<div dir="ltr"><div><div><div><div><div><span style="font-family:monospace,monospace"><font size="1">Hi all; again. :-)<br></font></span></div><div><span style="font-family:monospace,monospace"><font size="1">Sorry. Still having issues with this. It comes down to the public port on the router I think...<br><br></font></span></div><div><span style="font-family:monospace,monospace"><font size="1">Following the Liberty install instructions. Setting up a public / private net with router. <br></font></span></div><div><span style="font-family:monospace,monospace"><font size="1"><br></font></span></div><span style="font-family:monospace,monospace"><font size="1">Still trying to get my private to public net router working. Can't seem to get floating IPs to work. Am able to ping the router from the private space. Both public and private ports work. There seems to be something wrong with the router's public port as it is DOWN.<br><br></font></span></div><div><span style="font-family:monospace,monospace"><font size="1">Had thought it might be a security issue, but security is off for both public and private ports. And the private one works just fine. Perhaps I should create a VM on the public network and somehow force the router to use it's working port?<br></font></span></div><div><span style="font-family:monospace,monospace"><font size="1"><br></font></span></div><span style="font-family:monospace,monospace"><font size="1">How can I diagnose this.<br><br></font></span></div><span style="font-family:monospace,monospace"><font size="1">Thanks;<br></font></span></div><span style="font-family:monospace,monospace"><font size="1">-Chris<br><br><br></font></span></div><span style="font-family:monospace,monospace"><font size="1">Details.....<br><br><br>[sleestack@maersk src]$ neutron router-port-list router<br>+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+<br>| id | name | mac_address | fixed_ips |<br>+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+<br>| 145e2d39-75ff-452d-b840-bb355528f865 | | fa:16:3e:66:02:f2 | {"subnet_id": "9bc41a73-6863-476f-8b1a-5317dfc1fcdd", "ip_address": "192.168.10.1"} |<br>| 688e344c-448a-4279-9e68-0653017c856f | | fa:16:3e:1b:b2:75 | {"subnet_id": "fdf2bf4b-e0ef-4843-85a2-e88f9aa674b5", "ip_address": "172.22.10.11"} |<br>+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+<br>[sleestack@maersk src]$ neutron port-show 688e344c-448a-4279-9e68-0653017c856f<br>+-----------------------+--------------------------------------------------------------------------------------------------------------+<br>| Field | Value |<br>+-----------------------+--------------------------------------------------------------------------------------------------------------+<br>| admin_state_up | True |<br>| allowed_address_pairs | |<br>| binding:host_id | maersk |<br>| binding:profile | {} |<br>| binding:vif_details | {"port_filter": true} |<br>| binding:vif_type | bridge |<br>| binding:vnic_type | normal |<br>| device_id | c6d5a6a9-e0b6-419d-adf6-3647410550bf |<br>| device_owner | network:router_gateway |<br>| dns_assignment | {"hostname": "host-172-22-10-11", "ip_address": "172.22.10.11", "fqdn": "host-172-22-10-11.openstacklocal."} |<br>| dns_name | |<br>| extra_dhcp_opts | |<br>| fixed_ips | {"subnet_id": "fdf2bf4b-e0ef-4843-85a2-e88f9aa674b5", "ip_address": "172.22.10.11"} |<br>| id | 688e344c-448a-4279-9e68-0653017c856f |<br>| mac_address | fa:16:3e:1b:b2:75 |<br>| name | |<br>| network_id | 43f09f04-c7ca-4df9-bc74-516dd134313f |<br>| port_security_enabled | False |<br>| security_groups | |<br>| status | DOWN |<br>| tenant_id | |<br>+-----------------------+--------------------------------------------------------------------------------------------------------------+<br><br>But the Private one works and it has no security either. Hmmm<br><br>[sleestack@maersk src]$ neutron port-show 145e2d39-75ff-452d-b840-bb355528f865<br>+-----------------------+--------------------------------------------------------------------------------------------------------------+<br>| Field | Value |<br>+-----------------------+--------------------------------------------------------------------------------------------------------------+<br>| admin_state_up | True |<br>| allowed_address_pairs | |<br>| binding:host_id | maersk |<br>| binding:profile | {} |<br>| binding:vif_details | {"port_filter": true} |<br>| binding:vif_type | bridge |<br>| binding:vnic_type | normal |<br>| device_id | c6d5a6a9-e0b6-419d-adf6-3647410550bf |<br>| device_owner | network:router_interface |<br>| dns_assignment | {"hostname": "host-192-168-10-1", "ip_address": "192.168.10.1", "fqdn": "host-192-168-10-1.openstacklocal."} |<br>| dns_name | |<br>| extra_dhcp_opts | |<br>| fixed_ips | {"subnet_id": "9bc41a73-6863-476f-8b1a-5317dfc1fcdd", "ip_address": "192.168.10.1"} |<br>| id | 145e2d39-75ff-452d-b840-bb355528f865 |<br>| mac_address | fa:16:3e:66:02:f2 |<br>| name | |<br>| network_id | f1309195-e346-4748-b223-d2875204cab8 |<br>| port_security_enabled | False |<br>| security_groups | |<br>| status | ACTIVE |<br>| tenant_id | 7813be77b1de4196b1c6b77006afa21c |<br>+-----------------------+--------------------------------------------------------------------------------------------------------------+<br><br><br>[sleestack@maersk src]$ neutron port-update --security-group a76c3568-7f0c-4e57-903b-669f6911eb0d \<br>> 688e344c-448a-4279-9e68-0653017c856f<br>Port security must be enabled and port must have an IP address in order to use security groups.<br><br><br></font></span><div><div><div><div><div><div><span style="font-family:monospace,monospace"><font size="1"><br><br><br><br><br><br><br><br><br><br><br clear="all"></font></span><div><div class="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div><div><span style="font-family:monospace,monospace"><font size="1">- Christopher T. Hull<br></font></span></div><div><span style="font-family:monospace,monospace"><font size="1">333 Orchard Ave, Sunnyvale CA. 94085<br>(415) 385 4865<br></font></span></div><div><span style="font-family:monospace,monospace"><font size="1"><a href="mailto:chrishull42@gmail.com" target="_blank">chrishull42@gmail.com</a><br></font></span></div><span style="font-family:monospace,monospace"><font size="1"><a href="http://chrishull.com" target="_blank">http://chrishull.com</a><br><br></font></span></div></div><div><div><span style="font-family:monospace,monospace"><font size="1"><br></font></span></div></div></div></div></div></div></div>
</div></div></div></div></div></div></div>