Why is IPAM important for Neutron?

•No VM connectivity without a valid IP assigned
•Duplicate subnets/IPs in shared or routable space are disastrous
Especially relevant when using provider networks
•Allocation of subnets for large scale deployments can be difficult and time consuming
Especially for Tenants using non-overlapping addresses
Errors in address planning and quota allocation are difficult to reverse
•Users have multiple/heterogeneous environments
Rrack IPs/subnets across multiple clusters
Reclaim IPs/subnets that are no longer in use
 
 

Subnet Allocation 

•What was introduced in Kilo?
̶Subnet Pool - Range of addresses from which subnets may be allocated
-May be exclusive to a tenant or shared
-Enforces a quota for shared pools
-Simplifies centralized management of subnet allocations to tenants
-Example: 10.0.0.0/16 from which smaller subnets (/20, /23, /24, etc.) are allocated
•How does it work?
̶Pools can be managed via the API or neutron client
̶Optionally specify a pool when allocating a subnet
-Leave out the CIDR and just pass a prefix length (or use the default prefix length)
-Specify a CIDR if you want, as long as it fits in the pool without overlap

1. 创建一个subnet pool,一共256个IP,203.0.113.0/24

admin> neutron subnetpool-create --shared --pool-prefix 203.0.113.0/24 \

           --default-prefixlen 26 demo-subnetpool4

Created a new subnetpool:

+-------------------+--------------------------------------+

| Field             | Value                                |

+-------------------+--------------------------------------+

| default_prefixlen | 26                                   |

| default_quota     |                                      |

| id                | 670eb517-4fd3-4dfc-9bed-da2f99f85c7a |

| ip_version        | 4                                    |

| max_prefixlen     | 32                                   |

| min_prefixlen     | 8                                    |

| name              | demo-subnetpool4                     |

| prefixes          | 203.0.113.0/24                       |

| shared            | True                                 |

| tenant_id         | c597484841ff4a8785804c62ba81449b     |

+-------------------+--------------------------------------+
$ neutron subnetpool-list

+---------+------------------+------------------------------------+-------------------+

| id      | name             | prefixes                           | default_prefixlen |

+---------+------------------+------------------------------------+-------------------+

| 670e... | demo-subnetpool4 | [u'203.0.113.0/24']                | 26                |

| 7b69... | demo-subnetpool  | [u'2001:db8:1:2', u'2001:db8:1:2'] | 64                |

+---------+------------------+------------------------------------+-------------------+

2. subnet 32-25=7, 2^7=128个IP, 已经分配出的IP subnet不能再分配了, Subnet pool之外的ip不能分配

$ neutron subnet-create --name demo-subnet1 --ip_version 4 \

      --subnetpool demo-subnetpool4 demo-network1

+-------------------+--------------------------------------+

| Field             | Value                                |

+-------------------+--------------------------------------+

| id                | 6e38b23f-0b27-4e3c-8e69-fd23a3df1935 |

| ip_version        | 4                                    |

| cidr              | 203.0.113.0/26                       |

| name              | demo-subnet1                         |

| network_id        | b5b729d8-31cc-4d2c-8284-72b3291fec02 |

| subnetpool_id     | 670eb517-4fd3-4dfc-9bed-da2f99f85c7a |

| tenant_id         | a8b3054cc1214f18b1186b291525650f     |

+-------------------+--------------------------------------+

3. 再分配一个128个ip的subnet,这时pool的ip分配完了。

4. 再从该pool分配失败,

5. 再从该pool中分配时,自动找到合适的ip段。

增加pool的ip池,只能增大不能减小,而且可以添加其他断的subnet ip。

admin> neutron subnetpool-update --pool-prefix 203.0.113.0/24 \

           --pool-prefix 198.51.100.0/24 demo-subnetpool4

Updated subnetpool: demo-subnetpool4

admin> neutron subnetpool-show demo-subnetpool4

+-------------------+--------------------------------------+

| Field             | Value                                |

+-------------------+--------------------------------------+

| default_prefixlen | 26                                   |

| default_quota     |                                      |

| id                | 670eb517-4fd3-4dfc-9bed-da2f99f85c7a |

| ip_version        | 4                                    |

| max_prefixlen     | 32                                   |

| min_prefixlen     | 8                                    |

| name              | demo-subnetpool4                     |

| prefixes          | 198.51.100.0/24                      |

|                   | 203.0.113.0/24                       |

| shared            | True                                 |

| tenant_id         | c597484841ff4a8785804c62ba81449b     |

+-------------------+--------------------------------------+

http://blog.episodicgenius.com/post/neutron-subnet-pools/

http://www.slideshare.net/carlbaldwin/subnet-pools-and-pluggable-ipam

http://docs.openstack.org/developer/neutron/devref/address_scopes.html

Neutron Address Scopes

则位于subnetpool之上,可以用来控制哪些IP不走NAT出去,而是直接连到外网上的。

创建一个address scopes:

admin> neutron address-scope-create --shared address-scope-ip4 4

Created a new address_scope:

+------------+--------------------------------------+

| Field      | Value                                |

+------------+--------------------------------------+

| id         | 97702525-e145-40c8-8c8f-d415930d12ce |

| ip_version | 4                                    |

| name       | address-scope-ip4                    |

| shared     | True                                 |

+------------+--------------------------------------+

在该address scopes之中创建一个subnetpool:

admin> neutron subnetpool-create --address-scope address-scope-ip4 \

       --shared --pool-prefix 203.0.113.0/21 --default-prefixlen 26 \

       subnet-pool-ip4

Created a new subnetpool:

+-------------------+--------------------------------------+

| Field             | Value                                |

+-------------------+--------------------------------------+

| address_scope_id  | 97702525-e145-40c8-8c8f-d415930d12ce |

| default_prefixlen | 26                                   |

| id                | e2c4f12d-307f-4616-a4df-203a45e6cb7f |

| ip_version        | 4                                    |

| name              | subnet-pool-ip4                      |

| prefixes          | 203.0.112.0/21                       |

| shared            | True                                 |

+-------------------+--------------------------------------+

Subnet Pools and Address Scopes的更多相关文章

  1. subnetting and the subnet mask

    原文:https://www.techopedia.com/6/28587/internet/8-steps-to-understanding-ip-subnetting/5 Step 4 - Sub ...

  2. dhcpsrv:windows系统的优秀开源免费dhcp serve软件

    概述: 官方网站 :http://www.dhcpserver.de/ 写博客时的可免费下载版本  2.52, 或者在cnblogs 本地下载 --========================== ...

  3. 我非要捅穿这 Neutron(三)架构分析与代码实现篇(基于 OpenStack Rocky)

    目录 文章目录 目录 Neutron 的软件架构分析与实现 Neutron Server 启动流程 获取 WSGI Application Core API & Extension API C ...

  4. 云计算管理平台之OpenStack网络服务neutron

    一.简介 neutron的主要作用是在openstack中为启动虚拟机实例提供网络服务,对于neutron来讲,它可以提供两种类型的网络:第一种是provider network,这种网络就是我们常说 ...

  5. OpenStack-Ocata版+CentOS7.6 云平台环境搭建 —7.网络服务Neutron配置

    网络服务Neutron本章节结束如何安装并配置网络服务(neutron)采用:ref:`provider networks <network1>`或:ref:`self-service n ...

  6. CentOS7.4安装部署openstack [Liberty版] (一)

    一.OpenStack简介 OpenStack是一个由NASA(美国国家航空航天局)和Rackspace合作研发并发起的,以Apache许可证授权的自由软件和开放源代码项目. OpenStack是一个 ...

  7. CentOS7安装OpenStack(Rocky版)-06.安装Neutron网络服务(控制节点)

    上一章介绍了独立的nova计算节点的安装方法,本章分享openstack的网络服务neutron的安装配制方法 ------------------- 完美的分割线 ----------------- ...

  8. OpenStack(queens)最小化搭建记录——控制与计算共两个节点

    境: 2台安装了centos7-minimal的主机 ip地址: 10.132.226.103/24 (controller) 10.132.226.104/24 (compute1) 1.配置主机名 ...

  9. OpenStack Network --- introduction部分 阅读笔记

    Basic Networking 1.混杂模式(promiscuous mode):当网卡被配置为混杂模式时,它们会将所有的frame传递给操作系统,即使MAC地址不匹配. 2.交换机(switch) ...

随机推荐

  1. 403/you don't have the permission to access on this server

    Localhost/index.php出现 错误403 you don't have the permission to access on this server 现在已经解决,特将方法与大家分享. ...

  2. Http和Socket 优劣比较 使用场景选择_转

    转自:http://www.cnblogs.com/webwlsong/p/3198712.html 了解HTTP和Socket之前先对网络7层协议有个了解: 7 应用层6 表示层5 会话层 4 传输 ...

  3. 【LeetCode-面试算法经典-Java实现】【118-Pascal&#39;s Triangle(帕斯卡三角形)】

    [118-Pascal's Triangle(帕斯卡三角形(杨辉三角))] [LeetCode-面试算法经典-Java实现][全部题目文件夹索引] 原题 Given numRows, generate ...

  4. Java集合系列之TreeMap源代码分析

    一.概述 TreeMap是基于红黑树实现的.因为TreeMap实现了java.util.sortMap接口,集合中的映射关系是具有一定顺序的,该映射依据其键的自然顺序进行排序或者依据创建映射时提供的C ...

  5. Mysql 复制表数据(表结构相同)

    [1]Mysql 复制表数据(表结构相同) -- 方式一: create table table_name_dest as select * from table_name_src; -- 方式二: ...

  6. python语言特性-------python2.7教程学习【廖雪峰版】(一)

    开始学习廖雪峰的py2.7教程: 2017年6月5日12:54:28 笔记: 廖雪峰python2.7教程1.用任何编程语言来开发程序,都是为了让计算机干活.  2.Python是一种相当高级的语言. ...

  7. LR报错 No buffer space available Try changing the registry value 端口号不够用了

    报错:Action.c(6): Error -27796: Failed to connect to server "10.16.137.8:10035": [10055] No ...

  8. spring bean的scope

    scope用来声明容器中的对象所应该处的限定场景或者说该对象的存活时间,即容器在对象进入其相应的scope之前,生成并装配这些对象,在该对象不再处于这些scope的限定之后,容器通常会销毁这些对象. ...

  9. json:js和jquery中轻量级数据交换格式

    JSON(JavaScript Object Notation) 是一种轻量级的数据交换格式.它基于ECMAScript的一个子集. JSON采用完全独立于语言的文本格式,但是也使用了类似于C语言家族 ...

  10. js打开新窗口: window.open

    var iWidth = 800; var iHeight = 600; var iLeft = (window.screen.width - 10 - iWidth) / 2; //获得窗口的水平位 ...