<div dir="ltr">Hi:<div><br></div><div>what i mean of  '<span style="color:rgb(80,0,80)">external switch</span>' is your physical switch.</div><div><div>from you description, you just need to configure octavia_amp_network in global.yml. the following is example:</div><div><br></div><div>please ensure you have set  enable_neutron_provider_networks = True before running octavia.</div><div><br></div><div><pre style="box-sizing:border-box;line-height:16.25px;overflow:auto;font-family:Menlo,Monaco,Consolas,"Courier New",monospace;font-size:13px;padding:20px 30px;margin-top:0px;margin-bottom:10px;color:rgb(255,255,255);word-break:break-all;background-color:rgb(51,51,51);border:1px solid rgb(204,204,204);border-radius:4px"><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">octavia_amp_network</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"></span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">  </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">name</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-l gmail-l-Scalar gmail-l-Scalar-Plain" style="box-sizing:border-box;color:rgb(208,208,208)">lb-mgmt-net</span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">  </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">provider_network_type</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-l gmail-l-Scalar gmail-l-Scalar-Plain" style="box-sizing:border-box;color:rgb(208,208,208)">vlan</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"></span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">  </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">provider_segmentation_id</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-l gmail-l-Scalar gmail-l-Scalar-Plain" style="box-sizing:border-box;color:rgb(208,208,208)">1000   //vlan id, ensure your </span>physical switch port which connected to 'neutron_external_interface' allows this vlan_id pass (trunk, allow 1000)</pre><pre style="box-sizing:border-box;line-height:16.25px;overflow:auto;font-family:Menlo,Monaco,Consolas,"Courier New",monospace;font-size:13px;padding:20px 30px;margin-top:0px;margin-bottom:10px;color:rgb(255,255,255);word-break:break-all;background-color:rgb(51,51,51);border:1px solid rgb(204,204,204);border-radius:4px"><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">  </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">provider_physical_network</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-l gmail-l-Scalar gmail-l-Scalar-Plain" style="box-sizing:border-box;color:rgb(208,208,208)">physnet1  //default is physnet1, you can check this in '/etc/kolla/neutron-openvswitch-agent/openvswitch_agent.ini'</span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">  </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">external</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-l gmail-l-Scalar gmail-l-Scalar-Plain" style="box-sizing:border-box;color:rgb(208,208,208)">false</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"></span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">  </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">shared</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-l gmail-l-Scalar gmail-l-Scalar-Plain" style="box-sizing:border-box;color:rgb(208,208,208)">false</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"></span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">  </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">subnet</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"></span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">    </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">name</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-l gmail-l-Scalar gmail-l-Scalar-Plain" style="box-sizing:border-box;color:rgb(208,208,208)">lb-mgmt-subnet</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"></span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">    </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">cidr</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-s" style="box-sizing:border-box;color:rgb(237,157,19)">"<a href="http://10.1.2.0/24">10.1.2.0/24</a>"  //this should be the network cidr of vlan 1000. </span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">    </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">allocation_pool_start</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-s" style="box-sizing:border-box;color:rgb(237,157,19)">"10.1.2.100"</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"></span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">    </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">allocation_pool_end</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-s" style="box-sizing:border-box;color:rgb(237,157,19)">"10.1.2.200"</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"></span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">    </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">gateway_ip</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-s" style="box-sizing:border-box;color:rgb(237,157,19)">"10.1.2.1" //this is the gateway for vlan_1000 , most time, this is the vlan 1000 interface ip address in your physical switch.</span>
<span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)">    </span><span class="gmail-nt" style="box-sizing:border-box;color:rgb(110,191,38);font-weight:bold">enable_dhcp</span><span class="gmail-p" style="box-sizing:border-box;color:rgb(208,208,208)">:</span><span class="gmail-w" style="box-sizing:border-box;color:rgb(102,102,102)"> </span><span class="gmail-l gmail-l-Scalar gmail-l-Scalar-Plain" style="box-sizing:border-box;color:rgb(208,208,208)">yes</span></pre></div><div><span style="color:rgb(110,191,38);font-weight:bold;background-color:rgb(51,51,51);font-family:Menlo,Monaco,Consolas,"Courier New",monospace;font-size:13px"><br></span></div><div>anyway, the goal is that a vm with <span style="color:rgb(110,191,38);font-weight:bold;background-color:rgb(51,51,51);font-family:Menlo,Monaco,Consolas,"Courier New",monospace;font-size:13px">octavia_amp_network</span> network is able to access your octavia_network_interface. <br></div><div><br></div><div>thanks</div><div><span style="color:rgb(110,191,38);font-weight:bold;background-color:rgb(51,51,51);font-family:Menlo,Monaco,Consolas,"Courier New",monospace;font-size:13px"><br></span></div></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">Stuart Whitman <<a href="mailto:swhitman@groupw.com">swhitman@groupw.com</a>> 于2022年8月17日周三 00:50写道：<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Hello,<br>
<br>
I prefer for kolla to create the bridge automatically.  Each node has two<br>
physical interfaces. The network_interface and neutron_external_interface<br>
options are set in the inventory file.<br>
<br>
> you need set octavia_network_interface and configure external switch properly<br>
<br>
I have octavia_network_interface set to "{{ api_interface }}" and api_interface<br>
is set to "{{ network_interface }}", the defaults.<br>
<br>
What do you mean by "configure external switch properly"? If you mean the<br>
external option when creating OpenStack networks, then I used the defaults<br>
in globals.yml which does not include that option. If you mean the physical<br>
switch, I'm using a low-budget switch I had lying around that is not configurable.<br>
<br>
Thanks for the help - everything else with kolla-ansible has been fairly easy.<br>
<br>
-Stu<br>
<br>
----<br>
<br>
From: W Ch <<a href="mailto:wchy1001@gmail.com" target="_blank">wchy1001@gmail.com</a>><br>
Sent: Tuesday, August 16, 2022 5:32 AM<br>
To: Stuart Whitman <<a href="mailto:swhitman@groupw.com" target="_blank">swhitman@groupw.com</a>><br>
Cc: <a href="mailto:openstack-discuss@lists.openstack.org" target="_blank">openstack-discuss@lists.openstack.org</a> <<a href="mailto:openstack-discuss@lists.openstack.org" target="_blank">openstack-discuss@lists.openstack.org</a>><br>
Subject: Re: [kolla-ansible][octavia] need networking help<br>
<br>
Hi Stuart:<br>
<br>
Usually, you need to add a bridge to all network nodes,  you can use "ovs-vsctl add-br  {br-name}" to add a ovs bridge, then you need to add a physical port  to that bridge by executing "ovs-vsctl  add-port {bridge} {port}".<br>
another alternatives, you can append the physical port to neutron_external_interface variable in globals.yml.  in this case, kolla will create the ovs bridge automatically.<br>
both of them, you need set octavia_network_interface and configure external switch properly.<br>
<br>
if you really don't know how this works, I propose you  use   "octavia_network_type: tenant"  ref: [0] , in this case, kolla-ansible will setup the octavia management network for you, you don't need to do anything.<br>
<br>
[0]: <a href="https://docs.openstack.org/kolla-ansible/latest/reference/networking/octavia.html#development-or-testing" rel="noreferrer" target="_blank">https://docs.openstack.org/kolla-ansible/latest/reference/networking/octavia.html#development-or-testing</a><br>
<br>
thanks.<br>
<br>
<br>
Stuart Whitman <<a href="mailto:swhitman@groupw.com" target="_blank">swhitman@groupw.com</a>> 于2022年8月16日周二 06:28写道：<br>
Hello,<br>
<br>
I enabled Octavia on a kolla-ansible installed Openstack<br>
cluster. When I try to launch a loadbalancer instance, the<br>
octavia-worker.log file reports:<br>
"WARNING octavia.amphorae.drivers.haproxy.rest_api_driver [-]<br>
Could not connect to instance."<br>
<br>
I researched enough to know that the problem has to do with networking<br>
between the controller and the lb-mgmt-net network. I initially<br>
overlooked this in the kolla-ansible Octavia documentation:<br>
"If using a VLAN provider network, ensure that the traffic is also bridged<br>
to Open vSwitch on the controllers." But, I don't know how to do it.<br>
<br>
Help to create the necessary bridge would be greatly appreciated.<br>
<br>
Thanks,<br>
-Stu<br>
<br>
_____________________________________<br>
The information contained in this e-mail and any attachments from Group W may contain confidential and/or proprietary information and is intended only for the named recipient to whom it was originally addressed. If you are not the intended recipient, be aware that any disclosure, distribution, or copying of this e-mail or its attachments is strictly prohibited. If you have received this e-mail in error, please notify the sender immediately of that fact by return e-mail and permanently delete the e-mail and any attachments to it.<br>
</blockquote></div>