Ask Your Question
0

Creating a network without NAT in essex

asked 2013-04-29 13:04:25 -0500

jzwiep gravatar image

updated 2013-04-29 13:10:40 -0500

We're looking for a way to configure OpenStack so that it assigns ip addresses from a given subnet of our internal network without any NAT rules in place.

Currently we use a similar setup as outlined here:

http://dijks.wordpress.com/2012/07/06/32/

It essentially disables nova-network, and allows an external DHCP server to assign ip addresses to the instances. This works, but it breaks major functionality within OpenStack (like parts of the api, and metadata) and it makes using the system a pain.

Is a NAT free network possible under essex?

edit retag flag offensive close merge delete
add a comment

2 answers

Sort by ยป oldest newest most voted
1

answered 2013-05-10 21:51:14 -0500

fifieldt gravatar image

https://lists.launchpad.net/openstack/msg19929.html has the following information from a nova developer:

If you are attempting to stop nova-network from snatting for instances you can very easily do it with conf:

routingsourceip=

(set routingsourceip to none)

This will stop the snat for instances. Please note that you will need to provide a gateway through dnsmasq for your instances to reach the internet.

However, I am not sure if it works on Essex, or if it will entirely meet your needs - please let us know :)

edit flag offensive delete link more

Comments

Hmm, yeah. I'm not sure this fixes our problem. Thanks though.

jzwiep gravatar imagejzwiep ( 2013-05-17 19:59:55 -0500 )edit
add a comment
0

answered 2013-07-24 21:01:53 -0500

jzwiep gravatar image

These nova.conf network options, specifically the dmz_cidr solved the issue:

# network specific settings
--network_manager=nova.network.manager.FlatDHCPManager
--libvirt_use_virtio_for_bridges=true
--flat_interface=eth0
--flat_network_bridge=br100
--flat_injected=False
--fixed_range=10.10.38.0/24
--dmz_cidr=10.10.32.0/21

https://answers.launchpad.net/nova/+question/185826

edit flag offensive delete link more
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

subscribe to rss feed

Stats

Asked: 2013-04-29 13:04:25 -0500

Seen: 224 times

Last updated: Jul 24 '13

Related questions

nova-network doesn't start after reinstall

Newbie needs a perfect guide for Openstack installation

Nova network breaks access to Internet on compute node

Picture of my network topology. Is it right?

Kilo nova-network metadata unreachale 169.254.169.254

Cannot restart services on Devstack

What nova services can I restart without affecting my vm? [closed]

Why can't I connect to instance via their floating IPs?

SLES havana nova-network network-create ERROR: HTTPConnectionPool(host='controller', port=8774): Request timed out.

Can't ping from VM to Controller Node Ubuntu/Havana/nova-networking