<div dir="ltr"><div><div><div><div>Thanks Ashok Kumaran,<br></div>I follow your link, but when i associate a Floating IP in new_Ext_net to an instance, Horizon throw an error:<br><br><strong>Error: </strong>External network 

4a7f4ca5-a787-4f64-8a4b-22a11f9b55f7 is not reachable from subnet 

9c921f72-a60e-4eae-b53f-f3eff3218627.  Therefore, cannot associate Port 

d105d3e7-6702-4ff6-81f8-65fba219bd0b with a Floating IP.<br><br></div>PS: I run:<br></div><br>quantum net-create --tenant-id <id_of_admin_tenant> old_lan5 --router:external=True<br></div><br>quantum subnet-create --tenant-id 2fcd718a8d084ffc866bbb39640c8cd1 --allocation-pool start=192.168.5.31,end=192.168.5.34 --gateway 192.168.5.30 old_lan5 <a href="http://192.168.5.0/24">192.168.5.0/24</a> --enable_dhcp=False<br>

<br>quantum router-interface-add <id_of_project_router> <id_of_new_subnet><br><br>quantum router-update 5def5511-7a43-48ca-b234-be290020509c --routes type=dict list=true destination=<a href="http://192.168.0.0/16,nexthop=192.168.5.1">192.168.0.0/16,nexthop=192.168.5.1</a><br>

<br><br></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Thu, May 23, 2013 at 12:41 PM, Ashok Kumaran <span dir="ltr"><<a href="mailto:ashokkumaran.b@gmail.com" target="_blank">ashokkumaran.b@gmail.com</a>></span> wrote:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Hi Chu,<div><br></div><div>You might want to check this link.</div><div><br></div><div><a href="http://docs.openstack.org/trunk/openstack-network/admin/content/adv_cfg_l3_agent_multi_extnet.html" target="_blank">http://docs.openstack.org/trunk/openstack-network/admin/content/adv_cfg_l3_agent_multi_extnet.html</a><br>

</div><div><br></div><div>you can create multiple floating ip pools in association with different ext nets</div><div><br></div><div><br></div><div>-Ashok</div></div><div class="gmail_extra"><br><br><div class="gmail_quote">

<div><div class="h5">

On Thu, May 23, 2013 at 10:38 AM, Chu Duc Minh <span dir="ltr"><<a href="mailto:chu.ducminh@gmail.com" target="_blank">chu.ducminh@gmail.com</a>></span> wrote:<br></div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

<div><div class="h5">

<div dir="ltr"><div>Hi, thank you for your help, but I can't follow your guides because I already have an external network (123.x.y.0/24) <br><br></div>I tried some ways to add 2 floating IP(s) (belong to 2 network/subnet) to an instance, but still not success...<br>

<br>Do you or others have another idea?<br><br>Thank you very much!<br><br><br></div><div><div><div class="gmail_extra"><br><br><div class="gmail_quote">On Thu, May 23, 2013 at 12:40 AM, Naveen Joy (najoy) <span dir="ltr"><<a href="mailto:najoy@cisco.com" target="_blank">najoy@cisco.com</a>></span> wrote:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

<div link="blue" vlink="purple" lang="EN-US">

<div>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Hi Chu,<u></u><u></u></span></p>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">I was able to get my instances and  LAN servers communicate by following the below steps. The basic idea is that you should add the external network interface

 to br-ex,  then create an external network in quantum with --router:external=True and allocate floating IPs to your instances from this external network. Now your LAN servers can talk to your instances using these routable floating IPs that you have allocated

 from the external network.<u></u><u></u></span></p>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Steps:<u></u><u></u></span></p>

<p><u></u><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><span>1.<span style="font:7.0pt "Times New Roman"">     

</span></span></span><u></u><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Create an external bridge named br-ex and add the network card to that bridge. Also assign an IP on the external bridge so you can manage it. Assuming

 eth1 is your network card.<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">sudo ovs-vsctl add-br br-ex<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">sudo ovs-vsctl add-port br-ex eth1<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">sudo ip addr add <ip/mask> dev br-ex<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">sudo ip link set br-ex up<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>

<p><u></u><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><span>2.<span style="font:7.0pt "Times New Roman"">     

</span></span></span><u></u><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Set eth1 as a promiscuous interface in Ubuntu with no IP address so your host OS does not mess with it.<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Edit your /etc/network/interfaces and add the below lines:<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">iface eth1 inet manual<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">    up ifconfig $IFACE 0.0.0.0 up<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">    up ifconfig $IFACE promisc<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">    down ifconfig $IFACE down<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u><u></u></span></p>

<p><u></u><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><span>3.<span style="font:7.0pt "Times New Roman"">     

<span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Create a shared public network and subnet for your tenant routers to plug in.

<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Note that this network should be mapped to your existing LAN network and you should also set an existing gateway and assign IP allocation pools.<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">quantum net-create public --shared --router:external=True --provider:network_type local<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">quantum subnet-create --name public-subnet --gateway <gateway-ip>  --allocation-pool start=<start-ip>,end=<end-ip> public <external-LAN-subnet/mask><u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>

<p><u></u><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><span>4.<span style="font:7.0pt "Times New Roman"">     

</span></span></span><u></u><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Then set an external gateway IP for your tenant routers and create your user nets<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">quantum router-create router1<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">quantum router-gateway-set router1 public<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">quantum net-create usernet1<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">quantum subnet-create --name subnet1 usernet1 <a href="http://10.0.0.0/24" target="_blank">10.0.0.0/24</a><u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">quantum router-interface-add router1 subnet1<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>

<p><u></u><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><span>5.<span style="font:7.0pt "Times New Roman"">     

</span></span></span><u></u><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">To enable bi-directional network communication your old LAN network server farm use floating IPs. Allocate a floating IP and map it to your instance

 port either using command line or via horizon.<u></u><u></u></span></p>

<p><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">quantum floatingip-create --port_id $SERVER_PORT_ID public<u></u><u></u></span></p>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Hope this helps.<u></u><u></u></span></p>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Naveen/<u></u><u></u></span></p>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>

<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>

<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> Openstack [mailto:<a href="mailto:openstack-bounces%2Bnajoy" target="_blank">openstack-bounces+najoy</a>=<a href="mailto:cisco.com@lists.launchpad.net" target="_blank">cisco.com@lists.launchpad.net</a>]

<b>On Behalf Of </b>Chu Duc Minh<br>

<b>Sent:</b> Wednesday, May 22, 2013 5:04 AM<br>

<b>To:</b> <a href="mailto:openstack@lists.launchpad.net" target="_blank">openstack@lists.launchpad.net</a><br>

<b>Subject:</b> [Openstack] [Quantum & OVS] How to bi-direction communicate between VM instances and "old" LAN network(s)<u></u><u></u></span></p><div><div>

<p class="MsoNormal"><u></u> <u></u></p>

<div>

<div>

<div>

<div>

<div>

<div>

<p class="MsoNormal" style="margin-bottom:12.0pt">Hi, i deployed a Openstack Grizzly cluster with Quantum using network-model

<b>"Per-tenant Routers with Private Networks"</b>. Everything is ok. <u></u><u></u></p>

</div>

<p class="MsoNormal" style="margin-bottom:12.0pt">Now, i need to communicate (bi-direction) between VM network(s) and "old" LAN network(s) of old server farm. (<a href="http://192.168.2.0/24" target="_blank">192.168.2.0/24</a>,

<a href="http://192.168.3.0/24" target="_blank">192.168.3.0/24</a>, v.v...)<u></u><u></u></p>

</div>

<div>

<p class="MsoNormal" style="margin-bottom:12.0pt">I added a network card to Network-node and plug it to a LAN network (<a href="http://192.168.3.0/24" target="_blank">192.168.3.0/24</a>).

<br>

But still not yet figured out how i can achieve it (old server farm can connect to VM instance and vice-versa)

<u></u><u></u></p>

</div>

</div>

<p class="MsoNormal" style="margin-bottom:12.0pt">Could you help me, pls? Thanks a lot, folks!<u></u><u></u></p>

</div>

<p class="MsoNormal">PS: I attach my network topology in this mail for reference.

<u></u><u></u></p>

</div>

<p class="MsoNormal">I think that, maybe I need to create a new "br-ex" for LAN, create port/interface in router of each tenant, then add a LAN IP (192.168.3.x) to router-interface.

<br>

Then add route to <a href="http://192.168.0.0/16" target="_blank">192.168.0.0/16</a> to 192.168.3.1<br>

v.v....<br>

<br>

But "how to implement it" still not clear... :-(<u></u><u></u></p>

<div>

<p class="MsoNormal"><u></u> <u></u></p>

<div>

<div>

<p class="MsoNormal" style="margin-bottom:12.0pt"><u></u> <u></u></p>

</div>

</div>

</div>

</div>

</div></div></div>

</div>

</blockquote></div><br></div>

</div></div><br></div></div>_______________________________________________<br>

Mailing list: <a href="https://launchpad.net/~openstack" target="_blank">https://launchpad.net/~openstack</a><br>

Post to     : <a href="mailto:openstack@lists.launchpad.net" target="_blank">openstack@lists.launchpad.net</a><br>

Unsubscribe : <a href="https://launchpad.net/~openstack" target="_blank">https://launchpad.net/~openstack</a><br>

More help   : <a href="https://help.launchpad.net/ListHelp" target="_blank">https://help.launchpad.net/ListHelp</a><br>

<br></blockquote></div><span class="HOEnZb"><font color="#888888"><br><br clear="all"><div><br></div>-- <br><div>Regds,</div>

<div> </div>

<div>Ashok ,</div>

<div>Delivery Consultant,</div>

<div>HP.</div>

</font></span></div>

</blockquote></div><br></div>