Unable to connect instance from controller node

asked 2015-10-09 15:50:40 -0500

Lingeswaran gravatar image

I have configured three node openstack private cloud (Compute , Controller , Network ).

I am just facing issue is that unable to ping the instance IP .

Here is my setup. Management Network - 192.168.203.XXX Tunnel Network - 192.168.204.XXX

External Network (Floating IPs) - 203.168.205.XXX Tenant IP - 192.168.4.XXXX

   root@OSCTRL-UA:~# nova list
+--------------------------------------+-----------+--------+------------+-------------+------------------------------------------+
| ID                                   | Name      | Status | Task State | Power State | Networks                                 |
+--------------------------------------+-----------+--------+------------+-------------+------------------------------------------+
| 137a96ba-366c-436f-97b2-5fad0b52eece | dbcirros1 | ACTIVE | -          | Running     | lingesh-net=192.168.4.2, 203.168.205.102 |
+--------------------------------------+-----------+--------+------------+-------------+------------------------------------------+
root@OSCTRL-UA:~#

Neutron Services:

 root@OSCTRL-UA:~# neutron agent-list
+--------------------------------------+--------------------+----------+-------+----------------+---------------------------+
| id                                   | agent_type         | host     | alive | admin_state_up | binary                    |
+--------------------------------------+--------------------+----------+-------+----------------+---------------------------+
| 12d30025-2b13-4edf-806a-cfea51089c1e | L3 agent           | OSNWT-UA | :-)   | True           | neutron-l3-agent          |
| 26b7634d-7e81-4d84-9458-af95db545828 | Metadata agent     | OSNWT-UA | :-)   | True           | neutron-metadata-agent    |
| 6a65089e-7af5-4fe0-b746-07bc8fa7d7d0 | DHCP agent         | OSNWT-UA | :-)   | True           | neutron-dhcp-agent        |
| ad45ceea-6fa4-4cad-af17-ae7e40becb4b | Open vSwitch agent | OSNWT-UA | :-)   | True           | neutron-openvswitch-agent |
| f8f16a65-575b-4aff-92d9-5fe16db283cb | Open vSwitch agent | OSCMP-UA | :-)   | True           | neutron-openvswitch-agent |
+--------------------------------------+--------------------+----------+-------+----------------+---------------------------+
root@OSCTRL-UA:~#

From Network node,

    root@OSNWT-UA:~# ip netns exec qrouter-1d5f48e4-b8e0-4789-8e1d-10bd9b92155a ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
13: qr-885f79ab-1a: <BROADCAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default
    link/ether fa:16:3e:9c:d2:e1 brd ff:ff:ff:ff:ff:ff
    inet 192.168.4.1/24 brd 192.168.4.255 scope global qr-885f79ab-1a
       valid_lft forever preferred_lft forever
    inet6 fe80::f816:3eff:fe9c:d2e1/64 scope link
       valid_lft forever preferred_lft forever
14: qg-f010f8ce-82: <BROADCAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default
    link/ether fa:16:3e:b1:00:34 brd ff:ff:ff:ff:ff:ff
    inet 203.168.205.101/24 brd 203.168.205.255 scope global qg-f010f8ce-82
       valid_lft forever preferred_lft forever
    inet 203.168.205.102/32 brd 203.168.205.102 scope global qg-f010f8ce-82
       valid_lft forever preferred_lft forever
    inet6 fe80::f816:3eff:feb1:34/64 scope link
       valid_lft forever preferred_lft forever
root@OSNWT-UA:~#

I am able to ping the instance using ip netns from the network node. (Both the internal & floating IP)

 root@OSNWT-UA:~# ip netns exec qrouter-1d5f48e4-b8e0-4789-8e1d-10bd9b92155a ping 203.168.205.102
PING 203.168.205.102 (203.168.205.102) 56(84) bytes of data.
64 bytes from 203.168.205.102: icmp_seq=1 ttl=64 time=7.18 ms
64 bytes from 203.168.205.102: icmp_seq=2 ttl=64 time=1.71 ms
^C
--- 203.168.205.102 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1002ms
rtt min/avg/max/mdev = 1.715/4.452/7.189/2.737 ms
root@OSNWT-UA:~# ip netns exec qrouter-1d5f48e4-b8e0-4789-8e1d-10bd9b92155a ping 192.168.4.2
PING 192.168.4.2 (192.168.4.2) 56(84) bytes of data.
64 bytes from 192.168.4.2: icmp_seq=1 ttl=64 time=1.98 ms
64 bytes from 192.168.4.2: icmp_seq=2 ttl=64 time=0.974 ms
64 bytes from 192.168.4.2: icmp_seq=3 ttl=64 time=1.03 ...
(more)
edit retag flag offensive close merge delete

Comments

If you do not have a floating ip, Usually you will need to set up some sort of routing on your firewall, loadbalancer, or router to be able to ping from any of the hypervisors or controller.

cbruf82 gravatar imagecbruf82 ( 2015-10-10 09:57:52 -0500 )edit

You are using ML2/Openvswitch, right? "unable to ping the instance IP" - from where did you try that; is there a route to 203.168.205.102? Does ping just time out or is there an error message? Run tcpdump on the interface from where you ping, check for ICMP error packets coming back.

Bernd Bausch gravatar imageBernd Bausch ( 2015-10-11 21:39:37 -0500 )edit

I also recommend the network troubleshooting section in the operations guide.

Bernd Bausch gravatar imageBernd Bausch ( 2015-10-11 21:41:36 -0500 )edit

@ Bernd, I am trying to reach the instance from controller node & network node but both fails.......Looking at the network troubleshooting document.

Thank you

Regards lingesh

Lingeswaran gravatar imageLingeswaran ( 2015-10-12 11:48:46 -0500 )edit