<div dir="ltr"><div><br></div>Sigh. So I abandoned RHEL 6.3, rekicked my systems and set up the scale-ready installation described in these instructions:<div><br></div><div><a href="https://github.com/mseknibilel/OpenStack-Folsom-Install-guide/blob/master/OpenStack_Folsom_Install_Guide_WebVersion.rst">https://github.com/mseknibilel/OpenStack-Folsom-Install-guide/blob/master/OpenStack_Folsom_Install_Guide_WebVersion.rst</a></div>
<div><br></div><div style>Basically:</div><div style><br></div><div style>(o) controller node on a mgmt and public net</div><div style>(o) network node (quantum and openvs) on a mgmt, net-config, and public net</div><div style>
(o) compute node is on a mgmt and net-config net</div><div style><br></div><div>Took me just over an hour and ran into only a few easily-fixed speed bumps. But the VM networks are totally non-functioning. VMs launch but no network traffic can go in or out.</div>
<div><br></div><div style>I'm particularly befuddled by these problems:</div><div style><br></div><div style>( 1 ) This error in nova-compute:</div><div style><br></div><div style>ERROR nova.network.quantumv2 [-] _get_auth_token() failed<br>
</div><div style><br></div><div style>( 2 ) No NAT rules on the compute node, which probably explains why the VMs complain about not finding a network or being able to get metadata from 169.254.169.254.</div><div style><br>
</div><div style><div>root@kvm-cs-sn-10i:~# iptables -t nat -S</div><div>-P PREROUTING ACCEPT</div><div>-P INPUT ACCEPT</div><div>-P OUTPUT ACCEPT</div><div>-P POSTROUTING ACCEPT</div><div>-N nova-api-metadat-OUTPUT</div>
<div>-N nova-api-metadat-POSTROUTING</div><div>-N nova-api-metadat-PREROUTING</div><div>-N nova-api-metadat-float-snat</div><div>-N nova-api-metadat-snat</div><div>-N nova-compute-OUTPUT</div><div>-N nova-compute-POSTROUTING</div>
<div>-N nova-compute-PREROUTING</div><div>-N nova-compute-float-snat</div><div>-N nova-compute-snat</div><div>-N nova-postrouting-bottom</div><div>-A PREROUTING -j nova-api-metadat-PREROUTING</div><div>-A PREROUTING -j nova-compute-PREROUTING</div>
<div>-A OUTPUT -j nova-api-metadat-OUTPUT</div><div>-A OUTPUT -j nova-compute-OUTPUT</div><div>-A POSTROUTING -j nova-api-metadat-POSTROUTING</div><div>-A POSTROUTING -j nova-compute-POSTROUTING</div><div>-A POSTROUTING -j nova-postrouting-bottom</div>
<div>-A nova-api-metadat-snat -j nova-api-metadat-float-snat</div><div>-A nova-compute-snat -j nova-compute-float-snat</div><div>-A nova-postrouting-bottom -j nova-api-metadat-snat</div><div>-A nova-postrouting-bottom -j nova-compute-snat</div>
</div><div style><br></div><div style>(3) A lastly, no default secgroup rules, whose function governs... what exactly? Connections to the VM's public or private IPs? I guess I'm just not sure if this is relevant to my overall problem of ZERO VM network connectivity.</div>
<div style><br></div><div style>I seek guidance please. Thanks.</div><div><br clear="all"><div><br></div>-- <br>\*..+.-<br>--Greg Chavez<br>+//..;};
</div></div>