[Openstack] Neutron: Internet not available in VM instances

kamalakannan sanjeevan chirukamalakannan at gmail.com
Thu Oct 6 05:16:10 UTC 2016 

Hello,

I am not able to connect to internet in teh spawned VM's.


Ethernet card details:

*Eth1 bridged through OVS(mybridge)              - 172.27.10.76*
*Eth3                                                            -
192.168.182.251*

after executing the command

iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE

iptables -t nat -A POSTROUTING -o mybridge -j MASQUERADE

- I see teh connectivity to VM's from my host name  ie 172.27.10.76 also
affected.

root at VFSR1:~# ovs-vsctl show
37f38767-0a2b-45fd-9507-abef7fd2d5c9
    Bridge br-int
        fail_mode: secure
        Port "qr-2ff64ff8-b8"
            tag: 6
            Interface "qr-2ff64ff8-b8"
                type: internal
        Port patch-tun
            Interface patch-tun
                type: patch
                options: {peer=patch-int}
        Port "qvo310233a4-9f"
            tag: 6
            Interface "qvo310233a4-9f"
        Port br-int
            Interface br-int
                type: internal
        Port "tap6bc359b6-f0"
            tag: 6
            Interface "tap6bc359b6-f0"
                type: internal
        Port "qvo703c764e-23"
            tag: 5
            Interface "qvo703c764e-23"
        Port int-mybridge
            Interface int-mybridge
                type: patch
                options: {peer=phy-mybridge}
        Port "qg-333a2d2b-ca"
            tag: 5
            Interface "qg-333a2d2b-ca"
                type: internal









* Bridge mybridge        Port mybridge            Interface
mybridge                type: internal        Port "eth1"
Interface "eth1"        Port phy-mybridge            Interface
phy-mybridge                type: patch                options:
{peer=int-mybridge}*
    Bridge br-tun
        fail_mode: secure
        Port br-tun
            Interface br-tun
                type: internal
        Port patch-int
            Interface patch-int
                type: patch
                options: {peer=patch-tun}
    ovs_version: "2.5.0"


Below is my network and router details

root at VFSR1:~# neutron net-list
+--------------------------------------+---------+-----------------------------------------------------+
| id                                   | name    |
subnets                                             |
+--------------------------------------+---------+-----------------------------------------------------+
| 51739543-b7d1-414b-bec1-9b38c3e5d5d7 | public  |
0db9fa02-27eb-4f38-8693-200719fc1fbf 172.27.10.0/24 |
| bf919707-b1eb-4d8f-90fe-5bcf0e07dce3 | private |
7fddc311-7938-44c4-abd4-e5095adba422 192.168.0.0/24 |
+--------------------------------------+---------+-----------------------------------------------------+
root at VFSR1:~# neutron router-list
+--------------------------------------+--------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| id                                   | name   |
external_gateway_info
| distributed | ha    |
+--------------------------------------+--------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+
| 323a6782-46aa-458e-ad76-f9462d8ad955 | router | {"network_id":
"51739543-b7d1-414b-bec1-9b38c3e5d5d7", "enable_snat": true,
"external_fixed_ips": [{"subnet_id":
"0db9fa02-27eb-4f38-8693-200719fc1fbf", "ip_address": "172.27.10.101"}]} |
False       | False |
+--------------------------------------+--------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------------+-------+

Below are my instances created

root at VFSR1:~# nova list
+--------------------------------------+--------+--------+------------+-------------+------------------------------------+
| ID                                   | Name   | Status | Task State |
Power State | Networks                           |
+--------------------------------------+--------+--------+------------+-------------+------------------------------------+
| b737645b-317e-46be-b06a-f1b94f378d95 | test   | ACTIVE | -          |
Running     | public=172.27.10.100               |
| 378b3776-dddb-4007-823a-8c4e2781dbdd | ubuntu | ACTIVE | -          |
Running     | private=192.168.0.3, 172.27.10.102 |
+--------------------------------------+--------+--------+------------+-------------+---------------------------------

I have internet connectivity using the machine IP 172.27.10.76, but the
internet is not working in teh VM range 172.27.10.100,172,27.10.250.


I have attached the firewall log as well.

Please advise.

Regards
kamal
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20161006/e85f4379/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: firewal
Type: application/octet-stream
Size: 8430 bytes
Desc: not available
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20161006/e85f4379/attachment.obj>

More information about the Openstack mailing list