semyazz's profile - activity

2016-06-03 00:08:56 -0600 received badge  Famous Question (source)
2015-09-24 16:41:06 -0600 received badge  Notable Question (source)
2015-01-23 11:02:57 -0600 received badge  Famous Question (source)
2014-11-25 16:09:15 -0600 received badge  Notable Question (source)
2014-11-25 16:09:15 -0600 received badge  Notable Question (source)
2014-11-25 15:54:08 -0600 received badge  Popular Question (source)
2014-11-20 16:29:33 -0600 asked a question Linux-box instance as a router with NAT

Is it possible to configure an instance which will act as a router in current OpenStack/Neutron architecture? Linux-based instance, not a virtual router in neutron via OpenvSwitch. I'd like to create an instance with two NICs one connected to private network and the second one connected to an external network (probably later to VPN) and I'd like to do an old, good routing there with NAT for instances inside the private network.

My usual simple setup (forwarding and NAT) didn't work out, so do you have any ideas how should I sort this out?

2014-11-20 16:19:59 -0600 received badge  Famous Question (source)
2014-10-04 22:34:30 -0600 received badge  Notable Question (source)
2014-09-24 10:10:03 -0600 received badge  Popular Question (source)
2014-09-24 07:43:47 -0600 answered a question Cinder causes LVM to lock

Same problem. I wanted to create few volumes at the same time and ended up in the same state. LVS hangs because it can't obtain a lock, because cinder has it. Any idea how to fix that?

2014-09-19 08:25:16 -0600 commented question Glance doesn't delete images completely and throws 'NotAuthenticated'

Maybe i should use "stuck" instead of hang. It never becomes 'active'. All those questions are somehow related, so I don't know I should split it to two different questions.

2014-09-17 12:03:18 -0600 received badge  Teacher (source)
2014-09-17 09:04:42 -0600 commented answer Heat error: "image 'NoneType' object has no attribute 'rstrip'"

everything is fine with api-paste.ini

2014-09-17 09:02:12 -0600 commented answer Suspend Opation not working in Icehouse

Try to create a new instance and suspend/resume it to check if apparmor is really disabled. Check logs and let us know if it's the same error or not. I had some issues once with apparmor and I thought I turned it off and it was still on :P

2014-09-17 08:59:26 -0600 commented answer Suspend Opation not working in Icehouse

I suppose you won't be able to resume instances which were created when AppArmor was on. AppArmor's profile config is in instance's KVM XML file, so even if AppArmor is disabled right now you still won't be able to resume those instances.

2014-09-17 08:32:19 -0600 asked a question Glance doesn't delete images completely and throws 'NotAuthenticated'

I've noticed that Glance sometimes has some weird difficulties during image upload and sometimes hangs on SAVING state.

There are errors in glance-api.log related to Failed to upload image and later Unable to kill image. Moreover when it happens and I'll manually delete an image e.g. Horizon and delete button, everything seems to be fine and I see a message box that the action was performed successfully, but... image is still there in glance's directory.

so it looks like it doesn't delete the file as it claims. Has anyone experienced similar issues? Moreover why there is NotAuthenticated: Authentication required exception and it happens only sometimes not all the time. I'm able to upload other images, but only in some random cases it looks like it's lost token? session? Maybe it's somehow related to the size (images are 10GB - 25GB), but I've successfully uploaded few huge images, so to me it's more like a random behavior than something really related to the size.

2014-09-17 05:01:57 -0600 commented answer horizon session timeout

I have a similar issue. What is the default value for tokens? I see commented out "#expiration=3600" in my keystone.conf (so by default it's 1h) and I've already set SESSION_TIMEOUT in to same value, without success. It still expires in less than 10-15 mins.

2014-09-16 07:49:12 -0600 received badge  Commentator
2014-09-16 02:20:45 -0600 commented question Login arbitrary user to horizon, having only admin token?

It shouldn't be possible. Come on, it'd be a security issue, so it shouldn't be allowed to log in as an arbitrary user. NEVER. PERIOD.

2014-09-16 02:16:04 -0600 commented answer Suspend Opation not working in Icehouse

The second bug during Suspend was related to Public network. It's somehow connected to admins and if the user who is going to suspend an instance isn't an admin and the instance has IP in public network (not floating), it's also not possible to suspend such instance. However, I think it was fixed.

2014-09-16 02:13:58 -0600 commented answer Suspend Opation not working in Icehouse

I briefly checked that link and I don't know why guy in that thread discourage to use SUSPEND. I've encountered only few problems with that, and one was related to AppArmor settings. (Ubuntu/Debian Icehouse Openstack). Error is quite clear here - AppArmor's profile cannot be loaded.

2014-09-16 02:09:45 -0600 received badge  Editor (source)
2014-09-16 02:03:35 -0600 answered a question Suspend Opation not working in Icehouse

You got the answer in your last ERROR message. It's because of the AppArmor. Turn it off or tune it to your needs and it should work like a charm. I had a similar issue some time ago. To be sure check AppArmor's logs (it should be in syslog afair)

It should be related to:

Ignore it's about spawning, there are many different errors when AppArmor blocks something (XML profile in your case).

2014-08-25 03:43:57 -0600 commented question Heat error: "image 'NoneType' object has no attribute 'rstrip'"

It looks like there might be some issues with authentication at the access layer to different services, so maybe that X-Auth could help. I have to check that. So far I can't move it forward, but I also have an idea that it may be somehow related to KeystoneV3 vs KeystoneV2 in Heat in Icehouse

2014-08-25 03:42:02 -0600 commented answer Heat error: "image 'NoneType' object has no attribute 'rstrip'"

It's an old issue (2013). Moreover authentication driver is different in Icehouse and it's not "heat.common.auth_token:filter_factory" anymore, so it's a completely wrong advice. The default value from packages is correct (it starts with keystone...)

2014-08-25 03:39:54 -0600 commented answer Heat error: "image 'NoneType' object has no attribute 'rstrip'"

Link doesn't work.

2014-08-25 03:39:50 -0600 received badge  Critic (source)
2014-08-21 15:36:20 -0600 received badge  Famous Question (source)
2014-08-15 13:02:34 -0600 received badge  Popular Question (source)
2014-08-13 15:26:43 -0600 received badge  Notable Question (source)
2014-08-11 05:02:07 -0600 received badge  Student (source)
2014-08-11 04:07:25 -0600 asked a question External (admin) network and privileges

I have private cloud based on Icehouse and I've created external, shared network for all tenants, moreover that external network is bound to a VLAN inside comapny network, but from OpenStack's point of view it's an external network.

I'd like to know why such network is "admin" bound. I mean in code there are places which checks if the user performing operations like resume, resize etc. on an instance which has interface in an external network is an admin. Am I using something incorrectly? or how can I turn off that "admin" requirement? When an instance has that interface, actions like resume or resize doesn't work. They silently fails but Horizon shows that the actions was successful.

My workaround idea was to use floating IPs instead of that public network, but it's a lot easier (at least private deployment) to use single shared external network instead of floating pools in each tenant.

2014-08-06 07:35:22 -0600 received badge  Popular Question (source)
2014-08-06 03:29:38 -0600 received badge  Popular Question (source)
2014-08-04 14:33:06 -0600 answered a question Instance creation fails - neutron problem

Maybe you'll find more in openvswitch's log - /var/log/openvswitchovs-vswitchd.log

I've encountered multiple issues when I was setting up the whole neutron manually. In general if neutron doesn't work nothing works :)


are very helpful and be sure the whole configs are consistent. Once I misspelled one option and couldn't find out why it didn't work.

2014-08-04 14:19:31 -0600 answered a question How to enable pam authentication with keystone ?

check (customizing-the-openstack-keystone-authentication-backend) I've found it when I was looking for Kerberos integration, which still doesn't work in my case... but maybe you will have more luck with PAM

2014-08-04 14:14:28 -0600 commented answer keystone is not working after moving to v2 from v3.

afair 5000 is publicURL and 35357 is internalURL. It depends on how it's configured in your case, but check again your config and ports on which the service is listening.

2014-08-04 14:12:14 -0600 commented question Heat error: "image 'NoneType' object has no attribute 'rstrip'"

till the end of the week I'll try to install 2014.2 or at least 2014.1.2 from icehouse and try it again and if that won't help I'll try to dig into the code and find out that exception, but still I would prefer to install it from debian's repository

2014-08-04 14:09:17 -0600 commented question Heat error: "image 'NoneType' object has no attribute 'rstrip'"

catalog looks fine. I have glance endpoints and I'm able to launch instance, so to me it's fine. I have a feeling it has something to do with the permissions and users. I tried devstack on Ubuntu 14.04 Server amd64 on my VirtualBox and it works fine,but Ubuntu has 2014.2 and I have 2014.1.1 - debian

2014-08-01 09:10:00 -0600 asked a question Heat error: "image 'NoneType' object has no attribute 'rstrip'"

I'm facing the following error in Heat:

ERROR: Property error : server1: image 'NoneType' object has no attribute 'rstrip'


2014-08-01 16:02:26.031 9086 TRACE heat.engine.parser     raise exception.StackValidationFailed(message=msg)
2014-08-01 16:02:26.031 9086 TRACE heat.engine.parser StackValidationFailed: Property error : server1: image 'NoneType' object has no attribute 'rstrip'

using the following template

heat_template_version: 2013-05-23
description: Test Template
    type: string
    description: Image use to boot a server
    type: string
    description: Network ID for the server
    type: OS::Nova::Server
      name: "Testserver"
      image: { get_param: ImageID }
      flavor: "m1.tiny"
      - network: { get_param: NetID }
    description: IP address of the server in the private network
    value: { get_attr: [ server1, first_address ] }

I tried UUID, Name in image property. Nothing helps. Is there anyone who can take a quick look and tell me what is wrong with that template? heat validate-template says it's ok.

2014-07-30 05:13:22 -0600 received badge  Supporter (source)
2014-07-18 02:23:50 -0600 asked a question Instance run/start schedule

How can I schedule run/shutdown instances in OpenStack? I'd like to run a set of instances every day at time X and shutdown them at time Y.

I know I can do it via next machine/server and cron action, but I'd like to know if it's possible somehow in OpenStack. I suppose it should be somewhere in Heat, right?

At least single action like "run at X, once" should be available.

I'm asking about it, cos I'd like to have servers only in OpenStack, so cron-hack where I can define hooks which will trigger actions and run/shutdown my instances isn't really a solution. Solution with a tiny instance in OpenStack where all that cron-stuff will be done, also seems to be silly.

I know it's a generic problem and everyone will want to define elastic schedules etc. but at least execution delay of each command should be available.