Hi,<br><br>I can connect to my newly created VM from within its compute node,<br>but not from any other host, and this is, I guess, due to some networking configuration/design mess.<br><br>The goal is, to have one big <a href="http://10.10.0.0/16">10.10.0.0/16</a> network in our data center,<br>
<br>10.10.1x.yy -> IPMI<br>10.10.2x.yy -> switches, PDUs, ...<br>10.10.3x.yy -> physical nodes<br><b>10.10.4x.yy -> VMs<br></b><br>so basically, I have assigned all physical nodes an IP like br0:<a href="http://10.10.30.190/16">10.10.30.190/16</a>, with eth0 already joined to br0, and everything works fine :)<br>
<br>Now, comes the nova mess :(....<br><br><font face="'courier new', monospace"># cat /etc/nova/nova.conf<br>--use_console_monitor=True<br><br>--dhcpbridge_flagfile=/etc/nova/nova.conf<br>--dhcpbridge=/usr/bin/nova-dhcpbridge<br>
--logdir=/var/log/nova<br>--state_path=/var/lib/nova<br>--lock_path=/var/lock/nova<br><br>--allow_admin_api=true<br>--use_deprecated_auth=false<br>--auth_strategy=keystone<br><br>--scheduler_driver=nova.scheduler.simple.SimpleScheduler<br>
<br>--s3_host=10.10.30.190<br>--ec2_host=10.10.30.190<br>--rabbit_host=10.10.30.190<br>--cc_host=10.10.30.190<br>--nova_url=<a href="http://10.10.30.190:8774/v1.1/">http://10.10.30.190:8774/v1.1/</a><br>--glance_api_servers=<a href="http://10.10.30.190:9292">10.10.30.190:9292</a><br>
--image_service=nova.image.glance.GlanceImageService<br>--glance_host=10.10.30.190<br>--sql_connection=mysql://novadbadmin:********@<a href="http://10.10.30.190/nova">10.10.30.190/nova</a><br><br>--ec2_url=<a href="http://10.10.30.190:8773/services/Cloud">http://10.10.30.190:8773/services/Cloud</a><br>
--keystone_ec2_url=<a href="http://10.10.30.190:5000/v2.0/ec2tokens">http://10.10.30.190:5000/v2.0/ec2tokens</a><br><br>--api_paste_config=/etc/nova/api-paste.ini<br><br>--libvirt_type=kvm<br>--libvirt_use_virtio_for_bridges=true<br>
<br>--start_guests_on_host_boot=true<br>--resume_guests_state_on_host_boot=true<br><br># ----- VNC<br>--vnc_enabled=true<br>--vncproxy_url=<a href="http://10.10.30.190:6080">http://10.10.30.190:6080</a><br>--vnc_console_proxy_url=<a href="http://10.10.30.190:6080">http://10.10.30.190:6080</a><br>
<br># ----- network specific settings<br>--network_manager=nova.network.manager.FlatDHCPManager<br>--public_interface=eth0<br><br>--flat_interface=eth0<br>--flat_network_bridge=br0<br><br># ----- public network<br>#--floating_range=$public_net/28<br>
<br># ----- private network<br><b>--routing_source_ip=10.10.30.190<br>--fixed_range=<a href="http://10.10.0.0/24">10.10.0.0/24</a><br>--flat_network_dhcp_start=10.10.41.10<br>--network_size=512<br></b>--force_dhcp_release<br>
--flat_injected=False<br><br>--iscsi_helper=tgtadm<br>--iscsi_ip_prefix=10.10.52 # ?<br><br>--connection_type=libvirt<br>--root_helper=sudo nova-rootwrap<br>--verbose<br># eof<br></font><br>I tried different approaches in getting this run, and I remember the last time I tried to set nova up, it worked (somehow? I did something handy to the routing table? can't remember, unfortunately)...<br>
<br>I use a big 10.10/16 network so that we don't bloat the VPN client scripts with additional routes everyone (who should know) must know about, and for (I hoped) ease of simplicity.<br><br>I chose not to use VLAN because even tough our switches are VLAN capable I'd like to avoid the extra overhead for now, because I'd like to get it basically up'n'running and not delay my first experience yet another week :-)<br>
<br>Has anyone an idea on how I could achieve getting every IP to where it belongs to?<br><br>Many thanks in advance,<br>Christian.