所有kxcompute节点
下载安装组件
# yum install openstack-neutron openstack-neutron-linuxbridge ebtables ipset -y
修改新增内核参数:
vi /etc/sysctl.conf
net.ipv4.conf.default.rp_filter=0
net.ipv4.conf.all.rp_filter=0
net.bridge.bridge-nf-call-iptables=1
net.bridge.bridge-nf-call-ip6tables=1
sysctl -p
提示:sysctl: cannot stat /proc/sys/net/bridge/bridge-nf-call-iptables: 没有那个文件或目录
sysctl: cannot stat /proc/sys/net/bridge/bridge-nf-call-ip6tables: 没有那个文件或目录
解决方法如下:
modprobe bridge
lsmod|grep bridge
sysctl -p
1公有网络配置+私有网络配置-----------------这里我以kxcompute1节点为例,其它节点的配置是相同的,只是IP 和 网卡对应的名称不同而已
配置neutron服务
vi /etc/neutron/neutron.conf
[DEFAULT]
rpc_backend = rabbit
auth_strategy = keystone
verbose = True
[oslo_messaging_rabbit]
rabbit_host=kxcontroller
rabbit_userid = openstack
rabbit_password = openstack
[keystone_authtoken]
auth_uri = http://kxcontroller:5000
auth_url = http://kxcontroller:35357
auth_plugin = password
project_domain_id = default
user_domain_id = default
project_name = service
username = neutron
password = neutron
[oslo_concurrency]
lock_path = /var/lib/neutron/tmp
配置Linux bridge服务
vi /etc/neutron/plugins/ml2/linuxbridge_agent.ini
[linux_bridge]
physical_interface_mappings = public:bond0
[vxlan]
enable_vxlan = True
local_ip = 10.120.42.11
l2_population = False
[agent]
prevent_arp_spoofing = True
[securitygroup]
enable_security_group = True
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver
enable_ipset = True
添加neutron服务到nova中-----在11节中我就有提到的那个紫色的提前配置,这里再提一次
vi /etc/nova/nova.conf
[neutron]
url = http://kxcontroller:9696
auth_url = http://kxcontroller:35357
auth_plugin = password
project_domain_id = default
user_domain_id = default
region_name = RegionTwo
project_name = service
username = neutron
password = neutron
重启nova api服务
# systemctl restart openstack-nova-compute.service
开机自启,开启服务
# systemctl enable neutron-linuxbridge-agent.service
# systemctl restart neutron-linuxbridge-agent.service
验证服务:
在controller上
source admin-openrc.sh
# neutron ext-list
+-----------------------+-----------------------------------------------+
| alias | name |
+-----------------------+-----------------------------------------------+
| dns-integration | DNS Integration |
| ext-gw-mode | Neutron L3 Configurable external gateway mode |
| binding | Port Binding |
| agent | agent |
| subnet_allocation | Subnet Allocation |
| l3_agent_scheduler | L3 Agent Scheduler |
| external-net | Neutron external network |
| flavors | Neutron Service Flavors |
| net-mtu | Network MTU |
| quotas | Quota management support |
| l3-ha | HA Router extension |
| provider | Provider Network |
| multi-provider | Multi Provider Network |
| extraroute | Neutron Extra Route |
| router | Neutron L3 Router |
| extra_dhcp_opt | Neutron Extra DHCP opts |
| security-group | security-group |
| dhcp_agent_scheduler | DHCP Agent Scheduler |
| rbac-policies | RBAC Policies |
| port-security | Port Security |
| allowed-address-pairs | Allowed Address Pairs |
| dvr | Distributed Virtual Router |
+-----------------------+-----------------------------------------------+
# neutron agent-list --显示为true则为正常
+--------------------------------------+--------------------+---------------+-------+----------------+---------------------------+
| id | agent_type | host | alive | admin_state_up | binary |
+--------------------------------------+--------------------+---------------+-------+----------------+---------------------------+
| 1811b84c-6cbc-4d7e-bd48-42d994dab725 | Metadata agent | kxcontroller1 | :-) | True | neutron-metadata-agent |
| 1c8cb6af-3d55-4f43-8667-bea1478c47e7 | Linux bridge agent | kxcompute6 | :-) | True | neutron-linuxbridge-agent |
| 24f4c9c9-07d8-4b5b-acec-52a9e667e78d | Linux bridge agent | kxcompute7 | :-) | True | neutron-linuxbridge-agent |
| 392dc2f7-f1a9-4503-b233-a0c3e158414f | Linux bridge agent | kxcompute9 | :-) | True | neutron-linuxbridge-agent |
| 3db2a560-1854-4415-a193-fea5e8810a74 | L3 agent | kxcontroller2 | :-) | True | neutron-l3-agent |
| 42c75bc2-467c-43a1-8e72-40fb7885e518 | DHCP agent | kxcontroller2 | :-) | True | neutron-dhcp-agent |
| 67f29b57-2337-4b5c-aabd-8e4e539900c5 | L3 agent | kxcontroller1 | :-) | True | neutron-l3-agent |
| 6fb77933-ae56-4114-b984-676ebe338928 | Linux bridge agent | kxcontroller1 | :-) | True | neutron-linuxbridge-agent |
| 77e84a0d-0a37-4187-8514-740742aa7e83 | Linux bridge agent | kxcontroller2 | :-) | True | neutron-linuxbridge-agent |
| 78e8d51b-83f5-497c-b958-a341d24ab1f9 | Linux bridge agent | kxcompute5 | :-) | True | neutron-linuxbridge-agent |
| 8a2d383b-5169-4fbb-8c38-e4f9f3691148 | Linux bridge agent | kxcompute4 | :-) | True | neutron-linuxbridge-agent |
| a0d8191c-383d-4a19-93da-be34ca28cf41 | Linux bridge agent | kxcompute3 | :-) | True | neutron-linuxbridge-agent |
| aca314fa-ffc5-4ced-8a20-311a2c20f272 | DHCP agent | kxcontroller1 | :-) | True | neutron-dhcp-agent |
| c72af482-8a87-4777-ad81-ddcf583a4ad6 | Metadata agent | kxcontroller2 | :-) | True | neutron-metadata-agent |
| c7c80a0b-6011-4d80-a7ab-a47e2c510be2 | Linux bridge agent | kxcompute8 | :-) | True | neutron-linuxbridge-agent |
| dd72cb0c-e6dd-4493-afa4-acbd54d13a45 | Linux bridge agent | kxcompute1 | :-) | True | neutron-linuxbridge-agent |
| f7edb96e-46bf-430c-8de0-7c197574e6a6 | Linux bridge agent | kxcompute2 | :-) | True | neutron-linuxbridge-agent |
+--------------------------------------+--------------------+---------------+-------+----------------+---------------------------+
- openstack私有云布署实践【4.1 上层代理haproxy配置 (科兴环境)】
官方文档上的高可用配置,它推荐的是使用haproxy的上层代理来实现服务组件的主备访问.或者负载均衡访问 一开始我也是使用haproxy来做的,但后来方式改了 测试环境:haproxy + n ...
- openstack私有云布署实践【9.1 Glance镜像管理(科兴环境)】
首先登录kxcontroller1创建kx_glance数据库,并赋于远程和本地访问的权限. mysql -u root -p CREATE DATABASE kx_glance; GR ...
- openstack私有云布署实践【14.1 登录页dashboard-controller(科兴环境)】
2台kxcontroller安装组件 # yum install openstack-dashboard -y 修改一样的配置 vi /etc/openstack-dashboard/local_ ...
- openstack私有云布署实践【14.2 登录页dashboard-controller(办公网环境)】
这一小节基本配置相同,但留意以下紫色部份的配置,当初为了管理方便,我们让办公网openstack的dashboard的登录桥接了科兴的dashboard,由此统一dashboard界面的登录地址 ...
- openstack私有云布署实践【9.2 Glance镜像管理(办公网环境)】
首先登录controller1创建glance数据库,并赋于远程和本地访问的权限. mysql -u root -p CREATE DATABASE glance; GRANT ALL ...
- openstack私有云布署实践【2 安装前的服务器基本环境准备】
服务器物理机都安装centos7.2 1511版本 , 此次采用的分区方式全是自动XFS格式LVM,在装系统时就将所有本地raid5硬盘都加入LVM全用了.默认/home目录有着最大的硬盘空间 并且我 ...
- openstack私有云布署实践【13.2 网络Neutron-compute节点配置(办公网环境)】
所有compute节点 下载安装组件 # yum install openstack-neutron openstack-neutron-linuxbridge ebtables ipset -y ...
- openstack私有云布署实践【12.2 网络Neutron-controller节点配置(办公网环境)】
网络这一块推荐使用的是 Neutron--LinuxBirdge的Ha高可用,此高可用方案对Public作用不是很大,Public只用到DHCP,而Private则会用到L3 Agent,则此方案是有 ...
- openstack私有云布署实践【12.1 网络Neutron-controller节点配置(科兴环境)】
网络这一块推荐使用的是 Neutron--LinuxBirdge的Ha高可用,此高可用方案对Public作用不是很大,Public只用到DHCP,而Private则会用到L3 Agent,则此方案是有 ...
- openstack私有云布署实践【0 前言】
管理控制层面示图: 其实在修改这个布署文档是,我发现当时生产中的布署已经严重偏离了openstack高可用的指导思想.我们自己实践的高可用其实是适应自己的架构而做的调整,因为我们现实手头上中没有比较符 ...
随机推荐
- Linux编程之给你的程序开后门
这里说的"后门"并不是教你做坏事,而是让你做好事,搭建自己的调试工具更好地进行调试开发.我们都知道,当程序发生异常错误时,我们需要定位到错误,有时我们还想,我们在不修改程序的前提下 ...
- 快速上手微信小程序-快递100
2007 年 1 月 9 日,乔布斯在旧金山莫斯科尼会展中心发布了首款 iPhone,而在十年后的 1 月 9 日,微信小程序正式上线.张小龙以这样的形式,向乔布斯致敬. 小程序在哪里? 小程序功能模 ...
- 驱动05.lcd设备驱动程序
参考s3c2410fb.c总结出框架 1.代码分析 1.1 入口函数 int __devinit s3c2410fb_init(void) { return platform_driver_regis ...
- Grant简介以及安装
Grant简介以及安装 1. 安装Grunt-cli需要使用npm,全局安装 命令:npm install –g grunt-cli(可能会涉及权限问题) 注意,安装grunt-cli并不等于安 ...
- BHuman文档结构
Chapter 2 : a short introduction how to build the code including the required software and how to ru ...
- iOS 手势识别
首先给大家解释一下为什么要学习手势识别? 如果想监听一个UIView上面的触摸事件,之前的做法是: 自定义一个UIView : 实现UIView的touches方法,在方法里面实现具体功能 透过tou ...
- 自定义报表开发(HTML/XML)
定义报表执行的包或存储过程: --创建包头 CREATE OR REPLACE PACKAGE XXPLM_AARONTEST001 IS PROCEDURE MAIN(errbuf OUT VARC ...
- hibernate内部测试题总结
在Hibernate中,关于脏检查和刷新缓存说法正确的是(ab ). A.当事务提交时,会发生脏检查 B.Session的flush( )方法是刷新缓存的方法 C.在执行Session的commit( ...
- php常量作用
PHP常量的特点是: 1.不能通过外部来传递,也就是不能通过get与post还有cookie等方式来传递赋值,所以可以确定是程序执行过程中定义的,非外界变量.2.定义后不能更改,可以防止被篡改. 基于 ...
- AndroidPullToRefresh拉动效果配置
最近用了 开源的 AndroidPullToRefresh 库,但是发现拉动时的效果有个很奇怪的地方,无论上下拉动,当列表滚动到顶部或底部时,会瞬间弹出半个列表高度的拉动提示,感觉很不舒服,这种提示根 ...
