Thanks for the information, but apparently it was the switch which didn't allowed the creation of the VLAN's. Everything works fine now.<div><br>Regards,<br><br>Leander<br><br><div class="gmail_quote">On Wed, Jan 11, 2012 at 8:01 AM, Gary Kotton <span dir="ltr"><<a href="mailto:GaryK@radware.com">GaryK@radware.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="EN-US" link="blue" vlink="purple"><div><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Hi,<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">I too have encountered the problem in the past. Maybe the attached mail may help.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Thanks<u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Gary<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p><div style="border:none;border-top:solid #b5c4df 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> openstack-bounces+garyk=<a href="mailto:radware.com@lists.launchpad.net" target="_blank">radware.com@lists.launchpad.net</a> [mailto:<a href="mailto:openstack-bounces%2Bgaryk" target="_blank">openstack-bounces+garyk</a>=<a href="mailto:radware.com@lists.launchpad.net" target="_blank">radware.com@lists.launchpad.net</a>] <b>On Behalf Of </b>Leander Bessa<br>
<b>Sent:</b> Tuesday, January 10, 2012 6:22 PM<br><b>To:</b> Brebner, Gavin<br><b>Cc:</b> <a href="mailto:openstack@lists.launchpad.net" target="_blank">openstack@lists.launchpad.net</a><br><b>Subject:</b> Re: [Openstack] Can't pimg<u></u><u></u></span></p>
</div><div><div class="h5"><p class="MsoNormal"><u></u> <u></u></p><p class="MsoNormal">I have already given permissions to ping and ssh.<u></u><u></u></p><div><p class="MsoNormal"><u></u> <u></u></p></div><div><div><p class="MsoNormal">
output from euca-describe-group:<u></u><u></u></p></div><div><p class="MsoNormal">GROUP<span> </span>myproject<span> </span>default<span> </span>default<u></u><u></u></p></div><div><p class="MsoNormal">PERMISSION<span> </span>myproject<span> </span>default<span> </span>ALLOWS<span> </span>tcp<span> </span>22<span> </span>22<span> </span>FROM<span> </span>CIDR<span> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><u></u><u></u></p>
</div><div><p class="MsoNormal">PERMISSION<span> </span>myproject<span> </span>default<span> </span>ALLOWS<span> </span>icmp<span> </span>-1<span> </span>-1<span> </span>FROM<span> </span>CIDR<span> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><u></u><u></u></p>
</div><p class="MsoNormal"><u></u> <u></u></p><div><p class="MsoNormal">On Tue, Jan 10, 2012 at 4:17 PM, Brebner, Gavin <<a href="mailto:gavin.brebner@hp.com" target="_blank">gavin.brebner@hp.com</a>> wrote:<u></u><u></u></p>
<div><div><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><u></u><u></u></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">In my experience this usually this means you have forgotten to set up a security group – you need to run euca-authorize / nova secgroup commands. By default</span><u></u><u></u></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">there is no network access.</span><u></u><u></u></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><u></u><u></u></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> Gavin</span><u></u><u></u></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span><u></u><u></u></p>
<div style="border:none;border-left:solid blue 1.5pt;padding:0in 0in 0in 4.0pt"><div><div style="border:none;border-top:solid #b5c4df 1.0pt;padding:3.0pt 0in 0in 0in"><p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> openstack-bounces+gavin.brebner=<a href="mailto:hp.com@lists.launchpad.net" target="_blank">hp.com@lists.launchpad.net</a> [mailto:<a href="mailto:openstack-bounces%2Bgavin.brebner" target="_blank">openstack-bounces+gavin.brebner</a>=<a href="mailto:hp.com@lists.launchpad.net" target="_blank">hp.com@lists.launchpad.net</a>] <b>On Behalf Of </b>Leander Bessa<br>
<b>Sent:</b> Tuesday, January 10, 2012 5:08 PM<br><b>To:</b> <a href="mailto:openstack@lists.launchpad.net" target="_blank">openstack@lists.launchpad.net</a><br><b>Subject:</b> [Openstack] Can't pimg</span><u></u><u></u></p>
</div></div><div><div><p class="MsoNormal"> <u></u><u></u></p><p class="MsoNormal">Hello, <br><br>I'm having trouble accessing the instances that are being launched. I have two nodes a controller and a compute. They are both running Ubuntu 11.10 (64bits) and using KVM as hypervisor. When i launch an instance, i can see the instances is launched with the command euca-describe-instances, however i can neither ping or ssh into it through the controller node. I've checked the nova-network and nova-manage logs and didn't find anything out of the ordinary. I've also check the libvirt logs in the compute node and can't seem to find anything wrong with it.<u></u><u></u></p>
<div><p class="MsoNormal"> <u></u><u></u></p></div><div><p class="MsoNormal">Previously i had a single node with qemu and everything worked fine. Now that i switched to a multi-node environment with KVM things stopped working. The controller has the ip 192.168.82.24 and the compute 192.168.111.220. Floating range for public IPs is 192.168.111.236-240.<u></u><u></u></p>
<div><p class="MsoNormal"> <u></u><u></u></p></div><div><div><p class="MsoNormal">Any ideas?<u></u><u></u></p></div><div><div><p class="MsoNormal"> <u></u><u></u></p></div><div><p class="MsoNormal">The controller the following nova.conf file:<u></u><u></u></p>
</div><div><div><p class="MsoNormal">--daemonize=1<u></u><u></u></p></div><div><p class="MsoNormal">--dhcpbridge_flagfile=/etc/nova/nova.conf<u></u><u></u></p></div><div><p class="MsoNormal">--dhcpbridge=/usr/bin/nova-dhcpbridge<u></u><u></u></p>
</div><div><p class="MsoNormal">--logdir=/var/log/nova<u></u><u></u></p></div><div><p class="MsoNormal">--state_path=/var/lib/nova<u></u><u></u></p></div><div><p class="MsoNormal">--verbose<u></u><u></u></p></div><div><p class="MsoNormal">
--libvirt_type=kvm<u></u><u></u></p></div><div><p class="MsoNormal">--sql_connection=mysql://<a href="http://root:nova@192.168.82.24/nova" target="_blank">root:nova@192.168.82.24/nova</a><u></u><u></u></p></div><div><p class="MsoNormal">
--s3_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--rabbit_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--ec2_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">
--ec2_dmz_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--ec2_url=<a href="http://192.168.82.24:8773/services/Cloud" target="_blank">http://192.168.82.24:8773/services/Cloud</a><u></u><u></u></p></div>
<div><p class="MsoNormal">--fixed_range=<a href="http://10.1.1.0/24" target="_blank">10.1.1.0/24</a><u></u><u></u></p></div><div><p class="MsoNormal">--network_size=64<u></u><u></u></p></div><div><p class="MsoNormal">--num_networks=1<u></u><u></u></p>
</div><div><p class="MsoNormal">--FAKE_subdomain=ec2<u></u><u></u></p></div><div><p class="MsoNormal">--public_interface=eth0<u></u><u></u></p></div><div><p class="MsoNormal">--state_path=/var/lib/nova<u></u><u></u></p></div>
<div><p class="MsoNormal">--lock_path=/var/lock/nova<u></u><u></u></p></div><div><p class="MsoNormal">--glance_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--image_service=nova.image.glance.GlanceImageService<u></u><u></u></p>
</div><div><p class="MsoNormal">--glance_api_servers=<a href="http://192.168.82.24:9292" target="_blank">192.168.82.24:9292</a><u></u><u></u></p></div><div><p class="MsoNormal">--vlan_start=100<u></u><u></u></p></div><div>
<p class="MsoNormal">--vlan_interface=eth1<u></u><u></u></p></div><div><p class="MsoNormal">--iscsi_ip_prefix=192.168.<u></u><u></u></p></div><div><p class="MsoNormal"> <u></u><u></u></p></div></div><div><p class="MsoNormal">
<u></u><u></u></p></div><div><p class="MsoNormal">The controller has this config file.<u></u><u></u></p></div><div><div><p class="MsoNormal">--daemonize=1<u></u><u></u></p></div><div><p class="MsoNormal">--dhcpbridge_flagfile=/etc/nova/nova.conf<u></u><u></u></p>
</div><div><p class="MsoNormal">--dhcpbridge=/usr/bin/nova-dhcpbridge<u></u><u></u></p></div><div><p class="MsoNormal">--logdir=/var/log/nova<u></u><u></u></p></div><div><p class="MsoNormal">--state_path=/var/lib/nova<u></u><u></u></p>
</div><div><p class="MsoNormal">--verbose<u></u><u></u></p></div><div><p class="MsoNormal">--libvirt_type=kvm<u></u><u></u></p></div><div><p class="MsoNormal">--sql_connection=mysql://<a href="http://root:nova@192.168.82.24/nova" target="_blank">root:nova@192.168.82.24/nova</a><u></u><u></u></p>
</div><div><p class="MsoNormal">--s3_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--rabbit_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--ec2_host=192.168.82.24<u></u><u></u></p>
</div><div><p class="MsoNormal">--ec2_dmz_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--ec2_url=<a href="http://192.168.82.24:8773/services/Cloud" target="_blank">http://192.168.82.24:8773/services/Cloud</a><u></u><u></u></p>
</div><div><p class="MsoNormal">--fixed_range=<a href="http://10.1.1.0/24" target="_blank">10.1.1.0/24</a><u></u><u></u></p></div><div><p class="MsoNormal">--network_size=64<u></u><u></u></p></div><div><p class="MsoNormal">
--num_networks=1<u></u><u></u></p></div><div><p class="MsoNormal">--FAKE_subdomain=ec2<u></u><u></u></p></div><div><p class="MsoNormal">--public_interface=eth0<u></u><u></u></p></div><div><p class="MsoNormal">--state_path=/var/lib/nova<u></u><u></u></p>
</div><div><p class="MsoNormal">--lock_path=/var/lock/nova<u></u><u></u></p></div><div><p class="MsoNormal">--glance_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--image_service=nova.image.glance.GlanceImageService<u></u><u></u></p>
</div><div><p class="MsoNormal">--glance_api_servers=<a href="http://192.168.82.24:9292" target="_blank">192.168.82.24:9292</a><u></u><u></u></p></div><div><p class="MsoNormal">--vlan_start=100<u></u><u></u></p></div><div>
<p class="MsoNormal">--vlan_interface=eth1<u></u><u></u></p></div></div></div></div></div><div><p class="MsoNormal"> <u></u><u></u></p></div><div><p class="MsoNormal">Regards,<u></u><u></u></p></div><div><p class="MsoNormal">
<br>Leander<u></u><u></u></p></div></div></div></div></div></div></div><p class="MsoNormal"><u></u> <u></u></p></div></div></div></div></div><br><br>---------- Forwarded message ----------<br>From: "Vishvananda Ishaya" <<a href="mailto:vishvananda@gmail.com">vishvananda@gmail.com</a>><br>
To: "Lucio Cossio" <<a href="mailto:lucio_cossio@yahoo.com.br">lucio_cossio@yahoo.com.br</a>><br>Cc: <<a href="mailto:openstack@lists.launchpad.net">openstack@lists.launchpad.net</a>><br>Date: Thu, 29 Dec 2011 02:25:23 +0200<br>
Subject: Re: [Openstack] Network problem: Instances from non-nova-networkcan't reach outside<br>
<div style="word-wrap:break-word">In some cases when everything is on one interface you need to set your main bridge to promisc mode to get it to forward properly.<div><br></div><div>Try:</div><div>ip link set promisc on br100</div>
<div><br></div><div>Vish</div><div><br><div><div><div>On Dec 28, 2011, at 2:39 AM, Lucio Cossio wrote:</div><br><blockquote type="cite">Hello Guys, I'm testing a dual node installation of OpenStack Nova with Glance, and i really hope someone can help me with my current problem.<br>
<br>My setup is like that:<br>- First Node : All nova components plus Glance<br>
- Second Node : nova-compute<br><br>I'm using diablo version that was installed from the ubuntu repository, which i suppose is the nova 2011.3+git20111117-0ubuntu1 oneiric version.<br><br>For what a read, the second node only needs nova-compute ,but sometimes i see others saying about using nova-network together. I'm using machines that have just one network interface, so they are in the same network with other non-OpenStack computers (this network uses dhcp).<br>
At the network configuration i'm using flatDHCP. The nova.conf file can be see here (the ip is not exactly what im using, is just a template): <a href="http://paste.openstack.org/show/3978/" target="_blank">http://paste.openstack.org/show/3978/</a><br>
<br>So, i'm able to install and run virtual machines in both nodes. My problem is, for any instance that is running on the second node, i can't connect with the outside world (i can ssh and ping it from the first node, but not from an outside computer). Into the first node all goes fine.<br>
<br>If i restart nova-network (not exactly one time, sometimes more) at some point nova-network goes down, and then i'm able to ping the instances. Is like the configuration is good but the service break. The error that appears on logs is Stderr: 'RTNETLINK answers: File exists\n' - <a href="http://pastebin.com/qYhhYS6h" target="_blank">http://pastebin.com/qYhhYS6h</a><br>
<br>Currently i'm trying the same configuration in another 2 computers, using the diablo-final version of the rcb repository, as the openstack forum suggest. The errors is different. From what i remember (i'm not the only working with that) i was not even able to ping instances from outside after restarting the nova-network. <br>
Then we tried to use nova-network with the second node too. After some time, new instances running on the second node start gracefully, and i can ping them from outside, however i can't run instances on the first node anymore. There's no log errors at nova or qemu folder, i can vnc to the instance but it appears stopped (cant do nothing).<br>
<br>I appreciate any help<br><br>
_______________________________________________<br>Mailing list: <a href="https://launchpad.net/~openstack" target="_blank">https://launchpad.net/~openstack</a><br>Post to : <a href="mailto:openstack@lists.launchpad.net" target="_blank">openstack@lists.launchpad.net</a><br>
Unsubscribe : <a href="https://launchpad.net/~openstack" target="_blank">https://launchpad.net/~openstack</a><br>More help : <a href="https://help.launchpad.net/ListHelp" target="_blank">https://help.launchpad.net/ListHelp</a><br>
</blockquote></div><br></div></div></div><br>_______________________________________________<br>
Mailing list: <a href="https://launchpad.net/~openstack" target="_blank">https://launchpad.net/~openstack</a><br>
Post to : <a href="mailto:openstack@lists.launchpad.net">openstack@lists.launchpad.net</a><br>
Unsubscribe : <a href="https://launchpad.net/~openstack" target="_blank">https://launchpad.net/~openstack</a><br>
More help : <a href="https://help.launchpad.net/ListHelp" target="_blank">https://help.launchpad.net/ListHelp</a><br>
<br></blockquote></div><br></div>