<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
</head>
<body text="#000000" bgcolor="#FFFFFF">
Hi all, <br>
<br>
I'm having a few issues with my install here. My instances can't
access anything outside the cloud, and adding the correct rules to
the security group and assigning a public IP, the instance isn't
accessible from the outside world. I've had openstack running on
this hardware before using the Stackops Distro, but I've intalled
Ubuntu 12.04 and Essex to test it out as Stackops aren't on essex
yet.<br>
<br>
I've included the relevant (I think) info below. I'm not sure
where/what to check next, I'm not so good with network debugging
unfortunately.<br>
<br>
Could someone help, advise, or just generally point me in the right
direction?<br>
<br>
Thanks!<br>
<br>
/Kieran<br>
<br>
I have it set to use FlatDHCP:<br>
# network specific settings<br>
--network_manager=nova.network.manager.FlatDHCPManager<br>
--public_interface=bond0<br>
--flat_interface=eth2<br>
--flat_network_bridge=br100<br>
--fixed_range=10.0.0.0/8<br>
--floating_range=131.251.172.0/24<br>
--network_size=256<br>
--flat_network_dhcp_start=10.0.0.2<br>
--flat_injected=False<br>
--force_dhcp_release<br>
--iscsi_helper=tgtadm<br>
--connection_type=libvirt<br>
--root_helper=sudo nova-rootwrap<br>
--verbose<br>
<br>
bond0 is a bonded interface on a public network. I can access the
Internet through that interface. eth2 is on a network connected to
the other hosts, each of which has eth2 connected to this network.<br>
<br>
brctl shows eth2 is part of br100.<br>
<br>
nova-network:<br>
brctl show<br>
bridge name bridge id STP enabled interfaces<br>
br100 8000.001b21cda0d1 no eth2<br>
<br>
<br>
nova-compute-1 (with the instance on it):<br>
brctl show<br>
bridge name bridge id STP enabled interfaces<br>
br100 8000.001b21add0a1 no eth2<br>
vnet0<br>
virbr0 8000.000000000000 yes<br>
<br>
<br>
I checked through this (
<meta http-equiv="content-type" content="text/html;
charset=ISO-8859-1">
<a
href="http://docs.openstack.org/trunk/openstack-compute/admin/content/associating-public-ip.html">http://docs.openstack.org/trunk/openstack-compute/admin/content/associating-public-ip.html</a>)
and everything looks correct (I think).<br>
<br>
nova secgroup-list-rules default<br>
+-------------+-----------+---------+-----------+--------------+<br>
| IP Protocol | From Port | To Port | IP Range | Source Group |<br>
+-------------+-----------+---------+-----------+--------------+<br>
| icmp | -1 | -1 | 0.0.0.0/0 | |<br>
| tcp | 22 | 22 | 0.0.0.0/0 | |<br>
+-------------+-----------+---------+-----------+--------------+<br>
<br>
<br>
The instance IP is 10.0.0.2, so (public IPs hidded):<br>
<br>
sudo iptables -L -nv -t nat | grep 10.0.0.2<br>
0 0 DNAT all -- * * 0.0.0.0/0
x.y.172.22 to:10.0.0.2<br>
20 1656 DNAT all -- * * 0.0.0.0/0
x.y.172.22 to:10.0.0.2<br>
0 0 SNAT all -- * * 10.0.0.2
0.0.0.0/0 to:x.y.172.22<br>
<br>
<br>
from ip add:<br>
<br>
....<br>
4: eth2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq
master br100 state UP qlen 1000<br>
link/ether 00:1b:21:cd:a0:d1 brd ff:ff:ff:ff:ff:ff<br>
inet6 fe80::21b:21ff:fecd:a0d1/64 scope link<br>
valid_lft forever preferred_lft forever<br>
....<br>
....<br>
16: bond0: <BROADCAST,MULTICAST,MASTER,UP,LOWER_UP> mtu 1500
qdisc noqueue state UP <br>
link/ether 00:1b:21:6d:ef:00 brd ff:ff:ff:ff:ff:ff<br>
inet x.y.172.2/24 brd 131.251.172.255 scope global bond0<br>
inet x.y.172.22/32 scope global bond0<br>
inet6 fe80::21b:21ff:fe6d:ef00/64 scope link <br>
valid_lft forever preferred_lft forever<br>
17: br100: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc
noqueue state UP <br>
link/ether 00:1b:21:cd:a0:d1 brd ff:ff:ff:ff:ff:ff<br>
inet 10.0.0.1/24 brd 10.0.0.255 scope global br100<br>
inet6 fe80::1c2b:8bff:fe38:2003/64 scope link <br>
valid_lft forever preferred_lft forever<br>
<br>
</body>
</html>