Dear Dimitri and all,
do you define the static IP for br100 somewhere or not???
Here is what I have:
COMPUTE NODE
------------
# cat /etc/sysconfig/network-scripts/ifcfg-br100
DEVICE="br100"
BOOTPROTO="static"
NM_CONTROLLED="no"
ONBOOT="yes"
TYPE="Bridge"
NAME="System br100"
IPADDR=X.X.X.210
NETMASK=255.255.255.128
GATEWAY=X.X.X.129
IPV4_FAILURE_FATAL="yes"
IPV6INIT="no"
STP="no"
# brctl show
bridge name bridge id STP enabled interfaces
br100 8000.002590365e70 no eth0
vnet0
virbr0 8000.525400b535e0 yes virbr0-nic
# ifconfig
br100 Link encap:Ethernet HWaddr 00:25:90:36:5E:70
inet addr:X.X.X.210 Bcast:X.X.X.255 Mask:255.255.255.128
inet6 addr: fe80::225:90ff:fe36:5e70/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:22423 errors:0 dropped:0 overruns:0 frame:0
TX packets:25143 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:9954532 (9.4 MiB) TX bytes:7563119 (7.2 MiB)
eth0 Link encap:Ethernet HWaddr 00:25:90:36:5E:70
inet6 addr: fe80::225:90ff:fe36:5e70/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:52829 errors:0 dropped:0 overruns:0 frame:0
TX packets:31011 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:13364272 (12.7 MiB) TX bytes:8685313 (8.2 MiB)
Interrupt:16 Memory:fbce0000-fbd00000
eth1 Link encap:Ethernet HWaddr 00:25:90:36:5E:71
inet addr:192.168.0.11 Bcast:192.168.0.255
Mask:255.255.255.0
inet6 addr: fe80::225:90ff:fe36:5e71/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:90957 errors:0 dropped:0 overruns:0 frame:0
TX packets:90884 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:27380732 (26.1 MiB) TX bytes:22160433 (21.1 MiB)
Interrupt:17 Memory:fbde0000-fbe00000
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:187 errors:0 dropped:0 overruns:0 frame:0
TX packets:187 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:28747 (28.0 KiB) TX bytes:28747 (28.0 KiB)
virbr0 Link encap:Ethernet HWaddr 52:54:00:B5:35:E0
inet addr:192.168.122.1 Bcast:192.168.122.255
Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
vnet0 Link encap:Ethernet HWaddr FE:16:3E:D8:FB:75
inet6 addr: fe80::fc16:3eff:fed8:fb75/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:138 errors:0 dropped:0 overruns:0 frame:0
TX packets:488 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:9056 (8.8 KiB) TX bytes:38006 (37.1 KiB)
# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
X.X.X.128 0.0.0.0 255.255.255.128 U 0 0 0
br100
192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0
eth1
192.168.122.0 0.0.0.0 255.255.255.0 U 0 0 0
virbr0
169.254.0.0 0.0.0.0 255.255.0.0 U 1002 0 0
eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 1003 0 0
eth1
169.254.0.0 0.0.0.0 255.255.0.0 U 1008 0 0
br100
0.0.0.0 X.X.X.129 0.0.0.0 UG 0 0 0
br100
CONTROLLER NODE
------------
# nova list
+--------------------------------------+--------+--------+------------+-------------+---------------------+
| ID | Name | Status | Task State |
Power State | Networks |
+--------------------------------------+--------+--------+------------+-------------+---------------------+
| 84bc8a76-6213-4f3c-9ce1-214bc8762dee | cirrOS | ACTIVE | None |
Running | vmnet=X.X.X.210 |
+--------------------------------------+--------+--------+------------+-------------+---------------------+
# ssh cirros@X.X.X.210
ssh: connect to host X.X.X.210 port 22: No route to host
# ping X.X.X.209
PING X.X.X.209 (X.X.X.209) 56(84) bytes of data.
From X.X.X.190 icmp_seq=2 Destination Host Unreachable
From X.X.X.190 icmp_seq=3 Destination Host Unreachable
From X.X.X.190 icmp_seq=4 Destination Host Unreachable
....(etc)
I can ping the X.X.X.210 but that is because the br100 has static IP
X.X.X.210 and if I flush the iptables I can login to the already
available node and NOT at the CirrOS instance that should have the
X.X.X.210 IP.
Any ideas???
Best,
G.
On Wed, 15 Jan 2014 12:29:30 -0600, Dimitri Maziuk wrote:
On 01/15/2014 08:23 AM, Georgios Dimitrakakis wrote:
Hi again...Long day with OpenStack today...
It seems that the problem with the br100 interface has been solved
partially since I can launch an instance but I am not able to ssh
nor
ping the machine (although I have configured the security group
rules).
Here's what I have on a working node with 2 instances running. Ignore
virbr0, it's created by libvirt, vnet0 & 1 are the openstack
instances:
# brctl show
bridge name bridge id STP enabled interfaces
br100 8000.003048c53032 no eth0
vnet0
vnet1
virbr0 8000.52540025455f yes virbr0-nic
# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue state UNKNOWN
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast
state UNKNOWN qlen 1000
link/ether 00:30:48:c5:30:32 brd ff:ff:ff:ff:ff:ff
inet6 fe80::230:48ff:fec5:3032/64 scope link
valid_lft forever preferred_lft forever
3: eth1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN qlen
1000
link/ether 00:30:48:c5:30:33 brd ff:ff:ff:ff:ff:ff
4: br100: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue
state
UNKNOWN
link/ether 00:30:48:c5:30:32 brd ff:ff:ff:ff:ff:ff
inet X.X.X.X/25 brd X.X.X.X scope global br100
inet6 fe80::230:48ff:fec5:3032/64 scope link
valid_lft forever preferred_lft forever
5: virbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue
state UNKNOWN
link/ether 52:54:00:25:45:5f brd ff:ff:ff:ff:ff:ff
inet 192.168.122.1/24 brd 192.168.122.255 scope global virbr0
6: virbr0-nic: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN
qlen 500
link/ether 52:54:00:25:45:5f brd ff:ff:ff:ff:ff:ff
10: vnet0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc
pfifo_fast
state UNKNOWN qlen 500
link/ether fe:16:3e:48:30:5c brd ff:ff:ff:ff:ff:ff
inet6 fe80::fc16:3eff:fe48:305c/64 scope link
valid_lft forever preferred_lft forever
38: vnet1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc
pfifo_fast
state UNKNOWN qlen 500
link/ether fe:16:3e:16:b3:55 brd ff:ff:ff:ff:ff:ff
inet6 fe80::fc16:3eff:fe16:b355/64 scope link
valid_lft forever preferred_lft forever
# lsmod | grep _net
vhost_net 30520 2
macvtap 9980 1 vhost_net
tun 17095 6 vhost_net
("modprobe vhost_net" if you don't have it.)
# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
X.X.X.X 0.0.0.0 255.255.255.128 U 0 0 0
br100
192.168.122.0 0.0.0.0 255.255.255.0 U 0 0 0
virbr0
169.254.0.0 0.0.0.0 255.255.0.0 U 1004 0 0
br100
0.0.0.0 X.X.X.X 0.0.0.0 UG 0 0 0
br100
You should have a route to your nova network in there (I use flat
network so my nova net is X.X.X.X, same as my "real" subnet).
With all that in place try disabling iptables in the instance and
pinging the host. On the host, run tcpdump on vnet0 and br100 to see
if
you get any traffic. I didn't initially, I think modprobe vhost_net
was
what fixed it. (I was poking at & restarting several things at once,
so
I'm not 100% sure exactly which of them did it.)
--
_______________________________________________
Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Post to : openstack@lists.openstack.org
Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
