[Openstack] Error instanciating instance with external ip
Gonzalo Aguilar Delgado
gaguilar at aguilardelgado.com
Tue Dec 10 10:08:38 UTC 2013
Hi,
That's great. Is there any document where it explains it all?
Then nat is done in L3Agent what's great. So I only have to configure
static routes on the network config to let the instance flow throw
external network.
And external network should not be assigned to tenant project. It should
remain under admin tenant control. right?
It would be nice if someone writes a document about all this. Since we
configure our networks more or less by inspiration and following install
guides, but don't really much what we are doing...
El 10/12/13 10:09, 郭龙仓 escribió:
> floating ip is implemented through NAT , the l3 agent is responsible
> for NAT.
> so , you cannot see the floating ip inside the instance .
> Please refer to NAT technology.
>
>
> 2013/12/10 Gonzalo Aguilar Delgado <gaguilar at aguilardelgado.com
> <mailto:gaguilar at aguilardelgado.com>>
>
> Hi,
>
> But when I do this. It just don't work. Let me explain.
>
> That's what it says the documentation. I understood that the
> instance is created with a private ip, so I start it with just one
> network in it. The private one.
>
> And once it's started and working, I just assign it a public (
> floating ) ip. Horizon let me select the private ip interface.
>
> When I reboot the instance it has two ip added but only one (the
> private one) is used in the instance. So where is the floating ip?
>
> I supposed that it should create a second interface in my external
> bridge. But it's not. So how he hell this floating ip is used?
>
>
> Sencond way I supposed it to work is create an instance with two
> nics. One on the private network, one on the public network. Then
> a floating ip will be assigned to public nic. But this is what it
> fails. And why I wrote the e-mail.
>
> So if you can do both. What's the right way to do it. I suppose
> that both, but what I'm doing wrong?
>
> Best regards,
>
>
>
> El 10/12/13 08:19, 郭龙仓 escribió:
>> well , you cannot assign an external ip to an instance directly
>> without an private ip. you must first assign an private ip to the
>> instance ,then if you wanna an external ip , you can assign an
>> floating ip to it .
>>
>>
>> 2013/12/10 Gonzalo Aguilar Delgado <gaguilar at aguilardelgado.com
>> <mailto:gaguilar at aguilardelgado.com>>
>>
>> Hi,
>>
>> I cannot instanciate any machine with external ip because it
>> tells something failed but don't know reason.
>>
>>
>> I found this error in libvirtd
>>
>> 2013-12-09 18:33:52.032+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c
>> vm-ctx=libvirt-52af41df-5e9e-4470-86ff-ea274e18e08c
>> img-ctx=libvirt-52af41df-5e9e-4470-86ff-ea274e18e08c
>> model=apparmor: Operation not permitted
>> 2013-12-09 18:33:52.032+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c vm-ctx=128:123
>> img-ctx=128:123 model=dac: Operation not permitted
>> 2013-12-09 18:33:52.168+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> resrc=net reason=open vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c
>> net=fa:16:3e:27:7e:e0 path="/dev/net/tun" rdev=0A:C8:
>> Operation not permitted
>> 2013-12-09 18:33:52.700+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> resrc=net reason=open vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c
>> net=fa:16:3e:27:7e:e0 path="/dev/vhost-net" rdev=0A:EE:
>> Operation not permitted
>> 2013-12-09 18:33:52.852+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> resrc=net reason=open vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c
>> net=fa:16:3e:cc:2e:85 path="/dev/net/tun" rdev=0A:C8:
>> Operation not permitted
>> 2013-12-09 18:33:52.900+0000: 3650: error :
>> virNWFilterInstantiate:790 : internal error: Cannot
>> instantiate filter due to unresolvable variables or
>> unavailable list elements: DHCPSERVER
>> 2013-12-09 18:33:53.597+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> resrc=disk reason=start vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c old-disk="?"
>> new-disk="/var/lib/nova/instances/52af41df-5e9e-4470-86ff-ea274e18e08c/disk":
>> Operation not permitted
>> 2013-12-09 18:33:53.598+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> resrc=net reason=start vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c old-net=?
>> new-net=fa:16:3e:27:7e:e0: Operation not permitted
>> 2013-12-09 18:33:53.598+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> resrc=net reason=start vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c old-net=?
>> new-net=fa:16:3e:cc:2e:85: Operation not permitted
>> 2013-12-09 18:33:53.598+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> resrc=mem reason=start vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c old-mem=0
>> new-mem=1572864: Operation not permitted
>> 2013-12-09 18:33:53.598+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> resrc=vcpu reason=start vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c old-vcpu=0
>> new-vcpu=1: Operation not permitted
>> 2013-12-09 18:33:53.598+0000: 3650: warning :
>> virAuditSend:135 : Failed to send audit message virt=kvm
>> op=start reason=booted vm="instance-0000002f"
>> uuid=52af41df-5e9e-4470-86ff-ea274e18e08c vm-pid=-1:
>> Operation not permitted
>>
>>
>> I think cause can be:
>>
>> 2013-12-09 18:33:52.900+0000: 3650: error :
>> virNWFilterInstantiate:790 : internal error: Cannot
>> instantiate filter due to unresolvable variables or
>> unavailable list elements: DHCPSERVER
>>
>> What's this variable?
>>
>>
>> Thank you in advance.
>>
>>
>>
>> _______________________________________________
>> Mailing list:
>> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
>> Post to : openstack at lists.openstack.org
>> <mailto:openstack at lists.openstack.org>
>> Unsubscribe :
>> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
>>
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20131210/18efeb2f/attachment.html>
More information about the Openstack
mailing list