<html><head></head><body>Yes. Just keep in mind that if you extend your configuration with a new config file, then you must change your init script / unit file to reference that file. And it would probably be a good idea to re-sync the DB with that additional file as an option. Or you keep your plugin configuration in a single file and be happy with the current layout.<br><br><div class="gmail_quote">Am 29. Juni 2015 22:47:22 MESZ, schrieb "Yngvi Páll Þorfinnsson" <yngvith@siminn.is>:<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<pre class="k9mail">Hi Uwe<br /><br />I just ran this some minutes ago, i.e. did the "population of db" again,<br />According to the manual.<br />Should'nt this be enough ?<br /><br /><br />root@controller2:/# su -s /bin/sh -c "neutron-db-manage --config-file /etc/neutron/neutron.conf \<br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #729fcf; padding-left: 1ex;"> --config-file /etc/neutron/plugins/ml2/ml2_conf.ini upgrade juno" neutron<br /></blockquote><br />INFO [alembic.migration] Context impl MySQLImpl.<br />INFO [alembic.migration] Will assume non-transactional DDL.<br />INFO [alembic.migration] Running upgrade None -> havana, havana_initial<br />INFO [alembic.migration] Running upgrade havana -> e197124d4b9, add unique constraint to members<br />INFO [alembic.migration] Running upgrade e197124d4b9 -> 1fcfc149aca4, Add a unique constraint on (agent_type, host) columns to prevent a race<br />condition when an agent
entry is 'upserted'.<br />INFO [alembic.migration] Running upgrade 1fcfc149aca4 -> 50e86cb2637a, nsx_mappings<br />INFO [alembic.migration] Running upgrade 50e86cb2637a -> 1421183d533f, NSX DHCP/metadata support<br />INFO [alembic.migration] Running upgrade 1421183d533f -> 3d3cb89d84ee, nsx_switch_mappings<br />INFO [alembic.migration] Running upgrade 3d3cb89d84ee -> 4ca36cfc898c, nsx_router_mappings<br />INFO [alembic.migration] Running upgrade 4ca36cfc898c -> 27cc183af192, ml2_vnic_type<br />INFO [alembic.migration] Running upgrade 27cc183af192 -> 50d5ba354c23, ml2 binding:vif_details<br />INFO [alembic.migration] Running upgrade 50d5ba354c23 -> 157a5d299379, ml2 binding:profile<br />INFO [alembic.migration] Running upgrade 157a5d299379 -> 3d2585038b95, VMware NSX rebranding<br />INFO [alembic.migration] Running upgrade 3d2585038b95 -> abc88c33f74f, lb stats<br />INFO [alembic.migration] Running upgrade abc88c33f74f -> 1b2580001654,
nsx_sec_group_mapping<br />INFO [alembic.migration] Running upgrade 1b2580001654 -> e766b19a3bb, nuage_initial<br />INFO [alembic.migration] Running upgrade e766b19a3bb -> 2eeaf963a447, floatingip_status<br />INFO [alembic.migration] Running upgrade 2eeaf963a447 -> 492a106273f8, Brocade ML2 Mech. Driver<br />INFO [alembic.migration] Running upgrade 492a106273f8 -> 24c7ea5160d7, Cisco CSR VPNaaS<br />INFO [alembic.migration] Running upgrade 24c7ea5160d7 -> 81c553f3776c, bsn_consistencyhashes<br />INFO [alembic.migration] Running upgrade 81c553f3776c -> 117643811bca, nec: delete old ofc mapping tables<br />INFO [alembic.migration] Running upgrade 117643811bca -> 19180cf98af6, nsx_gw_devices<br />INFO [alembic.migration] Running upgrade 19180cf98af6 -> 33dd0a9fa487, embrane_lbaas_driver<br />INFO [alembic.migration] Running upgrade 33dd0a9fa487 -> 2447ad0e9585, Add IPv6 Subnet properties<br />INFO [alembic.migration] Running upgrade 2447ad0e9585
-> 538732fa21e1, NEC Rename quantum_id to neutron_id<br />INFO [alembic.migration] Running upgrade 538732fa21e1 -> 5ac1c354a051, n1kv segment allocs for cisco n1kv plugin<br />INFO [alembic.migration] Running upgrade 5ac1c354a051 -> icehouse, icehouse<br />INFO [alembic.migration] Running upgrade icehouse -> 54f7549a0e5f, set_not_null_peer_address<br />INFO [alembic.migration] Running upgrade 54f7549a0e5f -> 1e5dd1d09b22, set_not_null_fields_lb_stats<br />INFO [alembic.migration] Running upgrade 1e5dd1d09b22 -> b65aa907aec, set_length_of_protocol_field<br />INFO [alembic.migration] Running upgrade b65aa907aec -> 33c3db036fe4, set_length_of_description_field_metering<br />INFO [alembic.migration] Running upgrade 33c3db036fe4 -> 4eca4a84f08a, Remove ML2 Cisco Credentials DB<br />INFO [alembic.migration] Running upgrade 4eca4a84f08a -> d06e871c0d5, set_admin_state_up_not_null_ml2<br />INFO [alembic.migration] Running upgrade d06e871c0d5 ->
6be312499f9, set_not_null_vlan_id_cisco<br />INFO [alembic.migration] Running upgrade 6be312499f9 -> 1b837a7125a9, Cisco APIC Mechanism Driver<br />INFO [alembic.migration] Running upgrade 1b837a7125a9 -> 10cd28e692e9, nuage_extraroute<br />INFO [alembic.migration] Running upgrade 10cd28e692e9 -> 2db5203cb7a9, nuage_floatingip<br />INFO [alembic.migration] Running upgrade 2db5203cb7a9 -> 5446f2a45467, set_server_default<br />INFO [alembic.migration] Running upgrade 5446f2a45467 -> db_healing, Include all tables and make migrations unconditional.<br />INFO [alembic.migration] Context impl MySQLImpl.<br />INFO [alembic.migration] Will assume non-transactional DDL.<br />INFO [alembic.autogenerate.compare] Detected server default on column 'cisco_ml2_apic_epgs.provider'<br />INFO [alembic.autogenerate.compare] Detected removed index 'cisco_n1kv_vlan_allocations_ibfk_1' on 'cisco_n1kv_vlan_allocations'<br />INFO [alembic.autogenerate.compare] Detected server
default on column 'cisco_n1kv_vxlan_allocations.allocated'<br />INFO [alembic.autogenerate.compare] Detected removed index 'cisco_n1kv_vxlan_allocations_ibfk_1' on 'cisco_n1kv_vxlan_allocations'<br />INFO [alembic.autogenerate.compare] Detected removed index 'embrane_pool_port_ibfk_2' on 'embrane_pool_port'<br />INFO [alembic.autogenerate.compare] Detected removed index 'firewall_rules_ibfk_1' on 'firewall_rules'<br />INFO [alembic.autogenerate.compare] Detected removed index 'firewalls_ibfk_1' on 'firewalls'<br />INFO [alembic.autogenerate.compare] Detected server default on column 'meteringlabelrules.excluded'<br />INFO [alembic.autogenerate.compare] Detected server default on column 'ml2_port_bindings.host'<br />INFO [alembic.autogenerate.compare] Detected added column 'nuage_routerroutes_mapping.destination'<br />INFO [alembic.autogenerate.compare] Detected added column 'nuage_routerroutes_mapping.nexthop'<br />INFO [alembic.autogenerate.compare] Detected server default
on column 'poolmonitorassociations.status'<br />INFO [alembic.autogenerate.compare] Detected added index 'ix_quotas_tenant_id' on '['tenant_id']'<br />INFO [alembic.autogenerate.compare] Detected NULL on column 'tz_network_bindings.phy_uuid'<br />INFO [alembic.autogenerate.compare] Detected NULL on column 'tz_network_bindings.vlan_id'<br />INFO [neutron.db.migration.alembic_migrations.heal_script] Detected removed foreign key u'nuage_floatingip_pool_mapping_ibfk_2' on table u'nuage_floatingip_pool_mapping'<br />INFO [alembic.migration] Running upgrade db_healing -> 3927f7f7c456, L3 extension distributed mode<br />INFO [alembic.migration] Running upgrade 3927f7f7c456 -> 2026156eab2f, L2 models to support DVR<br />INFO [alembic.migration] Running upgrade 2026156eab2f -> 37f322991f59, removing_mapping_tables<br />INFO [alembic.migration] Running upgrade 37f322991f59 -> 31d7f831a591, add constraint for routerid<br />INFO [alembic.migration] Running upgrade
31d7f831a591 -> 5589aa32bf80, L3 scheduler additions to support DVR<br />INFO [alembic.migration] Running upgrade 5589aa32bf80 -> 884573acbf1c, Drop NSX table in favor of the extra_attributes one<br />INFO [alembic.migration] Running upgrade 884573acbf1c -> 4eba2f05c2f4, correct Vxlan Endpoint primary key<br />INFO [alembic.migration] Running upgrade 4eba2f05c2f4 -> 327ee5fde2c7, set_innodb_engine<br />INFO [alembic.migration] Running upgrade 327ee5fde2c7 -> 3b85b693a95f, Drop unused servicedefinitions and servicetypes tables.<br />INFO [alembic.migration] Running upgrade 3b85b693a95f -> aae5706a396, nuage_provider_networks<br />INFO [alembic.migration] Running upgrade aae5706a396 -> 32f3915891fd, cisco_apic_driver_update<br />INFO [alembic.migration] Running upgrade 32f3915891fd -> 58fe87a01143, cisco_csr_routing<br />INFO [alembic.migration] Running upgrade 58fe87a01143 -> 236b90af57ab, ml2_type_driver_refactor_dynamic_segments<br />INFO
[alembic.migration] Running upgrade 236b90af57ab -> 86d6d9776e2b, Cisco APIC Mechanism Driver<br />INFO [alembic.migration] Running upgrade 86d6d9776e2b -> 16a27a58e093, ext_l3_ha_mode<br />INFO [alembic.migration] Running upgrade 16a27a58e093 -> 3c346828361e, metering_label_shared<br />INFO [alembic.migration] Running upgrade 3c346828361e -> 1680e1f0c4dc, Remove Cisco Nexus Monolithic Plugin<br />INFO [alembic.migration] Running upgrade 1680e1f0c4dc -> 544673ac99ab, add router port relationship<br />INFO [alembic.migration] Running upgrade 544673ac99ab -> juno, juno<br />root@controller2:/#<br /><br />-----Original Message-----<br />From: Uwe Sauter [mailto:<a href="http://uwe.sauter.de">uwe.sauter.de</a>@gmail.com] <br />Sent: 29. júní 2015 20:45<br />To: Yngvi Páll Þorfinnsson; YANG LI<br />Cc: openstack@lists.openstack.org<br />Subject: Re: [Openstack] network question on openstack installation<br /><br />Go to <a
href="http://docs.openstack.org">http://docs.openstack.org</a>/ , select the OpenStack version, then the installation guide for your distribution and navigate to<br /><br />6. Add a networking component<br /> - OpenStack Networking (neutron)<br /> - Install and configure controller node<br /><br />and follow the database related stuff:<br />- create DB<br />- grant privileges to neutron user<br />- populate the DB (search for "neutron-db-manage")<br /><br />Depending on your distribution, you probably need to use sudo.<br /><br />The number of config files depends on the file layout you are working with, so this is not an exact answer.<br /><br />I did the following:<br /><br />[on controller node]<br /><br />cd /etc/neutron<br />cat plugins/ml2/ml2_conf.ini > plugin.ini cd plugins/ml2 rm -f ml2_config.ini ln -s ../../plugin.ini ml2_conf.ini<br /><br /><br />[on network and compute nodes]<br /><br />cd /etc/neutron<br />cat plugins/ml2/ml2_conf.ini > plugin.ini cat
plugins/openvswitch/ovs_neutron_plugin.ini >> plugin.ini cd plugins/ml2 rm -f ml2_config.ini ln -s ../../plugin.ini ml2_conf.ini cd ../openvswitch rm -f ovs_neutron_plugin.ini ln -s ../../plugin.ini ovs_neutron_plugin.ini<br /><br /><br /><br />Then I did that sed trick that is needed on RDO because of a packaging bug with Juno (changes systemd unit file to load /etc/neutron/plugin.ini instead of /etc/neutron/plugins/ml2/ml2_plugin.ini).<br />And then 'su -s /bin/sh -c "neutron-db-manage --config-file /etc/neutron/neutron.conf --config-file /etc/neutron/plugin.ini upgrade juno" neutron' on the controller node.<br /><br />As far as I understood the configuration system used in Neutron, each config file will be merged into the same configuration namespace; only the order will determine, which value is the current one if they exist in more then one file [] section.<br />So you could have just one ini file in addition to /etc/neutron/neutron.conf (my way) or several. But then you
need to load them all when sync'ing the DB *and* starting the services.<br /><br /><br />Hopefully this brightens the dark side of Neutron configuration,<br /><br /> Uwe<br /><br /><br /><br /><br /><br />Am 29.06.2015 um 22:19 schrieb Yngvi Páll Þorfinnsson:<br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #729fcf; padding-left: 1ex;"> HI Uwe<br /> No, I did'nt drop the keystone ;-)<br /> <br /> But is this the correct way to resync neutron ?<br /> <br /> # neutron-db-manage --config-file /etc/neutron/neutron.conf \ # <br /> --config-file /etc/neutron/plugins/ml2/ml2_plugin.ini<br /> <br /> I mean, how many config files is necessary to have in the cmd ?<br /> <br /> best regards<br /> Yngvi<br /> <br /> -----Original Message-----<br /> From: Uwe Sauter [mailto:<a href="http://uwe.sauter.de">uwe.sauter.de</a>@gmail.com]<br /> Sent: 29. júní 2015 18:08<br /> To: YANG LI<br /> Cc: openstack@lists.openstack.org<br /> Subject: Re:
[Openstack] network question on openstack installation<br /> <br /> It depends on your switch… some drop tagged packets on an access port, others allow tagged packets, if the packet VLAN ID equals the configured VLAN ID.<br /> <br /> I'd reconfigure the provider network type to "flat" but that's <br /> personal taste. You could also reconfigure the switch port to be a <br /> trunking port (with only one VLAN ID). Currently your in between those <br /> configurations that might or might not work lateron…<br /> <br /> <br /> Regards,<br /> <br /> Uwe<br /> <br /> <br /> Am 29.06.2015 um 19:42 schrieb YANG LI:<br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #ad7fa8; padding-left: 1ex;"> thank you, Uwe. our provider network actually is untagged, but I did <br /> specified VLAN ID when I create our external network and everything still works. will this cause issue later on?<br /><br /> eutron net-create --provider:network_type=vlan <br
/> —provider:segmentation_id=<vlan id><br /> --provider:physical_network=physnet1<br /> --router:external=true public<br /><br /><br /> Thanks,<br /> Yang<br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #8ae234; padding-left: 1ex;"> On Jun 27, 2015, at 11:17 AM, Uwe Sauter <<a href="http://uwe.sauter.de">uwe.sauter.de</a>@gmail.com <mailto:<a href="http://uwe.sauter.de">uwe.sauter.de</a>@gmail.com>> wrote:<br /><br /> Hi Yang,<br /><br /> it depends on whether your provider network is tagged or untagged. If it is untagged (the switch port is an "access"<br /> port) then you don't specify the VLAN ID for the external network <br /> (as it will get tagged by the switch). If the provider network is <br /> tagged (the switch port is a "trunk" port) then you have to configure the VLAN ID because the switch might refuse the traffic (depending if there is a default VLAN ID defined on the switch's port).<br /><br />
Regards,<br /><br /> Uwe<br /><br /><br /><br /> Am 27.06.2015 um 13:47 schrieb YANG LI:<br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #fcaf3e; padding-left: 1ex;"> Thank you so much, James! This is so helpful. Another confusion I <br /> have is about network_vlan_ranges. Is this network VLAN id range? <br /> If so, does it has to match external network? For example, we only have one external VLAN we can use as Our provider network and that VLAN id is 775 (xxx.xxx.xxx.0/26). Should I define network_vlan_ranges as following?<br /><br /> [ml2]<br /> type_drivers=vlan<br /> tenant_network_types = vlan<br /> mechanism_drivers=openvswitch<br /> #<br /> [ml2_type_vlan]<br /> #thistellsOpenstackthattheinternalname"physnet1"providesthevlanrang<br /> e<br /> 100-199<br /> network_vlan_ranges=physnet1:775<br /> #<br /><br /> Thanks,<br /> Yang<br /> Sent from my iPhone<br /><br /> On Jun 26, 2015, at 8:54 AM, "James Denton" <br />
<james.denton@rackspace.com <mailto:james.denton@rackspace.com><br /> <mailto:james.denton@rackspace.com>> wrote:<br /><br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #e9b96e; padding-left: 1ex;"> You can absolutely have instances in the same network span <br /> different compute nodes. As an admin, you can run ‘nova show <instanceid>’ and see the host in the output:<br /><br /> root@controller01:~# nova show <br /> 7bb18175-87da-4d1f-8dca-2ef07fee9d21<br /> | grep host<br /> | OS-EXT-SRV-ATTR:host | compute02 |<br /><br /> That info is not available to non-admin users by default.<br /><br /> James<br /><br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #ccc; padding-left: 1ex;"> On Jun 26, 2015, at 7:38 AM, YANG LI <yangli@clemson.edu <br /> <mailto:yangli@clemson.edu> <mailto:yangli@clemson.edu>><br />
wrote:<br /><br /> Thanks, James for the explanation. it make more sense now. <br /> <<a href="http://now.it">http://now.it</a>/> it is possible that a instances on same tenant network reside on different compute nodes right? how do I tell which compute node a instance is on?<br /><br /> Thanks,<br /> Yang<br /><br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #ccc; padding-left: 1ex;"> On Jun 24, 2015, at 10:27 AM, James Denton <br /> <james.denton@rackspace.com <mailto:james.denton@rackspace.com><br /> <mailto:james.denton@rackspace.com>> wrote:<br /><br /> Hello.<br /><br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #ccc; padding-left: 1ex;"> all three nodes will have eth0 on management/api network. since <br /> I am using ml2 plugin with vlan for tenant network, I think all <br /> compute node should have eth1 as the second nic on provider <br /> network. Is this
correct? I understand provider network is for instance to get external access to internet, but how is instance live on compute1 communicate with instance live on compute2? are they also go through provider network?<br /></blockquote><br /> In short, yes. If you’re connecting instances to vlan “provider” <br /> networks, traffic between instances on different compute nodes <br /> will traverse the “provider bridge”, get tagged out eth1, and <br /> hit the physical switching fabric. Your external gateway device could also sit in that vlan, and the default route on the instance would direct external traffic to that device.<br /><br /> In reality, every network has ‘provider’ attributes that <br /> describe the network type, segmentation id, and bridge interface <br /> (for vlan/flat only). So tenant networks that leverage vlans <br /> would have provider attributes set by Neutron automatically <br /> based on the configuration set in the ML2 config file. If you <br />
use Neutron routers that connect to both ‘tenant’ vlan-based networks and external ‘provider’ networks, all of that traffic could traverse the same provider bridge on the controller/network node, but would be tagged accordingly based on the network (ie. vlan 100 for external network, vlan 200 for tenant network).<br /><br /> Hope that’s not too confusing!<br /><br /> James<br /><br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #ccc; padding-left: 1ex;"> On Jun 24, 2015, at 8:54 AM, YANG LI <yangli@clemson.edu <br /> <mailto:yangli@clemson.edu> <mailto:yangli@clemson.edu>><br /> wrote:<br /><br /> I am working on install openstack from scratch, but get <br /> confused with network part. I want to have one controller node, two compute nodes.<br /><br /> the controller node will only handle following services:<br /> glance-api<br /> glance-registry<br /> keystone<br /> nova-api<br /> nova-cert<br />
nova-conductor<br /> nova-consoleauth<br /> nova-novncproxy<br /> nova-scheduler<br /> qpid<br /> mysql<br /> neutron-server<br /><br /> compute nodes will have following services:<br /> neutron-dhcp-agent<br /> neutron-l3-agent<br /> neutron-metadata-agent<br /> neutron-openvswitch-agent<br /> neutron-ovs-cleanup<br /> openvswtich<br /> nova-compute<br /><br /> all three nodes will have eth0 on management/api network. since <br /> I am using ml2 plugin with vlan for tenant network, I think all <br /> compute node should have eth1 as the second nic on provider <br /> network. Is this correct? I understand provider network is for instance to get external access to internet, but how is instance live on compute1 communicate with instance live on compute2? are they also go through provider network?<br /><hr /><br /> Mailing list: <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack</a><br /> Post to :
openstack@lists.openstack.org <mailto:openstack@lists.openstack.org><br /> <mailto:openstack@lists.openstack.org><br /> Unsubscribe : <br /> <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack</a><br /></blockquote><br /></blockquote><br /></blockquote><br /></blockquote><br /><br /><hr /><br /> Mailing list: <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack</a><br /> Post to : openstack@lists.openstack.org <mailto:openstack@lists.openstack.org><br /> Unsubscribe : <br /> <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack</a></blockquote><br /><br /><hr /><br /> Mailing list: <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack</a><br />
Post to : openstack@lists.openstack.org <mailto:openstack@lists.openstack.org><br /> Unsubscribe : <br /> <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack</a><br /></blockquote><br /></blockquote> <br /><hr /><br /> Mailing list: <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack</a><br /> Post to : openstack@lists.openstack.org<br /> Unsubscribe : <br /> <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack</a><br /> <br /></blockquote></pre></blockquote></div><br>
-- <br>
Diese Nachricht wurde von meinem Android-Mobiltelefon mit K-9 Mail gesendet.</body></html>