[Openstack-operators] problem with quantum, gre and ovs

gustavo panizzo <gfa> gfa at zumbi.com.ar
Tue Jul 30 20:08:28 UTC 2013 

hello
         i feel sorry i have to ask silly questions, but i ran out of ideas.

i'm running grizzly on 3, physical, nodes.  8 (domU) nodes are cloud 
controllers, those nodes run (in a failover configuration using 
pacemaker) most
of the services needed to run an openstack cloud.

the other node (is just 1 by now, but will be more of them) is the 
compute node. to make things simple i configured it as kvm

i'm using ovs plugin with gre to deliver connectivity from controlled 
node to compute node.

what i'm seeing is dhcp request packets reaching the dhcp server 
interface, and the dhcp reply pkts.
dhcp reply pkts reach up to physical interface on the compute node

but they don't appear on br-tun on the compute node, neither on br-int

i've tested configuring all ovs switches to a controller where i had 
setup a hub-like flow policy (i know is no optimal, but i'm a noob on 
openflow) but results were the same.

if i set the ip addr manually on the vm i cannot ping dhcp server or 
router, even if i add their mac addr to arp table. vm can ping btw them 
(so is not br-int on compute node to blame)

any ideas?

thanks!


ovs-vsctl show on compute node
5db7aef3-414a-45a4-af3f-0ae2aea2602b
     Bridge br-int
         Port "qvoca28289c-5a"
             tag: 4
             Interface "qvoca28289c-5a"
         Port br-int
             Interface br-int
                 type: internal
         Port patch-tun
             Interface patch-tun
                 type: patch
                 options: {peer=patch-int}
         Port "qvo6e51a433-64"
             tag: 4
             Interface "qvo6e51a433-64"
         Port "qvo2c6a9e59-78"
             tag: 4
             Interface "qvo2c6a9e59-78"
         Port "qvo7c8804e8-3f"
             tag: 4
             Interface "qvo7c8804e8-3f"
         Port "qvo995dfe81-de"
             tag: 4
             Interface "qvo995dfe81-de"
     Bridge br-tun
         Port "gre-1"
             Interface "gre-1"
                 type: gre
                 options: {in_key=flow, out_key=flow, 
remote_ip="xxx.xxx.10.41"}
         Port br-tun
             Interface br-tun
                 type: internal
         Port patch-int
             Interface patch-int
                 type: patch
                 options: {peer=patch-tun}
     ovs_version: "1.9.0"


ovs-vsctl show on node (domU) witch run all quantum services

         Port br-int
             Interface br-int
                 type: internal
         Port patch-tun
             Interface patch-tun
                 type: patch
                 options: {peer=patch-int}
         Port "tap5838ba69-d8"
             tag: 1
             Interface "tap5838ba69-d8"
     Bridge br-ex
         Port "eth2"
             Interface "eth2"
         Port br-ex
             Interface br-ex
                 type: internal
     Bridge br-tun
         Port patch-int
             Interface patch-int
                 type: patch
                 options: {peer=patch-tun}
         Port "gre-2"
             Interface "gre-2"
                 type: gre
                 options: {in_key=flow, out_key=flow, 
remote_ip="xxx.xxx.10.141"}
         Port br-tun
             Interface br-tun
                 type: internal
        ovs_version: "1.9.0"


ovs_quantum_plugin.ini

[DATABASE]
sql_connection = 
postgresql://quantumpluginopenvswitchdb:xxx@xxx.xxx.20.23/quantumpluginopenvswitchdb
reconnect_interval = 2

[OVS]
tenant_network_type = gre
enable_tunneling = True
tunnel_id_ranges = 10:1000
local_ip = xxx.xxx.10.41

[AGENT]
polling_interval = 5
root_helper = sudo /usr/bin/quantum-rootwrap /etc/quantum/rootwrap.conf

[SECURITYGROUP]
firewall_driver = 
quantum.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver

quantum.conf

[DEFAULT]
verbose = True
sql_connection = 
postgresql://quantumpluginopenvswitchdb:xxx@xxx.xxx.20.23/quantumpluginopenvswitch
lock_path = $state_path/lock
bind_host = 0.0.0.0
bind_port = 9696
core_plugin = 
quantum.plugins.openvswitch.ovs_quantum_plugin.OVSQuantumPluginV2
api_paste_config = /etc/quantum/api-paste.ini
control_exchange = quantum
rabbit_host=xxx.xxx.10.45
notification_driver = quantum.openstack.common.notifier.rabbit_notifier
default_notification_level = INFO
notification_topics = notifications

[QUOTAS]

[DEFAULT_SERVICETYPE]

[AGENT]
root_helper = sudo quantum-rootwrap /etc/quantum/rootwrap.conf

[keystone_authtoken]
auth_host = xxx.xxx.10.24
auth_port = 35357
auth_protocol = http
admin_tenant_name = servicios
admin_user = quantum
admin_password = xxxxxx
signing_dir = /var/lib/quantum/keystone-signing




tcpdump -i eth0 -p  ip proto gre  on compute node

listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
17:05:45.988893 IP kvm02 > xxx.xxx.10.41: GREv0, key=0xa, length 82: IP6 
fe80::98e3:ceff:fe5d:9e1c > ip6-allrouters: ICMP6, router solicitation, 
length 16
17:05:46.160915 IP kvm02 > xxx.xxx.10.41: GREv0, key=0xa, length 82: IP6 
fe80::5042:93ff:fe5f:c24e > ip6-allrouters: ICMP6, router solicitation, 
length 16
17:05:47.496954 IP kvm02 > xxx.xxx.10.41: GREv0, key=0xa, length 102: 
IP6 fe80::98e3:ceff:fe5d:9e1c > ff02::16: HBH ICMP6, multicast listener 
report v2, 1 group record(s), length 28
17:05:47.864548 IP kvm02 > xxx.xxx.10.41: GREv0, key=0xa, length 354: IP 
0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 
fa:16:3e:f2:7a:9f (oui Unknown), length 300
17:05:47.865444 IP xxx.xxx.10.38 > kvm02: GREv0, key=0xa, length 354: IP 
172.16.99.7.bootps > 172.16.99.6.bootpc: BOOTP/DHCP, Reply, length 300

More information about the OpenStack-operators mailing list