Ask Your Question
0

Cannot ping instance created in 2 node Openstack installation with neutron gre tunnelling

asked 2014-03-07 01:28:29 -0500

Kunal Patil gravatar image

updated 2014-03-07 04:00:38 -0500

ping 10.10.155.32 [floating IP]

PING 10.10.155.32 (10.10.155.32) 56(84) bytes of data.

From 10.10.155.11 [Controller node IP] icmp_seq=2 Destination Host Unreachable

I am trying to ping the instances created in a 2 node Openstack installation with neutron gre tunnelling. I am getting the following error: "Destination Host Unreachable"

Steps I took for installation and configuration are as follows. Please let me know what am I missing:

###################################################################################################################### Configure NETWORK

KVMController1 IPs: eth0: 10.10.155.11 eth1: 10.10.155.12 eth2: 10.10.155.13

KVMCompute1 IPs: eth0: 10.10.155.14 eth1: 10.10.155.15

Disable SELINUX

yum -y update

yum install -y http://rdo.fedorapeople.org/rdo-relea...

yum install -y openstack-packstack

packstack --gen-answer-file my_answers.txt

vi my_answers.txt [Make changes for GRE configuration]

packstack --answer-file=my_answers.txt

reboot

######################################################################################################################

Update the external bridge configuration [I tried using the OVSBridge and OVSPort options, but that resulted in all eth0, eth1 and eth2 IPs being inaccessible]

CONTROLLER:

vi /etc/sysconfig/network-scripts/ifcfg-br-ex

DEVICE=br-ex

TYPE=Bridge

ONBOOT=yes

BOOTPROTO=none

IPADDR=10.10.155.13

NETMASK=255.255.255.0

GATEWAY=10.10.155.254

IPV6INIT=no

NM_CONTROLLED=no

vi /etc/sysconfig/network-scripts/ifcfg-eth2

ONBOOT=yes

BOOTPROTO=none

PROMISC=yes

DEVICE=eth2

HWADDR=38:EA:A7:91:15:10

IPV6INIT=no

NM_CONTROLLED=no

ovs-vsctl del-br br-ex

ovs-vsctl add-br br-ex

ovs-vsctl add-port br-ex eth2

######################################################################################################################

http://docs.openstack.org/havana/inst...

neutron net-create Public1 --router:external=True --provider:network_type gre --provider:segmentation_id 2

neutron subnet-create Public1 --allocation-pool start=10.10.155.31,end=10.10.155.120 --gateway=10.10.155.254 --enable_dhcp=False 10.10.155.0/24

keystone tenant-list [To get my tenant ID I have created earlier]

neutron router-create Router1 --tenant-id 442c1ffbca794753aa0323923d937f98

neutron router-gateway-set 2a007868-54dd-462a-b425-cd912b2ab256 c59906b1-9157-483c-a7fe-33b742798397

neutron net-create --tenant-id 442c1ffbca794753aa0323923d937f98 Net1 --provider:network_type gre --provider:segmentation_id 3

neutron subnet-create --tenant-id 442c1ffbca794753aa0323923d937f98 Net1 192.168.32.0/24 --gateway 192.168.32.1

neutron router-interface-add 2a007868-54dd-462a-b425-cd912b2ab256 c5207cc1-3351-4437-be83-6bc0587d50bd

######################################################################################################################

Security Group Rules

Direction Ether Type IP Protocol Port Range Remote

Ingress IPv4 TCP 22 (SSH) 0.0.0.0/0 (CIDR)

Ingress IPv4 ICMP - 0.0.0.0/0 (CIDR)

######################################################################################################################

Created Fedora 19 instance from QCOW2 image, and added a floating IP.

######################################################################################################################

In case this would be needed (maybe I am missing Iface br-ex entry in the table?):

route -n

Kernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface

10.10.155.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0

10.10.155.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1

169.254.0.0 0.0.0.0 255.255.0.0 U 1002 0 0 eth0

169.254.0.0 0.0.0.0 255.255.0.0 U 1003 0 0 eth1

169.254.0.0 0.0.0.0 255.255.0.0 U 1004 0 0 eth2

0.0.0.0 10.10.155.254 0.0.0.0 ... (more)

edit retag flag offensive close merge delete

Comments

Did the instance got the proper internal IP address through DHCP ? Did you assign external IP to instance ?

dheeru gravatar imagedheeru ( 2014-03-07 02:46:58 -0500 )edit

Yes on both counts. Internal IP for Instance is 192.168.32.2, while floating is 10.10.155.32. Router internal interface IP is 192.168.32.1, while external gateway is 10.10.155.31.

Kunal Patil gravatar imageKunal Patil ( 2014-03-07 03:50:32 -0500 )edit

My bad. I do not see a private IP assigned to the instance. Please see update question with the screenshot.

Kunal Patil gravatar imageKunal Patil ( 2014-03-07 04:01:44 -0500 )edit

This looks to me that DHCP from instance is not reaching the DHCP Server. Please look at the console log of instance see what happens when booting up ? Just check whether you see "sending DHCP Request" continously.

dheeru gravatar imagedheeru ( 2014-03-07 04:06:45 -0500 )edit

I saw "Failed to start LSB: Bring up/down networking". Network is unreachable (while trying to reach metadata URL).

Kunal Patil gravatar imageKunal Patil ( 2014-03-07 04:13:28 -0500 )edit

1 answer

Sort by ยป oldest newest most voted
0

answered 2014-03-07 07:37:24 -0500

Kunal Patil gravatar image

updated 2014-03-10 07:32:51 -0500

I do not know if I can answer my own question, but I have made some progress. Instead of using a third nic eth2, I have moved the eth0 configuration to br-ex.

CONTROLLER:

vi /etc/sysconfig/network-scripts/ifcfg-br-ex

DEVICE=br-ex

IPADDR=10.10.155.11

NETMASK=255.255.255.0

GATEWAY=10.10.155.254

ONBOOT=yes

vi /etc/sysconfig/network-scripts/ifcfg-eth0

DEVICE=eth0

ONBOOT=yes

HWADDR=38:EA:A7:90:0C:5C

ovs-vsctl add-port br-ex eth0 ; service network restart

Now I can provision instances with private and floating IP. I can access the instances using the floating IPs from the controller and the compute nodes.

I still cannot access the private IPs from the controller and compute nodes, or access the floating IPs from external network (The floating IP subnet is part of existing network, and the External Gateway is set accordingly). Please advice.

EDIT:

Fixed the issue. I was trying to create a floating IP with subnet 10.10.155.0/25 and using a smaller floating IP range. According to the suggestion at http://openstack.redhat.com/forum/dis... , "Your floating IP network should be defined with the same mask even if you are starting and ending the pool as a subset". After creating External network with 10.10.155.0/24, I am able to reach the floating ip instances from my network. Also, after adding the rule:

"route add -net 192.168.32.0 netmask 255.255.255.0 gw 10.10.155.31"

on my controller and compute nodes, I am able to login to the instances using the private IPs.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2014-03-07 01:28:29 -0500

Seen: 2,451 times

Last updated: Mar 10 '14