所有compute节点
下载安装组件
# yum install openstack-neutron openstack-neutron-linuxbridge ebtables ipset -y
修改新增内核参数:
vi /etc/sysctl.conf
net.ipv4.conf.default.rp_filter=0
net.ipv4.conf.all.rp_filter=0
net.bridge.bridge-nf-call-iptables=1
net.bridge.bridge-nf-call-ip6tables=1
sysctl -p
提示:sysctl: cannot stat /proc/sys/net/bridge/bridge-nf-call-iptables: 没有那个文件或目录
sysctl: cannot stat /proc/sys/net/bridge/bridge-nf-call-ip6tables: 没有那个文件或目录
解决方法如下:
modprobe bridge
lsmod|grep bridge
sysctl -p
1公有网络配置+私有网络配置-----------------这里我以compute1节点为例,其它节点的配置是相同的,只是IP 和 网卡对应的名称不同而已
配置neutron服务
vi /etc/neutron/neutron.conf
[DEFAULT]
rpc_backend = rabbit
auth_strategy = keystone
verbose = True
[oslo_messaging_rabbit]
rabbit_host=controller
rabbit_userid = openstack
rabbit_password = openstack
rabbit_retry_interval=1
rabbit_retry_backoff=2
rabbit_max_retries=0
rabbit_durable_queues=true
rabbit_ha_queues=true
[keystone_authtoken]
auth_uri = http://controller:5000
auth_url = http://controller:35357
auth_plugin = password
project_domain_id = default
user_domain_id = default
project_name = service
username = neutron
password = neutron
[oslo_concurrency]
lock_path = /var/lib/neutron/tmp
配置Linux bridge服务
vi /etc/neutron/plugins/ml2/linuxbridge_agent.ini
[linux_bridge]
physical_interface_mappings = public:bond0
[vxlan]
enable_vxlan = True
local_ip = 10.40.42.11
l2_population = False
[agent]
prevent_arp_spoofing = True
[securitygroup]
enable_security_group = True
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver
enable_ipset = True
添加neutron服务到nova中-----在11节中我就有提到的那个紫色的提前配置,这里再提一次
vi /etc/nova/nova.conf
[neutron]
url = http://controller:9696
auth_url = http://controller:35357
auth_plugin = password
project_domain_id = default
user_domain_id = default
region_name = RegionOne
project_name = service
username = neutron
password = neutron
重启nova api服务
# systemctl restart openstack-nova-compute.service
开机自启,开启服务
# systemctl enable neutron-linuxbridge-agent.service
# systemctl restart neutron-linuxbridge-agent.service
验证:
在controller上
source admin-openrc.sh
# neutron ext-list
+-----------------------+-----------------------------------------------+
| alias | name |
+-----------------------+-----------------------------------------------+
| dns-integration | DNS Integration |
| ext-gw-mode | Neutron L3 Configurable external gateway mode |
| binding | Port Binding |
| agent | agent |
| subnet_allocation | Subnet Allocation |
| l3_agent_scheduler | L3 Agent Scheduler |
| external-net | Neutron external network |
| flavors | Neutron Service Flavors |
| net-mtu | Network MTU |
| quotas | Quota management support |
| l3-ha | HA Router extension |
| provider | Provider Network |
| multi-provider | Multi Provider Network |
| extraroute | Neutron Extra Route |
| router | Neutron L3 Router |
| extra_dhcp_opt | Neutron Extra DHCP opts |
| security-group | security-group |
| dhcp_agent_scheduler | DHCP Agent Scheduler |
| rbac-policies | RBAC Policies |
| port-security | Port Security |
| allowed-address-pairs | Allowed Address Pairs |
| dvr | Distributed Virtual Router |
+-----------------------+-----------------------------------------------+
# neutron agent-list --显示为true代表正常
+--------------------------------------+--------------------+---------------+-------+----------------+---------------------------+
| id | agent_type | host | alive | admin_state_up | binary |
+--------------------------------------+--------------------+---------------+-------+----------------+---------------------------+
| 1811b84c-6cbc-4d7e-bd48-42d994dab725 | Metadata agent | kxcontroller1 | :-) | True | neutron-metadata-agent |
| 1c8cb6af-3d55-4f43-8667-bea1478c47e7 | Linux bridge agent | kxcompute6 | :-) | True | neutron-linuxbridge-agent |
| 24f4c9c9-07d8-4b5b-acec-52a9e667e78d | Linux bridge agent | kxcompute7 | :-) | True | neutron-linuxbridge-agent |
| 392dc2f7-f1a9-4503-b233-a0c3e158414f | Linux bridge agent | kxcompute9 | :-) | True | neutron-linuxbridge-agent |
| 3db2a560-1854-4415-a193-fea5e8810a74 | L3 agent | kxcontroller2 | :-) | True | neutron-l3-agent |
| 42c75bc2-467c-43a1-8e72-40fb7885e518 | DHCP agent | kxcontroller2 | :-) | True | neutron-dhcp-agent |
| 67f29b57-2337-4b5c-aabd-8e4e539900c5 | L3 agent | kxcontroller1 | :-) | True | neutron-l3-agent |
| 6fb77933-ae56-4114-b984-676ebe338928 | Linux bridge agent | kxcontroller1 | :-) | True | neutron-linuxbridge-agent |
| 77e84a0d-0a37-4187-8514-740742aa7e83 | Linux bridge agent | kxcontroller2 | :-) | True | neutron-linuxbridge-agent |
| 78e8d51b-83f5-497c-b958-a341d24ab1f9 | Linux bridge agent | kxcompute5 | :-) | True | neutron-linuxbridge-agent |
| 8a2d383b-5169-4fbb-8c38-e4f9f3691148 | Linux bridge agent | kxcompute4 | :-) | True | neutron-linuxbridge-agent |
| a0d8191c-383d-4a19-93da-be34ca28cf41 | Linux bridge agent | kxcompute3 | :-) | True | neutron-linuxbridge-agent |
| aca314fa-ffc5-4ced-8a20-311a2c20f272 | DHCP agent | kxcontroller1 | :-) | True | neutron-dhcp-agent |
| c72af482-8a87-4777-ad81-ddcf583a4ad6 | Metadata agent | kxcontroller2 | :-) | True | neutron-metadata-agent |
| c7c80a0b-6011-4d80-a7ab-a47e2c510be2 | Linux bridge agent | kxcompute8 | :-) | True | neutron-linuxbridge-agent |
| dd72cb0c-e6dd-4493-afa4-acbd54d13a45 | Linux bridge agent | kxcompute1 | :-) | True | neutron-linuxbridge-agent |
| f7edb96e-46bf-430c-8de0-7c197574e6a6 | Linux bridge agent | kxcompute2 | :-) | True | neutron-linuxbridge-agent |
+--------------------------------------+--------------------+---------------+-------+----------------+---------------------------+
- openstack私有云布署实践【14.2 登录页dashboard-controller(办公网环境)】
这一小节基本配置相同,但留意以下紫色部份的配置,当初为了管理方便,我们让办公网openstack的dashboard的登录桥接了科兴的dashboard,由此统一dashboard界面的登录地址 ...
- openstack私有云布署实践【9.2 Glance镜像管理(办公网环境)】
首先登录controller1创建glance数据库,并赋于远程和本地访问的权限. mysql -u root -p CREATE DATABASE glance; GRANT ALL ...
- openstack私有云布署实践【4.1 上层代理haproxy配置 (科兴环境)】
官方文档上的高可用配置,它推荐的是使用haproxy的上层代理来实现服务组件的主备访问.或者负载均衡访问 一开始我也是使用haproxy来做的,但后来方式改了 测试环境:haproxy + n ...
- openstack私有云布署实践【9.1 Glance镜像管理(科兴环境)】
首先登录kxcontroller1创建kx_glance数据库,并赋于远程和本地访问的权限. mysql -u root -p CREATE DATABASE kx_glance; GR ...
- openstack私有云布署实践【14.1 登录页dashboard-controller(科兴环境)】
2台kxcontroller安装组件 # yum install openstack-dashboard -y 修改一样的配置 vi /etc/openstack-dashboard/local_ ...
- openstack私有云布署实践【2 安装前的服务器基本环境准备】
服务器物理机都安装centos7.2 1511版本 , 此次采用的分区方式全是自动XFS格式LVM,在装系统时就将所有本地raid5硬盘都加入LVM全用了.默认/home目录有着最大的硬盘空间 并且我 ...
- openstack私有云布署实践【12.2 网络Neutron-controller节点配置(办公网环境)】
网络这一块推荐使用的是 Neutron--LinuxBirdge的Ha高可用,此高可用方案对Public作用不是很大,Public只用到DHCP,而Private则会用到L3 Agent,则此方案是有 ...
- openstack私有云布署实践【12.1 网络Neutron-controller节点配置(科兴环境)】
网络这一块推荐使用的是 Neutron--LinuxBirdge的Ha高可用,此高可用方案对Public作用不是很大,Public只用到DHCP,而Private则会用到L3 Agent,则此方案是有 ...
- openstack私有云布署实践【0 前言】
管理控制层面示图: 其实在修改这个布署文档是,我发现当时生产中的布署已经严重偏离了openstack高可用的指导思想.我们自己实践的高可用其实是适应自己的架构而做的调整,因为我们现实手头上中没有比较符 ...
随机推荐
- 计算字符串中每种字符出现的次数[Dictionary<char,int>泛型集合用法]
有一道经典的面试题: 统计 welcome to china中每个字符出现的次数,不考虑大小写. 第一个出现在脑海里的想法是: 1. 将字字符串转换成 char数组: 2. 用 for循环遍 ...
- [资源]网上常用免费WebServices集合 转载
引用地址:http://www.cocoachina.com/bbs/simple/?t54338_5.html 天气预报Web服务,数据来源于中国气象局 公用事业 http://www.webxml ...
- React入门实例
前言 React 的核心思想是:封装组件,各个组件维护自己的状态和UI,当状态变更,自动重新渲染整个组件. 理解:react首先值得拍手称赞的是它所有的开发都基于一个组件(component),组件和 ...
- 用PopWindow做下拉框
最近在做下拉框,本来想用spinner,可是spinner达不到项目要求,跟同学同事问了一圈,都在用popwindow, 网上看了一下,popwindow挺简单的,可定制性挺强的,符合我的要求,所以, ...
- 前端工具 - 15个最佳的 JavaScript 表单验证库
客户端验证在任何项目都是不够的,因为 JavaScript 可以直接忽略,人们可以提交请求到服务器. 然而这并不意味着客户端验证都没必要了,很多时候我们需要在用户提交到服务器之前给予提示.JavaSc ...
- JQuery动态操作表格
新人,小白一枚,刚刚参加工作,所以会在这里记录一些遇到的问题. 最近要做的东西,是对一个表格动态的添加行,删除行,并且对表格中内容进行非空验证. <!DOCTYPE html> <h ...
- Python map多线程
import os import PIL from multiprocessing import Pool from PIL import Image SIZE = (75,75) SAVE_DIRE ...
- C语言调用lua
在lua API中,调用一个函数的步骤很简单: 1.压入你要调用的函数,使用lua_getglobal. 2.压入调用参数. 3.使用lua_pcall 4.从栈中弹出结果. 举例说明,假设你有这 ...
- [转]Numpy使用MKL库提升计算性能
from:http://unifius.wordpress.com.cn/archives/5 系统:Gentoo Linux (64bit, Kernel 3.7.1)配置:Intel(R) Cor ...
- iOS 消息推送证书生成方法的简单说明
openssl x509 -in idp.flowtreasure.cer -inform der -out PushChatCert.pem openssl pkcs12 -nocerts -out ...
