.1.35.1) can ping 10.1.20.254 ( arp is br-ext of contorller/network node )

computer B: can NOT ping 10.1.20.254 can ping 10.1.35.1 ( arp is qg interface )

no firewall on both computer

I have cleared all fireall rules of controller/network node

wtf ?

edit flag offensive delete link more
0

answered 2013-11-29 13:37:52 -0600

ronan-lanore gravatar image

I can see my ARP request arrived on desired host ( it's reply ) but reply does not arrive to br-ext. Any idee?

on controller: tcpdump -eni br-ext host 10.1.35.1 listening on br-ext, link-type EN10MB (Ethernet), capture size 65535 bytes 14:10:02.476458 fa:16:3e:66:45:9e > ff:ff:ff:ff:ff:ff, ethertype ARP (0x0806), length 42: Request who-has 10.1.101.51 tell 10.1.35.1, length 28 14:10:03.475028 fa:16:3e:66:45:9e > ff:ff:ff:ff:ff:ff, ethertype ARP (0x0806), length 42: Request who-has 10.1.101.51 tell 10.1.35.1, length 28

on destination host 10.1.101.51: sudo tcpdump -eni eth1 host 10.1.35.1 tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on eth1, link-type EN10MB (Ethernet), capture size 65535 bytes 14:10:47.925063 fa:16:3e:66:45:9e > ff:ff:ff:ff:ff:ff, ethertype ARP (0x0806), length 60: Request who-has 10.1.101.51 tell 10.1.35.1, length 46 14:10:47.925077 94:de:80:20:31:c6 > fa:16:3e:66:45:9e, ethertype ARP (0x0806), length 42: Reply 10.1.101.51 is-at 94:de:80:20:31:c6, length 28

edit flag offensive delete link more
0

answered 2013-11-27 13:40:13 -0600

ronan-lanore gravatar image

root@os-mgmt1:~# modinfo openvswtich ERROR: Module openvswtich not found. root@os-mgmt1:~# modinfo openvswitch filename: /lib/modules/3.8.0-33-generic/updates/dkms/openvswitch.ko version: 1.10.2 license: GPL description: Open vSwitch switching datapath srcversion: C57BFF12C03B30A057F0B4B depends:
vermagic: 3.8.0-33-generic SMP mod_unload modversions root@os-mgmt1:~# uname -a Linux os-mgmt1 3.8.0-33-generic #48-Ubuntu SMP Wed Oct 23 09:16:58 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux root@os-mgmt1:~#

edit flag offensive delete link more
0

answered 2013-11-27 11:18:25 -0600

ronan-lanore gravatar image

doing this:

ovs-ofctl mod-port br-ext qg-44236e1b-7d up

produce an error into openvswitch log:

2013-11-27T10:44:11Z|00048|netdev_linux|INFO|ioctl(SIOCGIFHWADDR) on qg-44236e1b-7d device failed: No such device

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2013-11-27 11:14:24 -0600

Seen: 86 times

Last updated: Dec 03 '13