Hi All, Using Ice house on ubuntu 14.04. ML2 network set up.

Having small issue with providing internet access to compute nodes. I have 3 networks listed below, and everything with VM's is working. I am able to get to VM using public floating IP and I am able to get from vm to internet. My issue is routing physical compute node to internet through network node for updates.

Controller: 1. management network only.

Network controller: 1. management network 2. VMnet network 3. Public network.

Compute node: 1. management network 2. VMnet network.

If you are trying to route the physical compute node through another system for updates...this doesn't really seem like an OpenStack question.

larsks

yes. agree with larsks. the best is you should have connection directly to the internet for compute node also.

senyapsudah

I do not think that is accurate, in the basic network set up section it tells you to test connectivity from node to internet. In addition, I was able to do this in grizzly by adding NAT rule on network controller.

bgyako

Tragically, it is accurate. OpenStack takes care of routing traffic from your virtual instances, but how your physical hosts arrange for outbound connectivity is entirely up to you.

larsks

Can't I route physical nodes through neutron? What about this link:

bgyako

Was able to resolve by adding below rule on network node and setting gateway as network node on compute node.

sudo iptables -A FORWARD -i (PUBLIC INTERFACE) -o br-ex -s (MANAGE SUBNET -m conntrack --ctstate NEW -j ACCEPT sudo iptables -A FORWARD -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT sudo iptables -A POSTROUTING -s (MANAGE SUBNET nat -j MASQUERADE

