Ask Your Question
0

multiple fixed-ip without filter

asked 2014-09-26 08:24:20 -0600

bernd gravatar image

Hi, I'm using icehouse with neutron and linux bridge, VLAN networks.

My goal is that an instance can bind secondary ip's dynamically. DHCP is using only an allocation pool segment of the subnet,leaving the rest for dynamic binding.

Currently I don't find any method to reach those dynamic ip's from outside. I've opened all communication via security rules - no effect. Seems like neutron is filtering letting only the assigned ip(s) in.

As a workaround if's used nova add-fixed-ip but this command doesn't allow to specify an ip and is using only ip's from the allocation-pool.

Is there a way to switch of the filter? Or any other method to accomplish this?

Thanks Bernd

edit retag flag offensive close merge delete
add a comment

3 answers

Sort by ยป oldest newest most voted
0

answered 2014-09-27 07:43:53 -0600

senyapsudah gravatar image

hi bernd, as as i know it is not possible. i have the same issue before then i change to flat network where no floating ip define but still the same issue. anyway, from there i can see that dhcp will only allocate one ip for the interface, then you need to manually force the instance to use the fix ip to you local interface.you can do it by telling your instance using below command:

ip addr add <ip>/<mask lenght=""> dev eth<number>

you can set it in your rc.local also which will survive reboot.

but take note that you will have to define the ip from the same port-id as it will use the same virtual mac address. if not, your instance will think it is a different interface causing it create another interface and this will not allow you to communicate to that interface event you have bind floating-ip to it.

edit flag offensive delete link more
add a comment
0

answered 2014-09-27 11:46:35 -0600

bernd gravatar image

Hi,

thank's for the comment. I've tried this "local" binding. It works but only when the ip is also assigned to the port.

My problem is that, the application binds one or more application specific ip's dynamically. The nova add-fixed-ip cannot specify the ip. when adding an ip with nova add-fixed-ip and later an ip add add with this ip within the OS it works.

I would love to know how to switch this filtering off and let all ip's at least reach the OS NIC.

edit flag offensive delete link more
add a comment
0

answered 2014-09-28 19:41:20 -0600

scouw gravatar image

I think that you can add the secondary ip to allowed_address_pairs proprety of neutron port. I made this with pacemaker vip

edit flag offensive delete link more

Comments

will the instance note about the second ip? or do we still need to manually configure it?

senyapsudah gravatar imagesenyapsudah ( 2014-09-28 23:34:45 -0600 )edit

You have to configure it manually.

scouw gravatar imagescouw ( 2014-09-29 03:49:21 -0600 )edit
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2014-09-26 08:24:20 -0600

Seen: 151 times

Last updated: Sep 28 '14

Related questions

neutron (Juno) l3 HA test failed

lbaas members inactive, http service unavailable

how does ml2 work specifically?

Use openstack to manage iptables

neutron lbaas

Cannot provision gre network [closed]

can't ping instance from any ip

FWaaS with Neutron L3 Agent High Availability

how can i fetch the log files to the other system. i want to write a script for the purpose

Failure retrieving ROUTER_GW_IP