[Openstack] Can not use keepalived in vms

Lei Zhang zhang.lei.fly at gmail.com
Tue Aug 13 03:55:32 UTC 2013 

@Jason Ford, it turn out be the iptables issue. Thx a lot.
@Jiajun Liu, I am using the nova-network. So this BP is not helpful. But I
am expecting this feature.

What I done:
1. using virsh to disable the nwfilter for the two vms.
2. stop the iptables in the vms
3. configure the keepalived.
4. works well.

It is a hack method rather than a solution. When the Vm is hard reboot, the
nwfilter is back and keepalived will be not work.


On Thu, Aug 8, 2013 at 1:37 PM, Jiajun Liu <jiajun at unitedstack.com> wrote:

> openstack implemented mac/ip spoofing, so the vrrp packets will be drop by
> iptables/ebtables. There is a blueprint (
> https://blueprints.launchpad.net/neutron/+spec/allowed-address-pairs) for
> binding multiple mac/ip on a port.
>
>
> On Thu, Aug 8, 2013 at 11:33 AM, Jason Ford <jford at blackmesh.com> wrote:
>
>>  Lei,
>>
>>  It is probably because iptables is filtering out the heartbeat traffic
>> at the compute node level. If you are using vlans, it should work without
>> issue however if you are using the flat network model, you need to allow
>> vrrp in your compute node iptable rule sets. See this link..
>>
>>
>> http://stackoverflow.com/questions/12908701/keepalived-works-well-without-iptables
>>
>>  See if that helps you out.
>>
>>  Regards,
>>
>>  Jason
>>
>>  --------------------------
>> Jason Ford
>> jford at blackmesh.com
>> Drupal/Magento/OpenStack Hosting Solutions
>> http://www.blackmesh.com
>>
>>
>>   From: Lei Zhang <zhang.lei.fly at gmail.com>
>> Date: Wednesday, August 7, 2013 10:48 PM
>> To: openstack <openstack at lists.openstack.org>
>> Subject: [Openstack] Can not use keepalived in vms
>>
>>   Hi all
>>
>>  Is anybody using keepalived in the vms in the Openstack environment
>> successfully? I failed to set it up. And the two of the vm became MASTER
>> status.
>>
>>  Could anybody know why it happened? and how to fix this issue?
>>
>>  Openstack: Folsom + nova-network
>> OS: ubuntu 12.04
>>
>>  --
>>  Lei Zhang
>>
>>  Blog: http://jeffrey4l.github.io
>> twitter/weibo: @jeffrey4l
>>
>> _______________________________________________
>> Mailing list:
>> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
>> Post to     : openstack at lists.openstack.org
>> Unsubscribe :
>> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
>>
>>
>
>
> --
> 家军@ljjjustin
>



-- 
Lei Zhang

Blog: http://jeffrey4l.github.io
twitter/weibo: @jeffrey4l
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20130813/f9db09af/attachment.html>

More information about the Openstack mailing list