Havana-unable to ping/ssh instance [closed]

asked 2013-12-25 03:21:51 -0500

seraphboy gravatar image

updated 2013-12-25 04:01:19 -0500

Hi, I'm setting a test on Ubuntu 12.04, and can assigned float ip to the instance, the issue is I can't ping the instance's float ip or fixed ip, I can't even ping the gateway. I found the instance' ip is also not set(use vnc), I set it manually, but no help. I belive I have set the security group.

root@controller:~#  neutron router-port-list cedcc6c6-5066-496f-9a1a-0bc58100acd0
    +--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+
    | id                                   | name | mac_address       | fixed_ips                                                                           |
    +--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+
    | 03ebdc72-9e39-4d3d-bccc-fc3d5738ffb0 |      | fa:16:3e:44:1d:06 | {"subnet_id": "dafb509c-1b9c-4a98-974d-7756536effab", "ip_address": "172.31.9.210"} |
    | f3e85bb9-a35d-4cbd-83b2-78ab8f414275 |      | fa:16:3e:24:05:a5 | {"subnet_id": "d66468cd-e7c2-403e-9c25-5835a489e4bb", "ip_address": "10.30.30.1"}   |
    +--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+

root@controller:~# neutron port-show f3e85bb9-a35d-4cbd-83b2-78ab8f414275
+-----------------------+-----------------------------------------------------------------------------------+
| Field                 | Value                                                                             |
+-----------------------+-----------------------------------------------------------------------------------+
| admin_state_up        | True                                                                              |
| allowed_address_pairs |                                                                                   |
| binding:capabilities  | {"port_filter": true}                                                             |
| binding:host_id       | network                                                                           |
| binding:vif_type      | ovs                                                                               |
| device_id             | cedcc6c6-5066-496f-9a1a-0bc58100acd0                                              |
| device_owner          | network:router_interface                                                          |
| extra_dhcp_opts       |                                                                                   |
| fixed_ips             | {"subnet_id": "d66468cd-e7c2-403e-9c25-5835a489e4bb", "ip_address": "10.30.30.1"} |
| id                    | f3e85bb9-a35d-4cbd-83b2-78ab8f414275                                              |
| mac_address           | fa:16:3e:24:05:a5                                                                 |
| name                  |                                                                                   |
| network_id            | 1f78c47c-10f3-46a8-a1f1-4a714c6b30d2                                              |
| security_groups       |                                                                                   |
| status                | ACTIVE                                                                            |
| tenant_id             | c2ca2fcac1694718b7959c37dd56c969                                                  |
+-----------------------+-------------------------------------------------------

the host ip is 10.30.30.6, the dhcp ip is 10.30.30.5, all the interface is show active, the iptables in compute-node like this:

root@compute:~# iptables --list
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
neutron-openvswi-INPUT  all  --  anywhere             anywhere
nova-network-INPUT  all  --  anywhere             anywhere
ACCEPT     udp  --  anywhere             anywhere             udp dpt:bootps
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:bootps

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination
neutron-filter-top  all  --  anywhere             anywhere
neutron-openvswi-FORWARD  all  --  anywhere             anywhere
nova-filter-top  all  --  anywhere             anywhere
nova-network-FORWARD  all  --  anywhere             anywhere

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
neutron-filter-top  all  --  anywhere             anywhere
neutron-openvswi-OUTPUT  all  --  anywhere             anywhere
nova-filter-top  all  --  anywhere             anywhere
nova-network-OUTPUT  all  --  anywhere             anywhere

Chain neutron-filter-top (2 references)
target     prot opt source               destination
neutron-openvswi-local  all  --  anywhere             anywhere

Chain neutron-openvswi-FORWARD (1 references)
target     prot opt source               destination
neutron-openvswi-sg-chain  all  --  anywhere             anywhere             PHYSDEV match --physdev-out tap5fcc0004-3f --physdev-is-bridged
neutron-openvswi-sg-chain  all  --  anywhere             anywhere             PHYSDEV match --physdev-in tap5fcc0004-3f --physdev-is-bridged

Chain neutron-openvswi-INPUT (1 references)
target     prot opt source               destination
neutron-openvswi-o5fcc0004-3  all  --  anywhere             anywhere             PHYSDEV match --physdev-in tap5fcc0004-3f --physdev-is-bridged

Chain neutron-openvswi-OUTPUT (1 references)
target     prot opt source               destination

Chain neutron-openvswi-i5fcc0004-3 (1 references)
target     prot opt source               destination
DROP       all  --  anywhere             anywhere             state INVALID
RETURN     all  --  anywhere             anywhere             state RELATED,ESTABLISHED
RETURN     udp  --  10.30.30.5           anywhere             udp spt:bootps dpt:bootpc
neutron-openvswi-sg-fallback  all  --  anywhere             anywhere

Chain neutron-openvswi-local (1 references)
target     prot opt source               destination

Chain neutron-openvswi-o5fcc0004-3 (2 references)
target     prot opt source               destination
RETURN     udp  --  anywhere             anywhere             udp spt:bootpc dpt:bootps
neutron-openvswi-s5fcc0004-3  all  --  anywhere             anywhere
DROP       udp  --  anywhere             anywhere             udp spt:bootps dpt:bootpc
DROP       all  --  anywhere             anywhere             state INVALID
RETURN     all  --  anywhere             anywhere             state RELATED,ESTABLISHED
RETURN     all  --  anywhere             anywhere
neutron-openvswi-sg-fallback  all  --  anywhere             anywhere

Chain neutron-openvswi-s5fcc0004-3 (1 references)
target     prot opt source               destination
RETURN     all  --  10.30.30.6           anywhere             MAC FA:16:3E:DF:73:0A
DROP       all  --  anywhere             anywhere

Chain neutron-openvswi-sg-chain (2 references)
target     prot opt source               destination
neutron-openvswi-i5fcc0004-3  all  --  anywhere             anywhere             PHYSDEV match --physdev-out tap5fcc0004-3f --physdev-is-bridged
neutron-openvswi-o5fcc0004-3  all  --  anywhere             anywhere             PHYSDEV match --physdev-in tap5fcc0004-3f --physdev-is-bridged
ACCEPT     all  --  anywhere             anywhere

Chain neutron-openvswi-sg-fallback (2 references)
target     prot opt source               destination ...
(more)
edit retag flag offensive reopen merge delete

Closed for the following reason duplicate question by smaffulli
close date 2013-12-27 14:19:35.271751