Ask Your Question
0

Creating a network without NAT in essex

asked 2013-04-29 13:04:25 -0500

jzwiep gravatar image

updated 2013-04-29 13:10:40 -0500

We're looking for a way to configure OpenStack so that it assigns ip addresses from a given subnet of our internal network without any NAT rules in place.

Currently we use a similar setup as outlined here:

http://dijks.wordpress.com/2012/07/06/32/

It essentially disables nova-network, and allows an external DHCP server to assign ip addresses to the instances. This works, but it breaks major functionality within OpenStack (like parts of the api, and metadata) and it makes using the system a pain.

Is a NAT free network possible under essex?

edit retag flag offensive close merge delete
add a comment

2 answers

Sort by ยป oldest newest most voted
1

answered 2013-05-10 21:51:14 -0500

fifieldt gravatar image

https://lists.launchpad.net/openstack/msg19929.html has the following information from a nova developer:

If you are attempting to stop nova-network from snatting for instances you can very easily do it with conf:

routingsourceip=

(set routingsourceip to none)

This will stop the snat for instances. Please note that you will need to provide a gateway through dnsmasq for your instances to reach the internet.

However, I am not sure if it works on Essex, or if it will entirely meet your needs - please let us know :)

edit flag offensive delete link more

Comments

Hmm, yeah. I'm not sure this fixes our problem. Thanks though.

jzwiep gravatar imagejzwiep ( 2013-05-17 19:59:55 -0500 )edit
add a comment
0

answered 2013-07-24 21:01:53 -0500

jzwiep gravatar image

These nova.conf network options, specifically the dmz_cidr solved the issue:

# network specific settings
--network_manager=nova.network.manager.FlatDHCPManager
--libvirt_use_virtio_for_bridges=true
--flat_interface=eth0
--flat_network_bridge=br100
--flat_injected=False
--fixed_range=10.10.38.0/24
--dmz_cidr=10.10.32.0/21

https://answers.launchpad.net/nova/+question/185826

edit flag offensive delete link more
add a comment

Get to know Ask OpenStack

Resources for moderators

Question Tools

subscribe to rss feed

Stats

Asked: 2013-04-29 13:04:25 -0500

Seen: 254 times

Last updated: Jul 24 '13

Related questions

can't access VMs(only from compute node and between VMs)

instance cannot ping outside world with domain name

nova-network change multi-host T to F of used network

HTTPConnectionPool request times out when creating network [closed]

Compute Instance not found when trying to launch trove db instance on Icehouse release

Assign floating pools to compute nodes

Access instance from controller node

Can we create a common network for all tenants using nova-network [closed]

br100 setup and nova fixed ip range

Nova network breaks access to Internet on compute node