Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

floating ip allocation and iptables

I deployed 3node architecture and following through Openstack Guide:mitaka for Ubuntu. I launched an instance successfully, and allocated fix and floating ip with no problem, but my network is not working. After allocating floating ip to an instance, shouldn't a NAT rule be added to iptables on Network-node? I didn't add any rule manually, just to be careful. I will provide any more info needed

Here's network-node's iptable info.

network-node@network-node:~$ sudo iptables -t nat -L

Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination         
neutron-openvswi-PREROUTING  all  --  anywhere             anywhere            

Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         
neutron-openvswi-OUTPUT  all  --  anywhere             anywhere            

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination         
neutron-openvswi-POSTROUTING  all  --  anywhere             anywhere            
neutron-postrouting-bottom  all  --  anywhere             anywhere            

Chain neutron-openvswi-OUTPUT (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-POSTROUTING (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-PREROUTING (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-float-snat (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-snat (1 references)
target     prot opt source               destination         
neutron-openvswi-float-snat  all  --  anywhere             anywhere            

Chain neutron-postrouting-bottom (1 references)
target     prot opt source               destination         
neutron-openvswi-snat  all  --  anywhere             anywhere             /* Perform source NAT on outgoing traffic. */

floating ip allocation and iptables

I deployed 3node architecture and following through Openstack Guide:mitaka for Ubuntu. I launched an instance successfully, and allocated fix and floating ip with no problem, but my network is not working. working(instance do not have access to external network) The question is, After allocating floating ip to an instance, shouldn't a NAT rule be added to iptables on Network-node? Is there anything wrong with my iptables?

I didn't add any rule manually, just to be careful. I will provide any more info needed

Here's network-node's iptable info.

network-node@network-node:~$ sudo iptables -t nat -L

Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination         
neutron-openvswi-PREROUTING  all  --  anywhere             anywhere            

Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         
neutron-openvswi-OUTPUT  all  --  anywhere             anywhere            

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination         
neutron-openvswi-POSTROUTING  all  --  anywhere             anywhere            
neutron-postrouting-bottom  all  --  anywhere             anywhere            

Chain neutron-openvswi-OUTPUT (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-POSTROUTING (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-PREROUTING (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-float-snat (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-snat (1 references)
target     prot opt source               destination         
neutron-openvswi-float-snat  all  --  anywhere             anywhere            

Chain neutron-postrouting-bottom (1 references)
target     prot opt source               destination         
neutron-openvswi-snat  all  --  anywhere             anywhere             /* Perform source NAT on outgoing traffic. */

floating ip allocation and iptables

I deployed 3node architecture and following through Openstack Guide:mitaka for Ubuntu. I launched an instance successfully, and allocated fix and floating ip with no problem, but my network is not working(instance do not have access to external network) The question is, After allocating floating ip to an instance, shouldn't a NAT rule be added to iptables on Network-node? Network-node automatically by Openstack? Is there anything wrong with my iptables?

I didn't add any rule manually, just to be careful. I will provide any more info needed

Here's network-node's iptable info.

network-node@network-node:~$ sudo iptables -t nat -L

Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination         
neutron-openvswi-PREROUTING  all  --  anywhere             anywhere            

Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         
neutron-openvswi-OUTPUT  all  --  anywhere             anywhere            

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination         
neutron-openvswi-POSTROUTING  all  --  anywhere             anywhere            
neutron-postrouting-bottom  all  --  anywhere             anywhere            

Chain neutron-openvswi-OUTPUT (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-POSTROUTING (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-PREROUTING (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-float-snat (1 references)
target     prot opt source               destination         

Chain neutron-openvswi-snat (1 references)
target     prot opt source               destination         
neutron-openvswi-float-snat  all  --  anywhere             anywhere            

Chain neutron-postrouting-bottom (1 references)
target     prot opt source               destination         
neutron-openvswi-snat  all  --  anywhere             anywhere             /* Perform source NAT on outgoing traffic. */