Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

No connection to metadata service - nova-network

Hi, I just ran through the installation guide for Havana on Ubuntu 12.04 and got stuck at the point where I should be able to login to my instance using SSH public key authentication. I could find out, that from within the VM (cirros) a wget to the URL is not possible. I received a connection timeout. So I found out that a couple more options in nova.conf on the controller system were necessary. But as it still doent work, I figure something else / more is wrong.

controller: nova.conf

[DEFAULT]
dhcpbridge_flagfile=/etc/nova/nova.conf
dhcpbridge=/usr/bin/nova-dhcpbridge
logdir=/var/log/nova
state_path=/var/lib/nova
lock_path=/var/lock/nova
force_dhcp_release=True
iscsi_helper=tgtadm
libvirt_use_virtio_for_bridges=True
connection_type=libvirt
root_helper=sudo nova-rootwrap /etc/nova/rootwrap.conf
verbose=True
ec2_private_dns_show_ip=True
api_paste_config=/etc/nova/api-paste.ini
volumes_path=/var/lib/nova/volumes
enabled_apis=ec2,osapi_compute,metadata
rpc_backend=nova.rpc.impl_kombu
rabbit_host = localhost
rabbit_port = 5672
rabbit_use_ssl = false
rabbit_userid = guest
rabbit_password = guest
rabbit_virtual_host = /
my_ip=192.168.0.10
vncserver_listen=192.168.0.10
vncserver_proxyclient_address=192.168.0.10
auth_strategy=keystone
metadata_host=192.168.0.10
metadata_listen=0.0.0.0
metadata_listen_port=8775
metadata_manager=nova.api.manager.MetadataManager
[database]
connection = mysql://nova:nova@controller/nova
[keystone_authtoken]
auth_host = controller
auth_port = 35357
auth_protocol = http
admin_tenant_name = service
admin_user = nova
admin_password = vXLT1234!

compute1: nova.conf

[DEFAULT]
dhcpbridge_flagfile=/etc/nova/nova.conf
dhcpbridge=/usr/bin/nova-dhcpbridge
logdir=/var/log/nova
state_path=/var/lib/nova
lock_path=/var/lock/nova
force_dhcp_release=True
iscsi_helper=tgtadm
libvirt_use_virtio_for_bridges=True
connection_type=libvirt
root_helper=sudo nova-rootwrap /etc/nova/rootwrap.conf
verbose=True
ec2_private_dns_show_ip=True
api_paste_config=/etc/nova/api-paste.ini
volumes_path=/var/lib/nova/volumes
enabled_apis=ec2,osapi_compute,metadata
rpc_backend=nova.rpc.impl_kombu
rabbit_host = controller
rabbit_port = 5672
rabbit_use_ssl = false
rabbit_userid = guest
rabbit_password = guest
rabbit_virtual_host = /
auth_strategy=keystone
my_ip=192.168.0.11
vnc_enabled=True
vncserver_listen=0.0.0.0
vncserver_proxyclient_address=192.168.0.11
novncproxy_base_url=http://controller:6080/vnc_auto.html
glance_host=controller

metadata_host=192.168.0.10
metadata_port=8775
metadata_manager=nova.api.manager.MetadataManager

network_manager=nova.network.manager.FlatDHCPManager
firewall_driver=nova.virt.libvirt.firewall.IptablesFirewallDriver
network_size=254
allow_same_net_traffic=False
multi_host=True
send_arp_for_ha=True
share_dhcp_address=True
force_dhcp_release=True
flat_network_bridge=br100
flat_interface=eth1
public_interface=eth1

[database]
connection = mysql://nova:nova@controller/nova

From the CirrOS Instance, this happens calling wget:

$ wget http://169.254.169.254
Connecting to 169.254.169.254 (169.254.169.254:80)
wget: can't connect to remote host (169.254.169.254): Connection timed out
$

Also iptables -L -v -n on the compute1 node does not reveal any port forwarding which I would have expected.

Any help very much apprechiated!

No connection to metadata service - nova-network

Hi, I just ran through the installation guide for Havana on Ubuntu 12.04 and got stuck at the point where I should be able to login to my instance using SSH public key authentication. I could find out, that from within the VM (cirros) a wget to the URL is not possible. I received a connection timeout. So I found out that a couple more options in nova.conf on the controller system were necessary. But as it still doent work, I figure something else / more is wrong.

on the controller node

root@controller:~# netstat -nap | grep 8775 tcp 0 0 0.0.0.0:8775 0.0.0.0:* LISTEN 938/python 
root@controller:~# 
root@controller:~# iptables-save | grep 169 
root@controller:~#

On the compute node:

root@compute1:~# iptables-save | grep 169 -A 
nova-network-PREROUTING -d 169.254.169.254/32 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.0.10:8775 root@compute1:~#

So the netfilter rule seems to be there - cool! From the VM I can ping 169.254.169.254 but wget does not work on it. From the VM I can ping 169.254.169.254 but wget does not work on it.

controller: nova.conf

[DEFAULT]
dhcpbridge_flagfile=/etc/nova/nova.conf
dhcpbridge=/usr/bin/nova-dhcpbridge
logdir=/var/log/nova
state_path=/var/lib/nova
lock_path=/var/lock/nova
force_dhcp_release=True
iscsi_helper=tgtadm
libvirt_use_virtio_for_bridges=True
connection_type=libvirt
root_helper=sudo nova-rootwrap /etc/nova/rootwrap.conf
verbose=True
ec2_private_dns_show_ip=True
api_paste_config=/etc/nova/api-paste.ini
volumes_path=/var/lib/nova/volumes
enabled_apis=ec2,osapi_compute,metadata
rpc_backend=nova.rpc.impl_kombu
rabbit_host = localhost
rabbit_port = 5672
rabbit_use_ssl = false
rabbit_userid = guest
rabbit_password = guest
rabbit_virtual_host = /
my_ip=192.168.0.10
vncserver_listen=192.168.0.10
vncserver_proxyclient_address=192.168.0.10
auth_strategy=keystone
metadata_host=192.168.0.10
metadata_listen=0.0.0.0
metadata_listen_port=8775
metadata_manager=nova.api.manager.MetadataManager
[database]
connection = mysql://nova:nova@controller/nova
[keystone_authtoken]
auth_host = controller
auth_port = 35357
auth_protocol = http
admin_tenant_name = service
admin_user = nova
admin_password = vXLT1234!

compute1: nova.conf

[DEFAULT]
dhcpbridge_flagfile=/etc/nova/nova.conf
dhcpbridge=/usr/bin/nova-dhcpbridge
logdir=/var/log/nova
state_path=/var/lib/nova
lock_path=/var/lock/nova
force_dhcp_release=True
iscsi_helper=tgtadm
libvirt_use_virtio_for_bridges=True
connection_type=libvirt
root_helper=sudo nova-rootwrap /etc/nova/rootwrap.conf
verbose=True
ec2_private_dns_show_ip=True
api_paste_config=/etc/nova/api-paste.ini
volumes_path=/var/lib/nova/volumes
enabled_apis=ec2,osapi_compute,metadata
rpc_backend=nova.rpc.impl_kombu
rabbit_host = controller
rabbit_port = 5672
rabbit_use_ssl = false
rabbit_userid = guest
rabbit_password = guest
rabbit_virtual_host = /
auth_strategy=keystone
my_ip=192.168.0.11
vnc_enabled=True
vncserver_listen=0.0.0.0
vncserver_proxyclient_address=192.168.0.11
novncproxy_base_url=http://controller:6080/vnc_auto.html
glance_host=controller

metadata_host=192.168.0.10
metadata_port=8775
metadata_manager=nova.api.manager.MetadataManager

network_manager=nova.network.manager.FlatDHCPManager
firewall_driver=nova.virt.libvirt.firewall.IptablesFirewallDriver
network_size=254
allow_same_net_traffic=False
multi_host=True
send_arp_for_ha=True
share_dhcp_address=True
force_dhcp_release=True
flat_network_bridge=br100
flat_interface=eth1
public_interface=eth1

[database]
connection = mysql://nova:nova@controller/nova

From the CirrOS Instance, this happens calling wget:

$ wget http://169.254.169.254
Connecting to 169.254.169.254 (169.254.169.254:80)
wget: can't connect to remote host (169.254.169.254): Connection timed out
$

Also iptables -L -v -n on the compute1 node does not reveal any port forwarding which I would have expected.

Any help very much apprechiated!