<div dir="ltr">Did you review the scenarios in the networking guide [1]?<div><br></div><div>[1] <a href="http://docs.openstack.org/networking-guide/deploy.html">http://docs.openstack.org/networking-guide/deploy.html</a></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Fri, Oct 2, 2015 at 2:41 PM, Sławek Kapłoński <span dir="ltr"><<a href="mailto:slawek@kaplonski.pl" target="_blank">slawek@kaplonski.pl</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hello,<br>
<br>
I'm trying to configure small openstack infra (one network node, 2<br>
compute nodes) with linux bridge and vxlan tenant networks. I don't know<br>
what I'm doing wrong but my instances have no connection between<br>
each other. On compute hosts I run neutron-plugin-linuxbrigde-agent<br>
with config like:<br>
<br>
------------------<br>
[ml2_type_vxlan]<br>
# (ListOpt) Comma-separated list of <vni_min>:<vni_max> tuples<br>
# enumerating<br>
# ranges of VXLAN VNI IDs that are available for tenant network<br>
# allocation.<br>
#<br>
vni_ranges = 10000:20000<br>
<br>
# (StrOpt) Multicast group for the VXLAN interface. When configured,<br>
# will<br>
# enable sending all broadcast traffic to this multicast group. When<br>
# left<br>
# unconfigured, will disable multicast VXLAN mode.<br>
#<br>
# vxlan_group =<br>
# Example: vxlan_group = 239.1.1.1<br>
<br>
[securitygroup]<br>
# Controls if neutron security group is enabled or not.<br>
# It should be false when you use nova security group.<br>
enable_security_group = True<br>
<br>
# Use ipset to speed-up the iptables security groups. Enabling ipset<br>
# support<br>
# requires that ipset is installed on L2 agent node.<br>
enable_ipset = True<br>
<br>
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver<br>
<br>
[ovs]<br>
local_ip = 10.1.0.4<br>
<br>
[agent]<br>
tunnel_types = vxlan<br>
<br>
[linuxbridge]<br>
physical_interface_mappings = physnet1:eth1<br>
<br>
[vxlan]<br>
local_ip = 10.1.0.4<br>
l2_population = True<br>
enable_vxlan = True<br>
-------------------<br>
<br>
Eth1 is my "tunnel network" which should be used for tunnels. When I<br>
spawn vms on compute 1 and 2 and after configuring network manually on<br>
both vms (dhcp is not working also because of broken tunnels probably)<br>
it not pings.<br>
Even when I started two instances on same host and they are both<br>
connected to one bridge:<br>
<br>
-------------------<br>
root@compute-2:/usr/lib/python2.7/dist-packages/neutron# brctl show<br>
bridge name bridge id STP enabled interfaces<br>
brq8fe8a32f-e6 8000.ce544d0c0e5d no tap691a138a-6c<br>
tapbc1e5179-53<br>
vxlan-10052<br>
virbr0 8000.5254007611ab yes virbr0-nic<br>
-------------------<br>
<br>
those 2 vms are not pinging each other :/<br>
I don't have any expeirence with linux bridge in fact (For now I was always<br>
using ovs). Maybe someone of You will know what I should check or what I should<br>
configure wrong :/ Generally I was installing this openstack according to<br>
official openstack documentation but in this docs there is info about ovs+gre<br>
tunnels and that is what I changed. I'm using Ubuntu 14.04 and Openstack Kilo<br>
installed from cloud archive repo.<br>
<span class="HOEnZb"><font color="#888888"><br>
--<br>
Best regards / Pozdrawiam<br>
Sławek Kapłoński<br>
<a href="mailto:slawek@kaplonski.pl">slawek@kaplonski.pl</a><br>
<br>
</font></span><br>_______________________________________________<br>
OpenStack-operators mailing list<br>
<a href="mailto:OpenStack-operators@lists.openstack.org">OpenStack-operators@lists.openstack.org</a><br>
<a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-operators" rel="noreferrer" target="_blank">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-operators</a><br>
<br></blockquote></div><br></div>