六、Openstack网络服务(neutron)下

计算节点上


安装

neutron安装在计算节点的部分(openstack-neutron-linuxbridge )


安装软件包

yum install openstack-neutron-linuxbridge ebtables ipset


修改配置文件 /etc/neutron/neutron.conf

vi /etc/neutron/neutron.conf

[DEFAULT]
rpc_backend = rabbit启用消息队列
auth_strategy = keystone启用keystone认证

配置消息队列

[oslo_messaging_rabbit]
rabbit_host = controller
rabbit_userid = openstack
rabbit_password = 123456

配置认证服务访问
[keystone_authtoken]
auth_uri = http://controller:5000
auth_url = http://controller:35357
memcached_servers = controller:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = neutron
password = 123456

配置锁路径
[oslo_concurrency]
lock_path = /var/lib/neutron/tmp

修改配置文件/etc/neutron/plugins/ml2/linuxbridge_agent.ini

Linuxbridge代理为实例建立layer-2虚拟网络并且处理安全组规则


vi /etc/neutron/plugins/ml2/linuxbridge_agent.ini

将公共虚拟网络和公共物理网络接口对应起来

[linux_bridge]
physical_interface_mappings = provider:eno16777736(本机外网网卡名)

启用VXLAN覆盖网络

[vxlan]
enable_vxlan = True 启用代理VXLAN
local_ip = 192.168.100.20(本机内部网络ip地址)
l2_population = True扩展使用和ML2插件的l2population机制驱动

启用安全组

[securitygroup]
enable_security_group = True
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver配置linuxbridge iptables防火墙驱动程序


修改配置文件/etc/nova/nova.conf 

vi /etc/nova/nova.conf

配置neutron访问参数
[neutron]
url = http://controller:9696
auth_url = http://controller:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = 123456

重启计算服务 

systemctl restart openstack-nova-compute.service

启动Linuxbridge代理并配置它开机自启动 

systemctl enable neutron-linuxbridge-agent.service
systemctl start neutron-linuxbridge-agent.service


验证

列出加载的扩展来验证`neutron-server`进程是否正常启动

[root@controller ~]# neutron ext-list
+---------------------------+-----------------------------------------------+
| alias                     | name                                          |
+---------------------------+-----------------------------------------------+
| default-subnetpools       | Default Subnetpools                           |
| network-ip-availability   | Network IP Availability                       |
| network_availability_zone | Network Availability Zone                     |
| auto-allocated-topology   | Auto Allocated Topology Services              |
| ext-gw-mode               | Neutron L3 Configurable external gateway mode |
| binding                   | Port Binding                                  |
| agent                     | agent                                         |
| subnet_allocation         | Subnet Allocation                             |
| l3_agent_scheduler        | L3 Agent Scheduler                            |
| tag                       | Tag support                                   |
| external-net              | Neutron external network                      |
| net-mtu                   | Network MTU                                   |
| availability_zone         | Availability Zone                             |
| quotas                    | Quota management support                      |
| l3-ha                     | HA Router extension                           |
| provider                  | Provider Network                              |
| multi-provider            | Multi Provider Network                        |
| address-scope             | Address scope                                 |
| extraroute                | Neutron Extra Route                           |
| timestamp_core            | Time Stamp Fields addition for core resources |
| router                    | Neutron L3 Router                             |
| extra_dhcp_opt            | Neutron Extra DHCP opts                       |
| dns-integration           | DNS Integration                               |
| security-group            | security-group                                |
| dhcp_agent_scheduler      | DHCP Agent Scheduler                          |
| router_availability_zone  | Router Availability Zone                      |
| rbac-policies             | RBAC Policies                                 |
| standard-attr-description | standard-attr-description                     |
| port-security             | Port Security                                 |
| allowed-address-pairs     | Allowed Address Pairs                         |
| dvr                       | Distributed Virtual Router                    |
+---------------------------+-----------------------------------------------+

列出代理以验证启动 neutron 代理是否成功

[root@controller ~]# neutron agent-list
+-----------------------+--------------------+------------+-------------------+-------+----------------+--------------------------+
| id                    | agent_type         | host       | availability_zone | alive | admin_state_up | binary                   |
+-----------------------+--------------------+------------+-------------------+-------+----------------+--------------------------+
| 1576ae04-aff3-45af-   | DHCP agent         | controller | nova              | :-)   | True           | neutron-dhcp-agent       |
| 8a5e-d83f84c78555     |                    |            |                   |       |                |                          |
| 2a21a914-d1cb-4b37-a8 | Linux bridge agent | compute    |                   | :-)   | True           | neutron-linuxbridge-     |
| f1-4b295403ac8c       |                    |            |                   |       |                | agent                    |
| 88d5d470-f5d3-41b7-a6 | Metadata agent     | controller |                   | :-)   | True           | neutron-metadata-agent   |
| 00-9d7fdcddc930       |                    |            |                   |       |                |                          |
| db07bd42-504e-4b7c-   | Linux bridge agent | controller |                   | :-)   | True           | neutron-linuxbridge-     |
| b5a6-badbcd0547ef     |                    |            |                   |       |                | agent                    |
| e3606dd1-ed63-4f66    | L3 agent           | controller | nova              | :-)   | True           | neutron-l3-agent         |
| -b3db-fdeafdf5ffa7    |                    |            |                   |       |                |                          |
+-----------------------+--------------------+------------+-------------------+-------+----------------+--------------------------+

全部笑脸为启动成功,如果compute节点down掉了除了可以检查配置文件,还可以查看一下两边节点时间是否同步


# openstack # centos
GitHub 加速计划 / li / linux-dash
10.39 K
1.2 K
下载
A beautiful web dashboard for Linux
最近提交(Master分支:2 个月前 )
186a802e added ecosystem file for PM2 4 年前
5def40a3 Add host customization support for the NodeJS version 4 年前
Logo
GitCode 开源社区

旨在为数千万中国开发者提供一个无缝且高效的云端环境,以支持学习、使用和贡献开源项目。

更多推荐

[转载]在Windows环境下安装GNU Radio

转自:在Windows环境下安装GNURadio_恐弱智_新浪博客GNU Radio是用Python开发的,大部分开源的工程能够在Linux环境下运行良好,而Windows下却运行的很勉强,而且安装配置都很复杂。GNU Radio算是个例外了,不光提供了Windows的二进制安装,还有比较详细的说明。我是Python小白,所以折腾了好久才弄好,特意记录下来,免得以后再装还折腾。GNU Radio的

avatar GitCode 开源社区

centOS 8 使用dnf安装Docker

DNF是什么?CentOS 8使用YUM软件包管理器版本v4.0.4。现在,该版本使用DNF(已删除YUM)。DNF是软件包管理器。它会在Linux发行版上安装,执行更新并删除软件包。使用DNF安装Docker跳过具有损坏依赖性的程序包一个有效的解决方案是使您的CentOS 8系统使用以下--nobest命令安装最符合条件的版本:sudo dnf install docker...

avatar GitCode 开源社区

定时同步数据库表(mysql+linux+crontab)

sync.sh里面的参数需要改变,ip/username/password/database/tablesync.sh#!/bin/sh# Please change the IP and password of the data source db.# Then change the table name.filename=/home/nington/db/$(date +%Y-%m

avatar GitCode 开源社区