Ask Your Question

Krish's profile - activity

2019-03-12 20:28:55 -0600 received badge  Notable Question (source)
2019-03-12 20:28:55 -0600 received badge  Popular Question (source)
2018-10-08 17:12:01 -0600 received badge  Famous Question (source)
2018-06-20 20:15:51 -0600 received badge  Notable Question (source)
2018-06-20 20:15:51 -0600 received badge  Popular Question (source)
2018-05-05 12:23:22 -0600 received badge  Famous Question (source)
2018-04-17 04:20:48 -0600 answered a question VPNaaS' vpn service remains in PENDING_CREATE
[root@controller ~(keystone_admin)]# service ipsec status
Redirecting to /bin/systemctl status ipsec.service
รข ipsec.service - Internet Key Exchange (IKE) Protocol Daemon for IPsec
   Loaded: loaded (/usr/lib/systemd/system/ipsec.service; disabled; vendor preset: disabled)
   Active: inactive (dead)------------->
     Docs: man:ipsec(8)
           man:pluto(8)
           man:ipsec.conf(5)
[root@controller ~(keystone_admin)]#

Is this the reason ?

2018-04-17 01:27:58 -0600 asked a question VPNaaS' vpn service remains in PENDING_CREATE
[root@controller ~(keystone_admin)]# neutron ipsec-site-connection-list
+--------------------------------------+-----------+----------------+-----------+----------------+
| id                                   | name      | peer_address   | auth_mode | status         |
+--------------------------------------+-----------+----------------+-----------+----------------+
| 25efc727-891b-4115-a4cb-a9b133837381 | conn_west | 192.168.140.54 | psk       | PENDING_CREATE |
| b2a4c39c-a7e1-456c-88cd-43ce558b4f11 | conn_east | 192.168.140.52 | psk       | PENDING_CREATE |
+--------------------------------------+-----------+----------------+-----------+----------------+
[root@controller ~(keystone_admin)]#

Why the vpn is down here ?

[root@controller ~(keystone_admin)]# neutron net-list
+--------------------------------------+-----------+-------------------------------------------------------+
| id                                   | name      | subnets                                               |
+--------------------------------------+-----------+-------------------------------------------------------+
| 0ce504f2-a04f-4466-ac3d-55116ae9ea3f | net_west  | f5270e49-3e01-498b-a483-76f508f96f2d 192.168.1.0/24   |
| 499149be-5c9d-44fc-9a0f-0cb33685c965 | Public-Nw | 6e497b30-bf53-4f53-844d-262b1b9ff89b 192.168.140.0/24 |
| ae06999d-167b-44d1-bf68-0b9d7f0b5773 | net_east  | 34fe0a1f-4e89-469a-9240-752990e1ad3f 192.168.2.0/24   |
+--------------------------------------+-----------+-------------------------------------------------------+
[root@controller ~(keystone_admin)]#
[root@controller ~(keystone_admin)]# neutron port-list -c fixed_ips -c device_id -c device_owner|grep router_gateway
| {"subnet_id": "6e497b30-bf53-4f53-844d-262b1b9ff89b", "ip_address": "192.168.140.54"} | c720c1a7-5e88-4c34-a423-c91a125d41bb                                          | network:router_gateway   |
| {"subnet_id": "6e497b30-bf53-4f53-844d-262b1b9ff89b", "ip_address": "192.168.140.52"} | c80488ef-1539-411c-9a03-67728583a73d                                          | network:router_gateway   |
[root@controller ~(keystone_admin)]#
[root@controller ~(keystone_admin)]#
[root@controller ~(keystone_admin)]#
[root@controller ~(keystone_admin)]# neutron ipsec-site-connection-show conn_west
+-------------------+----------------------------------------------------+
| Field             | Value                                              |
+-------------------+----------------------------------------------------+
| admin_state_up    | True                                               |
| auth_mode         | psk                                                |
| description       |                                                    |
| dpd               | {"action": "hold", "interval": 30, "timeout": 120} |
| id                | 25efc727-891b-4115-a4cb-a9b133837381               |
| ikepolicy_id      | f82a42a9-dad1-43de-8606-045363d3ede7               |
| initiator         | bi-directional                                     |
| ipsecpolicy_id    | e18e3693-3bd3-4aa9-81c9-1a5d86443c3d               |
| local_ep_group_id |                                                    |
| local_id          |                                                    |
| mtu               | 1500                                               |
| name              | conn_west                                          |
| peer_address      | 192.168.140.54                                     |
| peer_cidrs        | 192.168.2.0/24                                     |
| peer_ep_group_id  |                                                    |
| peer_id           | 192.168.140.54                                     |
| project_id        | c8efd0704d0644779af26096b96597c0                   |
| psk               | secret                                             |
| route_mode        | static                                             |
| status            | PENDING_CREATE                                     |
| tenant_id         | c8efd0704d0644779af26096b96597c0                   |
| vpnservice_id     | 556c23ec-877f-446f-8d21-4eea4414e1c6               |
+-------------------+----------------------------------------------------+
    [root@controller ~(keystone_admin)]#
[root@controller ~(keystone_admin)]#  neutron service-provider-list
+---------------+-------------+---------+
| service_type  | name        | default |
+---------------+-------------+---------+
| L3_ROUTER_NAT | single_node | False   |
| L3_ROUTER_NAT | ha          | False   |
| L3_ROUTER_NAT | dvrha       | False   |
| VPN           | libreswan   | True    |
| L3_ROUTER_NAT | dvr         | False   |
| VPN           | libreswan   | True    |
+---------------+-------------+---------+
[root@controller ~(keystone_admin)]# neutron agent-list
+--------------------------------------+--------------------+------------------------+-------------------+-------+----------------+---------------------------+
| id                                   | agent_type         | host                   | availability_zone | alive | admin_state_up | binary                    |
+--------------------------------------+--------------------+------------------------+-------------------+-------+----------------+---------------------------+
| 5d6964ad-ba0a-42b4-bfe2-bed2fdf02326 | Metering agent     | controller.example.com |                   | :-)   | True           | neutron-metering-agent    |
| 8d41b20a-46ae-4221-be70-2f3f1410e42f | Metadata agent     | controller.example.com |                   | :-)   | True           | neutron-metadata-agent    |
| cb309af7-a486-4ca0-bca3-8bcd360cddee | Open vSwitch agent | compute.example.com    |                   | :-)   | True           | neutron-openvswitch-agent |
| cda684cc-40c4-4933-8f1d-f18401fc84d0 | DHCP agent         | controller.example.com | nova              | :-)   | True           | neutron-dhcp-agent        |
| de30594b-94bd-4385-9a32-36427d83d690 | L3 agent           | controller.example.com | nova              | :-)   | True           | neutron-vpn-agent         |
| e6549a09-72fb-4aa2-9549-8c0be728d62b | Open vSwitch agent | controller.example.com |                   | :-)   | True           | neutron-openvswitch-agent |
+--------------------------------------+--------------------+------------------------+-------------------+-------+----------------+---------------------------+
[root@controller ~(keystone_admin)]#
[root@controller ~(keystone_admin)]# yum -y update
Loaded plugins: fastestmirror, langpacks
Loading mirror speeds from cached hostfile
 * base: centos.excellmedia.net
 * extras: centos.excellmedia.net
 * updates: centos.excellmedia.net
No packages marked for update
[root@controller ~(keystone_admin)]# openstack --version
openstack 3.2.1
[root@controller ~(keystone_admin)]#

[root@controller ~(keystone_admin)]# vi /var/log/neutron/vpn-agent.log

2018-04-12 15:12:58.915 1459 INFO oslo_rootwrap.client [-] Spawned new rootwrap daemon process with pid=26588
2018-04-17 10:18:26.253 1459 INFO neutron.agent.linux.interface [-] Device qg-2e1c10ec-aa already exists
2018-04-17 11:17:54.483 1459 ERROR neutron.agent.linux.utils [req-c2d8a61a-1d61-4a95-afe9-f7af9bd66cfe 520678a6e7f542ac9618d09efcda37b8 c8efd0704d0644779af26096b96597c0 - - -] Exit code: 1; Stdin: ; Stdout: ; Stderr: usage: ipsec initnss [--nssdir /etc/ipsec.d]

2018-04-17 11:17:54.526 1459 ERROR neutron.agent.linux.utils [req-c2d8a61a-1d61-4a95-afe9-f7af9bd66cfe 520678a6e7f542ac9618d09efcda37b8 c8efd0704d0644779af26096b96597c0 - - -] Exit code: 1; Stdin: ; Stdout: ; Stderr: usage: ipsec initnss [--nssdir /etc/ipsec.d]

2018-04-17 11:17:54.527 1459 ERROR neutron_vpnaas.services.vpn.device_drivers.ipsec [req-c2d8a61a-1d61-4a95-afe9-f7af9bd66cfe 520678a6e7f542ac9618d09efcda37b8 c8efd0704d0644779af26096b96597c0 - - -] Failed to enable vpn process on router c720c1a7-5e88-4c34-a423-c91a125d41bb
2018-04-17 11:17:54.527 1459 ERROR neutron_vpnaas.services.vpn.device_drivers.ipsec Traceback (most recent call last):
2018-04-17 11:17:54.527 1459 ERROR neutron_vpnaas.services.vpn.device_drivers.ipsec   File "/usr/lib/python2.7/site-packages/neutron_vpnaas/services/vpn/device_drivers/ipsec.py", line 304, in enable
2018-04-17 11:17:54.527 1459 ERROR neutron_vpnaas.services.vpn.device_drivers.ipsec     self.ensure_configs()
2018-04-17 11:17:54.527 1459 ERROR ...
(more)
2018-03-08 17:10:38 -0600 received badge  Notable Question (source)
2018-03-08 01:01:32 -0600 received badge  Popular Question (source)
2018-03-06 08:18:21 -0600 received badge  Notable Question (source)
2018-03-06 08:17:51 -0600 asked a question connection_retry_backoff how to use?

I can see variable "connection_retry_backoff" in nova.conf as well as in keystone.conf. By default its value is 2. If I edit the value in keystone.conf, do we need to edit in the nova.conf also ?

2018-03-05 23:22:33 -0600 received badge  Popular Question (source)
2018-03-02 05:40:54 -0600 commented question Overcloud deploy error

You are saying that Ceph is missed here? I use desktop PC (Ram 64gb, 24 Cpus, 1 Tb Hard disk space), all nodes are VMs.

2018-03-02 05:37:54 -0600 received badge  Editor (source)
2018-03-02 05:32:45 -0600 received badge  Enthusiast
2018-03-01 05:53:18 -0600 asked a question Overcloud deploy error

Here I executed the overcloud deploy in undercloud.

[stack@localhost ~]$ virsh list --all
 Id    Name                           State
----------------------------------------------------
 -     compute_0                      shut off
 -     control_0                      shut off
 -     undercloud                     shut off

[stack@localhost ~]$ 




[stack@localhost ~]$ ssh -F .quickstart/ssh.config.ansible undercloud
Warning: Permanently added 'undercloud' (ECDSA) to the list of known hosts.
Last login: Fri Mar  2 11:08:17 2018 from gateway
[stack@undercloud ~]$ 
[stack@undercloud ~]$ source 
stackrc
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ openstack overcloud image upload
Image "overcloud-full-vmlinuz" is up-to-date, skipping.
Image "overcloud-full-initrd" is up-to-date, skipping.
Image "overcloud-full" is up-to-date, skipping.
Image "bm-deploy-kernel" is up-to-date, skipping.
Image "bm-deploy-ramdisk" is up-to-date, skipping.
Image file "/httpboot/agent.kernel" is up-to-date, skipping.
Image file "/httpboot/agent.ramdisk" is up-to-date, skipping.
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ openstack baremetal import --json instackenv.json
This command is deprecated. Please use "openstack overcloud node import" to register nodes instead.
Started Mistral Workflow tripleo.baremetal.v1.register_or_update. Execution ID: dfee3b85-4e6f-4e60-b406-429fd67e9a91
Waiting for messages on queue '352b5229-a337-4136-8cf1-2c310e01cbf0' with no timeout.
Successfully set nodes state to available.
Nodes set to available.
Successfully registered node UUID 6d6d22ed-29b9-4253-b146-a621f189d355
Successfully registered node UUID bed70c6d-69b3-4bde-9f23-6d2e728cb4ea
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ openstack baremetal configure boot
This command is deprecated. Please use "openstack overcloud node configure" to configure manageable nodes instead.
Started Mistral Workflow tripleo.baremetal.v1.configure. Execution ID: 78322e7d-8ffe-4487-9195-d4d9033903df
Waiting for messages on queue '85904b70-2881-49ed-983b-f07a9ab040d9' with no timeout.
Successfully configured the nodes.
Started Mistral Workflow tripleo.baremetal.v1.configure. Execution ID: 8dfce3b4-d357-441a-b99c-7e7cdecab801
Waiting for messages on queue '85904b70-2881-49ed-983b-f07a9ab040d9' with no timeout.
Successfully configured the nodes.
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ neutron subnet-list
neutron CLI is deprecated and will be removed in the future. Use openstack CLI instead.
+--------------------------------------+-----------------+----------------------------------+-----------------+---------------------------------------------------+
| id                                   | name            | tenant_id                        | cidr            | allocation_pools                                  |
+--------------------------------------+-----------------+----------------------------------+-----------------+---------------------------------------------------+
| 6b5bd968-bbd7-4224-b31b-8791fc38febe | ctlplane-subnet | 93615b4f570b4d1488c3b1fc5cac01ad | 192.168.24.0/24 | {"start": "192.168.24.5", "end": "192.168.24.30"} |
+--------------------------------------+-----------------+----------------------------------+-----------------+---------------------------------------------------+
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ neutron subnet-update 6b5bd968-bbd7-4224-b31b-8791fc38febe --dns-nameserver 8.8.8.8
neutron CLI is deprecated and will be removed in the future. Use openstack CLI instead.
Updated subnet: 6b5bd968-bbd7-4224-b31b-8791fc38febe
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ 
(undercloud) [stack@undercloud ~]$ openstack overcloud deploy --control-scale 1 --compute-scale 1 --templates --libvirt-type qemu --ceph-storage-scale 1 -e /usr/share/openstack-tripleo-heat-templates/environments/storage-environment.yaml
Started Mistral Workflow tripleo.validations.v1.check_pre_deployment_validations. Execution ID: c811a015-8b04-4262-855a-ad55e3f83c09
Waiting for messages on queue 'b818100b-6e31-4c58-bf50-f30536b5ddf8' with no timeout.
{u'errors': [u'Not enough baremetal nodes - available: 2, requested: 3'], u'result': {u'enough_nodes': False, u'statistics': {u'count': 2, u'vcpus_used': 0, u'local_gb_used': 0, u'manager': {u'api': {u'server_groups': None, u'keypairs': None, u'servers': None, u'server_external_events': None, u'server_migrations': None, u'agents': None, u'instance_action': None, u'glance': None, u'hypervisor_stats': None, u'virtual_interfaces': None, u'flavors': None, u'availability_zones': None, u'user_id': None, u'cloudpipe': None, u'os_cache': False, u'quotas': None, u'migrations': None, u'usage': None, u'logger': None, u'project_id': None, u'neutron': None, u'quota_classes': None, u'project_name': None ...
(more)
2018-02-26 06:03:21 -0600 asked a question Customizing VM Settings - fails during tripleo installation.

Hello,

[stack@localhost ~]$ sudo cp CentOS-7-x86_64-GenericCloud.qcow2 /var/lib/libvirt/images/undercloud.qcow2 [stack@localhost ~]$ sudo qemu-img resize /var/lib/libvirt/images/undercloud.qcow2 +120G
Image resized.

[stack@localhost ~]$ [stack@localhost ~]$ sudo virt-customize -a /var/lib/libvirt/images/undercloud.qcow2 --run-command 'echo -e "d\nn\n \n\n\n\nw\n" | fdisk /dev/sda'
[ 0.0] Examining the guest ... virt-customize: error: libguestfs error: could not create appliance through libvirt.

Try running qemu directly without libvirt using this environment variable:
export LIBGUESTFS_BACKEND=direct

Original error from libvirt: internal error: process exited while
connecting to monitor: failed to initialize KVM: Device or resource busy
[code=1 int1=-1]

If reporting bugs, run virt-customize with debugging enabled and include
the complete output:

virt-customize -v -x [...]
[stack@localhost ~]$

Here why the command " virt-customize" getting failed?

Regards,
Krishna.