Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

neutron public subnet

My external IP address is 172.16.21.11 with CIDR /23 with gateway 172.16.20.1. This is my actual network configuration as in ifcfg-em1. I've installed Openstack with RDO on Fedora 20. After Installation

# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id                                   | name    | external_gateway_info                                                                                                                                                                    | distributed | ha    |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "d58bc7d6-3353-486e-af61-2179df64beb7", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "326cb3d9-936d-49a4-bf0a-506cfd006b14", "ip_address": "172.24.4.226"}]} | False       | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+

[root@localhost hcuser(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| id                                   | name           | cidr            | allocation_pools                                 |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24     | {"start": "10.0.0.2", "end": "10.0.0.254"}       |
| 326cb3d9-936d-49a4-bf0a-506cfd006b14 | public_subnet  | 172.24.4.224/28 | {"start": "172.24.4.226", "end": "172.24.4.238"} |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+

I see in both places 172.24.4.X series is being used.

  1. From where this IP is comming ?
  2. Is it supposed to be something on 172.16.21.X ?
  3. How Can I fix it ?

neutron public subnet

My external IP address is 172.16.21.11 with CIDR /23 with gateway 172.16.20.1. This is my actual network configuration as in ifcfg-em1. I've installed Openstack with RDO on Fedora 20. After Installation

# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id                                   | name    | external_gateway_info                                                                                                                                                                    | distributed | ha    |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "d58bc7d6-3353-486e-af61-2179df64beb7", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "326cb3d9-936d-49a4-bf0a-506cfd006b14", "ip_address": "172.24.4.226"}]} | False       | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+

[root@localhost hcuser(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| id                                   | name           | cidr            | allocation_pools                                 |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24     | {"start": "10.0.0.2", "end": "10.0.0.254"}       |
| 326cb3d9-936d-49a4-bf0a-506cfd006b14 | public_subnet  | 172.24.4.224/28 | {"start": "172.24.4.226", "end": "172.24.4.238"} |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+

I see in both places 172.24.4.X series is being used.

  1. From where this IP is comming ?
  2. As it says public. Is it supposed to be replaced by something on 172.16.21.X 172.16.21.11/23 ?
  3. How Can I fix it ?

neutron public subnetsubnet wrong IP

My external IP address is 172.16.21.11 with CIDR /23 with gateway 172.16.20.1. This is my actual network configuration as in ifcfg-em1. I've installed Openstack with RDO on Fedora 20. After Installation

# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id                                   | name    | external_gateway_info                                                                                                                                                                    | distributed | ha    |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "d58bc7d6-3353-486e-af61-2179df64beb7", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "326cb3d9-936d-49a4-bf0a-506cfd006b14", "ip_address": "172.24.4.226"}]} | False       | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+

[root@localhost hcuser(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| id                                   | name           | cidr            | allocation_pools                                 |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24     | {"start": "10.0.0.2", "end": "10.0.0.254"}       |
| 326cb3d9-936d-49a4-bf0a-506cfd006b14 | public_subnet  | 172.24.4.224/28 | {"start": "172.24.4.226", "end": "172.24.4.238"} |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+

I see in both places 172.24.4.X series is being used.

  1. From where this IP is comming ?
  2. As it says public. Is it supposed to be replaced by something on 172.16.21.11/23 ?
  3. How Can I fix it ?

neutron public subnet wrong IP

My external IP address is 172.16.21.11 with CIDR /23 with gateway 172.16.20.1. This is my actual network configuration as in ifcfg-em1. I've installed Openstack with RDO on Fedora 20. After Installation

# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id                                   | name    | external_gateway_info                                                                                                                                                                    | distributed | ha    |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "d58bc7d6-3353-486e-af61-2179df64beb7", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "326cb3d9-936d-49a4-bf0a-506cfd006b14", "ip_address": "172.24.4.226"}]} | False       | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+

[root@localhost hcuser(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| id                                   | name           | cidr            | allocation_pools                                 |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24     | {"start": "10.0.0.2", "end": "10.0.0.254"}       |
| 326cb3d9-936d-49a4-bf0a-506cfd006b14 | public_subnet  | 172.24.4.224/28 | {"start": "172.24.4.226", "end": "172.24.4.238"} |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+

I see in both places 172.24.4.X series is being used.

  1. From where this IP is comming ?
  2. As it says public. Is it supposed to be replaced by something on 172.16.21.11/23 ?
  3. How Can I fix it ?

-- EDIT --

After changing my subnet to 172.16.20.0/23

[root@localhost ~(keystone_admin)]# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id | name | external_gateway_info | distributed | ha |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "fe3a3489-9114-4fb0-9a81-b12e125d4204", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "6b0599d5-5407-440d-89f8-51ca2daa6fff", "ip_address": "172.16.21.21"}]} | False | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+


[root@localhost ~(keystone_admin)]# neutron net-list
+--------------------------------------+---------+-----------------------------------------------------+
| id | name | subnets |
+--------------------------------------+---------+-----------------------------------------------------+
| 852f04cb-b478-4b08-ba25-77991a118497 | private | d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 10.0.0.0/24 |
| fe3a3489-9114-4fb0-9a81-b12e125d4204 | public | 6b0599d5-5407-440d-89f8-51ca2daa6fff 172.16.20.0/23 |
+--------------------------------------+---------+-----------------------------------------------------+

[root@localhost ~(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| id | name | cidr | allocation_pools |
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24 | {"start": "10.0.0.2", "end": "10.0.0.254"} |
| 6b0599d5-5407-440d-89f8-51ca2daa6fff | public_subnet | 172.16.20.0/23 | {"start": "172.16.21.21", "end": "172.16.21.171"} |
+--------------------------------------+----------------+----------------+---------------------------------------------------+

But I cannot ping dhcp namespace from router namespace and vice verse

-- ping status from dhcp to router

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1 PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data. From 10.0.0.2 icmp_seq=1 Destination Host Unreachable ^C --- 10.0.0.1 ping statistics --- 6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms pipe 4 [hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2 PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data. 64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms ^C --- 10.0.0.2 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 999ms rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

-- ping status from router to dhcp

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1
PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data.
From 10.0.0.2 icmp_seq=1 Destination Host Unreachable
^C
--- 10.0.0.1 ping statistics ---
6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms
pipe 4
[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
^C
--- 10.0.0.2 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

neutron public subnet wrong IP

My external IP address is 172.16.21.11 with CIDR /23 with gateway 172.16.20.1. This is my actual network configuration as in ifcfg-em1. I've installed Openstack with RDO on Fedora 20. After Installation

# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id                                   | name    | external_gateway_info                                                                                                                                                                    | distributed | ha    |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "d58bc7d6-3353-486e-af61-2179df64beb7", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "326cb3d9-936d-49a4-bf0a-506cfd006b14", "ip_address": "172.24.4.226"}]} | False       | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+

[root@localhost hcuser(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| id                                   | name           | cidr            | allocation_pools                                 |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24     | {"start": "10.0.0.2", "end": "10.0.0.254"}       |
| 326cb3d9-936d-49a4-bf0a-506cfd006b14 | public_subnet  | 172.24.4.224/28 | {"start": "172.24.4.226", "end": "172.24.4.238"} |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+

I see in both places 172.24.4.X series is being used.

  1. From where this IP is comming ?
  2. As it says public. Is it supposed to be replaced by something on 172.16.21.11/23 ?
  3. How Can I fix it ?

-- EDIT --

After changing my subnet to 172.16.20.0/23

[root@localhost ~(keystone_admin)]# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id | name | external_gateway_info | distributed | ha |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "fe3a3489-9114-4fb0-9a81-b12e125d4204", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "6b0599d5-5407-440d-89f8-51ca2daa6fff", "ip_address": "172.16.21.21"}]} | False | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+


[root@localhost ~(keystone_admin)]# neutron net-list
+--------------------------------------+---------+-----------------------------------------------------+
| id | name | subnets |
+--------------------------------------+---------+-----------------------------------------------------+
| 852f04cb-b478-4b08-ba25-77991a118497 | private | d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 10.0.0.0/24 |
| fe3a3489-9114-4fb0-9a81-b12e125d4204 | public | 6b0599d5-5407-440d-89f8-51ca2daa6fff 172.16.20.0/23 |
+--------------------------------------+---------+-----------------------------------------------------+

[root@localhost ~(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| id | name | cidr | allocation_pools |
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24 | {"start": "10.0.0.2", "end": "10.0.0.254"} |
| 6b0599d5-5407-440d-89f8-51ca2daa6fff | public_subnet | 172.16.20.0/23 | {"start": "172.16.21.21", "end": "172.16.21.171"} |
+--------------------------------------+----------------+----------------+---------------------------------------------------+

But I cannot ping dhcp namespace from router namespace and vice verse

-- ping status from dhcp to router

router [hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1 PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data. From 10.0.0.2 icmp_seq=1 Destination Host Unreachable ^C --- 10.0.0.1 ping statistics --- 6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms pipe 4 [hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2 PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data. 64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms ^C --- 10.0.0.2 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 999ms rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

ms

-- ping status from router to dhcp

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1
PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data.
From 10.0.0.2 icmp_seq=1 Destination Host Unreachable
^C
--- 10.0.0.1 ping statistics ---
6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms
pipe 4
[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
^C
--- 10.0.0.2 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

neutron public subnet wrong IP

My external IP address is 172.16.21.11 with CIDR /23 with gateway 172.16.20.1. This is my actual network configuration as in ifcfg-em1. I've installed Openstack with RDO on Fedora 20. After Installation

# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id                                   | name    | external_gateway_info                                                                                                                                                                    | distributed | ha    |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "d58bc7d6-3353-486e-af61-2179df64beb7", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "326cb3d9-936d-49a4-bf0a-506cfd006b14", "ip_address": "172.24.4.226"}]} | False       | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+

[root@localhost hcuser(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| id                                   | name           | cidr            | allocation_pools                                 |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24     | {"start": "10.0.0.2", "end": "10.0.0.254"}       |
| 326cb3d9-936d-49a4-bf0a-506cfd006b14 | public_subnet  | 172.24.4.224/28 | {"start": "172.24.4.226", "end": "172.24.4.238"} |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+

I see in both places 172.24.4.X series is being used.

  1. From where this IP is comming ?
  2. As it says public. Is it supposed to be replaced by something on 172.16.21.11/23 ?
  3. How Can I fix it ?

-- EDIT --

After changing my subnet to 172.16.20.0/23

[root@localhost ~(keystone_admin)]# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id | name | external_gateway_info | distributed | ha |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "fe3a3489-9114-4fb0-9a81-b12e125d4204", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "6b0599d5-5407-440d-89f8-51ca2daa6fff", "ip_address": "172.16.21.21"}]} | False | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+


[root@localhost ~(keystone_admin)]# neutron net-list
+--------------------------------------+---------+-----------------------------------------------------+
| id | name | subnets |
+--------------------------------------+---------+-----------------------------------------------------+
| 852f04cb-b478-4b08-ba25-77991a118497 | private | d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 10.0.0.0/24 |
| fe3a3489-9114-4fb0-9a81-b12e125d4204 | public | 6b0599d5-5407-440d-89f8-51ca2daa6fff 172.16.20.0/23 |
+--------------------------------------+---------+-----------------------------------------------------+

[root@localhost ~(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| id | name | cidr | allocation_pools |
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24 | {"start": "10.0.0.2", "end": "10.0.0.254"} |
| 6b0599d5-5407-440d-89f8-51ca2daa6fff | public_subnet | 172.16.20.0/23 | {"start": "172.16.21.21", "end": "172.16.21.171"} |
+--------------------------------------+----------------+----------------+---------------------------------------------------+

But I cannot ping dhcp namespace from router namespace and vice verse

-- ping status from dhcp to router

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1
PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data.
From 10.0.0.2 icmp_seq=1 Destination Host Unreachable
^C
--- 10.0.0.1 ping statistics ---
6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms
pipe 4
[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
^C
--- 10.0.0.2 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

-- ping status from router to dhcp

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1
PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data.
From 10.0.0.2 icmp_seq=1 Destination Host Unreachable
^C
--- 10.0.0.1 ping statistics ---
6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms
pipe 4
[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
^C
--- 10.0.0.2 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

neutron public subnet wrong IP

My external IP address is 172.16.21.11 with CIDR /23 with gateway 172.16.20.1. This is my actual network configuration as in ifcfg-em1. I've installed Openstack with RDO on Fedora 20. After Installation

# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id                                   | name    | external_gateway_info                                                                                                                                                                    | distributed | ha    |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "d58bc7d6-3353-486e-af61-2179df64beb7", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "326cb3d9-936d-49a4-bf0a-506cfd006b14", "ip_address": "172.24.4.226"}]} | False       | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+

[root@localhost hcuser(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| id                                   | name           | cidr            | allocation_pools                                 |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24     | {"start": "10.0.0.2", "end": "10.0.0.254"}       |
| 326cb3d9-936d-49a4-bf0a-506cfd006b14 | public_subnet  | 172.24.4.224/28 | {"start": "172.24.4.226", "end": "172.24.4.238"} |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+

I see in both places 172.24.4.X series is being used.

  1. From where this IP is comming ?
  2. As it says public. Is it supposed to be replaced by something on 172.16.21.11/23 ?
  3. How Can I fix it ?

-- EDIT --

After changing my subnet to 172.16.20.0/23

[root@localhost ~(keystone_admin)]# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id | name | external_gateway_info | distributed | ha |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "fe3a3489-9114-4fb0-9a81-b12e125d4204", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "6b0599d5-5407-440d-89f8-51ca2daa6fff", "ip_address": "172.16.21.21"}]} | False | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+


[root@localhost ~(keystone_admin)]# neutron net-list
+--------------------------------------+---------+-----------------------------------------------------+
| id | name | subnets |
+--------------------------------------+---------+-----------------------------------------------------+
| 852f04cb-b478-4b08-ba25-77991a118497 | private | d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 10.0.0.0/24 |
| fe3a3489-9114-4fb0-9a81-b12e125d4204 | public | 6b0599d5-5407-440d-89f8-51ca2daa6fff 172.16.20.0/23 |
+--------------------------------------+---------+-----------------------------------------------------+

[root@localhost ~(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| id | name | cidr | allocation_pools |
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24 | {"start": "10.0.0.2", "end": "10.0.0.254"} |
| 6b0599d5-5407-440d-89f8-51ca2daa6fff | public_subnet | 172.16.20.0/23 | {"start": "172.16.21.21", "end": "172.16.21.171"} |
+--------------------------------------+----------------+----------------+---------------------------------------------------+

But I cannot ping dhcp namespace from router namespace and vice verse

-- ping status from dhcp to router

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1
PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data.
From 10.0.0.2 icmp_seq=1 Destination Host Unreachable
^C
--- 10.0.0.1 ping statistics ---
6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms
pipe 4
[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
^C
--- 10.0.0.2 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

-- ping status from router to dhcp

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1
PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data.
From 10.0.0.2 icmp_seq=1 Destination Host Unreachable
^C
--- 10.0.0.1 ping statistics ---
6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms
pipe 4
[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
^C
--- 10.0.0.2 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

-- EDIT -

[hcuser@localhost ~]$ sudo ovs-vsctl show
62c30134-97e2-4723-b42c-9474eb333885
    Bridge br-int
        fail_mode: secure
        Port "tap231aae57-ee"
            tag: 1
            Interface "tap231aae57-ee"
        Port "tap0b36c82a-61"
            tag: 4095
            Interface "tap0b36c82a-61"
        Port "qvodfc2a20c-23"
            tag: 1
            Interface "qvodfc2a20c-23"
        Port br-int
            Interface br-int
                type: internal
        Port patch-tun
            Interface patch-tun
                type: patch
                options: {peer=patch-int}
    Bridge br-ex
        Port br-ex
            Interface br-ex
                type: internal
        Port "tap526ffe94-80"
            Interface "tap526ffe94-80"
        Port "em1"
            Interface "em1"
    Bridge br-tun
        Port patch-int
            Interface patch-int
                type: patch
                options: {peer=patch-tun}
        Port br-tun
            Interface br-tun
                type: internal
    ovs_version: "2.3.0"

# --------------------------------------------------

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ifconfig
lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 0  (Local Loopback)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

ns-0b36c82a-61: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 10.0.0.2  netmask 255.255.255.0  broadcast 10.0.0.255
        inet6 fe80::f816:3eff:feeb:b0ad  prefixlen 64  scopeid 0x20<link>
        ether fa:16:3e:eb:b0:ad  txqueuelen 1000  (Ethernet)
        RX packets 18  bytes 1512 (1.4 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 8  bytes 648 (648.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

# ----------------------------------------------------------

[hcuser@localhost ~]$ sudo ps -ef | grep dnsmasq
nobody    2442     1  0 14:16 ?        00:00:00 /sbin/dnsmasq --conf-file=/var/lib/libvirt/dnsmasq/default.conf
nobody    3993     1  0 14:17 ?        00:00:00 dnsmasq --no-hosts --no-resolv --strict-order --bind-interfaces --interface=ns-0b36c82a-61 --except-interface=lo --pid-file=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/pid --dhcp-hostsfile=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/host --addn-hosts=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/addn_hosts --dhcp-optsfile=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/opts --leasefile-ro --dhcp-range=set:tag0,10.0.0.0,static,86400s --dhcp-lease-max=256 --conf-file=/etc/neutron/dnsmasq.conf --domain=openstacklocal
hcuser    4913  4316  0 14:21 pts/0    00:00:00 grep --color=auto dnsmasq


# ------------------------------------------------------------

[hcuser@localhost ~]$ ls -ld /var/lib/neutron
drwxr-xr-x 6 neutron neutron 4096 Nov 24 14:16 /var/lib/neutron
[hcuser@localhost ~]$ ls -ld /var/log/neutron
drwxr-xr-x 2 neutron neutron 4096 Nov 20 12:21 /var/log/neutron

# ------------------------------------------------------------

[root@localhost ~(keystone_admin)]# neutron router-port-list router1
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+
| id                                   | name | mac_address       | fixed_ips                                                                           |
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+
| 231aae57-eedf-40c1-9bc4-8b71e8c922f0 |      | fa:16:3e:ac:8a:da | {"subnet_id": "d8601bb2-a0e5-43d7-b17c-1b9232a20ca5", "ip_address": "10.0.0.1"}     |
| 526ffe94-8099-4c10-8f32-be4ae28aa4c4 |      | fa:16:3e:4f:43:da | {"subnet_id": "6b0599d5-5407-440d-89f8-51ca2daa6fff", "ip_address": "172.16.21.21"} |
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+

neutron public subnet wrong IP

My external IP address is 172.16.21.11 with CIDR /23 with gateway 172.16.20.1. This is my actual network configuration as in ifcfg-em1. I've installed Openstack with RDO on Fedora 20. After Installation

# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id                                   | name    | external_gateway_info                                                                                                                                                                    | distributed | ha    |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "d58bc7d6-3353-486e-af61-2179df64beb7", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "326cb3d9-936d-49a4-bf0a-506cfd006b14", "ip_address": "172.24.4.226"}]} | False       | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+

[root@localhost hcuser(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| id                                   | name           | cidr            | allocation_pools                                 |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24     | {"start": "10.0.0.2", "end": "10.0.0.254"}       |
| 326cb3d9-936d-49a4-bf0a-506cfd006b14 | public_subnet  | 172.24.4.224/28 | {"start": "172.24.4.226", "end": "172.24.4.238"} |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+

I see in both places 172.24.4.X series is being used.

  1. From where this IP is comming ?
  2. As it says public. Is it supposed to be replaced by something on 172.16.21.11/23 ?
  3. How Can I fix it ?

-- EDIT --

After changing my subnet to 172.16.20.0/23

[root@localhost ~(keystone_admin)]# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id | name | external_gateway_info | distributed | ha |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "fe3a3489-9114-4fb0-9a81-b12e125d4204", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "6b0599d5-5407-440d-89f8-51ca2daa6fff", "ip_address": "172.16.21.21"}]} | False | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+


[root@localhost ~(keystone_admin)]# neutron net-list
+--------------------------------------+---------+-----------------------------------------------------+
| id | name | subnets |
+--------------------------------------+---------+-----------------------------------------------------+
| 852f04cb-b478-4b08-ba25-77991a118497 | private | d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 10.0.0.0/24 |
| fe3a3489-9114-4fb0-9a81-b12e125d4204 | public | 6b0599d5-5407-440d-89f8-51ca2daa6fff 172.16.20.0/23 |
+--------------------------------------+---------+-----------------------------------------------------+

[root@localhost ~(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| id | name | cidr | allocation_pools |
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24 | {"start": "10.0.0.2", "end": "10.0.0.254"} |
| 6b0599d5-5407-440d-89f8-51ca2daa6fff | public_subnet | 172.16.20.0/23 | {"start": "172.16.21.21", "end": "172.16.21.171"} |
+--------------------------------------+----------------+----------------+---------------------------------------------------+

But I cannot ping dhcp namespace from router namespace and vice verse

-- ping status from dhcp to router

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1
PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data.
From 10.0.0.2 icmp_seq=1 Destination Host Unreachable
^C
--- 10.0.0.1 ping statistics ---
6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms
pipe 4
[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
^C
--- 10.0.0.2 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

-- ping status from router to dhcp

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1
PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data.
From 10.0.0.2 icmp_seq=1 Destination Host Unreachable
^C
--- 10.0.0.1 ping statistics ---
6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms
pipe 4
[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
^C
--- 10.0.0.2 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

-- EDIT -

[hcuser@localhost ~]$ sudo ovs-vsctl show
62c30134-97e2-4723-b42c-9474eb333885
    Bridge br-int
        fail_mode: secure
        Port "tap231aae57-ee"
            tag: 1
            Interface "tap231aae57-ee"
        Port "tap0b36c82a-61"
            tag: 4095
            Interface "tap0b36c82a-61"
        Port "qvodfc2a20c-23"
            tag: 1
            Interface "qvodfc2a20c-23"
        Port br-int
            Interface br-int
                type: internal
        Port patch-tun
            Interface patch-tun
                type: patch
                options: {peer=patch-int}
    Bridge br-ex
        Port br-ex
            Interface br-ex
                type: internal
        Port "tap526ffe94-80"
            Interface "tap526ffe94-80"
        Port "em1"
            Interface "em1"
    Bridge br-tun
        Port patch-int
            Interface patch-int
                type: patch
                options: {peer=patch-tun}
        Port br-tun
            Interface br-tun
                type: internal
    ovs_version: "2.3.0"

# --------------------------------------------------

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ifconfig
lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 0  (Local Loopback)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

ns-0b36c82a-61: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 10.0.0.2  netmask 255.255.255.0  broadcast 10.0.0.255
        inet6 fe80::f816:3eff:feeb:b0ad  prefixlen 64  scopeid 0x20<link>
        ether fa:16:3e:eb:b0:ad  txqueuelen 1000  (Ethernet)
        RX packets 18  bytes 1512 (1.4 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 8  bytes 648 (648.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

# ----------------------------------------------------------

[hcuser@localhost ~]$ sudo ps -ef | grep dnsmasq
nobody    2442     1  0 14:16 ?        00:00:00 /sbin/dnsmasq --conf-file=/var/lib/libvirt/dnsmasq/default.conf
nobody    3993     1  0 14:17 ?        00:00:00 dnsmasq --no-hosts --no-resolv --strict-order --bind-interfaces --interface=ns-0b36c82a-61 --except-interface=lo --pid-file=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/pid --dhcp-hostsfile=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/host --addn-hosts=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/addn_hosts --dhcp-optsfile=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/opts --leasefile-ro --dhcp-range=set:tag0,10.0.0.0,static,86400s --dhcp-lease-max=256 --conf-file=/etc/neutron/dnsmasq.conf --domain=openstacklocal
hcuser    4913  4316  0 14:21 pts/0    00:00:00 grep --color=auto dnsmasq


# ------------------------------------------------------------

[hcuser@localhost ~]$ ls -ld /var/lib/neutron
drwxr-xr-x 6 neutron neutron 4096 Nov 24 14:16 /var/lib/neutron
[hcuser@localhost ~]$ ls -ld /var/log/neutron
drwxr-xr-x 2 neutron neutron 4096 Nov 20 12:21 /var/log/neutron

# ------------------------------------------------------------

[root@localhost ~(keystone_admin)]# neutron router-port-list router1
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+
| id                                   | name | mac_address       | fixed_ips                                                                           |
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+
| 231aae57-eedf-40c1-9bc4-8b71e8c922f0 |      | fa:16:3e:ac:8a:da | {"subnet_id": "d8601bb2-a0e5-43d7-b17c-1b9232a20ca5", "ip_address": "10.0.0.1"}     |
| 526ffe94-8099-4c10-8f32-be4ae28aa4c4 |      | fa:16:3e:4f:43:da | {"subnet_id": "6b0599d5-5407-440d-89f8-51ca2daa6fff", "ip_address": "172.16.21.21"} |
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+

-- UPDATE 2 --

[root@localhost ~(keystone_demo)]# ovs-vsctl show
62c30134-97e2-4723-b42c-9474eb333885
    Bridge br-tun
        Port patch-int
            Interface patch-int
                type: patch
                options: {peer=patch-tun}
        Port br-tun
            Interface br-tun
                type: internal
    Bridge br-int
        fail_mode: secure
        Port "tap82e98716-1b"
            tag: 3
            Interface "tap82e98716-1b"
        Port patch-tun
            Interface patch-tun
                type: patch
                options: {peer=patch-int}
        Port "qvo355a2f7a-e4"
            tag: 3
            Interface "qvo355a2f7a-e4"
        Port "tap0b36c82a-61"
            tag: 4095
            Interface "tap0b36c82a-61"
        Port "tapd062f68f-a1"
            tag: 2
            Interface "tapd062f68f-a1"
        Port br-int
            Interface br-int
                type: internal
        Port "tap231aae57-ee"
            tag: 1
            Interface "tap231aae57-ee"
        Port "tap96e686d4-b1"
            tag: 3
            Interface "tap96e686d4-b1"
    Bridge br-ex
        Port "tapdc50e9b0-f4"
            Interface "tapdc50e9b0-f4"
        Port br-ex
            Interface br-ex
                type: internal
        Port "em1"
            Interface "em1"
        Port "tap526ffe94-80"
            Interface "tap526ffe94-80"
    ovs_version: "2.3.0"

neutron public subnet wrong IP

My external IP address is 172.16.21.11 with CIDR /23 with gateway 172.16.20.1. This is my actual network configuration as in ifcfg-em1. I've installed Openstack with RDO on Fedora 20. After Installation

# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id                                   | name    | external_gateway_info                                                                                                                                                                    | distributed | ha    |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "d58bc7d6-3353-486e-af61-2179df64beb7", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "326cb3d9-936d-49a4-bf0a-506cfd006b14", "ip_address": "172.24.4.226"}]} | False       | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+

[root@localhost hcuser(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| id                                   | name           | cidr            | allocation_pools                                 |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24     | {"start": "10.0.0.2", "end": "10.0.0.254"}       |
| 326cb3d9-936d-49a4-bf0a-506cfd006b14 | public_subnet  | 172.24.4.224/28 | {"start": "172.24.4.226", "end": "172.24.4.238"} |
+--------------------------------------+----------------+-----------------+--------------------------------------------------+

I see in both places 172.24.4.X series is being used.

  1. From where this IP is comming ?
  2. As it says public. Is it supposed to be replaced by something on 172.16.21.11/23 ?
  3. How Can I fix it ?

-- EDIT --

After changing my subnet to 172.16.20.0/23

[root@localhost ~(keystone_admin)]# neutron router-list
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id | name | external_gateway_info | distributed | ha |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 168fe615-95ea-4c72-824d-03a1b44921df | router1 | {"network_id": "fe3a3489-9114-4fb0-9a81-b12e125d4204", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "6b0599d5-5407-440d-89f8-51ca2daa6fff", "ip_address": "172.16.21.21"}]} | False | False |
+--------------------------------------+---------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+


[root@localhost ~(keystone_admin)]# neutron net-list
+--------------------------------------+---------+-----------------------------------------------------+
| id | name | subnets |
+--------------------------------------+---------+-----------------------------------------------------+
| 852f04cb-b478-4b08-ba25-77991a118497 | private | d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 10.0.0.0/24 |
| fe3a3489-9114-4fb0-9a81-b12e125d4204 | public | 6b0599d5-5407-440d-89f8-51ca2daa6fff 172.16.20.0/23 |
+--------------------------------------+---------+-----------------------------------------------------+

[root@localhost ~(keystone_admin)]# neutron subnet-list
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| id | name | cidr | allocation_pools |
+--------------------------------------+----------------+----------------+---------------------------------------------------+
| d8601bb2-a0e5-43d7-b17c-1b9232a20ca5 | private_subnet | 10.0.0.0/24 | {"start": "10.0.0.2", "end": "10.0.0.254"} |
| 6b0599d5-5407-440d-89f8-51ca2daa6fff | public_subnet | 172.16.20.0/23 | {"start": "172.16.21.21", "end": "172.16.21.171"} |
+--------------------------------------+----------------+----------------+---------------------------------------------------+

But I cannot ping dhcp namespace from router namespace and vice verse

-- ping status from dhcp to router

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1
PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data.
From 10.0.0.2 icmp_seq=1 Destination Host Unreachable
^C
--- 10.0.0.1 ping statistics ---
6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms
pipe 4
[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
^C
--- 10.0.0.2 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

-- ping status from router to dhcp

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.1
PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data.
From 10.0.0.2 icmp_seq=1 Destination Host Unreachable
^C
--- 10.0.0.1 ping statistics ---
6 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5001ms
pipe 4
[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
^C
--- 10.0.0.2 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 0.027/0.027/0.028/0.005 ms

-- EDIT -

[hcuser@localhost ~]$ sudo ovs-vsctl show
62c30134-97e2-4723-b42c-9474eb333885
    Bridge br-int
        fail_mode: secure
        Port "tap231aae57-ee"
            tag: 1
            Interface "tap231aae57-ee"
        Port "tap0b36c82a-61"
            tag: 4095
            Interface "tap0b36c82a-61"
        Port "qvodfc2a20c-23"
            tag: 1
            Interface "qvodfc2a20c-23"
        Port br-int
            Interface br-int
                type: internal
        Port patch-tun
            Interface patch-tun
                type: patch
                options: {peer=patch-int}
    Bridge br-ex
        Port br-ex
            Interface br-ex
                type: internal
        Port "tap526ffe94-80"
            Interface "tap526ffe94-80"
        Port "em1"
            Interface "em1"
    Bridge br-tun
        Port patch-int
            Interface patch-int
                type: patch
                options: {peer=patch-tun}
        Port br-tun
            Interface br-tun
                type: internal
    ovs_version: "2.3.0"

# --------------------------------------------------

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-852f04cb-b478-4b08-ba25-77991a118497 ifconfig
lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 0  (Local Loopback)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

ns-0b36c82a-61: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 10.0.0.2  netmask 255.255.255.0  broadcast 10.0.0.255
        inet6 fe80::f816:3eff:feeb:b0ad  prefixlen 64  scopeid 0x20<link>
        ether fa:16:3e:eb:b0:ad  txqueuelen 1000  (Ethernet)
        RX packets 18  bytes 1512 (1.4 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 8  bytes 648 (648.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

# ----------------------------------------------------------

[hcuser@localhost ~]$ sudo ps -ef | grep dnsmasq
nobody    2442     1  0 14:16 ?        00:00:00 /sbin/dnsmasq --conf-file=/var/lib/libvirt/dnsmasq/default.conf
nobody    3993     1  0 14:17 ?        00:00:00 dnsmasq --no-hosts --no-resolv --strict-order --bind-interfaces --interface=ns-0b36c82a-61 --except-interface=lo --pid-file=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/pid --dhcp-hostsfile=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/host --addn-hosts=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/addn_hosts --dhcp-optsfile=/var/lib/neutron/dhcp/852f04cb-b478-4b08-ba25-77991a118497/opts --leasefile-ro --dhcp-range=set:tag0,10.0.0.0,static,86400s --dhcp-lease-max=256 --conf-file=/etc/neutron/dnsmasq.conf --domain=openstacklocal
hcuser    4913  4316  0 14:21 pts/0    00:00:00 grep --color=auto dnsmasq


# ------------------------------------------------------------

[hcuser@localhost ~]$ ls -ld /var/lib/neutron
drwxr-xr-x 6 neutron neutron 4096 Nov 24 14:16 /var/lib/neutron
[hcuser@localhost ~]$ ls -ld /var/log/neutron
drwxr-xr-x 2 neutron neutron 4096 Nov 20 12:21 /var/log/neutron

# ------------------------------------------------------------

[root@localhost ~(keystone_admin)]# neutron router-port-list router1
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+
| id                                   | name | mac_address       | fixed_ips                                                                           |
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+
| 231aae57-eedf-40c1-9bc4-8b71e8c922f0 |      | fa:16:3e:ac:8a:da | {"subnet_id": "d8601bb2-a0e5-43d7-b17c-1b9232a20ca5", "ip_address": "10.0.0.1"}     |
| 526ffe94-8099-4c10-8f32-be4ae28aa4c4 |      | fa:16:3e:4f:43:da | {"subnet_id": "6b0599d5-5407-440d-89f8-51ca2daa6fff", "ip_address": "172.16.21.21"} |
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+

-- UPDATE 2 --

[root@localhost ~(keystone_demo)]# ovs-vsctl show
62c30134-97e2-4723-b42c-9474eb333885
    Bridge br-tun
        Port patch-int
            Interface patch-int
                type: patch
                options: {peer=patch-tun}
        Port br-tun
            Interface br-tun
                type: internal
    Bridge br-int
        fail_mode: secure
        Port "tap82e98716-1b"
            tag: 3
            Interface "tap82e98716-1b"
        Port patch-tun
            Interface patch-tun
                type: patch
                options: {peer=patch-int}
        Port "qvo355a2f7a-e4"
            tag: 3
            Interface "qvo355a2f7a-e4"
        Port "tap0b36c82a-61"
            tag: 4095
            Interface "tap0b36c82a-61"
        Port "tapd062f68f-a1"
            tag: 2
            Interface "tapd062f68f-a1"
        Port br-int
            Interface br-int
                type: internal
        Port "tap231aae57-ee"
            tag: 1
            Interface "tap231aae57-ee"
        Port "tap96e686d4-b1"
            tag: 3
            Interface "tap96e686d4-b1"
    Bridge br-ex
        Port "tapdc50e9b0-f4"
            Interface "tapdc50e9b0-f4"
        Port br-ex
            Interface br-ex
                type: internal
        Port "em1"
            Interface "em1"
        Port "tap526ffe94-80"
            Interface "tap526ffe94-80"
    ovs_version: "2.3.0"

[hcuser@localhost ~]$ ifconfig
br-ex: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 172.16.21.11  netmask 255.255.254.0  broadcast 172.16.21.255
        inet6 fe80::9:3fff:fe7c:5b49  prefixlen 64  scopeid 0x20<link>
        ether 00:22:4d:b1:3b:4f  txqueuelen 0  (Ethernet)
        RX packets 75978  bytes 75114787 (71.6 MiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 44173  bytes 9034993 (8.6 MiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

em1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet6 fe80::222:4dff:feb1:3b4f  prefixlen 64  scopeid 0x20<link>
        ether 00:22:4d:b1:3b:4f  txqueuelen 1000  (Ethernet)
        RX packets 88083  bytes 76319915 (72.7 MiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 46161  bytes 9350487 (8.9 MiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
        device interrupt 20  memory 0xf7c00000-f7c20000  

lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 0  (Local Loopback)
        RX packets 610477  bytes 185479486 (176.8 MiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 610477  bytes 185479486 (176.8 MiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

qbr355a2f7a-e4: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet6 fe80::54f4:e8ff:fed3:a396  prefixlen 64  scopeid 0x20<link>
        ether 0a:7d:2c:b6:82:9f  txqueuelen 0  (Ethernet)
        RX packets 25  bytes 2044 (1.9 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 8  bytes 648 (648.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

qvb355a2f7a-e4: flags=4419<UP,BROADCAST,RUNNING,PROMISC,MULTICAST>  mtu 1500
        inet6 fe80::87d:2cff:feb6:829f  prefixlen 64  scopeid 0x20<link>
        ether 0a:7d:2c:b6:82:9f  txqueuelen 1000  (Ethernet)
        RX packets 193  bytes 21709 (21.2 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 227  bytes 22624 (22.0 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

qvo355a2f7a-e4: flags=4419<UP,BROADCAST,RUNNING,PROMISC,MULTICAST>  mtu 1500
        inet6 fe80::84b:79ff:fe36:8981  prefixlen 64  scopeid 0x20<link>
        ether 0a:4b:79:36:89:81  txqueuelen 1000  (Ethernet)
        RX packets 227  bytes 22624 (22.0 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 193  bytes 21709 (21.2 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

tap0b36c82a-61: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet6 fe80::90e6:3bff:fe67:a207  prefixlen 64  scopeid 0x20<link>
        ether 92:e6:3b:67:a2:07  txqueuelen 1000  (Ethernet)
        RX packets 8  bytes 648 (648.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 25  bytes 2070 (2.0 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

tap231aae57-ee: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet6 fe80::1c4c:41ff:fe85:3cba  prefixlen 64  scopeid 0x20<link>
        ether 1e:4c:41:85:3c:ba  txqueuelen 1000  (Ethernet)
        RX packets 10  bytes 864 (864.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 12  bytes 928 (928.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

tap355a2f7a-e4: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet6 fe80::fc16:3eff:fec5:cf3f  prefixlen 64  scopeid 0x20<link>
        ether fe:16:3e:c5:cf:3f  txqueuelen 500  (Ethernet)
        RX packets 212  bytes 21418 (20.9 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 193  bytes 21557 (21.0 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

tap526ffe94-80: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet6 fe80::18:9dff:fed6:a5b0  prefixlen 64  scopeid 0x20<link>
        ether 02:18:9d:d6:a5:b0  txqueuelen 1000  (Ethernet)
        RX packets 13  bytes 990 (990.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 13927  bytes 1517499 (1.4 MiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

tap82e98716-1b: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet6 fe80::8019:a6ff:feb9:e768  prefixlen 64  scopeid 0x20<link>
        ether 82:19:a6:b9:e7:68  txqueuelen 1000  (Ethernet)
        RX packets 182  bytes 20205 (19.7 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 227  bytes 22654 (22.1 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

tap96e686d4-b1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet6 fe80::a0c6:ceff:fed0:ff85  prefixlen 64  scopeid 0x20<link>
        ether a2:c6:ce:d0:ff:85  txqueuelen 1000  (Ethernet)
        RX packets 36  bytes 3670 (3.5 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 45  bytes 3988 (3.8 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

tapd062f68f-a1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet6 fe80::5c4f:fdff:fe68:bccc  prefixlen 64  scopeid 0x20<link>
        ether 5e:4f:fd:68:bc:cc  txqueuelen 1000  (Ethernet)
        RX packets 8  bytes 648 (648.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 26  bytes 2160 (2.1 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

tapdc50e9b0-f4: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet6 fe80::18c7:64ff:fed1:fe74  prefixlen 64  scopeid 0x20<link>
        ether 1a:c7:64:d1:fe:74  txqueuelen 1000  (Ethernet)
        RX packets 13  bytes 990 (990.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 12154  bytes 1341764 (1.2 MiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

virbr0: flags=4099<UP,BROADCAST,MULTICAST>  mtu 1500
        inet 192.168.122.1  netmask 255.255.255.0  broadcast 192.168.122.255
        ether 1a:63:d4:37:73:c0  txqueuelen 0  (Ethernet)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

[hcuser@localhost ~]$ sudo ip netns exec qdhcp-44abc76e-7daf-4af6-85e8-1e92f2789b45 ifconfig
lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 0  (Local Loopback)
        RX packets 4  bytes 336 (336.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 4  bytes 336 (336.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

ns-96e686d4-b1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 30.0.0.11  netmask 255.255.255.0  broadcast 30.0.0.255
        inet6 fe80::f816:3eff:fe6e:8f74  prefixlen 64  scopeid 0x20<link>
        ether fa:16:3e:6e:8f:74  txqueuelen 1000  (Ethernet)
        RX packets 46  bytes 4030 (3.9 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 40  bytes 4006 (3.9 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0