diff --git a/doc/training-guides/basic-install-guide/lab_control-node.xml b/doc/training-guides/basic-install-guide/lab_control-node.xml index 36f90c2e..16187535 100644 --- a/doc/training-guides/basic-install-guide/lab_control-node.xml +++ b/doc/training-guides/basic-install-guide/lab_control-node.xml @@ -402,6 +402,8 @@ neutron_admin_auth_url = http://10.10.10.51:35357/v2.0 linuxnet_interface_driver = nova.network.linux_net.LinuxOVSInterfaceDriver firewall_driver = nova.virt.firewall.NoopFirewallDriver security_group_api = neutron +service_neutron_metadata_proxy = true +neutron_metadata_proxy_shared_secret = OpenStackTraining [keystone_authtoken] auth_uri = http://10.10.10.51:5000 diff --git a/doc/training-guides/basic-install-guide/lab_network-node.xml b/doc/training-guides/basic-install-guide/lab_network-node.xml index 55d6a3a9..bd494d35 100644 --- a/doc/training-guides/basic-install-guide/lab_network-node.xml +++ b/doc/training-guides/basic-install-guide/lab_network-node.xml @@ -1,10 +1,13 @@ - + Network Node - Network Diagram : + Network Diagram:
@@ -20,52 +23,143 @@ xlink:href="https://docs.google.com/drawings/d/1GX3FXmkz3c_tUDpZXUVMpyIxicWuHs5fNsHvYNjwNNk/edit?usp=sharing" >https://docs.google.com/drawings/d/1GX3FXmkz3c_tUDpZXUVMpyIxicWuHs5fNsHvYNjwNNk/edit?usp=sharing Vboxnet0, Vboxnet1, - Vboxnet2 - are virtual networks setup up by virtual box with - your host machine. This is the way your host can communicate with the virtual machines. These - networks are in turn used by virtual box VM’s for OpenStack networks, so that OpenStack’s + Vboxnet2 - are virtual networks setup up by VirtualBox with + your host machine. This is the way the host can communicate with the virtual machine instances. These + networks are in turn used by VirtualBox VM’s for OpenStack networks, so that OpenStack’s services can communicate with each other. - Network Node - Start your Controller Node the one you setup in previous section. - Preparing Ubuntu 12.04 + Network node + Start the controller node which was set up in a previous section. + + On reboot the VirtualBox VM may lose internet and network + connectivity. Restart the networking service and use the + ping command to verify the network + connectivity for the given VM. + + + Take regular snapshots of the VirtualBox virtual machines after + each section. In case the VM is broken, you may revert back to the + snapshot to save time and effort. + + Controller node + + Start the controller node which was set up in a previous section. + + Preparing Ubuntu 14.04 + Networking : + Configure your network by editing the + /etc/network/interfaces file - After you install Ubuntu Server, go in sudo mode + Open /etc/network/interfaces and edit the + file as mentioned: + +# This file is for the OpenStack network node for OpenStack training project. +# Note: Selection of the IP addresses is important. +# Any changes to the IP addresses may break OpenStack related services. + +# The loopback network interface +auto lo +iface lo inet loopback + +# The primary network interface - VirtualBox NAT connection +# (VirtualBox Network Adapter 1) +auto eth0 +iface eth0 inet dhcp + +# VirtualBox vboxnet0 - OpenStack management network +# (VirtualBox Network Adapter 2) +auto eth1 +iface eth1 inet static +address 10.10.10.52 +netmask 255.255.255.0 + +# VirtualBox vboxnet2 - OpenStack VM data/communication network +# (VirtualBox Network Adapter 3) +auto eth2 +iface eth2 inet static +address 10.20.20.52 +netmask 255.255.255.0 + +# VirtualBox vboxnet3 - For exposing external network +# (VirtualBox Network Adapter 4) +auto eth3 +iface eth3 inet static +address 192.168.100.52 +netmask 255.255.255.0 + + + + After saving the interfaces file, restart the networking + service: + # service networking restart + # ifconfig + + + The expected network interface should match with the required IP + addresses as configured above. + + + SSH from host + + + Create an SSH key pair for the controller node. + + + To SSH into the network node from the host machine, type the + command mentioned below. + $ ssh network@10.10.10.51 + $ sudo su + + + Preparing Ubuntu 14.04 + + + After installing Ubuntu Server, ssh into the VM and change to the root user $ sudo su - + Add Icehouse repositories: - # apt-get install ubuntu-cloud-keyring python-software-properties software-properties-common python-keyring - # echo deb http://ubuntu-cloud.archive.canonical.com/ubuntu precise-updates/icehouse main >> /etc/apt/sources.list.d/icehouse.list + #apt-get install ubuntu-cloud-keyring python-software-properties software-properties-common python-keyring + #add-apt-repository cloud-archive:icehouse Update your system: - # apt-get update - # apt-get upgrade - # apt-get dist-upgrade + #apt-get update + #apt-get upgrade + #apt-get dist-upgrade - Install NTP and other services: - - # apt-get install ntp vlan bridge-utils - + Restart the machine for the changes to apply + # reboot - Configure NTP Server to Controller Node: - + Install vlan and bridge-utils packages: + # apt-get install vlan bridge-utils + + + Install NTP: + + # apt-get install ntp + + + + Configure NTP server to controller node: + # sed -i 's/server 0.ubuntu.pool.ntp.org/#server0.ubuntu.pool.ntp.org/g' /etc/ntp.conf # sed -i 's/server 1.ubuntu.pool.ntp.org/#server1.ubuntu.pool.ntp.org/g' /etc/ntp.conf # sed -i 's/server 2.ubuntu.pool.ntp.org/#server2.ubuntu.pool.ntp.org/g' /etc/ntp.conf # sed -i 's/server 3.ubuntu.pool.ntp.org/#server3.ubuntu.pool.ntp.org/g' /etc/ntp.conf - - - - Enable IP Forwarding by adding the following to /etc/sysctl.conf: + # sed -i 's/server ntp.ubuntu.com/server 10.10.10.51/g'/etc/ntp.conf + + + + Enable IP forwarding by adding the following to /etc/sysctl.conf: net.ipv4.ip_forward=1 net.ipv4.conf.all.rp_filter=0 @@ -81,11 +175,11 @@ net.ipv4.conf.default.rp_filter=0 # sysctl -p - - Open vSwitch - + +Open vSwitch + - Install Open vSwitch Packages: + Install Open vSwitch packages: # apt-get install -y openvswitch-switch openvswitch-datapath-dkms @@ -97,137 +191,89 @@ net.ipv4.conf.default.rp_filter=0 # ovs-vsctl add-br br-ex - + Neutron - + Neutron: - # apt-get install neutron-server neutron-dhcp-agent neutron-plugin-openvswitch-agent neutron-l3-agent + # apt-get install neutron-plugin-ml2 neutron-plugin-openvswitch-agent openvswitch-datapath-dkms \ + neutron-l3-agent neutron-dhcp-agent - - - Edit /etc/neutron/api-paste.ini: - - [filter:authtoken] -paste.filter_factory = keystoneclient.middleware.auth_token:filter_factory -auth_host = 10.10.10.51 -auth_port = 35357 -auth_protocol = http -admin_tenant_name = service -admin_user = neutron -admin_password = service_pass - - - - Edit - /etc/neutron/plugins/openvswitch/ovs_neutron_plugin.ini: - - #Under the database section -[DATABASE] -connection = mysql://neutronUser:neutronPass@10.10.10.51/neutron -#Under the OVS section -[OVS] -tenant_network_type = gre -tunnel_id_ranges = 1:1000 -integration_bridge = br-int -tunnel_bridge = br-tun -local_ip = 10.10.10.51 -enable_tunneling = True -tunnel_type = gre -[agent] -tunnel_types = gre -#Firewall driver for realizing quantum security group function -[SECURITYGROUP] -firewall_driver = -neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver - - - - Edit /etc/neutron/metadata_agent.ini: - - # The Neutron user information for accessing the Neutron API. -auth_url = http://10.10.10.51:35357/v2.0 -auth_region = RegionOne -admin_tenant_name = service -admin_user = neutron -admin_password = service_pass -# IP address used by Nova metadata server -nova_metadata_ip = 10.10.10.51 -# TCP Port used by Nova metadata server -nova_metadata_port = 8775 -metadata_proxy_shared_secret = helloOpenStack - - - - Edit /etc/neutron/dhcp_agent.ini: - - interface_driver = neutron.agent.linux.interface.OVSInterfaceDriver - - - - Edit /etc/neutron/l3_agent.ini: - - [DEFAULT] -interface_driver = neutron.agent.linux.interface.OVSInterfaceDriver -external_network_bridge = br-ex - - - - Edit /etc/neutron/neutron.conf: - - rabbit_host = 10.10.10.51 -#And update the keystone_authtoken section -[keystone_authtoken] -auth_host = 10.10.10.51 -auth_port = 35357 -auth_protocol = http -admin_tenant_name = service -admin_user = neutron -admin_password = service_pass -signing_dir = /var/lib/neutron/keystone-signing -[database] -connection = mysql://neutronUser:neutronPass@10.10.10.51/neutron - - - - Edit /etc/sudoers.d/neutron_sudoers:: - - #Modify the neutron user -neutron ALL=NOPASSWD: ALL - - - - Restart Services: - - # for i in neutron-dhcp-agent neutron-metadata-agent neutron- -plugin-agent neutron-l3-agent neutron-server; do service $i -restart; done - - - - Edit Network Interfaces file /etc/network/interfaces: - - auto eth2 -iface eth2 inet manual -up ifconfig $IFACE 0.0.0.0 up -up ip link set $IFACE promisc on -down ip link set $IFACE promisc off -down ifconfig $IFACE down + + + Edit /etc/neutron/neutron.conf + [DEFAULT] +auth_strategy = keystone +rpc_backend = neutron.openstack.common.rpc.impl_kombu +rabbit_host = 10.10.10.51 +core_plugin = ml2 +service_plugins = router +allow_overlapping_ips = True -auto br-ex -iface br-ex inet static -address 192.168.100.52 -netmask 255.255.255.0 -gateway 192.168.100.1 -dns-nameservers 8.8.8.8 - - - - Update your system: - - # ovs-vsctl add-port br-ex eth2 - - +[keystone_authtoken] +auth_uri = http://10.10.10.51:5000 +auth_host = 10.10.10.51 +auth_protocol = http +auth_port = 35357 +admin_tenant_name = service +admin_user = neutron +admin_password = service_pass + + + Edit /etc/neutron/l3_agent.ini + [DEFAULT] +interface_driver = neutron.agent.linux.interface.OVSInterfaceDriver +use_namespaces = True + + + Edit /etc/neutron/metadata_agent.ini + [DEFAULT] +auth_url = http://10.10.10.51:5000/v2.0 +auth_region = regionOne +admin_tenant_name = service +admin_user = neutron +admin_password = service_pass +nova_metadata_ip = 10.10.10.51 +metadata_proxy_shared_secret = OpenStackTraining + + + Configure ML2 Plugin by editing the file /etc/neutron/plugins/ml2/ml2_conf.ini + [ml2] +type_drivers = gre +tenant_network_types = gre +mechanism_drivers = openvswitch + +[ml2_type_gre] +tunnel_id_ranges = 1:1000 + +[ovs] +local_ip = 10.20.20.52 +tunnel_type = gre +enable_tunneling = True + +[securitygroup] +firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver +enable_security_group = True + + + Restart OVS service + #service openvswitch-switch restart + + + Add the integration bridge + #ovs-vsctl add-br br-int + Add the external bridge + #ovs-vsctl add-br br-ex + Add port to external bridge + #ovs-vsctl add-port br-ex eth3 + + + Restart neutron services + #service neutron-plugin-openvswitch-agent restart + #service neutron-l3-agent restart + #service neutron-dhcp-agent restart + #service neutron-metadata-agent restart +