Ask Your Question
2

troubleshooting neutron - unreachable instance

asked 2014-05-29 15:57:12 -0600

ian.s.mcb gravatar image

Could someone share with me some advice on how to troubleshoot a broken neutron config?

I have an instance that is unreachable outside of the "qdhcp" network namespace, even though it has been assigned a floating IP address on an external network. Also, when I do a "ip a" on the "qrouter" network namespace, only a loopback device is displayed.

I am using the Icehouse release with the GRE ML2 plugin for Neutron. My setup consists of two nodes (one controller/network node and one compute node), and I used RDO/packstack to install everything.

edit retag flag offensive close merge delete

Comments

You wrote: Also, when I do a "ip a" on the "qrouter" network namespace, only a loopback device is displayed. In case you missing qg-xxxxxxxxxxx intreface your VMs are unreachable via floating IP. Output on my controller :-

[root@icehouse1 ~(keystone_admin)]# ip netns exec qrouter-2462467b-ea0a-4a40-a093-493572010694 ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default 
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
32: qr-bbba6fd3-a3: <BROADCAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default 
    link/ether fa:16:3e:84:1d:b6 brd ff:ff:ff:ff:ff:ff
    inet 10.0.0.1/24 brd 10.0.0.255 scope global qr-bbba6fd3-a3
       valid_lft forever preferred_lft forever
    inet6 fe80::f816:3eff:fe84:1db6/64 scope ...
(more)
dbaxps gravatar imagedbaxps ( 2014-05-29 21:56:09 -0600 )edit

Would try to recreate router and private && external networks

dbaxps gravatar imagedbaxps ( 2014-05-29 21:58:01 -0600 )edit

Thanks for sharing your output. Now I now that I am missing the "qr" and "qg" devices within my "qrouter" namespace.

ian.s.mcb gravatar imageian.s.mcb ( 2014-05-30 15:47:12 -0600 )edit

Missing qr-* && qg-* interfaces , you cannot have qrouter namespace NAT working for you. I mean this :-

[root@icehouse1 ~(keystone_admin)]# ip netns exec qrouter-2462467b-ea0a-4a40-a093-493572010694 iptables -S -t nat
-P PREROUTING ACCEPT
-P INPUT ACCEPT
-P OUTPUT ACCEPT
-P POSTROUTING ACCEPT
-N neutron-l3-agent-OUTPUT
-N neutron-l3-agent-POSTROUTING
-N neutron-l3-agent-PREROUTING
-N neutron-l3-agent-float-snat
-N neutron-l3-agent-snat
-N neutron-postrouting-bottom
-A PREROUTING -j neutron-l3-agent-PREROUTING
-A OUTPUT -j neutron-l3-agent-OUTPUT
-A POSTROUTING -j neutron-l3-agent-POSTROUTING
-A POSTROUTING -j neutron-postrouting-bottom
-A neutron-l3-agent-OUTPUT -d 192.168.1.96/32 -j DNAT --to-destination 10.0.0.68
-A neutron-l3-agent-OUTPUT -d 192.168.1.97/32 -j DNAT --to-destination 10.0.0.69
-A neutron-l3-agent-OUTPUT -d 192.168.1.100/32 -j DNAT --to-destination 10.0.0.73
-A neutron-l3-agent-OUTPUT -d 192.168.1.98/32 -j DNAT --to-destination 10.0.0.70
-A neutron-l3-agent-OUTPUT -d 192.168.1.99/32 -j DNAT --to-destination 10.0.0.72
-A neutron-l3-agent-OUTPUT -d 192.168.1.92/32 ...
(more)
dbaxps gravatar imagedbaxps ( 2014-05-30 22:05:49 -0600 )edit

For Two Node Neutron ML2+GRE+OVS setup , there is a sample of *.conf && *.ini files
http://kashyapc.fedorapeople.org/virt...

dbaxps gravatar imagedbaxps ( 2014-05-30 23:47:32 -0600 )edit

1 answer

Sort by ยป oldest newest most voted
1

answered 2014-05-29 22:15:04 -0600

annegentle gravatar image

This section should be useful.

http://docs.openstack.org/trunk/opens...

edit flag offensive delete link more

Comments

This has the information I was looking for.

ian.s.mcb gravatar imageian.s.mcb ( 2014-05-30 15:47:39 -0600 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2014-05-29 15:57:12 -0600

Seen: 1,356 times

Last updated: May 29 '14