In production, how do you add a vlan to the north/south external bridge?

asked 2016-10-18 08:44:41 -0500

JD_Marks gravatar image

updated 2016-10-20 19:52:35 -0500

I have an exting stack that was installed with tripleo. It has an existing bridge but due to the lack of an external router, I had to add a vlan to the external network. How do I add this to the external bridge? It appears that modifying the external network after installation is frowned on. When talking with RHEL, they said that it is best to modify the overcloud install, delete the overcloud and reinstall. Or go through the process by hand (modify the OS files and neutron config files I guess). That does not sound very flexible. What am I missing here?

  # This file is autogenerated by os-net-config
  DEVICE=br-ex
  ONBOOT=yes
  HOTPLUG=no
  NM_CONTROLLED=no
  DEVICETYPE=ovs
  TYPE=OVSBridge
  BOOTPROTO=static
  IPADDR=10.1.62.169
  NETMASK=255.255.255.0
  DNS1=8.8.8.8
  DNS2=8.8.4.4
  [heat-admin@overcloud-controller-0 network-scripts]$ cat ifcfg-bond1
  # This file is autogenerated by os-net-config
 DEVICE=bond1
 ONBOOT=yes
 HOTPLUG=no
 NM_CONTROLLED=no
 PEERDNS=no
 DEVICETYPE=ovs
 TYPE=OVSPort
 OVS_BRIDGE=br-ex
 DEVICETYPE=ovs
 TYPE=OVSBond
 BOND_IFACES="eno2 eno3"
 OVS_OPTIONS="bond_mode=balance-slb"
edit retag flag offensive close merge delete

Comments

Please,

1, post ifcfg-br-ex && ifcfg file for interface which is OVS port of br-ex ( on Controller )
2. post /usr/share/openstack-tripleo-heat-templates/environments/net-single-nic-with-vlans.yaml
to textuploader.com or any other place.
dbaxps gravatar imagedbaxps ( 2016-10-19 03:44:23 -0500 )edit

Did your vendor provide you tripleo-heat-tepmlates required to add second external network or they suggested to work on this issue yourself ? In case of non-TripleO deployment your request has well known solution , e.g. switching to non-bridged external networking.

jasonwg gravatar imagejasonwg ( 2016-10-21 01:15:08 -0500 )edit

Please, clarify do you want to add new vlan to provide North/South routing , in other words external network. Which sense in your slang has "vlan". In traditional sense it means that new external network is supposed to have vlan tagging ( for security purposes usually).

dbaxps gravatar imagedbaxps ( 2016-10-21 04:13:36 -0500 )edit

Via my experience sense of word vlan in regards of network in undercloud is different. Because if I issue neutron net-show UUID it always return "flat" ( for external,storage.tenant,storage_mgmt,.... )

dbaxps gravatar imagedbaxps ( 2016-10-21 04:23:10 -0500 )edit

@jasonwg: My vendor is Redhat. And no, they do not have templates for a second vlan. And I agree there is a solution for non TripleO but RHOSP uses tripleo as the installation and maintenance method.

JD_Marks gravatar imageJD_Marks ( 2016-10-28 09:14:04 -0500 )edit