Ask Your Question
0

Gateway always down [closed]

asked 2014-07-25 11:29:36 -0500

juliansotoca gravatar image

Hello All,

I'm having some problems to bring up the gateway on the public network. I've see other questions about it but nothing helped me, the network:router_gateway port is allways DOWN. I've a three node installation: compute, network and controller. This is the port status:

    [root@neutron ~(keystone_admin)]# neutron router-port-list PublicRouter
+--------------------------------------+------+-------------------+----------------------------------------------------------------------------------------+
| id                                   | name | mac_address       | fixed_ips                                                                              |
+--------------------------------------+------+-------------------+----------------------------------------------------------------------------------------+
| 80c3b435-346d-4191-a3c8-24af40d23362 |      | fa:16:3e:ed:4f:a1 | {"subnet_id": "2ad73ff6-9d2a-4f21-8cae-23ff3b95823e", "ip_address": "192.168.210.158"} |
+--------------------------------------+------+-------------------+----------------------------------------------------------------------------------------+
[root@neutron ~(keystone_admin)]# neutron port-show 80c3b435-346d-4191-a3c8-24af40d23362
+-----------------------+----------------------------------------------------------------------------------------+
| Field                 | Value                                                                                  |
+-----------------------+----------------------------------------------------------------------------------------+
| admin_state_up        | True                                                                                   |
| allowed_address_pairs |                                                                                        |
| binding:host_id       | neutron.enterprise.com                                                                   |
| binding:profile       | {}                                                                                     |
| binding:vif_details   | {"port_filter": true, "ovs_hybrid_plug": true}                                         |
| binding:vif_type      | ovs                                                                                    |
| binding:vnic_type     | normal                                                                                 |
| device_id             | 8fccfbf4-c861-4f2c-9afe-e7891d5badfa                                                   |
| device_owner          | network:router_gateway                                                                 |
| extra_dhcp_opts       |                                                                                        |
| fixed_ips             | {"subnet_id": "2ad73ff6-9d2a-4f21-8cae-23ff3b95823e", "ip_address": "192.168.210.158"} |
| id                    | 80c3b435-346d-4191-a3c8-24af40d23362                                                   |
| mac_address           | fa:16:3e:ed:4f:a1                                                                      |
| name                  |                                                                                        |
| network_id            | 11a6fac9-f239-4818-9b50-1692bae7892e                                                   |
| security_groups       |                                                                                        |
| status                | DOWN                                                                                   |
| tenant_id             |                                                                                        |
+-----------------------+----------------------------------------------------------------------------------------+

The installation (packstack) enabled the IP forwarding:

[root@neutron ~(keystone_admin)]# sysctl net.ipv4.ip_forward
net.ipv4.ip_forward = 1

Openvswitch:

[root@neutron ~(keystone_admin)]# ovs-vsctl show
2ae7e474-2a77-4e69-9660-b21e4682a2c3
    Bridge br-int
        Port int-br-ex
            Interface int-br-ex
        Port br-int
            Interface br-int
                type: internal
        Port patch-tun
            Interface patch-tun
                type: patch
                options: {peer=patch-int}
    Bridge br-tun
        Port "vxlan-c0a87a6f"
            Interface "vxlan-c0a87a6f"
                type: vxlan
                options: {in_key=flow, local_ip="192.168.122.101", out_key=flow, remote_ip="192.168.122.111"}
        Port patch-int
            Interface patch-int
                type: patch
                options: {peer=patch-tun}
        Port br-tun
            Interface br-tun
                type: internal
        Port "vxlan-c0a87a66"
            Interface "vxlan-c0a87a66"
                type: vxlan
                options: {in_key=flow, local_ip="192.168.122.101", out_key=flow, remote_ip="192.168.122.102"}
    Bridge br-ex
        Port "qg-80c3b435-34"
            Interface "qg-80c3b435-34"
                type: internal
        Port br-ex
            Interface br-ex
                type: internal
        Port phy-br-ex
            Interface phy-br-ex
        Port "eth2"
            Interface "eth2"
    ovs_version: "1.11.0"

[root@neutron ~(keystone_admin)]# ifconfig br-ex
br-ex     Link encap:Ethernet  HWaddr 00:1A:4A:6B:13:D0  
          inet addr:192.168.210.241  Bcast:192.168.210.255  Mask:255.255.255.0
          inet6 addr: fe80::b495:6fff:fe01:9815/64 Scope:Link
          UP BROADCAST RUNNING  MTU:1500  Metric:1
          RX packets:263 errors:0 dropped:0 overruns:0 frame:0
          TX packets:58 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:17874 (17.4 KiB)  TX bytes:4276 (4.1 KiB)

[root@neutron ~(keystone_admin)]# ifconfig eth2
eth2      Link encap:Ethernet  HWaddr 00:1A:4A:6B:13:D0  
          inet6 addr: fe80::21a:4aff:fe6b:13d0/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:155 errors:0 dropped:0 overruns:0 frame:0
          TX packets:329 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:9728 (9.5 KiB)  TX bytes:20330 (19.8 KiB)

some namespaces info:

[root@neutron ~(keystone_admin)]# ip netns exec qrouter-8fccfbf4-c861-4f2c-9afe-e7891d5badfa netstat -i
Kernel Interface table
Iface       MTU Met    RX-OK RX-ERR RX-DRP RX-OVR    TX-OK TX-ERR TX-DRP TX-OVR Flg
lo        16436   0      111      0      0      0      111      0      0      0 LRU
qg-80c3b435-34  1500   0       14      0      0      0       94      0      0      0 BRU
[root@neutron ~(keystone_admin)]# ip netns exec qrouter-8fccfbf4-c861-4f2c-9afe-e7891d5badfa netstat -rn
Kernel IP routing table
Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
192.168.210.0   0 ...
(more)
edit retag flag offensive reopen merge delete

Closed for the following reason the question is answered, right answer was accepted by juliansotoca
close date 2014-07-25 12:35:24.105879

Comments

1

What is your problem?
External port status DOWN is normal.

dbaxps gravatar imagedbaxps ( 2014-07-25 12:30:32 -0500 )edit

I thought that it was not normal :-(

juliansotoca gravatar imagejuliansotoca ( 2014-07-25 12:35:03 -0500 )edit

It's normal. What is your problem?

dbaxps gravatar imagedbaxps ( 2014-07-25 12:36:13 -0500 )edit

I thought it have to be active to allocate floating IP and access to the instances from the public network.

juliansotoca gravatar imagejuliansotoca ( 2014-07-25 12:37:41 -0500 )edit
1

have a look at this https://ask.openstack.org/en/question...

darragh-oreilly gravatar imagedarragh-oreilly ( 2014-07-25 12:39:34 -0500 )edit
add a comment

1 answer

Sort by ยป oldest newest most voted
0

answered 2014-07-25 12:29:04 -0500

dbaxps gravatar image

Snapshot from working system:-

[root@icehouse1 ~(keystone_admin)]# neutron router-port-list router3
+--------------------------------------+------+-------------------+--------------------------------------------------------------------------------------+
| id                                   | name | mac_address       | fixed_ips                                                                            |
+--------------------------------------+------+-------------------+--------------------------------------------------------------------------------------+
| 19f312c1-cbc6-446b-9775-f7bdf2135cef |      | fa:16:3e:42:0e:12 | {"subnet_id": "06530f5a-31af-4a14-a40f-808ee2e9e3ad", "ip_address": "40.0.0.1"}      |
| 908c1363-660d-4624-83be-07cb21bf4d7b |      | fa:16:3e:cb:e0:a6 | {"subnet_id": "c8421c61-7d85-4cf8-a5c8-03c05982bff9", "ip_address": "192.168.1.151"} |
+--------------------------------------+------+-------------------+--------------------------------------------------------------------------------------+
[root@icehouse1 ~(keystone_admin)]# neutron port-show 908c1363-660d-4624-83be-07cb21bf4d7b | grep status
| status                | DOWN                                                                                 |
edit flag offensive delete link more

Comments

it is showing DOWN because we have not tried pinging the router interface external ip, in my case it is 192.168.214.33, i checked almost everything and finally after pinging it ... it started reflecting as "ACTIVE"

Sandeep Agarwal gravatar imageSandeep Agarwal ( 2017-02-17 07:13:45 -0500 )edit

unable to add output :(

Sandeep Agarwal gravatar imageSandeep Agarwal ( 2017-02-17 07:14:18 -0500 )edit
add a comment

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2014-07-25 11:29:36 -0500

Seen: 512 times

Last updated: Jul 25 '14

Related questions

Can we launch an instance that behaves as a router in Openstack?

Newton DHCP Agent Problem

neutron(havana) with floodlight can't ping vm

neutron-openvswitch-agent.service not starting

force_dhcp_release for Neutron?

neutron: publicURL endpoint for network service not found

Firewall-as-a-Service (FWaaS) installation!?

Neutron: linuxbridge-agent always entering failed state

cannot ping vm from outside network

lbaas Unable to retrieve ready devices