Why is IPAM important for Neutron?

•No VM connectivity without a valid IP assigned
•Duplicate subnets/IPs in shared or routable space are disastrous
Especially relevant when using provider networks
•Allocation of subnets for large scale deployments can be difficult and time consuming
Especially for Tenants using non-overlapping addresses
Errors in address planning and quota allocation are difficult to reverse
•Users have multiple/heterogeneous environments
Rrack IPs/subnets across multiple clusters
Reclaim IPs/subnets that are no longer in use
 
 

Subnet Allocation 

•What was introduced in Kilo?
̶Subnet Pool - Range of addresses from which subnets may be allocated
-May be exclusive to a tenant or shared
-Enforces a quota for shared pools
-Simplifies centralized management of subnet allocations to tenants
-Example: 10.0.0.0/16 from which smaller subnets (/20, /23, /24, etc.) are allocated
•How does it work?
̶Pools can be managed via the API or neutron client
̶Optionally specify a pool when allocating a subnet
-Leave out the CIDR and just pass a prefix length (or use the default prefix length)
-Specify a CIDR if you want, as long as it fits in the pool without overlap

1. 创建一个subnet pool,一共256个IP,203.0.113.0/24

admin> neutron subnetpool-create --shared --pool-prefix 203.0.113.0/24 \

           --default-prefixlen 26 demo-subnetpool4

Created a new subnetpool:

+-------------------+--------------------------------------+

| Field             | Value                                |

+-------------------+--------------------------------------+

| default_prefixlen | 26                                   |

| default_quota     |                                      |

| id                | 670eb517-4fd3-4dfc-9bed-da2f99f85c7a |

| ip_version        | 4                                    |

| max_prefixlen     | 32                                   |

| min_prefixlen     | 8                                    |

| name              | demo-subnetpool4                     |

| prefixes          | 203.0.113.0/24                       |

| shared            | True                                 |

| tenant_id         | c597484841ff4a8785804c62ba81449b     |

+-------------------+--------------------------------------+
$ neutron subnetpool-list

+---------+------------------+------------------------------------+-------------------+

| id      | name             | prefixes                           | default_prefixlen |

+---------+------------------+------------------------------------+-------------------+

| 670e... | demo-subnetpool4 | [u'203.0.113.0/24']                | 26                |

| 7b69... | demo-subnetpool  | [u'2001:db8:1:2', u'2001:db8:1:2'] | 64                |

+---------+------------------+------------------------------------+-------------------+

2. subnet 32-25=7, 2^7=128个IP, 已经分配出的IP subnet不能再分配了, Subnet pool之外的ip不能分配

$ neutron subnet-create --name demo-subnet1 --ip_version 4 \

      --subnetpool demo-subnetpool4 demo-network1

+-------------------+--------------------------------------+

| Field             | Value                                |

+-------------------+--------------------------------------+

| id                | 6e38b23f-0b27-4e3c-8e69-fd23a3df1935 |

| ip_version        | 4                                    |

| cidr              | 203.0.113.0/26                       |

| name              | demo-subnet1                         |

| network_id        | b5b729d8-31cc-4d2c-8284-72b3291fec02 |

| subnetpool_id     | 670eb517-4fd3-4dfc-9bed-da2f99f85c7a |

| tenant_id         | a8b3054cc1214f18b1186b291525650f     |

+-------------------+--------------------------------------+

3. 再分配一个128个ip的subnet,这时pool的ip分配完了。

4. 再从该pool分配失败,

5. 再从该pool中分配时,自动找到合适的ip段。

增加pool的ip池,只能增大不能减小,而且可以添加其他断的subnet ip。

admin> neutron subnetpool-update --pool-prefix 203.0.113.0/24 \

           --pool-prefix 198.51.100.0/24 demo-subnetpool4

Updated subnetpool: demo-subnetpool4

admin> neutron subnetpool-show demo-subnetpool4

+-------------------+--------------------------------------+

| Field             | Value                                |

+-------------------+--------------------------------------+

| default_prefixlen | 26                                   |

| default_quota     |                                      |

| id                | 670eb517-4fd3-4dfc-9bed-da2f99f85c7a |

| ip_version        | 4                                    |

| max_prefixlen     | 32                                   |

| min_prefixlen     | 8                                    |

| name              | demo-subnetpool4                     |

| prefixes          | 198.51.100.0/24                      |

|                   | 203.0.113.0/24                       |

| shared            | True                                 |

| tenant_id         | c597484841ff4a8785804c62ba81449b     |

+-------------------+--------------------------------------+

http://blog.episodicgenius.com/post/neutron-subnet-pools/

http://www.slideshare.net/carlbaldwin/subnet-pools-and-pluggable-ipam

http://docs.openstack.org/developer/neutron/devref/address_scopes.html

Neutron Address Scopes

则位于subnetpool之上,可以用来控制哪些IP不走NAT出去,而是直接连到外网上的。

创建一个address scopes:

admin> neutron address-scope-create --shared address-scope-ip4 4

Created a new address_scope:

+------------+--------------------------------------+

| Field      | Value                                |

+------------+--------------------------------------+

| id         | 97702525-e145-40c8-8c8f-d415930d12ce |

| ip_version | 4                                    |

| name       | address-scope-ip4                    |

| shared     | True                                 |

+------------+--------------------------------------+

在该address scopes之中创建一个subnetpool:

admin> neutron subnetpool-create --address-scope address-scope-ip4 \

       --shared --pool-prefix 203.0.113.0/21 --default-prefixlen 26 \

       subnet-pool-ip4

Created a new subnetpool:

+-------------------+--------------------------------------+

| Field             | Value                                |

+-------------------+--------------------------------------+

| address_scope_id  | 97702525-e145-40c8-8c8f-d415930d12ce |

| default_prefixlen | 26                                   |

| id                | e2c4f12d-307f-4616-a4df-203a45e6cb7f |

| ip_version        | 4                                    |

| name              | subnet-pool-ip4                      |

| prefixes          | 203.0.112.0/21                       |

| shared            | True                                 |

+-------------------+--------------------------------------+

Subnet Pools and Address Scopes的更多相关文章

  1. subnetting and the subnet mask

    原文:https://www.techopedia.com/6/28587/internet/8-steps-to-understanding-ip-subnetting/5 Step 4 - Sub ...

  2. dhcpsrv:windows系统的优秀开源免费dhcp serve软件

    概述: 官方网站 :http://www.dhcpserver.de/ 写博客时的可免费下载版本  2.52, 或者在cnblogs 本地下载 --========================== ...

  3. 我非要捅穿这 Neutron(三)架构分析与代码实现篇(基于 OpenStack Rocky)

    目录 文章目录 目录 Neutron 的软件架构分析与实现 Neutron Server 启动流程 获取 WSGI Application Core API & Extension API C ...

  4. 云计算管理平台之OpenStack网络服务neutron

    一.简介 neutron的主要作用是在openstack中为启动虚拟机实例提供网络服务,对于neutron来讲,它可以提供两种类型的网络:第一种是provider network,这种网络就是我们常说 ...

  5. OpenStack-Ocata版+CentOS7.6 云平台环境搭建 —7.网络服务Neutron配置

    网络服务Neutron本章节结束如何安装并配置网络服务(neutron)采用:ref:`provider networks <network1>`或:ref:`self-service n ...

  6. CentOS7.4安装部署openstack [Liberty版] (一)

    一.OpenStack简介 OpenStack是一个由NASA(美国国家航空航天局)和Rackspace合作研发并发起的,以Apache许可证授权的自由软件和开放源代码项目. OpenStack是一个 ...

  7. CentOS7安装OpenStack(Rocky版)-06.安装Neutron网络服务(控制节点)

    上一章介绍了独立的nova计算节点的安装方法,本章分享openstack的网络服务neutron的安装配制方法 ------------------- 完美的分割线 ----------------- ...

  8. OpenStack(queens)最小化搭建记录——控制与计算共两个节点

    境: 2台安装了centos7-minimal的主机 ip地址: 10.132.226.103/24 (controller) 10.132.226.104/24 (compute1) 1.配置主机名 ...

  9. OpenStack Network --- introduction部分 阅读笔记

    Basic Networking 1.混杂模式(promiscuous mode):当网卡被配置为混杂模式时,它们会将所有的frame传递给操作系统,即使MAC地址不匹配. 2.交换机(switch) ...

随机推荐

  1. gulp配置,实例演示

    项目完成后的目录 我们所需要的插件为:gulp-minify-css gulp-concat gulp-uglify gulp-rename del 如下图所示,完成后的项目目录结构: 附加,获取pa ...

  2. VMware Mac OS补丁安装

    安装了VMware9.0在新建虚拟系统的时候,没有Appel MAC OS系统的选项,上网查了一下是需要打一个VMware Mac OS补丁就可以了.下面我来演示一下VMware Mac OS补丁怎么 ...

  3. 昂贵的聘礼 - poj 1062 (Dijkstra+枚举)

      Time Limit: 1000MS   Memory Limit: 10000K Total Submissions: 39976   Accepted: 11596 Description 年 ...

  4. ubuntu 16.04中卸载软件。

    今天装了个QQ,结果不会用,折腾了半天终于卸载掉了. dpkg -l | grep qq(查出安装的软件) 使用 sudo dpkg --purge xxx(这里xxx写查出来的软件包名字)

  5. java面试的那些事

    跳槽面临的第一个难关那就是面试吧.面试的好坏直接关乎着你年薪的多少.如何顺利完成面试的那些难题,今天我们就从java中复习一下.看看经常面试的知识点,为什么面试这些知识点, 如果你是初级的或刚毕业的j ...

  6. error items-9022:missing required icon file.the bundle does not contain an app icon for iPhone/iPad Touch of exactly '120x120' pixels,in.pen format for ios versions >= 7.0

    error items-9022:missing required icon file.the bundle does not contain an app icon for iPhone/iPad ...

  7. django定时任务python调度框架APScheduler使用详解

    # coding=utf-8 2 """ 3 Demonstrates how to use the background scheduler to schedule a ...

  8. 记CBS一次动人心魄的数据保卫战

    接触分布式存储已经有一年多的时间了,首次遇到存储侧三份数据都有异常的情况,三份数据异常意味着客户数据的丢失,这个对云存储来讲是致命的打击.为了保证数据的安全,CBS运维和开发的同学进行了持续两天一夜的 ...

  9. iOS UICollection 和UITableview新特性

    很详细优秀的博客: http://www.jianshu.com/p/e97780a24224 iOS10新特性总结 http://blog.csdn.net/yyacheng/article/det ...

  10. rm_invalid_file

    import xlrd import time import sys import os import requests import sqlite3 import threading curPath ...