发起问题

zxslm 的档案 - activity

2019-08-06 02:31:23 -0500 获得奖牌  著名问题 (source)
2019-07-26 18:45:58 -0500 获得奖牌  著名问题 (source)
2019-07-07 03:27:18 -0500 获得奖牌  热门的问题 (source)
2019-07-07 03:27:18 -0500 获得奖牌  受欢迎的问题 (source)
2019-07-05 21:37:50 -0500 评论问题 cannot visit vm from external network

@Bernd, change the --provider-physical-network from 'eno16780032' to 'extnet' save my life. It works like a charm. Thanks a ton for pointing that out. For the VLAN ID 122, that's what network engineer guy told me.

2019-07-05 10:08:17 -0500 评论问题 cannot visit vm from external network

server.log: ERROR neutron.plugins.ml2.managers [req-xxxx - default default] Failed to bind port xxxxx on host http://os.prod.aspiraint.com for vnic_type normal using segments [{'network_id': 'xxx', 'segmentation_id': None, 'physical_network': u'eno16780032', 'id': 'xxx', 'network_type': u'flat'}]

2019-07-05 10:08:17 -0500 评论问题 cannot visit vm from external network

nova-compute.log: ERROR nova.compute.manager [req-f9f3ae3c-0843-45f4-84ef-8ad9123133a5 325877e2bd584decb3386dc2ac95a42a ad8d3ab5b715405fa6299fd0b039075a - default default] [instance: d26b43cb-3b96-4132-a615-7c2c9f771fc4] Instance failed to spawn: PortBindingFailed: Bindi

2019-07-05 10:08:17 -0500 评论问题 cannot visit vm from external network

@Bernd, I remove the old vlan type network and recreate a flat network. after the flat network created. I failed to launch cirros vm with "bind port failed" error.

below are the error message from Nova and Neutron

2019-07-05 10:08:17 -0500 评论问题 cannot visit vm from external network

@Bernd, I append the main config files nova.conf, neutron.conf, ml2_conf.ini and openvswitch_agent.ini in the question description part. Please check if anything is incorrect or other info I need to provide here for further troubleshooting.

2019-07-05 10:08:17 -0500 评论问题 cannot visit vm from external network

@Bernd, Yes, my OpenStack version is Stein.

2019-07-05 10:08:17 -0500 评论问题 cannot visit vm from external network

@Bernd, How can I check whether my VM (10.10.122.87) is connected to an untagged VLAN(ID 122). Let me try to set up a flat external to see if my OpenStack vm can talk to other VM site in VLAN 122. RDO is a community of people using and deploying OpenStack on CentOS, Fedora, and RHEL.

2019-07-05 09:49:40 -0500 获得奖牌  评论员
2019-07-03 16:24:54 -0500 问了问题 cannot visit vm from external network

Hi, I am running openstack( 3.18.0) on a vm(CentOS7.6.1810) with RDO. all settings are default.

my vm(10.10.122.87) sits on 10.10.122.0/24 and the VLAN ID is 122. the NIC name in my vm is ens16780032.

I use below command to create the network, subnet and then bump a openstack vm

openstack network create --no-share --external --provider-physical-network eno16780032 --provider-network-type vlan --provider-segment 122 external

openstack subnet create --subnet-range 10.10.122.0/24 --gateway 10.10.122.1 \ --network external --allocation-pool start=10.10.122.90,end=10.10.122.99 \ --dns-nameserver 8.8.8.8 external_subnet

openstack server create --flavor 1 --image db044776-b398-46f4-8f42-dc862154b80c \ --nic net-id=5c955f6f-0d91-4b3e-a2cb-bf0adf7803be vm1

and then I add ingress rules for ICMP and SSH from 0.0.0.0/0

The vm1 got a IP address 10.10.122.97. I am not able to ping 10.10.122.97 from my vm(10.10.122.87).

can anybody tell me why I am not ping the openstack vm(10.10.122.97) from my vm(10.10.122.87) which openstack installed?

update the main configs as below

===========================================

/etc/neutron/plugins/ml2/openvswitch_agent.ini

[DEFAULT]
debug = True
[ovs]
bridge_mappings=extnet:br-ex
integration_bridge=br-int
tunnel_bridge=br-tun
local_ip=10.10.122.87
[agent]
l2_population=False
drop_flows_on_start=False
tunnel_types=vxlan
vxlan_udp_port=4789
[securitygroup]
firewall_driver=neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver

===========================================

/etc/neutron/plugins/ml2/ml2_conf.ini

[DEFAULT]
[ml2]
type_drivers=vlan,vxlan,flat
tenant_network_types=vxlan
mechanism_drivers=openvswitch
path_mtu=0
extension_drivers=port_security,qos
[securitygroup]
enable_security_group=True
firewall_driver=neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
[ml2_type_vlan]
network_vlan_ranges=eno16780032:100:200
[ml2_type_vxlan]
vxlan_group=224.0.0.1
vni_ranges=10:100
[ml2_type_flat]
flat_networks=*

===========================================

/etc/neutron/neutron.conf

[DEFAULT]
debug=True
log_dir=/var/log/neutron
transport_url=rabbit://guest:guest@10.10.122.87:5672/
control_exchange=neutron
bind_host=0.0.0.0
auth_strategy=keystone
core_plugin=neutron.plugins.ml2.plugin.Ml2Plugin
allow_overlapping_ips=True
service_plugins=qos,trunk,router,metering
l3_ha=False
max_l3_agents_per_router=3
api_workers=4
rpc_workers=4
router_scheduler_driver=neutron.scheduler.l3_agent_scheduler.ChanceScheduler
notify_nova_on_port_status_changes=True
notify_nova_on_port_data_changes=True
[cors]
[database]
connection=mysql+pymysql://neutron:lifei123@10.10.122.87/neutron
[keystone_authtoken]
www_authenticate_uri=http://10.10.122.87:5000/
auth_uri=http://10.10.122.87:5000/
auth_type=password
auth_url=http://10.10.122.87:5000
username=neutron
password=lifei123
user_domain_name=Default
project_name=services
project_domain_name=Default
[oslo_concurrency]
lock_path=$state_path/lock
[oslo_messaging_amqp]
[oslo_messaging_kafka]
[oslo_messaging_notifications]
[oslo_messaging_rabbit]
ssl=False
[oslo_middleware]
[oslo_policy]
policy_file=/etc/neutron/policy.json
[privsep]
[ssl]
[agent]
root_helper=sudo neutron-rootwrap /etc/neutron/rootwrap.conf
[service_providers]
[nova]
auth_url=http://10.10.122.87:5000
username=nova
password=lifei123
project_domain_id=default
project_domain_name=Default
project_name=services
user_domain_id=default
user_domain_name=Default
region_name=RegionOne
auth_type=password
tenant_name=services

===========================================

/etc/nova/nova.conf

[DEFAULT]
instance_usage_audit_period=hour
rootwrap_config=/etc/nova/rootwrap.conf
compute_driver=libvirt.LibvirtDriver
allow_resize_to_same_host=True
vif_plugging_is_fatal=True
vif_plugging_timeout=300
force_raw_images=True
reserved_host_memory_mb=512
cpu_allocation_ratio=16.0
ram_allocation_ratio=1.5
instance_usage_audit=True
heal_instance_info_cache_interval=60
force_snat_range=0.0.0.0/0
metadata_host=10.10.122.87
ssl_only=False
state_path=/var/lib/nova
report_interval=10
service_down_time=60
enabled_apis=osapi_compute,metadata
osapi_compute_listen=0.0 ...
(more)
2019-06-26 05:54:17 -0500 获得奖牌  受欢迎的问题 (source)
2019-06-25 11:42:44 -0500 评论回答 no ping to Instance from neutron-gateway/0 - error "Destination Host Unreachable"

the log path are as below. openvswitch: /var/log/openvswitch neutron: /var/log/neutron/

2019-06-25 11:42:43 -0500 回答问题 no ping to Instance from neutron-gateway/0 - error "Destination Host Unreachable"

I met the similar issue. Can someone take a look at the issue and share some lights?

2019-06-24 02:50:49 -0500 获得奖牌  热门的问题 (source)
2019-06-22 05:56:45 -0500 评论回答 Instances stuck on "Booting from Hard Drive"

This works like a charm!!!! Thanks trakatelis!!

2019-06-21 20:43:16 -0500 评论问题 Failed to bind port neutron.plugins.ml2.managers

Thanks eblock for you input. Actually, I destroy the environment after several tries to fix. I will try your suggestion next time when I met the similar issue.

2019-06-21 20:43:16 -0500 回答问题 Failed to bind port while launching instance

Hi arup_thakuris, How do you change from OVN to OVS, by editing the "CONFIG_NEUTRON_ML2_MECHANISM_DRIVERS=ovn" to CONFIG_NEUTRON_ML2_MECHANISM_DRIVERS=ovs"?

2019-06-21 20:43:16 -0500 问了问题 glance API return 404 when you use image name instead of image ID

Hi, my openstack is using openstack(openstack 3.18.0) on CentOS7.6.1810.

when I create an instance with image name instead of image ID, Glance API return 404 instead of 200.

here my image list.

[root@os ~(keystone_demo)]# openstack image list +--------------------------------------+----------+--------+ | ID
| Name | Status | +--------------------------------------+----------+--------+ | 644f5a5a-3f8c-4eb3-b7ea-ad1268fa6bf7 | centos65 | active | | 8e51a1f8-05b3-4c7d-b522-228e4a42c21d | cirros | active | | 36775032-30fa-474e-aafc-5534faee691f | cirros01 | active | +--------------------------------------+----------+--------+

when I create instance with below command

openstack server create --flavor m1.tiny --image cirros01 --nic net-id=demo_network --security-group default01 --key-name vm1 --debug vm4

the debug output show below(404)

Instantiating image api: <class 'openstackclient.api.image_v2.apiv2'=""> curl -g -i -X GET -H 'Accept-Encoding: gzip, deflate' -H 'Accept: /' -H 'User-Agent: python-glanceclient' -H 'Connection: keep-alive' -H 'X-Auth-Token: {SHA1}98d92a1f6a83d7adb6dd4773cd2c3fba0e084004' -H 'Content-Type: application/octet-stream' http://10.107.122.87:9292/v2/images/cirros01 (http://10.107.122.87:9292/v2/images/c...) Starting new HTTP connection (1): 10.107.122.87:9292 http://10.107.122.87:9292 "GET /v2/images/cirros01 HTTP/1.1" 404153 GET call to image for http://10.107.122.87:9292/v2/images/cirros01 (http://10.107.122.87:9292/v2/images/c...) used request id req-f5e59cde-2f3d-41ce-a90d-eaa3f4323320 Request returned failure status 404.

but when i use image ID. Glance API response(200).

Instantiating image api: <class 'openstackclient.api.image_v2.apiv2'=""> curl -g -i -X GET -H 'Accept-Encoding: gzip, deflate' -H 'Accept: /' -H 'User-Agent: python-glanceclient' -H 'Connection: keep-alive' -H 'X-Auth-Token: {SHA1}c33a2fb9d28a8e331dcb4a0c78664d9fe321a66a' -H 'Content-Type: application/octet-stream' http://10.107.122.87:9292/v2/images/36775032-30fa-474e-aafc-5534faee691f (http://10.107.122.87:9292/v2/images/3...) Starting new HTTP connection (1): 10.107.122.87:9292 http://10.107.122.87:9292 "GET /v2/images/36775032-30fa-474e-aafc-5534faee691f HTTP/1.1" 200 782

The same issue happened for flavor, network and security group. if you use ID, all go well, if you use name, APIs respond with 404 even if you can show those items with openstack xxx list.

2019-06-20 00:19:18 -0500 获得奖牌  粉丝
2019-06-18 10:09:41 -0500 获得奖牌  受欢迎的问题 (source)
2019-06-15 18:16:03 -0500 问了问题 Failed to bind port neutron.plugins.ml2.managers

Hi, I am using openstack 3.18.0. I got below error when I create a instance with below command. By the way, I am using the KVM as the default hypervisor.

openstack server create --flavor m1.tiny --image CirrOS01 --nic net-id=a9c54782-2c31-4688-be1b-8e9e0491311a --security-group default --key-name test_key eno1-instance

2019-06-15 04:26:52.116 110813 ERROR neutron.plugins.ml2.managers [req-d8da56fb-b7ff-4df2-af4c-4b68fb26d1dd 0937edfa9b784194b7cb47fb5bf65eaa 966c28f276424b35ba37956832bb12d6 - default default] Failed to bind port c26922b8-c82e-441a-a0c6-ec4056962e77 on host http://openstack.safelle.com for vnic_type normal using segments [{'network_id': 'a9c54782-2c31-4688-be1b-8e9e0491311a', 'segmentation_id': None, 'physical_network': u'eno1', 'id': '9fc06cf1-c282-4a48-905c-653b6e285080', 'network_type': u'flat'}]

here are the commands I use to create the network.

neutron net-create --shared --provider:physical_network eno1 --provider:network_type flat eno1

neutron subnet-create --name eno1 --allocation-pool start=192.168.20.50,end=192.168.20.100 --dns-nameserver 61.134.1.5 --gateway 192.168.20.254 eno1 192.168.20.0/24

/etc/neutron/plugins/ml2/ml2_conf.ini

[DEFAULT]
[ml2]
type_drivers=geneve,flat
tenant_network_types=geneve
mechanism_drivers=ovn
path_mtu=0
extension_drivers=port_security,qos

[securitygroup]
enable_security_group=True
firewall_driver=neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver

[ml2_type_geneve]
max_header_size=38
vni_ranges=10:100

[ml2_type_flat]
flat_networks=eno1

[ovn]
ovn_nb_connection=tcp:192.168.20.2:6641
ovn_sb_connection=tcp:192.168.20.2:6642
ovn_metadata_enabled=True