Re: [Openstack] Openstack Log Errors monitoring
Hi Ron, If you are using the ELK stack for handling your logs, you have a couple of options, like Watcher or the logstash email plugin. They are discussed in this SO post: https://stackoverflow.com/a/35519256 Greetings, Benjamin On Wed, Apr 11, 2018 at 11:21 PM, ron ramos wrote: > Hi, > > May i know if anyone is using any tool to monitor ERROR on all openstack > logs and send out alerts? > Thank you. > > Regards, > Ron > > ___ > Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/ > openstack > Post to : openstack@lists.openstack.org > Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/ > openstack > > -- *Benjamín Díaz* Cloud Computing Engineer bd...@whitestack.com ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] OpenVSwitch inside Instance no ARP passthrough
Mathias, Just to clarify: Which interface in which VM are you pinging from, and which interface in which VM are you pinging to? Also, if i recall correctly, in Mitaka, besides disabling port security, you had to disable ARP spoofing prevention for a scenario like this to work. In ml2_conf.ini: [AGENT] prevent_arp_spoofing = False I would also sincerely recommend though that you update your dev environment to use the latest version of Openstack (Pike). Greetings, Benjamin On Thu, Feb 1, 2018 at 11:11 AM, Mathias Strufe (DFKI) < mathias.str...@dfki.de> wrote: > Dear Benjamin, Volodymyr, > > good question ;) ... I like to experiment with some kind of "Firewall NFV" > ... but in the first step, I want to build a Router VM between two networks > (and later extend it with some flow rules) ... OpenStack, in my case, is > more a foundation to build a "test environment" for my "own" application > ... please find attached a quick sketch of the current network ... > I did this already before with iptables inside the middle instance ... > worked quite well ... but know I like to achieve the same with OVS ... > I didn't expect that it is so much more difficult ;) ... > > I'm currently checking Volodymyrs answer ... I think first point is now > solved ... I "patched" now OVSbr1 and OVSbr2 inside the VM together (see > OVpatch file)... but I think this is important later when I really like to > ping from VM1 to VM2 ... but in the moment I only ping from VM1 to the > TestNFV ... but the arp requests only reaches ens4 but not OVSbr1 > (according to tcpdump)... > > May it have to do with port security and the (for OpenStack) unknown MAC > address of the OVS bridge? > > Thanks so far ... > > Mathias. > > > > > > On 2018-02-01 14:28, Benjamin Diaz wrote: > >> Dear Mathias, >> >> Could you attach a diagram of your network configuration and of what >> you are trying to achieve? >> Are you trying to install OVS inside a VM? If so, why? >> >> Greetings, >> Benjamin >> >> On Thu, Feb 1, 2018 at 8:30 AM, Volodymyr Litovka >> wrote: >> >> Dear Mathias, >>> >>> if I correctly understand your configuration, you're using bridges >>> inside VM and it configuration looks a bit strange: >>> >>> 1) you use two different bridges (OVSbr1/192.168.120.x and >>> OVSbr2/192.168.110.x) and there is no patch between them so they're >>> separate >>> 2) while ARP requests for address in OVSbr1 arrives from OVSbr2: >>> >>> 18:50:58.080478 ARP, Request who-has 192.168.120.10 tell >>>> >>> 192.168.120.6, length 28 >>> >>>> >>>> but on the OVS bridge nothing arrives ... >>>> >>>> listening on OVSBR2, link-type EN10MB (Ethernet), capture size >>>> 262144 bytes >>>> >>> >>> while these bridges are separate, ARP requests and answers will not >>> be passed between them. >>> >>> Regarding your devstack configuration - unfortunately, I don't have >>> experience with devstack, so don't know, where it stores configs. In >>> Openstack, ml2_conf.ini points to openvswitch in ml2's >>> mechanism_drivers parameter, in my case it looks as the following: >>> >>> [ml2] >>> mechanism_drivers = l2population,openvswitch >>> >>> and rest of openvswitch config described in >>> /etc/neutron/plugins/ml2/openvswitch_agent.ini >>> >>> Second - I see an ambiguity in your br-tun configuration, where >>> patch_int is the same as patch-int without corresponding remote peer >>> config, probably you should check this issue. >>> >>> And third is - note that Mitaka is quite old release and probably >>> you can give a chance for the latest release of devstack? :-) >>> >>> On 1/31/18 10:49 PM, Mathias Strufe (DFKI) wrote: >>> Dear Volodymyr, all, >>> >>> thanks for your fast answer ... >>> but I'm still facing the same problem, still can't ping the >>> instance with configured and up OVS bridge ... may because I'm quite >>> new to OpenStack and OpenVswitch and didn't see the problem ;) >>> >>> My setup is devstack Mitaka in single machine config ... first of >>> all I didn't find there the openvswitch_agent.ini anymore, I >>> remember in previous version it was in the neutron/plugin folder ... >>> >>> Is this config now done in the ml2 config file in the [OVS] >>> section >>> >
Re: [Openstack] OpenVSwitch inside Instance no ARP passthrough
Dear Mathias,
Could you attach a diagram of your network configuration and of what you
are trying to achieve?
Are you trying to install OVS inside a VM? If so, why?
Greetings,
Benjamin
On Thu, Feb 1, 2018 at 8:30 AM, Volodymyr Litovka wrote:
> Dear Mathias,
>
> if I correctly understand your configuration, you're using bridges inside
> VM and it configuration looks a bit strange:
>
> 1) you use two different bridges (OVSbr1/192.168.120.x and
> OVSbr2/192.168.110.x) and there is no patch between them so they're separate
> 2) while ARP requests for address in OVSbr1 arrives from OVSbr2:
>
> > 18:50:58.080478 ARP, Request who-has *192.168.120.10* tell
> 192.168.120.6, length 28
> >
> > but on the OVS bridge nothing arrives ...
> >
> > listening on *OVSbr2*, link-type EN10MB (Ethernet), capture size
> > 262144 bytes
>
> while these bridges are separate, ARP requests and answers will not be
> passed between them.
>
> Regarding your devstack configuration - unfortunately, I don't have
> experience with devstack, so don't know, where it stores configs. In
> Openstack, ml2_conf.ini points to openvswitch in ml2's mechanism_drivers
> parameter, in my case it looks as the following:
>
> [ml2]
> mechanism_drivers = l2population,openvswitch
>
> and rest of openvswitch config described in /etc/neutron/plugins/ml2/
> openvswitch_agent.ini
>
> Second - I see an ambiguity in your br-tun configuration, where patch_int
> is the same as patch-int without corresponding remote peer config, probably
> you should check this issue.
>
> And third is - note that Mitaka is quite old release and probably you can
> give a chance for the latest release of devstack? :-)
>
>
> On 1/31/18 10:49 PM, Mathias Strufe (DFKI) wrote:
>
> Dear Volodymyr, all,
>
> thanks for your fast answer ...
> but I'm still facing the same problem, still can't ping the instance with
> configured and up OVS bridge ... may because I'm quite new to OpenStack and
> OpenVswitch and didn't see the problem ;)
>
> My setup is devstack Mitaka in single machine config ... first of all I
> didn't find there the openvswitch_agent.ini anymore, I remember in previous
> version it was in the neutron/plugin folder ...
> Is this config now done in the ml2 config file in the [OVS] section
>
>
> I'm really wondering ...
> so I can ping between the 2 instances without any problem. But as soon I
> bring up the OVS bridge inside the vm the ARP requests only visible at the
> ens interface but not reaching the OVSbr ...
>
> please find attached two files which may help for troubleshooting. One are
> some network information from inside the Instance that runs the OVS and one
> ovs-vsctl info of the OpenStack Host.
>
> If you need more info/logs please let me know! Thanks for your help!
>
> BR Mathias.
>
>
> On 2018-01-27 22:44, Volodymyr Litovka wrote:
>
> Hi Mathias,
>
> whether you have all corresponding bridges and patches between them
> as described in openvswitch_agent.ini using
>
> integration_bridge
> tunnel_bridge
> int_peer_patch_port
> tun_peer_patch_port
> bridge_mappings
>
> parameters? And make sure, that service "neutron-ovs-cleanup" is in
> use during system boot. You can check these bridges and patches using
> "ovs-vsctl show" command.
>
> On 1/27/18 9:00 PM, Mathias Strufe (DFKI) wrote:
>
> Dear all,
>
> I'm quite new to openstack and like to install openVSwtich inside
> one Instance of our Mitika openstack Lab Enviornment ...
> But it seems that ARP packets got lost between the network
> interface of the instance and the OVS bridge ...
>
> With tcpdump on the interface I see the APR packets ...
>
> tcpdump: verbose output suppressed, use -v or -vv for full protocol
> decode
> listening on ens6, link-type EN10MB (Ethernet), capture size 262144
> bytes
> 18:50:58.080478 ARP, Request who-has 192.168.120.10 tell
> 192.168.120.6, length 28
> 18:50:58.125009 ARP, Request who-has 192.168.120.1 tell
> 192.168.120.6, length 28
> 18:50:59.077315 ARP, Request who-has 192.168.120.10 tell
> 192.168.120.6, length 28
> 18:50:59.121369 ARP, Request who-has 192.168.120.1 tell
> 192.168.120.6, length 28
> 18:51:00.077327 ARP, Request who-has 192.168.120.10 tell
> 192.168.120.6, length 28
> 18:51:00.121343 ARP, Request who-has 192.168.120.1 tell
> 192.168.120.6, length 28
>
> but on the OVS bridge nothing arrives ...
>
> tcpdump: verbose output suppressed, use -v or -vv for full protocol
> decode
> listening on OVSbr2, link-type EN10MB (Ethernet), capture size
> 262144 bytes
>
> I disabled port_security and removed the security group but nothing
> changed
>
>
> +---+---
> +
>
>
> | Field | Value
> |
>
> +---+---
> +
>
>
> | admin_state_up | True
> |
> | allowed_address_pairs |
> |
> | binding:host_id | node11
> |
> | binding:profile | {}
> |
> | binding:vif_details |
Re: [Openstack] Openstack manual setup
Hi Guru, I would recommend you to check the kolla-ansible project. It has native support for all-in-one deployment. https://github.com/openstack/kolla-ansible Greetings, Benjamin On Tue, Jan 30, 2018 at 12:21 PM, Navdeep Uniyal < navdeep.uni...@bristol.ac.uk> wrote: > Hi Guru, > > > > Check this link: https://docs.openstack.org/pike/install/ > > > > Regards, > > Navdeep > > > > *From:* Guru Desai [mailto:guru...@gmail.com] > *Sent:* 30 January 2018 14:58 > *To:* OpenStack Mailing List > *Subject:* [Openstack] Openstack manual setup > > > > Hello, > > > > I plan to setup openstack manually on single server ( preferably PIKE). > Somehow i am not able to find any documentation for the same. Could some > one help with any pointers. > > All the documentation that i find refers to either packstack or devstack > which i dont want to use. > > I would like to setup all the openstack services on single server, either > ubuntu or centOS. > > > > Any pointers would be very helpful.. > > > > Thanks, > > Guru > > ___ > Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/ > openstack > Post to : openstack@lists.openstack.org > Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/ > openstack > > -- *Benjamín Díaz* Cloud Computing Engineer bd...@whitestack.com ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Aodh alarm custom payload
Hi everyone, Does anybody know if there is a way to set a custom payload in an Aodh alarm webhook? If not, is there any plan to implement it in the near future? Greetings, Benjamin -- *Benjamín Díaz* Cloud Computing Engineer bd...@whitestack.com ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Fwd: kolla-ansible Openstack MTU customization
Hey Manuel, Did you tried creating a new network after modifying the .conf files and checking if VMs on that network had the correct MTU? Also, kolla-ansible supports custom service configurations: https://github.com/openstack/kolla-ansible/blob/master/doc/source/admin/advanced-configuration.rst#openstack-service-configuration-in-kolla ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
