Openstack neutron 网络服务 (七)
引用: https://docs.openstack.org/ocata/zh_CN/install-guide-rdo/common/get-started-networking.html
neutron 控制端:
# 创建数据库和账号:
mysql -u root -p
CREATE DATABASE neutron;
GRANT ALL PRIVILEGES ON neutron.* TO 'neutron'@'%' IDENTIFIED BY '123456';
flush privileges;
# 控制端
# 获得 admin 凭证来获取只有管理员能执行的命令的访问权限:
source admin.sh
# 创建neutron 用户:
[root@cont-1 ~]# openstack user create --domain default --password-prompt neutron
User Password:
Repeat User Password:
+---------------------+----------------------------------+
| Field | Value |
+---------------------+----------------------------------+
| domain_id | 317ace63cb8f4562af682ca6c7bdf955 |
| enabled | True |
| id | e34c8caecb124b97b70dea07ab009a0c |
| name | neutron |
| options | {} |
| password_expires_at | None |
+---------------------+----------------------------------+
# 添加``admin`` 角色到``neutron`` 用户:
openstack role add --project service --user neutron admin
# 创建``neutron``服务实体:
openstack service create --name neutron --description "OpenStack Networking" network
[root@cont-1 ~]# openstack service create --name neutron --description "OpenStack Networking" network
+-------------+----------------------------------+
| Field | Value |
+-------------+----------------------------------+
| description | OpenStack Networking |
| enabled | True |
| id | 0d175e4553b244c3a12d61fa5c677645 |
| name | neutron |
| type | network |
+-------------+----------------------------------+
# 创建网络服务API端点:
openstack endpoint create --region RegionOne network public http://openstack-linux36-vip.magedu.net:9696
openstack endpoint create --region RegionOne network internal http://openstack-linux36-vip.magedu.net:9696
openstack endpoint create --region RegionOne network admin http://openstack-linux36-vip.magedu.net:9696
[root@cont-1 ~]# openstack endpoint create --region RegionOne network public http://openstack-linux36-vip.magedu.net:9696
network admin http://openstack-linux36-vip.magedu.net:9696
+--------------+----------------------------------------------+
| Field | Value |
+--------------+----------------------------------------------+
| enabled | True |
| id | 2682780c75b44021b6d33fc7b34369f1 |
| interface | public |
| region | RegionOne |
| region_id | RegionOne |
| service_id | 0d175e4553b244c3a12d61fa5c677645 |
| service_name | neutron |
| service_type | network |
| url | http://openstack-linux36-vip.magedu.net:9696 |
+--------------+----------------------------------------------+
[root@cont-1 ~]# openstack endpoint create --region RegionOne network internal http://openstack-linux36-vip.magedu.net:9696
+--------------+----------------------------------------------+
| Field | Value |
+--------------+----------------------------------------------+
| enabled | True |
| id | db1cd6cfe56a4f098a0df038ec1bac1b |
| interface | internal |
| region | RegionOne |
| region_id | RegionOne |
| service_id | 0d175e4553b244c3a12d61fa5c677645 |
| service_name | neutron |
| service_type | network |
| url | http://openstack-linux36-vip.magedu.net:9696 |
+--------------+----------------------------------------------+
[root@cont-1 ~]# openstack endpoint create --region RegionOne network admin http://openstack-linux36-vip.magedu.net:9696
+--------------+----------------------------------------------+
| Field | Value |
+--------------+----------------------------------------------+
| enabled | True |
| id | cd20aa74b3d541c89b8e7909c93d891b |
| interface | admin |
| region | RegionOne |
| region_id | RegionOne |
| service_id | 0d175e4553b244c3a12d61fa5c677645 |
| service_name | neutron |
| service_type | network |
| url | http://openstack-linux36-vip.magedu.net:9696 |
+--------------+----------------------------------------------+
[root@cont-1 ~]# openstack endpoint list
+----------------------------------+-----------+--------------+--------------+---------+-----------+---------------------------------------------------+
| ID | Region | Service Name | Service Type | Enabled | Interface | URL |
+----------------------------------+-----------+--------------+--------------+---------+-----------+---------------------------------------------------+
| 01fcaa8287674f80afc2034f2a019016 | RegionOne | glance | image | True | internal | http://openstack-linux36-vip.magedu.net:9292 |
| 09b6f2906f864125ae2c0c2721beeb4e | RegionOne | nova | compute | True | internal | http://openstack-linux36-vip.magedu.net:8774/v2.1 |
| 14a2b9a8f27a40668e7efab09e422f94 | RegionOne | placement | placement | True | public | http://openstack-linux36-vip.magedu.net:8778 |
| 2682780c75b44021b6d33fc7b34369f1 | RegionOne | neutron | network | True | public | http://openstack-linux36-vip.magedu.net:9696 |
| 2700c899c78f4503961ad21fed01960b | RegionOne | glance | image | True | admin | http://openstack-linux36-vip.magedu.net:9292 |
| 64d7113f699c414bb4ba419f24caf3c6 | RegionOne | nova | compute | True | public | http://openstack-linux36-vip.magedu.net:8774/v2.1 |
| 65605d57632a4c8ba0521b20f28bbcc2 | RegionOne | keystone | identity | True | public | http://openstack-linux36-vip.magedu.net:5000/v3 |
| 77700950759c4dd8a11c5471ce03b34d | RegionOne | placement | placement | True | internal | http://openstack-linux36-vip.magedu.net:8778 |
| 858dee6eafb54902826175be76954094 | RegionOne | keystone | identity | True | admin | http://openstack-linux36-vip.magedu.net:35357/v3 |
| b1c38d9b331043f0a625507514edb824 | RegionOne | glance | image | True | public | http://openstack-linux36-vip.magedu.net:9292 |
| cd20aa74b3d541c89b8e7909c93d891b | RegionOne | neutron | network | True | admin | http://openstack-linux36-vip.magedu.net:9696 |
| db1cd6cfe56a4f098a0df038ec1bac1b | RegionOne | neutron | network | True | internal | http://openstack-linux36-vip.magedu.net:9696 |
| ec3647ea42f347008d7e35b52324d995 | RegionOne | keystone | identity | True | internal | http://openstack-linux36-vip.magedu.net:5000/v3 |
| f231546406754b5797f24e44b588629b | RegionOne | placement | placement | True | admin | http://openstack-linux36-vip.magedu.net:8778 |
| f650c9a98b6a437994b6ba698b30213c | RegionOne | nova | compute | True | admin | http://openstack-linux36-vip.magedu.net:8774/v2.1 |
+----------------------------------+-----------+--------------+--------------+---------+-----------+---------------------------------------------------+
# 网络类型:
1 提供者网络
2
# 网络选项1: 提供者网络(在controller 节点安装和配置网络组件)
1 安装组件:
yum install openstack-neutron openstack-neutron-ml2 openstack-neutron-linuxbridge ebtables
2 配置数据库选项:
编辑``/etc/neutron/neutron.conf`` 文件并完成如下操作,在 [database] 部分,配置数据库访问:
[database]
# ...
connection = mysql+pymysql://neutron:123456@openstack-linux36-vip.magedu.net/neutron
connection = mysql+pymysql://neutron:NEUTRON_DBPASS@controller/neutron
*** 使用你设置的数据库密码替换 NEUTRON_DBPASS 。
3 在``[DEFAULT]``部分,启用ML2插件并禁用其他插件:
core_plugin = ml2
service_plugins =
4 在``[DEFAULT]``部分,配置``RabbitMQ``消息队列访问权限:
transport_url = rabbit://openstack:123456@openstack-linux36-vip.magedu.net
*** 用你在RabbitMQ中为``openstack``选择的密码替换 “RABBIT_PASS”。
5 在 “[DEFAULT]” 和 “[keystone_authtoken]” 部分,配置认证服务访问:
# ...
auth_strategy = keystone
[keystone_authtoken]
# ...
auth_uri = http://openstack-linux36-vip.magedu.net:5000
auth_url = http://openstack-linux36-vip.magedu.net:35357
memcached_servers = openstack-linux36-vip.magedu.net:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = neutron
password = 123456
*** 将 NEUTRON_PASS 替换为你在认证服务中为 neutron 用户选择的密码。
6 在``[DEFAULT]``和``[nova]``部分,配置网络服务来通知计算节点的网络拓扑变化:
[DEFAULT]
# ...
notify_nova_on_port_status_changes = true
notify_nova_on_port_data_changes = true
[nova]
auth_url = http://openstack-linux36-vip.magedu.net:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = nova
password = 123456
*** 使用你在身份认证服务中设置的``nova`` 用户的密码替换``NOVA_PASS``。
7 在 [oslo_concurrency] 部分,配置锁路径:
lock_path = /var/lib/neutron/tmp
############################################################################################
[root@cont-1 ~]# grep -vE "^#|^$" /etc/neutron/neutron.conf
[DEFAULT]
core_plugin = ml2
service_plugins =
transport_url = rabbit://openstack:123456@openstack-linux36-vip.magedu.net
auth_strategy = keystone
notify_nova_on_port_status_changes = true
notify_nova_on_port_data_changes = true
[agent]
[cors.subdomain]
[database]
connection = mysql+pymysql://neutron:123456@openstack-linux36-vip.magedu.net/neutron
[keystone_authtoken]
auth_uri = http://openstack-linux36-vip.magedu.net:5000
auth_url = http://openstack-linux36-vip.magedu.net:35357
memcached_servers = openstack-linux36-vip.magedu.net:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = neutron
password = 123456
[matchmaker_redis]
[nova]
auth_url = http://openstack-linux36-vip.magedu.net:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = nova
password = 123456
[oslo_concurrency]
lock_path = /var/lib/neutron/tmp
[oslo_messaging_amqp]
############################################################################################
# 配置 Modular Layer 2 (ML2) 插件(ML2插件使用Linuxbridge机制来为实例创建layer-2虚拟网络基础设施):
# 编辑``/etc/neutron/plugins/ml2/ml2_conf.ini``文件并完成以下操作:
1 在``[ml2]``部分,启用flat和VLAN网络:
vim /etc/neutron/plugins/ml2/ml2_conf.ini
[ml2]
# ...
type_drivers = flat,vlan
2 在``[ml2]``部分,禁用私有网络(不让用户自行创建私有网络):
[ml2]
# ...
tenant_network_types =
3 在``[ml2]``部分,启用Linuxbridge机制:
[ml2]
# ...
mechanism_drivers = linuxbridge
4 在``[ml2]`` 部分,启用端口安全扩展驱动:
[ml2]
extension_drivers = port_security
5 在``[ml2_type_flat]``部分,配置公共虚拟网络为flat网络:
[ml2_type_flat]
# ...
#flat_networks = provider
flat_networks = bridge
6 在 ``[securitygroup]``部分,启用 ipset 增加安全组的方便性:
[securitygroup]
# ...
enable_ipset = true
############################################################################################
[root@cont-1 ~]# grep -vE "^#|^$" /etc/neutron/plugins/ml2/ml2_conf.ini
[DEFAULT]
[ml2]
type_drivers = flat,vlan
mechanism_drivers = linuxbridge
tenant_network_types =
extension_drivers = port_security
[ml2_type_flat]
flat_networks = linux36 # 命名网络 后面会用到
[ml2_type_geneve]
[ml2_type_gre]
[ml2_type_vlan]
[ml2_type_vxlan]
[securitygroup]
enable_ipset = true
############################################################################################
# Linuxbridge代理为实例建立layer-2虚拟网络并且处理安全组规则。
# 编辑``/etc/neutron/plugins/ml2/linuxbridge_agent.ini``文件并且完成以下操作:
1 在``[linux_bridge]``部分,将公共虚拟网络和公共物理网络接口对应起来:
[linux_bridge]
physical_interface_mappings = linux36:eth0 # 此处第一个是上面 ml2_config.ini -> flat_network = linux36 冒号后面是桥接的网卡名
2 在``[vxlan]``部分,禁止VXLAN覆盖网络:
[vxlan]
enable_vxlan = false
3 在 ``[securitygroup]``部分,启用安全组并配置 Linux 桥接 iptables 防火墙驱动:
[securitygroup]
# ...
enable_security_group = true
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver
[root@cont-1 neutron]# grep -vE '^$|^#' /etc/neutron/plugins/ml2/linuxbridge_agent.ini
[DEFAULT]
[agent]
[linux_bridge]
physical_interface_mappings = linux36:eth0
[securitygroup]
enable_security_group = true
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver
[vxlan]
enable_vxlan = false
############################################################################################
# 编辑``/etc/neutron/dhcp_agent.ini``文件并完成下面的操作:
1 在``[DEFAULT]``部分,配置Linuxbridge驱动接口,DHCP驱动并启用隔离元数据,这样在公共网络上的实例就可以通过网络来访问元数据
vim /etc/neutron/dhcp_agent.ini
[DEFAULT]
interface_driver = linuxbridge
dhcp_driver = neutron.agent.linux.dhcp.Dnsmasq
enable_isolated_metadata = true
##############################至此 提供者网络 (bridge) 配置完成 返回网络配置 继续配置元数据代理#################################################
# 配置元数据代理:
1 编辑``/etc/neutron/metadata_agent.ini``文件并完成以下操作:
[DEFAULT]
# ...
nova_metadata_ip = openstack-linux36-vip.magedu.net # 控制端地址 或者 是控制端的域名
metadata_proxy_shared_secret = 20190620 # 密码自定义 一般选择年月日
# 配置计算服务来使用网络服务:
1 编辑``/etc/nova/nova.conf``文件并完成以下操作:
在``[neutron]``部分,配置访问参数,启用元数据代理并设置密码:
[neutron]
url = http://openstack-linux36-vip.magedu.net:9696
auth_url = http://openstack-linux36-vip.magedu.net:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = 123456
service_metadata_proxy = true
metadata_proxy_shared_secret = 20190620
[DEFAULT]
use_neutron = True
*** 完整/etc/nova/nova.conf 在文章末尾
#########################################################################################################
# 完成安装
1 网络服务初始化脚本需要一个超链接 /etc/neutron/plugin.ini``指向ML2插件配置文件/etc/neutron/plugins/ml2/ml2_conf.ini``。如果超链接不存在,使用下面的命令创建它:
ln -s /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugin.ini
2 同步数据库:
su -s /bin/sh -c "neutron-db-manage --config-file /etc/neutron/neutron.conf \
--config-file /etc/neutron/plugins/ml2/ml2_conf.ini upgrade head" neutron
INFO [alembic.runtime.migration] Running upgrade 7d9d8eeec6ad -> a8b517cff8ab, Add routerport bindings for L3 HA
INFO [alembic.runtime.migration] Running upgrade a8b517cff8ab -> 3b935b28e7a0, migrate to pluggable ipam
INFO [alembic.runtime.migration] Running upgrade 3b935b28e7a0 -> b12a3ef66e62, add standardattr to qos policies
INFO [alembic.runtime.migration] Running upgrade b12a3ef66e62 -> 97c25b0d2353, Add Name and Description to the networksegments table
INFO [alembic.runtime.migration] Running upgrade 97c25b0d2353 -> 2e0d7a8a1586, Add binding index to RouterL3AgentBinding
INFO [alembic.runtime.migration] Running upgrade 2e0d7a8a1586 -> 5c85685d616d, Remove availability ranges.
OK
*** 如果有显示权限问题 请及时修改(参考下面的):
[root@cont-1 ~]# ll -al /etc/neutron/
total 136
drwxr-xr-x 4 root root 181 May 27 18:48 .
drwxr-xr-x. 88 root root 8192 May 26 18:51 ..
drwxr-xr-x 11 root root 260 May 26 18:51 conf.d
-rw-r----- 1 root neutron 9282 May 27 18:25 dhcp_agent.ini
-rw-r----- 1 root neutron 12221 Feb 22 2017 l3_agent.ini
-rw-r----- 1 root neutron 10711 May 27 18:35 metadata_agent.ini
-rw-r----- 1 root neutron 73501 May 27 14:12 neutron.conf
lrwxrwxrwx 1 root root 37 May 27 18:41 plugin.ini -> /etc/neutron/plugins/ml2/ml2_conf.ini
drwxr-xr-x 3 root root 17 May 26 18:51 plugins
-rw-r----- 1 root neutron 10148 Feb 22 2017 policy.json
-rw-r--r-- 1 root root 1195 Feb 22 2017 rootwrap.conf
############################################################################################
3 重启计算API 服务:
systemctl restart openstack-nova-api.service
4 当系统启动时,启动 Networking 服务并配置它启动。
对于两种网络选项:
# systemctl enable neutron-server.service \
neutron-linuxbridge-agent.service neutron-dhcp-agent.service \
neutron-metadata-agent.service
# systemctl restart neutron-server.service \
neutron-linuxbridge-agent.service neutron-dhcp-agent.service \
neutron-metadata-agent.service
安装和配置计算节点
yum install openstack-neutron-linuxbridge ebtables ipset
# 编辑``/etc/neutron/neutron.conf`` 文件并完成如下操作:
# 在``[database]`` 部分,注释所有``connection`` 项,因为计算节点不直接访问数据库。
# 在``[DEFAULT]``部分,配置``RabbitMQ``消息队列访问权限
vim /etc/neutron/neutron.conf
[DEFAULT]
transport_url = rabbit://openstack:123456@openstack-linux36-vip.magedu.net
auth_strategy = keystone
[keystone_authtoken]
# ...
auth_uri = http://openstack-linux36-vip.magedu.net:5000
auth_url = http://openstack-linux36-vip.magedu.net:35357
memcached_servers = openstack-linux36-vip.magedu.net:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = neutron
password = 123456
[oslo_concurrency]
# ...
lock_path = /var/lib/neutron/tmp
#########################################################################
[DEFAULT]
transport_url = rabbit://openstack:123456@openstack-linux36-vip.magedu.net
auth_strategy = keystone
[agent]
[cors]
[cors.subdomain]
[database]
[keystone_authtoken]
auth_uri = http://openstack-linux36-vip.magedu.net:5000
auth_url = http://openstack-linux36-vip.magedu.net:35357
memcached_servers = openstack-linux36-vip.magedu.net:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = neutron
password = 123456
[matchmaker_redis]
[nova]
[oslo_concurrency]
lock_path = /var/lib/neutron/tmp
[oslo_messaging_amqp]
[oslo_messaging_kafka]
[oslo_messaging_notifications]
[oslo_messaging_rabbit]
[oslo_messaging_zmq]
[oslo_middleware]
[oslo_policy]
[qos]
[quotas]
[ssl]
#########################################################################
## 提供者网络 :
vim /etc/neutron/plugins/ml2/linuxbridge_agent.ini
[linux_bridge]
physical_interface_mappings = linux36:eth0
[vxlan]
enable_vxlan = false
[securitygroup]
enable_security_group = true
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver
## 配置计算服务来使用网络服务
# 编辑``/etc/nova/nova.conf``文件并完成下面的操作:
# 在``[neutron]`` 部分,配置访问参数:
vim /etc/nova/nova.conf
[neutron]
url = http://openstack-linux36-vip.magedu.net:9696
auth_url = http://openstack-linux36-vip.magedu.net:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = 123456
### 重启服务:
systemctl restart openstack-nova-compute.service
### 启动Linuxbridge代理并配置它开机自启动:
systemctl enable neutron-linuxbridge-agent.service
systemctl start neutron-linuxbridge-agent.service
# 在HAproxy转发的机器上配置转发:
listen openstack_dashboard_port_9696
bind 0.0.0.0:9696
mode tcp
log global
server 10.10.5.138 10.10.5.138:9696 check inter 3000 fall 2 rise 5
# 重启即可:
/etc/init.d/haproxy restart
验证操作
# 在控制节点上执行这些命令。
# 获得 admin 凭证来获取只有管理员能执行的命令的访问权限:
source admin.sh
openstack extension list --network
# 执行结果:
[root@cont-1 neutron]# openstack extension list --network
+-------------------------------------------------------------+---------------------------+-------------------------------------------------------------------------------------------------+
| Name | Alias | Description |
+-------------------------------------------------------------+---------------------------+-------------------------------------------------------------------------------------------------+
| Default Subnetpools | default-subnetpools | Provides ability to mark and use a subnetpool as the default |
| Availability Zone | availability_zone | The availability zone extension. |
| Network Availability Zone | network_availability_zone | Availability zone support for network. |
| Port Binding | binding | Expose port bindings of a virtual port to external application |
| agent | agent | The agent management extension. |
| Subnet Allocation | subnet_allocation | Enables allocation of subnets from a subnet pool |
| DHCP Agent Scheduler | dhcp_agent_scheduler | Schedule networks among dhcp agents |
| Tag support | tag | Enables to set tag on resources. |
| Neutron external network | external-net | Adds external network attribute to network resource. |
| Neutron Service Flavors | flavors | Flavor specification for Neutron advanced services |
| Network MTU | net-mtu | Provides MTU attribute for a network resource. |
| Network IP Availability | network-ip-availability | Provides IP availability data for each network and subnet. |
| Quota management support | quotas | Expose functions for quotas management per tenant |
| Provider Network | provider | Expose mapping of virtual networks to physical networks |
| Multi Provider Network | multi-provider | Expose mapping of virtual networks to multiple physical networks |
| Address scope | address-scope | Address scopes extension. |
| Subnet service types | subnet-service-types | Provides ability to set the subnet service_types field |
| Resource timestamps | standard-attr-timestamp | Adds created_at and updated_at fields to all Neutron resources that have Neutron standard |
| | | attributes. |
| Neutron Service Type Management | service-type | API for retrieving service providers for Neutron advanced services |
| Tag support for resources: subnet, subnetpool, port, router | tag-ext | Extends tag support to more L2 and L3 resources. |
| Neutron Extra DHCP opts | extra_dhcp_opt | Extra options configuration for DHCP. For example PXE boot options to DHCP clients can be |
| | | specified (e.g. tftp-server, server-ip-address, bootfile-name) |
| Resource revision numbers | standard-attr-revisions | This extension will display the revision number of neutron resources. |
| Pagination support | pagination | Extension that indicates that pagination is enabled. |
| Sorting support | sorting | Extension that indicates that sorting is enabled. |
| security-group | security-group | The security groups extension. |
| RBAC Policies | rbac-policies | Allows creation and modification of policies that control tenant access to resources. |
| standard-attr-description | standard-attr-description | Extension to add descriptions to standard attributes |
| Port Security | port-security | Provides port security |
| Allowed Address Pairs | allowed-address-pairs | Provides allowed address pairs |
| project_id field enabled | project-id | Extension that indicates that project_id field is enabled. |
+-------------------------------------------------------------+---------------------------+-------------------------------------------------------------------------------------------------
## 具体排错:
tail -f -n 100 /var/log/neutro/*
tail -f -n 100 /var/log/nova/*
***可以忽略 warning 但是绝对不能出现 ERROR.
控制端 nova.conf 服务:
[root@cont-1 neutron]# grep -vE "^$|^#" /etc/nova/nova.conf
[DEFAULT]
my_ip = 10.10.5.138
use_neutron = True
firewall_driver = nova.virt.firewall.NoopFirewallDriver
transport_url = rabbit://openstack:123456@openstack-linux36-vip.magedu.net
manager=nova.conductor.manager.ConductorManager
enabled_apis=osapi_compute,metadata
[api]
auth_strategy=keystone
[api_database]
connection = mysql+pymysql://nova:123456@openstack-linux36-vip.magedu.net/nova_api
[barbican]
[cache]
[cells]
[cinder]
[cloudpipe]
[conductor]
[console]
[consoleauth]
[cors]
[cors.subdomain]
[crypto]
[database]
connection = mysql+pymysql://nova:123456@openstack-linux36-vip.magedu.net/nova
[ephemeral_storage_encryption]
[filter_scheduler]
[glance]
api_servers = http://openstack-linux36-vip.magedu.net:9292
[guestfs]
[healthcheck]
[hyperv]
[image_file_url]
[ironic]
[key_manager]
[keystone_authtoken]
auth_uri = http://openstack-linux36-vip.magedu.net:5000
auth_url = http://openstack-linux36-vip.magedu.net:35357
memcached_servers = openstack-linux36-vip.magedu.net:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = nova
password = 123456
[libvirt]
[matchmaker_redis]
[metrics]
[mks]
[neutron]
url = http://openstack-linux36-vip.magedu.net:9696
auth_url = http://openstack-linux36-vip.magedu.net:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = 123456
service_metadata_proxy = true
metadata_proxy_shared_secret = 20190620
[notifications]
[osapi_v21]
[oslo_concurrency]
lock_path=/var/lib/nova/tmp
[oslo_messaging_amqp]
[oslo_messaging_kafka]
[oslo_messaging_notifications]
[oslo_messaging_rabbit]
[oslo_messaging_zmq]
[oslo_middleware]
[oslo_policy]
[pci]
[placement]
os_region_name = RegionOne
project_domain_name = Default
project_name = service
auth_type = password
user_domain_name = Default
auth_url = http://openstack-linux36-vip.magedu.net:35357/v3
username = placement
password = 123456
[placement_database]
[quota]
[rdp]
[remote_debug]
[scheduler]
[serial_console]
[service_user]
[spice]
[ssl]
[trusted_computing]
[upgrade_levels]
[vendordata_dynamic_auth]
[vmware]
[vnc]
[vnc]
enabled = true
vncserver_listen = $my_ip
vncserver_proxyclient_address = $my_ip
[workarounds]
[wsgi]
[xenserver]
[xvp]
计算节点nova.conf:
grep -vE "^$|^#" /etc/nova/nova.conf
[DEFAULT]
enabled_apis = osapi_compute,metadata
transport_url = rabbit://openstack:123456@openstack-linux36-vip.magedu.net
use_neutron = True
firewall_driver = nova.virt.firewall.NoopFirewallDriver
[api]
auth_strategy = keystone
[api_database]
[barbican]
[cache]
[cells]
[cinder]
[cloudpipe]
[conductor]
[console]
[consoleauth]
[cors]
[cors.subdomain]
[crypto]
[database]
[ephemeral_storage_encryption]
[filter_scheduler]
[glance]
api_servers = http://openstack-linux36-vip.magedu.net:9292
[guestfs]
[healthcheck]
[hyperv]
[image_file_url]
[ironic]
[key_manager]
[keystone_authtoken]
auth_uri = http://openstack-linux36-vip.magedu.net:5000
auth_url = http://openstack-linux36-vip.magedu.net:35357
memcached_servers = openstack-linux36-vip.magedu.net:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = nova
password = 123456
[libvirt]
virt_type=qemu
[matchmaker_redis]
[metrics]
[mks]
[neutron]
url = http://openstack-linux36-vip.magedu.net:9696
auth_url = http://openstack-linux36-vip.magedu.net:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = 123456
[notifications]
[osapi_v21]
[oslo_concurrency]
lock_path=/var/lib/nova/tmp
[oslo_messaging_amqp]
[oslo_messaging_kafka]
[oslo_messaging_notifications]
[oslo_messaging_rabbit]
[oslo_messaging_zmq]
[oslo_middleware]
[oslo_policy]
[pci]
[placement]
os_region_name = RegionOne
project_domain_name = Default
project_name = service
auth_type = password
user_domain_name = Default
auth_url = http://openstack-linux36-vip.magedu.net:35357/v3
username = placement
password = 123456
[placement_database]
[quota]
[rdp]
[remote_debug]
[scheduler]
[serial_console]
[service_user]
[spice]
[ssl]
[trusted_computing]
[upgrade_levels]
[vendordata_dynamic_auth]
[vmware]
[vnc]
enabled = True
vncserver_listen = 0.0.0.0
vncserver_proxyclient_address = 10.10.5.135
novncproxy_base_url = http://openstack-linux36-vip.magedu.net:6080/vnc_auto.html
[workarounds]
[wsgi]
[xenserver]
[xvp]
Openstack neutron 网络服务 (七)的更多相关文章
- OpenStack (neutron 网络服务)
neutron介绍 提供 OpenStack 虚拟网络服务,也是 OpenStack 重要的核心模块之一,该模块最开始是 Nova 的一部分,叫 nova-network,后来从 Nova 中分离出来 ...
- openstack——neutron网络服务
一.neutron 介绍: Neutron 概述 传统的网络管理方式很大程度上依赖于管理员手工配置和维护各种网络硬件设备:而云环境下的网络已经变得非常复杂,特别是在多租户场景里,用户随时都可能需要 ...
- OpenStack Train版-7.neutron网络服务概述
网络服务NEUTRON概述 一.NEUTRON架构 OpenStack的网络服务neutron是整个OpenStack中最复杂的一个部分,它的基本架构是一个中心服务(neutron-server)外加 ...
- openstack第四章:neutron— 网络服务
第四篇neutron— 网络服务 一.neutron 介绍: Neutron 概述 传统的网络管理方式很大程度上依赖于管理员手工配置和维护各种网络硬件设备:而云环境下的网络已经变得非常复杂,特别是 ...
- CentOS7安装OpenStack(Rocky版)-06.安装Neutron网络服务(控制节点)
上一章介绍了独立的nova计算节点的安装方法,本章分享openstack的网络服务neutron的安装配制方法 ------------------- 完美的分割线 ----------------- ...
- openstack (5)-- 部署 Neutron 网络服务
Neutron 概念: 传统的网络管理方式很大程度上依赖于管理员手工配置和维护各种网络硬件设备:而云环境下的网络已经变得非常复杂,特别是在多租户场景里,用户随时都可能需要创建.修改和删除网络,网络的连 ...
- OpenStack核心组件-neutron网络服务
1. neutron 介绍 1.1 Neutron 概述 传统的网络管理方式很大程度上依赖于管理员手工配置和维护各种网络硬件设备:而云环境下的网络已经变得非常复杂,特别是在多租户场景里,用户随时都可能 ...
- openstack核心组件——neutron网络服务 抓取ip(9)
云计算openstack核心组件——neutron网络服务(9) 一.虚拟机获取 ip: 用 namspace 隔离 DHCP 服务 Neutron 通过 dnsmasq 提供 DHCP 服务 ...
- openstack核心组件——neutron网络服务(8)
云计算openstack核心组件——neutron网络服务(8) 一.neutron 介绍: Neutron 概述 传统的网络管理方式很大程度上依赖于管理员手工配置和维护各种网络硬件设备:而云 ...
随机推荐
- SQL注入 (一)
一.手工注入 注入点检测 识别方法:通过在url栏输入'.and 1=1.or 1=1.and sleep(1),如果出现报错,或者页面不一致,则可能存在注入点. 注入类型:整数型.字符型.搜索型.B ...
- 20201204-3 opp编程好处
面向对象编程(Object-Oriented Programming )介绍 对于编程语言的初学者来讲, OOP不是一个很容易理解的编程方式,大家虽然都按老师讲的都知道0OP的三大特性是 继承.封装. ...
- OkHttpClient调优案例
OkHttpClient调优案例 作者:Grey 原文地址: 语雀 博客园 Github 实际案例 系统运行一段时间后,线程数量飙升,CPU持续居高不下 排查工具 https://fastthread ...
- Linux OOM Killer造成数据库访问异常排查
服务器上的服务器访问异常,查看/va/log/messages发现如下: Sep 22 16:08:21 safeserver kernel: java invoked oom-killer: gfp ...
- C# Wpf 后台代码设定UIElement的Canvas位置属性值
后台in-code设定元件UIElement的Canvas位置属性的两种方法: 1.UIElement.SetValue()方法 uiElement.SetValue(Canvas.TopProper ...
- 简单的冒泡排序算法(java)
package lianxi; public class BubbleSort { public static void main(String[] args) { int[] array = {12 ...
- Redis 6.0 多线程性能测试结果及分析
单线程的Redis一向以简洁高效著称,但也有其阿喀琉斯之踵:阻塞!单个线程在最容易产生瓶颈的网络读写(Redis大key)请求完成之前,其他所有请求都将会被阻塞,严重影响其效率,因此Redis的多 ...
- winform 跨线程 调用控件
public delegate void rtbCallBack(string txt); public void rtbAddText(string txt) { if (this.rtb.Invo ...
- 1.Redis基础命令
重要概念 redis是单线程模型,所有命令都会进入一个队列,然后依次被执行. 全局命令 >>>select dbindex #切换数据库,默认有16个库,库标识符为0-15 > ...
- 如何利用Typora编写博客,快速发布到多平台?
在不同的平台发布同样的文章,最让人头疼的就是图片问题,如果要手动一个个去重新上传,耗时耗力,还容易搞错.下面分享的方法,可以将Typora编写的文章快速发布到CSDN.微信公众号.博客园.简书等平台. ...