Hello,
I have installed OpenStack Mitaka on two nodes, following RDO project docs. I was trying to reach instances from node 1 to node 2 via private network, but wasn't successful. But I'm able to reach the instances via public network.
I believe this has something to do with vxlan tunneling.
Could you please help me?
Thanks in advance, Gana.
share the log file with us.
Step 1
[root@overcloud-controller-0 ~]# ip netns
qdhcp-2bb06118-e0f3-4559-a7ac-13b0d20bf1b8
qrouter-a81b99df-1301-4f93-96de-d23356b8e138
Step 2
[root@overcloud-controller-0 ~]# ip netns exec qdhcp-2bb06118-e0f3-4559-a7ac-13b0d20bf1b8 ssh -i oskey102616.pem fedora@30.0.0.11
The authenticity of host '30.0.0.11 (30.0.0.11)' can't be established.
ECDSA key fingerprint is 14:44:72:b4:f2:68:77:9d:21:63:1d:5d:ec:20:78:bf.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '30.0.0.11' (ECDSA) to the list of known hosts.
Last login: Wed Oct 26 09:28:41 2016 from 192.0.2.1
Grab PRIVATE RSA KEY from SSH KEYPAIR and create oskey102616.pem been used when launching both VMs
on fedora's VM (30.0.0.11)
[fedora@vf24devs01 ~]$ vi oskey102616.pem
-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----
:w
Step 3
[fedora@vf24devs01 ~]$ chmod 600 oskey102616.pem
Log into VM (30.0.0.13)
[fedora@vf24devs01 ~]$ ssh -i oskey102616.pem ubuntu@30.0.0.13
The authenticity of host '30.0.0.13 (30.0.0.13)' can't be established.
ECDSA key fingerprint is SHA256:W2dcOyngICxa1OpBf7aC/b62GCUPClEooQ0nRd5TPOQ.
ECDSA key fingerprint is MD5:3c:82:3d:4d:d0:45:c8:e5:ef:44:04:05:2c:8b:18:99.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '30.0.0.13' (ECDSA) to the list of known hosts.
Welcome to Ubuntu 16.04.1 LTS (GNU/Linux 4.4.0-45-generic x86_64)
* Documentation: https://help.ubuntu.com
* Management: https://landscape.canonical.com
* Support: https://ubuntu.com/advantage
Get cloud support with Ubuntu Advantage Cloud Guest:
http://www.ubuntu.com/business/services/cloud
0 packages can be updated.
0 updates are security updates.
Last login: Wed Oct 26 09:41:40 2016 from 192.0.2.1
System Configuration
[root@overcloud-controller-0 ~]# nova list
+--------------------------------------+--------------+--------+------------+-------------+----------------------------+
| ID | Name | Status | Task State | Power State | Networks |
+--------------------------------------+--------------+--------+------------+-------------+----------------------------+
| 1bde2905-7419-4a69-8b6c-12d48e7a2d63 | ubuntuXenial | ACTIVE | - | Running | int=30.0.0.13, 192.0.2.111 |
| 67904a68-a6bd-41a5-8a9b-6227075eed5e | vf24devs01 | ACTIVE | - | Running | int=30.0.0.11, 192.0.2.103 |
+--------------------------------------+--------------+--------+------------+-------------+----------------------------+
[root@overcloud-controller-0 ~]# nova hypervisor-servers overcloud-novacompute-0
+--------------------------------------+-------------------+---------------+-------------------------------------+
| ID | Name | Hypervisor ID | Hypervisor Hostname |
+--------------------------------------+-------------------+---------------+-------------------------------------+
| 67904a68-a6bd-41a5-8a9b-6227075eed5e | instance-00000004 | 4 | overcloud-novacompute-0.localdomain |
+--------------------------------------+-------------------+---------------+-------------------------------------+
[root@overcloud-controller-0 ~]# nova hypervisor-servers overcloud-novacompute-1
+--------------------------------------+-------------------+---------------+-------------------------------------+
| ID | Name | Hypervisor ID | Hypervisor Hostname |
+--------------------------------------+-------------------+---------------+-------------------------------------+
| 1bde2905-7419-4a69-8b6c-12d48e7a2d63 | instance-00000007 | 7 | overcloud-novacompute-1.localdomain |
+--------------------------------------+-------------------+---------------+---------------------
Look like my question is confusing. I have a custom made FreeBSD based cloud image. I can't ping to other VM's hosted on different compute node through private network. But can ping/ssh if I use public network.
Asked: 2016-10-25 20:21:03 -0500
Seen: 231 times
Last updated: Oct 26 '16
I believe this has something to do with vxlan tunneling. - NO
Project's networks attached to VMs are the same or different ?
In other words do VM belong to same qdhcp-namespce or don't ?
We have two networks, public and private.
public: 10.10.0.0/24 private: 192.168.0.0/24
VM's from node 1 wasn't able to communicate with VM's from node 2 through private network. But able to communicate through public network.