<div dir="ltr">Thank you Luke and Harald.<div><br></div><div>I was following your recommendations and links, and I have managed to do these modifications to the setup shared by Harald, to adjust to my needs.</div><div><a href="https://github.com/qw3r3wq/homelab">https://github.com/qw3r3wq/homelab</a> Have done clone, and have updated my changes.<br></div><div><br></div><div>I have 2 main issues now:</div><div>1) when deploying overcloud, it do not add ssh key to authorized host, and gets timeout, but I can work with that.</div><div>1.solution) while running installation I ssh into it, before ansible tries... shitty workaround, but should be ok for POC, need to fix it also.</div><div><b>2) As you see from config files, I use local undercloud as repo for container images, but it is not able to fetch data from there, as it is marked as secure, but undercloud configures it as unsecure. Can I somehow specify to installed, so it would modify /etc/container(s)/repositories.conf to add undercloud IP and url to insecure repo list. cause it helps tp fix my issues. but then cannot proceed as it has part of things up, so I need to do fresh setup, which is without insecure repos.</b></div><div><b>2.solution) no ideas.</b></div><div>3) Problem: when setting up undercloud with proxy variables exported, it adds them into containers, but even I have no_prpoxy which has idrac IP specified, or range, ironic-conductor sends request to redfish using proxy...<br></div><div>3.solution) I think solution would be to use undercloud repo (predownload images) and make undercloud install from it, but when I even add 'insecure' repos value to $local_ip it drops error [1] trying to connect to repo....<a href="http://docker.io">docker.io</a></div><div><br></div><div>Any thoughts?</div><div><br></div><div><br></div><div>[1]</div><div><div style="box-sizing:border-box;font-family:"Segoe UI",system-ui,"Apple Color Emoji","Segoe UI Emoji",sans-serif;font-size:14px">Retrying (Retry(total=7, connect=None, read=None, redirect=None, status=None)) after connection broken by 'NewConnectionError('<urllib3.connection.VerifiedHTTPSConnection object at 0x7fed502f9e10>: Failed to establish a new connection: [Errno 111] Connection refused',)': /v2</div></div><div style="box-sizing:border-box;font-family:"Segoe UI",system-ui,"Apple Color Emoji","Segoe UI Emoji",sans-serif;font-size:14px">...</div><div style="box-sizing:border-box;font-family:"Segoe UI",system-ui,"Apple Color Emoji","Segoe UI Emoji",sans-serif;font-size:14px"><div style="box-sizing:border-box"> raise ConnectionError(e, request=request)<br>
ConnectionError: HTTPSConnectionPool(host='<a href="http://registries-1.docker.io">registries-1.docker.io</a>', port=443): Max retries exceeded with url: /v2/ (Caused by NewConnectionError('<urllib3.connection.VerifiedHTTPSConnection object at 0x7fed50253bd0>: Failed to establish a new connection: [Errno 111] Connection refused',))<br></div></div><div><br></div><div><br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Tue, 5 May 2020 at 20:17, Harald Jensås <<a href="mailto:hjensas@redhat.com">hjensas@redhat.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">On Mon, 2020-05-04 at 00:20 +0200, Ruslanas Gžibovskis wrote:<br>
> Hi all,<br>
> <br>
> I am doing some testing and will do some deployment on some remote<br>
> hosts.<br>
> <br>
> Remote hosts will use provider network only specific for each<br>
> compute.<br>
> <br>
> I was thinking, do I really need all the External, InternalAPI,<br>
> Storage, StorageManagemnt, Tenant networks provided to all of the<br>
> nodes? Maybe I could use a Provision network for all of that, and<br>
> make swift/glance copy on all computes to provide local images.<br>
> <br>
> I understand, if I do not have tenant network, all VM's in same<br>
> project but in different sites, will not see each other, but it is ok<br>
> at the moment. <br>
> <br>
> Thank you for your help<br>
> <br>
<br>
I use tripleo to deploy a single node aio with only 1 network interface<br>
as a lab at home. You can see the configuration here:<br>
<br>
<a href="https://github.com/hjensas/homelab/tree/master/overcloud" rel="noreferrer" target="_blank">https://github.com/hjensas/homelab/tree/master/overcloud</a><br>
<br>
Basically I use a an empty network data file, and removed<br>
the 'networks' section in my custom role data file.<br>
<br>
With no networks defined everything is placed on the 'ctlplane' (i.e<br>
provisioning network). Same thing you are asking for?<br>
<br>
<br>
I think you can do the same thing. For the provider networks I believe<br>
you will need per-role NeutronBridgeMappings i.e something like:<br>
<br>
ControllerParameters:<br>
NeutronBridgeMappings: br-ex:provider0<br>
ComputeSite1:<br>
NeutronBridgeMappings: br-foo:provider1<br>
ComputeSite2:<br>
NeutronBridgeMappings: br-bar:provider2<br>
<br>
<br>
--<br>
Harald<br>
<br>
<br>
</blockquote></div><br clear="all"><div><br></div>-- <br><div dir="ltr" class="gmail_signature"><div dir="ltr"><div>Ruslanas Gžibovskis<br>+370 6030 7030<br></div></div></div>