[Openstack] Can't access instance

Turbo Fredriksson turbo at bayour.com
Fri Dec 9 13:56:32 UTC 2016 

I’ve completely reinstalled my OS setup, more or less from scratch
(I’ve kept my bootstrapping script, modified for this new install).

It’s now on Debian GNU/Linux Stretch, which come with Newton.


I’ve setup my router (extern net IP: 10.0.6.1), with my “real” router/nat/firewall
on 10.0.6.254. I’m routing 10.0.6.0/24 and 10.0.8.0/21 to 10.0.6.1.

The instance get the IP 10.0.8.13 and I’ve setup security groups to allow everything,
but I can’t ping or access the instance.

	[celia.pts/5]$ traceroute -n 10.0.8.13
	traceroute to 10.0.8.13 (10.0.8.13), 30 hops max, 60 byte packets
	 1  192.168.69.1  0.218 ms  0.193 ms  0.169 ms
	 2  10.0.6.1  0.753 ms * *
	 3  10.0.6.1  3067.663 ms !H  3067.666 ms !H  3067.622 ms !H

	[celia.pts/5]$ ping -c1 10.0.6.1
	PING 10.0.6.1 (10.0.6.1) 56(84) bytes of data.
	64 bytes from 10.0.6.1: icmp_req=1 ttl=63 time=0.635 ms
	
	--- 10.0.6.1 ping statistics ---
	1 packets transmitted, 1 received, 0% packet loss, time 0ms
	rtt min/avg/max/mdev = 0.635/0.635/0.635/0.000 ms

The 10.0.8.0/24 subnet the instance is attached to have the default GW
to 10.0.4.254 and the router it ‘hangs’ of on have that IP and I can ping
that just fine from the ‘outside’:

	[celia.pts/5]$ ping -c1 10.0.8.254
	PING 10.0.8.254 (10.0.8.254) 56(84) bytes of data.
	64 bytes from 10.0.8.254: icmp_req=1 ttl=62 time=0.740 ms
	
	--- 10.0.8.254 ping statistics ---
	1 packets transmitted, 1 received, 0% packet loss, time 0ms
	rtt min/avg/max/mdev = 0.740/0.740/0.740/0.000 ms
	[celia.pts/5]$ traceroute -n 10.0.8.254
	traceroute to 10.0.8.254 (10.0.8.254), 30 hops max, 60 byte packets
	 1  192.168.69.1  0.096 ms  0.084 ms  0.066 ms
	 2  10.0.6.1  0.889 ms  0.895 ms  0.878 ms
	 3  10.0.8.254  1.468 ms  1.507 ms  1.441 ms

I’m pretty sure it’s something simple, but I can’t seem to figure out what.

On the other hand, this is a distributed router (but I only have one network node
at the moment - the second haven’t been installed yet, it’s on the TODO list) and
I’ve never got a distributed router to work before (last time I tried it on Debian GNU/Linux
Sid/Mitaka everything stopped working).

So it’s possible it’s either

	1. That I only have one network node running - is this expected?
	2. Neutron isn’t configured correctly for distributed routers.

I’ve followed http://docs.openstack.org/mitaka/networking-guide/config-dvr-ha-snat.html 
in attempt to get this working, and as far as I know, my setup is correct. But I might have
missed something.

But what?




-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20161209/f662f5e5/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Screenshot 2016-12-09 13.40.32.png
Type: image/png
Size: 102737 bytes
Desc: not available
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20161209/f662f5e5/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Screenshot 2016-12-09 13.43.27.png
Type: image/png
Size: 187915 bytes
Desc: not available
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20161209/f662f5e5/attachment-0001.png>

More information about the Openstack mailing list