API tools faq
paste
Advertisement
alvise72

Untitled

alvise72
Feb 8th, 2016
175
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 14.45 KB | None | 0 0
raw download clone embed print report
  1. #yum -y install openstack-neutron openstack-neutron-ml2 openstack-neutron-openvswitch
  2.  
  3. File /etc/sysctl.conf:
  4. #net.ipv4.ip_forward=1
  5. #net.ipv4.conf.all.rp_filter=0
  6. #net.ipv4.conf.default.rp_filter=0
  7.  
  8. #sysctl -p
  9.  
  10. #openstack-config --set /etc/neutron/neutron.conf DEFAULT core_plugin ml2
  11. #openstack-config --set /etc/neutron/neutron.conf DEFAULT service_plugins router
  12. #openstack-config --set /etc/neutron/neutron.conf DEFAULT allow_overlapping_ips True
  13. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 type_drivers flat,vlan,gre,vxlan
  14. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 tenant_network_types gre
  15. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 mechanism_drivers openvswitch
  16. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2_type_flat flat_networks external
  17. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2_type_gre tunnel_id_ranges 1:1000
  18. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup enable_security_group True
  19. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup enable_ipset True
  20. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup firewall_driver neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
  21. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ovs local_ip <IP-DATA_NODO_CONTROLLER>
  22. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ovs bridge_mappings external:br-ex
  23. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini agent tunnel_types gre
  24. #openstack-config --set /etc/neutron/l3_agent.ini DEFAULT interface_driver neutron.agent.linux.interface.OVSInterfaceDriver
  25. #openstack-config --set /etc/neutron/l3_agent.ini DEFAULT external_network_bridge "" # esplicitamente lasciare vuoto
  26. #openstack-config --set /etc/neutron/l3_agent.ini DEFAULT router_delete_namespaces True
  27. #openstack-config --set /etc/neutron/dhcp_agent.ini DEFAULT interface_driver neutron.agent.linux.interface.OVSInterfaceDriver
  28. #openstack-config --set /etc/neutron/dhcp_agent.ini DEFAULT dhcp_driver neutron.agent.linux.dhcp.Dnsmasq
  29. #openstack-config --set /etc/neutron/dhcp_agent.ini DEFAULT dhcp_delete_namespaces True
  30. #openstack-config --set /etc/neutron/dhcp_agent.ini DEFAULT dnsmasq_config_file /etc/neutron/dnsmasq-neutron.conf
  31.  
  32. #cat << EOF > /etc/neutron/dnsmasq-neutron.conf
  33. dhcp-option-force=26,1454
  34. EOF
  35.  
  36. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT auth_uri http://<IP-MGMT_NODO_CONTROLLER>:5000
  37. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357
  38. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT auth_region RegionOne
  39. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT auth_plugin password
  40. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT project_domain_id default
  41. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT user_domain_id default
  42. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT project_name service
  43. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT username neutron
  44. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT password NEUTRON_PASS
  45. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT nova_metadata_ip <IP-MGMT_NODO_CONTROLLER>
  46. #openstack-config --set /etc/neutron/metadata_agent.ini DEFAULT metadata_proxy_shared_secret METADATA_SECRET
  47.  
  48. #openstack-config --set /etc/nova/nova.conf neutron service_metadata_proxy True
  49. #openstack-config --set /etc/nova/nova.conf neutron metadata_proxy_shared_secret METADATA_SECRET
  50.  
  51. #systemctl restart openstack-nova-api.service
  52.  
  53. #firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -p gre -j ACCEPT
  54. #firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT 0 -p gre -j ACCEPT
  55.  
  56. #systemctl restart firewalld
  57.  
  58. #systemctl enable openvswitch.service
  59. #systemctl start openvswitch.service
  60.  
  61.  
  62. #sed -i 's+^GATEWAY+#GATEWAY+' /etc/sysconfig/network-scripts/ifcfg-enp2s0
  63.  
  64. File /etc/sysconfig/network-scripts/ifcfg-br-ex:
  65.  
  66. #cat << EOF > /etc/sysconfig/network-scripts/ifcfg-br-ex
  67. DEVICE=br-ex
  68. DEVICETYPE=ovs
  69. TYPE=OVSBridge
  70. BOOTPROTO=static
  71. IPADDR=<IP-PUBLIC_NODO_CONTROLLER>
  72. NETMASK=255.255.255.0
  73. ONBOOT=yes
  74. EOF
  75.  
  76. File /etc/sysconfig/network-scripts/ifcfg-enp3s0.303:
  77. #cat << EOF > /etc/sysconfig/network-scripts/ifcfg-enp3s0.303
  78. VLAN=yes
  79. DEVICE=enp3s0.303
  80. BOOTPROTO=none
  81. ONBOOT=yes
  82. OVS_BRIDGE=br-ex
  83. TYPE=OVSPort
  84. DEVICETYPE=ovs
  85. EOF
  86.  
  87.  
  88. #ethtool -K enp3s0.303 gro off
  89.  
  90. #cat << EOF > /sbin/ifup-local
  91. #!/bin/bash
  92. case "\$1" in
  93. enp3s0.303)
  94. /sbin/ethtool -K \$1 gro off
  95. ;;
  96. enp3s0.302)
  97. /sbin/ethtool -K \$1 gro off
  98. ;;
  99. esac
  100. exit 0
  101. EOF
  102.  
  103. #chmod +x /sbin/ifup-local
  104.  
  105.  
  106. #cp /usr/lib/systemd/system/neutron-openvswitch-agent.service /usr/lib/systemd/system/neutron-openvswitch-agent.service.orig
  107. #sed -i 's,plugins/openvswitch/ovs_neutron_plugin.ini,plugin.ini,g' /usr/lib/systemd/system/neutron-openvswitch-agent.service
  108. #systemctl enable neutron-openvswitch-agent.service neutron-l3-agent.service neutron-dhcp-agent.service neutron-metadata-agent.service neutron-ovs-cleanup.service
  109. #systemctl start neutron-openvswitch-agent.service neutron-l3-agent.service neutron-dhcp-agent.service neutron-metadata-agent.service
  110.  
  111. #yum -y install https://rdo.fedorapeople.org/openstack-kilo/rdo-release-kilo.rpm
  112. #yum -y install openstack-nova-compute sysfsutils openstack-utils
  113.  
  114. #openstack-config --set /etc/nova/nova.conf DEFAULT rpc_backend rabbit
  115. #openstack-config --set /etc/nova/nova.conf oslo_messaging_rabbit rabbit_host <IP-MGMT_NODO_CONTROLLER>
  116.  
  117. #openstack-config --set /etc/nova/nova.conf DEFAULT auth_strategy keystone
  118. #openstack-config --set /etc/nova/nova.conf keystone_authtoken auth_uri http://<IP-MGMT_NODO_CONTROLLER>:5000
  119. #openstack-config --set /etc/nova/nova.conf keystone_authtoken auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357
  120. #openstack-config --set /etc/nova/nova.conf keystone_authtoken auth_plugin password
  121. #openstack-config --set /etc/nova/nova.conf keystone_authtoken project_domain_id default
  122. #openstack-config --set /etc/nova/nova.conf keystone_authtoken user_domain_id default
  123. #openstack-config --set /etc/nova/nova.conf keystone_authtoken project_name service
  124. #openstack-config --set /etc/nova/nova.conf keystone_authtoken username nova
  125. #openstack-config --set /etc/nova/nova.conf keystone_authtoken password NOVA_PASS
  126.  
  127. #openstack-config --set /etc/nova/nova.conf DEFAULT my_ip <IP-MGMT_NODO_COMPUTE>
  128.  
  129. #openstack-config --set /etc/nova/nova.conf DEFAULT vnc_enabled True
  130. #openstack-config --set /etc/nova/nova.conf DEFAULT vncserver_listen 0.0.0.0
  131. #openstack-config --set /etc/nova/nova.conf DEFAULT vncserver_proxyclient_address <IP-MGMT_NODO_COMPUTE>
  132. #openstack-config --set /etc/nova/nova.conf DEFAULT novncproxy_base_url http://<IP-PUBLIC_NODO_CONTROLLER>:6080/vnc_auto.html
  133.  
  134. #openstack-config --set /etc/nova/nova.conf glance host <IP-MGMT_NODO_CONTROLLER>
  135. #openstack-config --set /etc/nova/nova.conf oslo_concurrency lock_path /var/lib/nova/tmp
  136.  
  137. #openstack-config --set /etc/nova/nova.conf DEFAULT network_api_class nova.network.neutronv2.api.API
  138. #openstack-config --set /etc/nova/nova.conf DEFAULT security_group_api neutron
  139. #openstack-config --set /etc/nova/nova.conf DEFAULT linuxnet_interface_driver nova.network.linux_net.LinuxOVSInterfaceDriver
  140. #openstack-config --set /etc/nova/nova.conf DEFAULT firewall_driver nova.virt.firewall.NoopFirewallDriver
  141.  
  142. #openstack-config --set /etc/nova/nova.conf neutron url http://<IP-MGMT_NODO_CONTROLLER>:9696
  143. #openstack-config --set /etc/nova/nova.conf neutron auth_strategy keystone
  144. #openstack-config --set /etc/nova/nova.conf neutron admin_auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357/v2.0
  145. #openstack-config --set /etc/nova/nova.conf neutron admin_tenant_name service
  146. #openstack-config --set /etc/nova/nova.conf neutron admin_username neutron
  147. #openstack-config --set /etc/nova/nova.conf neutron admin_password NEUTRON_PASS
  148.  
  149. #openstack-config --set /etc/nova/nova.conf libvirt inject_password true
  150. #openstack-config --set /etc/nova/nova.conf libvirt inject_key true
  151.  
  152. #openstack-config --set /etc/nova/nova.conf libvirt inject_partition -1
  153.  
  154. #openstack-config --set /etc/nova/nova.conf DEFAULT instances_path /novaInstances/
  155. #chown nova:nova /novaInstances/
  156.  
  157. #openstack-config --set /etc/nova/nova.conf DEFAULT cpu_allocation_ratio 4.0
  158.  
  159. #systemctl enable libvirtd.service openstack-nova-compute.service
  160. #systemctl start libvirtd.service openstack-nova-compute.service
  161.  
  162. #nova service-list
  163. #+----+------------------+-------------------------------+----------+---------+-------+----------------------------+-----------------+
  164. #| Id | Binary           | Host                          | Zone     | Status  | State | Updated_at                 | Disabled Reason |
  165. #+----+------------------+-------------------------------+----------+---------+-------+----------------------------+-----------------+
  166. #| 1  | nova-consoleauth | cld-corso-19.cloud.pd.infn.it | internal | enabled | up    | 2016-01-18T11:04:36.000000 | -               |
  167. #| 2  | nova-conductor   | cld-corso-19.cloud.pd.infn.it | internal | enabled | up    | 2016-01-18T11:04:35.000000 | -               |
  168. #| 3  | nova-cert        | cld-corso-19.cloud.pd.infn.it | internal | enabled | up    | 2016-01-18T11:04:36.000000 | -               |
  169. #| 4  | nova-scheduler   | cld-corso-19.cloud.pd.infn.it | internal | enabled | up    | 2016-01-18T11:04:36.000000 | -               |
  170. #| 5  | nova-compute     | cld-corso-20.cloud.pd.infn.it | nova     | enabled | up    | 2016-01-18T11:04:44.000000 | -               |
  171. #+----+------------------+-------------------------------+----------+---------+-------+----------------------------+-----------------+
  172.  
  173. #yum -y install openstack-neutron openstack-neutron-ml2 openstack-neutron-openvswitch
  174.  
  175. #cat << EOF >> /etc/sysctl.conf
  176. net.ipv4.conf.all.rp_filter=0
  177. net.ipv4.conf.default.rp_filter=0
  178. net.bridge.bridge-nf-call-iptables=1
  179. net.bridge.bridge-nf-call-ip6tables=1
  180. EOF
  181.  
  182. #sysctl -p
  183.  
  184. #openstack-config --set /etc/neutron/neutron.conf DEFAULT rpc_backend rabbit
  185. #openstack-config --set /etc/neutron/neutron.conf DEFAULT auth_strategy keystone
  186. #openstack-config --set /etc/neutron/neutron.conf DEFAULT core_plugin ml2
  187. #openstack-config --set /etc/neutron/neutron.conf DEFAULT service_plugins router
  188. #openstack-config --set /etc/neutron/neutron.conf DEFAULT allow_overlapping_ips True
  189. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_uri http://<IP-MGMT_NODO_CONTROLLER>:5000
  190. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357
  191. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_plugin password
  192. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken project_domain_id default
  193. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken user_domain_id default
  194. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken project_name service
  195. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken username neutron
  196. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken password NEUTRON_PASS
  197. #openstack-config --set /etc/neutron/neutron.conf oslo_messaging_rabbit rabbit_host <IP-MGMT_NODO_CONTROLLER>
  198. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 type_drivers flat,vlan,gre,vxlan
  199. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 tenant_network_types gre
  200. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 mechanism_drivers openvswitch
  201. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2_type_gre tunnel_id_ranges 1:1000
  202. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup enable_security_group True
  203. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup enable_ipset True
  204. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup firewall_driver neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
  205. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ovs local_ip <IP-DATA_NODO_COMPUTE>
  206. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini agent tunnel_types gre
  207.  
  208. #ln -s /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugin.ini
  209.  
  210. #firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -p gre -j ACCEPT
  211. #firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT 0 -p gre -j ACCEPT
  212. #firewall-cmd --add-port=5900-5999/tcp  # console VNC
  213. #firewall-cmd --permanent --add-port=5900-5999/tcp # console VNC
  214.  
  215. #systemctl restart firewalld
  216.  
  217. #systemctl enable openvswitch.service
  218. #systemctl start openvswitch.service
  219.  
  220. #cp /usr/lib/systemd/system/neutron-openvswitch-agent.service /usr/lib/systemd/system/neutron-openvswitch-agent.service.orig
  221. #sed -i 's,plugins/openvswitch/ovs_neutron_plugin.ini,plugin.ini,g' /usr/lib/systemd/system/neutron-openvswitch-agent.service
  222. #systemctl enable neutron-openvswitch-agent.service
  223. #systemctl start neutron-openvswitch-agent.service
  224.  
  225.  
  226. #neutron agent-list
  227. #+--------------------------------------+--------------------+-------------------------------+-------+----------------+---------------------------+
  228. #| id                                   | agent_type         | host                          | alive | admin_state_up | binary                    |
  229. #+--------------------------------------+--------------------+-------------------------------+-------+----------------+---------------------------+
  230. #| 1b4fabc4-8e66-4fed-8821-c4fdbe4d7c43 | DHCP agent         | cld-corso-17.cloud.pd.infn.it | :-)   | True           | neutron-dhcp-agent        |
  231. #| 69e50862-5472-4c22-b8dc-be37421230dc | Open vSwitch agent | cld-corso-17.cloud.pd.infn.it | :-)   | True           | neutron-openvswitch-agent |
  232. #| 867e6b23-1f83-4537-8246-51d4eb1953a0 | L3 agent           | cld-corso-17.cloud.pd.infn.it | :-)   | True           | neutron-l3-agent          |
  233. #| 8eb33f9a-3b9e-40f8-8521-e1bdfa944b2c | Metadata agent     | cld-corso-17.cloud.pd.infn.it | :-)   | True           | neutron-metadata-agent    |
  234. #| cee4013e-2abd-4f68-9a30-3ea0d41e5047 | Open vSwitch agent | cld-corso-18.cloud.pd.infn.it | :-)   | True           | neutron-openvswitch-agent |
  235. #+--------------------------------------+--------------------+-------------------------------+-------+----------------+---------------------------+
  236.  
  237. #ovs-vsctl show | grep local_ip
  238.                 options: {df_default="true", in_key=flow, local_ip="192.168.61.227", out_key=flow, remote_ip="192.168.61.228"}
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!