[kolla-ansible] OVS br-ex configuration for OVN SNAT gateway along with HAProxy

Danny Webb Danny.Webb at thehutgroup.com
Sat Mar 26 19:05:03 UTC 2022

Hi Tony,

Multiple interfaces can be configured as follows:


From: Tony Liu <tonyliu0592 at hotmail.com>
Sent: 26 March 2022 05:02
To: openstack-discuss <openstack-discuss at lists.openstack.org>
Subject: [kolla-ansible] OVS br-ex configuration for OVN SNAT gateway along with HAProxy

CAUTION: This email originates from outside THG


My goal is to have OVN SNAT gateway (with OVS bridge) and HAProxy co-exist.
Here is the networking configuration (partial) before deployment.
eth1, no address, neutron_external_interface
eth1.40, external address, kolla_external_vip_interface

After deployment, I'd like to see this.
  eth1.40 tag 40
eth1.40 with external address

But actually, only eth1 is put on br-ex by Kolla Ansible.

Need eth1.40 on br-ex, because the external network is also one of the provider
networks. Need eth1 on br-ex, to support other provider networks (different VLANs).
It works fine when deploy with TripleO with os-net-config.

Is it supported by Kolla Ansible? It seems Kolla Ansible only puts one interface
(neutron_external_interface) on br-ex?

I know a few workarounds in case that's not supported, just want to confirm.


Danny Webb
Principal OpenStack Engineer
The Hut Group<http://www.thehutgroup.com/>

Email: Danny.Webb at thehutgroup.com<mailto:Danny.Webb at thehutgroup.com>

For the purposes of this email, the "company" means The Hut Group Limited, a company registered in England and Wales (company number 6539496) whose registered office is at Fifth Floor, Voyager House, Chicago Avenue, Manchester Airport, M90 3DQ and/or any of its respective subsidiaries.

Confidentiality Notice
This e-mail is confidential and intended for the use of the named recipient only. If you are not the intended recipient please notify us by telephone immediately on +44(0)1606 811888 or return it to us by e-mail. Please then delete it from your system and note that any use, dissemination, forwarding, printing or copying is strictly prohibited. Any views or opinions are solely those of the author and do not necessarily represent those of the company.

Encryptions and Viruses
Please note that this e-mail and any attachments have not been encrypted. They may therefore be liable to be compromised. Please also note that it is your responsibility to scan this e-mail and any attachments for viruses. We do not, to the extent permitted by law, accept any liability (whether in contract, negligence or otherwise) for any virus infection and/or external compromise of security and/or confidentiality in relation to transmissions sent by e-mail.

Activity and use of the company's systems is monitored to secure its effective use and operation and for other lawful business purposes. Communications using these systems will also be monitored and may be recorded to secure effective use and operation and for other lawful business purposes.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-discuss/attachments/20220326/8c79834e/attachment.htm>

More information about the openstack-discuss mailing list