<div dir="ltr"><div><div><div><div>Hi Ian,<br><br></div>Neutron dhcp server only serves IPs to the MACs defined in its host file (/var/lib/neutron/dhcp/UUID/host).<br><br></div>You can create a port for the physical server if you know the MAC address and this make it work, check the help for the "neutron port-create" command:<br>neutron help port-create<br><br></div>Cheers,<br></div>George<br><div><div><div><br><br></div></div></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Fri, Feb 26, 2016 at 11:33 AM, iain smith <span dir="ltr"><<a href="mailto:iain@3birds.co.uk" target="_blank">iain@3birds.co.uk</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi all - I'm currently trying to get something working on my openstack<br>
platform, wondering if anyone's come across this before.<br>
<br>
On a VLAN tenant network, how can I allow an external device to pick up<br>
a dhcp address from neutron's dhcp service (the dhcp service associated<br>
with the subnet created in the tenant vlan network)?<br>
<br>
- I'm using liberty, and have created some vlan networks as admin user,<br>
and assigned them to the 'demo' project.<br>
- logged in as demo, I've created a dhcp-enabled subnet in one of the<br>
vlan networks, and a security group that allows hosts in the same subnet<br>
to connect to openstack guests in that subnet.<br>
- I've created some openstack guest VMs in the subnet - they came up ok<br>
and picked up dhcp ip addresses. I can connect to these guests from an<br>
external server on the same VLAN (a server outside of openstack). I can<br>
connect to the external server from the openstack guest VMs. All as<br>
expected.<br>
<br>
What I'm trying to do is to get an external (non-openstack) device on<br>
the same vlan to pick up a dhcp ip address from the openstack dhcp<br>
service for that subnet. Using wireshark I can see the dhcp request<br>
packets from my device, on the correct vlan, reaching my neutron network<br>
node where the dnsmasq dhcp service is running, but there's never a<br>
reply. I've tried putting wide-open ingress rules in the security group,<br>
but haven't got it to work yet (I'm not actually sure if the security<br>
group has any bearing at the subnet level as per AWS, or if it applies<br>
only to guest VMs... looks to me like it just applies to VMs).<br>
<br>
Anyone know what I need to do? I'll keep at it meantime<br>
<br>
cheers<br>
Iain<br>
--<br>
<br>
<br>
_______________________________________________<br>
Mailing list: <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack" rel="noreferrer" target="_blank">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack</a><br>
Post to : <a href="mailto:openstack@lists.openstack.org">openstack@lists.openstack.org</a><br>
Unsubscribe : <a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack" rel="noreferrer" target="_blank">http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack</a><br>
</blockquote></div><br></div>