Ask Your Question
0

Creating a network without NAT in essex

asked 2013-04-29 13:04:25 -0500

jzwiep gravatar image

updated 2013-04-29 13:10:40 -0500

We're looking for a way to configure OpenStack so that it assigns ip addresses from a given subnet of our internal network without any NAT rules in place.

Currently we use a similar setup as outlined here:

http://dijks.wordpress.com/2012/07/06/32/

It essentially disables nova-network, and allows an external DHCP server to assign ip addresses to the instances. This works, but it breaks major functionality within OpenStack (like parts of the api, and metadata) and it makes using the system a pain.

Is a NAT free network possible under essex?

edit retag flag offensive close merge delete
add a comment

2 answers

Sort by » oldest newest most voted
1

answered 2013-05-10 21:51:14 -0500

fifieldt gravatar image

https://lists.launchpad.net/openstack/msg19929.html has the following information from a nova developer:

If you are attempting to stop nova-network from snatting for instances you can very easily do it with conf:

routingsourceip=

(set routingsourceip to none)

This will stop the snat for instances. Please note that you will need to provide a gateway through dnsmasq for your instances to reach the internet.

However, I am not sure if it works on Essex, or if it will entirely meet your needs - please let us know :)

edit flag offensive delete link more

Comments

Hmm, yeah. I'm not sure this fixes our problem. Thanks though.

jzwiep gravatar imagejzwiep ( 2013-05-17 19:59:55 -0500 )edit
add a comment
0

answered 2013-07-24 21:01:53 -0500

jzwiep gravatar image

These nova.conf network options, specifically the dmz_cidr solved the issue:

# network specific settings
--network_manager=nova.network.manager.FlatDHCPManager
--libvirt_use_virtio_for_bridges=true
--flat_interface=eth0
--flat_network_bridge=br100
--flat_injected=False
--fixed_range=10.10.38.0/24
--dmz_cidr=10.10.32.0/21

https://answers.launchpad.net/nova/+question/185826

edit flag offensive delete link more
add a comment

Get to know Ask OpenStack

Resources for moderators

Question Tools

subscribe to rss feed

Stats

Asked: 2013-04-29 13:04:25 -0500

Seen: 267 times

Last updated: Jul 24 '13

Related questions

VMs on Controller Node can't properly send/recieve broadcasts

Using OpenStack with existing LAN Network

Windows Instance - Instance failed network setup after 1 attempt(s)”.

How to setup security groups for IPv6 with nova-network?

Reserving IPs

guest to hypervisor traffic is unfiltered

How to bridge 2 ethernet interfaces from host blade to guest VM

how to boot an instance with always the same ip and hostname

Access instance from controller node

How can i add a second compute node ? [closed]