Ask Your Question
0

Linux-box instance as a router with NAT

asked 2014-11-20 16:29:33 -0600

anonymous user

Anonymous

Is it possible to configure an instance which will act as a router in current OpenStack/Neutron architecture? Linux-based instance, not a virtual router in neutron via OpenvSwitch. I'd like to create an instance with two NICs one connected to private network and the second one connected to an external network (probably later to VPN) and I'd like to do an old, good routing there with NAT for instances inside the private network.

My usual simple setup (forwarding and NAT) didn't work out, so do you have any ideas how should I sort this out?

edit retag flag offensive close merge delete
add a comment

2 answers

Sort by ยป oldest newest most voted
1

answered 2014-11-21 09:46:07 -0600

bishoy gravatar image

updated 2014-11-21 09:47:10 -0600

by doing that you only have your L2 configured and you still need L3. You can create namespaces manually and then it might work( that what actually L3 agent does)

Could you print ovs-vsctl show after adding the instance

edit flag offensive delete link more
add a comment
0

answered 2014-11-21 03:07:11 -0600

DanIzack gravatar image

VNIC ( on Openstack VM ) can be assigned only private IP via dnsmasq DHCPACK response.
It happens at Neutron L2 layer.
Floating IP is assigned to VM with several neutron commands - http://docs.openstack.org/user-guide/...
Iptables SNAT and DNAT rules ( previously setup) define packets flow from VM with private IP to external network. Actually , it is neutron-l3-agent ( neutron routers) responsibility. So "old good routing" won't work for you without Neutron L3 Layer.

edit flag offensive delete link more
add a comment

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2014-11-20 16:29:33 -0600

Seen: 847 times

Last updated: Nov 21 '14

Related questions

external network is not reachable from the router

Using NAT to assign external IP to floating IP

instance is not able to ping the internet but able to ping the openstack server

Devstack is not using my own private network configuration

Translate MAC address before forward to router

Internet is not reachable After physical interface mapping to bridge br-int with Openstack+Opendaylight[ODL_MODE=allinone] integrated

Connect to tenant subnets outside OpenStack

Troubles with NAT (MASQUERADE): ICMP works, but not UDP/TCP

vm with direct connectivity to external network

External network not reachable from subnet / ExternalGatewayForFloatingIPNotFound