[Openstack] Problems accessing metadata service due to nova-network generated iptables rules
Lorin Hochstein
lorin at nimbisservices.com
Sun Jun 24 23:16:19 UTC 2012
On Jun 20, 2012, at 5:44 PM, Lars Kellogg-Stedman wrote:
>>> Is the DNAT rule expected to work? Does linux_net.py need a special
>>> case for when the metadata address is on the local host?
>
> I have confirmed that the DNAT rule works *unless* metadata_host is
> 127.0.0.1, in which case you need a REDIRECT rule.
>
Did you ever find out what was causing the issue with your configuration? We run using multi-host (nova-api metadata service and nova-compute on every node) in VLAN mode, and our instances have no problem reaching the metadata service.
Take care,
Lorin
--
Lorin Hochstein
Lead Architect - Cloud Services
Nimbis Services, Inc.
www.nimbisservices.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20120624/5e9ec88c/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4897 bytes
Desc: not available
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20120624/5e9ec88c/attachment.bin>
More information about the Openstack
mailing list