Re: [Openstack] Way to see VMs under all tenants by non-admin?
On 2018-11-26 10:30, Mohammed Naser wrote: > Hi Ken: > > https://github.com/openstack/nova/blob/juno-eol/nova/api/openstack/compute/servers.py#L588-L590 OK, I feel kinda dumb, but I never realized I could go and search for policy.json policy in the pertinent Python files. That's awesome! Doesn't exactly help me now, but will certainly come in handy in the future. Thanks, -Ken > Good luck (with your upgrades ;)) > > Mohammed > > On Mon, Nov 26, 2018 at 9:39 AM Ken D'Ambrosio wrote: > >> Hey, all. I've had a request for a non-admin user to see all the VMs >> currently running, irrespective of project. I've gone through the >> policy.json file (this is Juno) and enabled everything I could think of >> that seemed appropriate, to no avail. Is there any way to do this >> without granting him flat-out admin? >> >> Thanks! >> >> -Ken >> >> ___ >> Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack >> Post to : openstack@lists.openstack.org >> Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > > -- > Mohammed Naser -- vexxhost > > - > D. 514-316-8872 > D. 800-910-1726 ext. 200 > E. mna...@vexxhost.com > W. http://vexxhost.com [1] Links: -- [1] http://vexxhost.com/___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Way to see VMs under all tenants by non-admin?
Hey, all. I've had a request for a non-admin user to see all the VMs currently running, irrespective of project. I've gone through the policy.json file (this is Juno) and enabled everything I could think of that seemed appropriate, to no avail. Is there any way to do this without granting him flat-out admin? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] Create VMs with Power architecture(ppc64) on OpenStack running on x86_64 nodes??
On 2018-11-19 11:25, Yedhu Sastri wrote: > Hello All, > > I have some use-cases which I want to test in PowerPC architecture(ppc64). As > I dont have any Power machines I would like to try it with ppc64 VM's. Is it > possible to run these kind of VM's on my OpenStack cluster(Queens) which runs > on X86_64 architecture nodes(OS RHEL 7)?? I'm not 100% sure, but I'm 95% sure that the answer to your question is "No." While there's much emulation that occurs, the CPU isn't so much emulated, but more abstracted. Constructing and running a modern CPU in software would be non-trivial. -Ken > I set the image property architecture=ppc64 to the ppc64 image I uploaded to > glance but no success in launching VM with those images. I am using KVM as > hypervisor(qemu 2.10.0) in my compute nodes and I think it is not built to > support power architecture. For testing without OpenStack I manually built > qemu on a x86_64 host with ppc64 support(qemu-ppc64) and then I am able to > host the ppc64 VM. But I dont know how to do this on my OpenStack cluster. > Whether I need to manually build qemu on compute nodes with ppc64 support or > I need to add some lines in my nova.conf to do this?? Any help to solve this > issue would be much appreciated. > > -- > > Thank you for your time and have a nice day, > > With kind regards, Yedhu Sastri > ___ > Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > Post to : openstack@lists.openstack.org > Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] (Juno - *sigh*) Want non-admin access to hypervisor:VM association.
On 2018-11-18 09:11, Mohammed Naser wrote: > https://blueprints.launchpad.net/nova/+spec/openstack-api-hostid > > This should take care of it, don't know if it exists in Juno though. It *does* exist in Juno, it *can't*, however, do what I want -- at least, generically. The hostId that gets returned is a value that's (apparently) used to let you know, semi-anonymously, how affinity is (or isn't) working for your VMs. So you get a unique identifier for each hypervisor -- but it has no *obvious* bearing on the hostname. It's an id that's formed from the SHA224 hash of the ID of your tenant and the hostname of the hypervisor -- a bit of a catch-22, that, and prevents you from being able to make use of the hash if you don't know your back-end. But... I do. So I created an associative array with all the current (and, God willing, future) hypervisor hostnames in my company, with the key being the hostId/hash, and the value being the hypervisor name. Then I queried my VMs, got all the hostIds, used that as the index to query my associative array, and bingo! My hypervisor's name. Kinda fugly, but when you have a standardized hypervisor hostname nomenclature, it's sufficient, without having to go mucking about with changing poorly-documented Nova policy.json stuff in a four-year-old release of OpenStack. I'll take it. Thanks! -Ken > On Thu, Nov 15, 2018 at 1:49 PM Ken D'Ambrosio wrote: > >> Hey, all. We've got a Juno cloud, and we'd like various end-users to be >> able to see which hypervisors their VMs spring up on. >> /etc/nova/policy.json seems to have some relevant info, but it's hard to >> tell what does what. "compute_extension:hypervisors" looks like a >> possible candidate, but that's so vague that there's no telling what, >> exactly, is meant by "hypervisors". So: >> >> * Given that I just want the hypervisor:VM association, any suggestions >> as to which rule(s) to modify? >> * Failing that, wondering if there's any for-real documentation on what >> the various options in policy.json *do*. I've found many, many lists of >> what's in a generic policy.json, but nothing that went into detail about >> what does what. >> >> Thanks! >> >> -Ken >> >> ___ >> Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack >> Post to : openstack@lists.openstack.org >> Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > > -- > Mohammed Naser -- vexxhost > > - > D. 514-316-8872 > D. 800-910-1726 ext. 200 > E. mna...@vexxhost.com > W. http://vexxhost.com [1] Links: -- [1] http://vexxhost.com/___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] (Juno - *sigh*) Want non-admin access to hypervisor:VM association.
Hey, all. We've got a Juno cloud, and we'd like various end-users to be able to see which hypervisors their VMs spring up on. /etc/nova/policy.json seems to have some relevant info, but it's hard to tell what does what. "compute_extension:hypervisors" looks like a possible candidate, but that's so vague that there's no telling what, exactly, is meant by "hypervisors". So: * Given that I just want the hypervisor:VM association, any suggestions as to which rule(s) to modify? * Failing that, wondering if there's any for-real documentation on what the various options in policy.json *do*. I've found many, many lists of what's in a generic policy.json, but nothing that went into detail about what does what. Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Installing EOL Devstack versions?
Hi, all. We're running an old version of Openstack -- Juno -- and I'd like to test some things out before trying to implement them, probably in Devstack. And I could *swear* there was a way to deploy end-of-lifed versions of Devstack, but darned if I can find it. Suggestions? Thanks kindly, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Viewing VM's hypervisors as a non-admin user?
Hey, all. We've got a Juno cloud, and it would be really handy for some of our engineers if they could see which VMs wound up on which hypervisors. I'm unsure how to make that happen; I'm afraid the documentation on the options of the policy.json file is a bit opaque. How would I go about making this happen, assuming it's even possible? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] "Resource doesn't have field name."
On 2018-05-25 13:52, r...@italy1.com wrote: > Use the --debug option to see what calls are going on and which one fails. Thanks! That did the trick. Turned out the image that was causing failure was one that's been stuck queueing since July, and has no associated name. The lack of a name is causing the "openstack image list" to fail. GET call to None for http://10.20.139.20:9292/v2/images?marker=2fd99d59-01de-4bde-a432-0e5274f45536 used request id req-6c1a9c23-1edd-4e6f-b970-4bd1ea5a7324 Resource doesn't have field name Note that the (incredibly, insanely ancient) 1.0.1 release of the "openstack" CLI command works fine. This is against Juno, so maybe that's just the way it is? Should that be expected behavior, or a bug? -Ken > Il giorno 25 mag 2018, alle ore 10:08, Amit Uniyal ha > scritto: > > You can use -v (for verbose), directly check logs on openstackclient run. > > On Fri, May 25, 2018 at 10:11 PM, Ken D'Ambrosio wrote: > Hey, all. I've got a new job, and I tried my first Openstack command on it > -- a Juno cloud -- with Openstack CLI 3.14.0, and it failed. Specifically: > > kdambrosio@mintyfresh:~/oscreds newton(QA/PCI)$ openstack image list > Resource doesn't have field name > > glance image-list does fine. > > Is this a case of, "Don't do that!"? Or is there something I should be > digging into? > > Thanks! > > -Ken > > ___ > Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > Post to : openstack@lists.openstack.org > Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > ___ > Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > Post to : openstack@lists.openstack.org > Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] "Resource doesn't have field name."
Hey, all. I've got a new job, and I tried my first Openstack command on it -- a Juno cloud -- with Openstack CLI 3.14.0, and it failed. Specifically: kdambrosio@mintyfresh:~/oscreds newton(QA/PCI)$ openstack image list Resource doesn't have field name glance image-list does fine. Is this a case of, "Don't do that!"? Or is there something I should be digging into? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Dibbler, ipv6_pd_enabled, and Ubuntu.
Hey, all. Trying to set up Dibbler/IPv6 prefix delegation on a Newton Ubuntu cloud. And I admit that I'm being somewhat confused, despite One Bajillion Pages that seem to touch on this stuff, but not really map out what needs to happen. (Most of the step-throughs seem to assume single-box installs a la Devstack, which isn't quite as helpful for something like this.) What I'm looking to do (unless someone says "That's stupid," and suggests a better way): [External Dibbler] <---> [Neutron Gateway] <---> [Openstack cloud] As I understand it, I need to set ipv6_pd_enabled to "true" in the neutron.conf file -- though I'm not sure if that's on the Neutron API server, or the Neutron Gateway, itself. Additionally, Ubuntu doesn't help, because it's not supported by Juju. (At least, as of Newton.) So: * Where do I modify the neutron.conf file (API or gateway)? * How do I tell Openstack about where the Dibbler server is? * What subnet configuration should I employ? * What would a typical network creation look like in such a circumstance? * Am I missing anything really dumb/stupid? Thanks kindly, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Neutron MySQL issues.
Hey, all. About a day ago, Neutron/MySQL started throwing errors on my Ubuntu/Newton cloud: 2017-09-12 15:39:35.591 95710 ERROR neutron.callbacks.manager DBReferenceError: (pymysql.err.IntegrityError) (1452, u'Cannot add or update a child row: a foreign key constraint fails (`neutron`.`segmenthostmappings`, CONSTRAINT `segmenthostmappings_ibfk_1` FOREIGN KEY (`segment_id`) REFERENCES `networksegments` (`id`) ON DELETE CASCADE)') [SQL: u'INSERT INTO segmenthostmappings (segment_id, host) VALUES (%(segment_id)s, %(host)s)'] [parameters: {'host': u'BL-D8-c6220-04-L', 'segment_id': u'a0e4e56a-47e2-4f1a-a9ff-b53f60a8b2f6'}] 2017-09-12 15:39:32.753 95684 ERROR neutron.callbacks.manager DBReferenceError: (pymysql.err.IntegrityError) (1452, u'Cannot add or update a child row: a foreign key constraint fails (`neutron`.`segmenthostmappings`, CONSTRAINT `segmenthostmappings_ibfk_1` FOREIGN KEY (`segment_id`) REFERENCES `networksegments` (`id`) ON DELETE CASCADE)') [SQL: u'INSERT INTO segmenthostmappings (segment_id, host) VALUES (%(segment_id)s, %(host)s)'] [parameters: ({'host': u'BL-D8-c6220-15-R', 'segment_id': u'8cf4ed19-1e9a-4125-8d65-f8fe0fa22032'}, {'host': u'BL-D8-c6220-15-R', 'segment_id': u'3512bb5d-20a4-4873-a17a-17cd3c27efe5'}, {'host': u'BL-D8-c6220-15-R', 'segment_id': u'154cff0d-36a2-4083-9402-8bb977044b01'})] etc. I can't cause them (yet) by any individual action that I've thus-far found, but Heat orchestrations, for example, fail a lot of the time. I do have hourly backups of my database -- should I cut my losses and revert? Or can anyone think of some magick(tm) that could be applied? The database is HA, and the nodes are synced, so I don't *think* that this is a synchronization issue. Sadly, while I'm adept as a sysadmin in MySQL, I'm not up to the point where I can t-shoot foreign key weirdness. Thanks, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Devstack with SSL?
Hey, all. We want to proof something out with SSL-enabled endpoints, and don't want to go through the grief of setting up a whole multi-host cloud to do it. Devstack with USE_SSL=True in its local.conf seemed to be just the ticket... except that when it gets done, "openstack show endpoints" only shows stock HTTP connections, no HTTPS. Googling has -- somewhat to my surprise -- shown essentially nothing of value. Should I give up on trying to teach Devstack new tricks, and fire up Mirantis or something, or is there a way to get this working? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Floating IP issues in multiple cloud installs.
Hi, all. We've got two Canonical Newton installs using VLANs and we're having intermittent issues we simply can't figure out. (Note that a third installation using flat networks is not having this issue.) Floating IPs set up and work... sporadically. * Stateful connections (e.g., SSH) often drop after seconds of use to both the FIP and when SSH'd in from the * We see RSTs in our TCP dumps * Pings work for a while, then don't. * We see lots of ARP requests -- even one right after another -- to resolve hosts on the internal subnets: 05:43:25.859448 ARP, Request who-has 80.0.0.3 tell 80.0.0.1, length 28 05:43:25.859563 ARP, Reply 80.0.0.3 is-at fa:16:3e:28:af:77, length 28 05:43:25.964417 ARP, Request who-has 80.0.0.3 tell 80.0.0.1, length 46 05:43:25.964572 ARP, Reply 80.0.0.3 is-at fa:16:3e:28:af:77, length 28 05:43:26.963989 ARP, Request who-has 80.0.0.3 tell 80.0.0.1, length 46 05:43:26.964156 ARP, Reply 80.0.0.3 is-at fa:16:3e:28:af:77, length 28 80.0.0.1 is the qrouter. I can't imagine why it asked -- and was ACK'd in each case -- three times in just over a second. In hindsight, I should have checked to have seen if the ACK showed up in the qrouter's ARP table. Next time... I'd be happy to go into more detail, but was curious if anyone has seen an issue along these lines. Thanks, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] List user:project associations.
Hi! I'm looking for a way to see which users are associated with which projects. The dashboard does it pretty nicely, but I'd prefer from the CLI. Unfortunately, while "openstack role assignment list" seems to be what I'd want, it requires *both* a project and a user, which means that in order to map everything, I'd have to iterate through every project for every user -- about as inefficient a way as I can imagine. Surely there's a better way? Thanks, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] "Security group not found for project"
I've just set up a Newton cloud (Ubuntu), and when I try to launch an instance in Horizon, I'm greeted with this: Security group 64f28706-29df-44fa-9dbe-4f856d517a1c not found for project 1b9a6a9b5fc947a9892354fe8277690e. (HTTP 400) (Request-ID: req-281c6e94-3ade-4385-9a75-f72effc97ab5). * The security group exists (it's "default") * The project exists (it's "admin") * I've also created a new user/tenant/security group, and it has the same problem. * Logs in /var/log/keystone/ on the Keystone server say nothing. At a loss on this one. Thanks, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Configuring DVR.
Hey, all. Launching my first Newton cloud, and we've decided to go with DVR. I can't seem to find a "what changes there are, what's involved, and how to configure it" sort of informative-like page. Hopefully, this just means I'm googling poorly. Can someone point me in the right direction? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Difference between image listings...
Same user, same cloud, issuing the commands seconds apart. Any idea as to why there's a disparity? gbadmin@openstack-cli:~ liberty(prod)$ openstack image list | wc -l 29 gbadmin@openstack-cli:~ liberty(prod)$ glance image-list | wc -l 186 ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Creating regions...
Hello, all. I've got a geographically distributed Liberty install, and I'm trying to set up a local glance repo for the remote site, without going through everything involved in retroactively adding cells. It looks like regions might do what I want -- but there's DAMN little documentation I can find. 1) I can't find exactly what they are (e.g., googling "openstack regions" gives you links to OpenStack Docs "Architecture" and "Scaling", but no here-is-what-regions-are-and-how-to-use-them document) 2) I can't find how to create them. (Not entirely true. I found this page: http://docs.openstack.org/developer/python-openstackclient/command-objects/region.html . But when I upgraded to openstackclient 3.4.1 via pip so I'd have version parity, there's no such thing: gbadmin@openstack-cli:~ liberty(prod)$ openstack --version openstack 3.4.1 gbadmin@openstack-cli:~ liberty(prod)$ openstack region list openstack: 'region list' is not an openstack command. See 'openstack --help'. ) Any pointers here? I'd love to be able to have this done this weekend, but I'm beginning to think it's simply not in the cards. Thanks, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Determining hardware CPU?
Hey, all. For various reasons, it would behoove us to be able to tell what kind of physical CPU our VMs are running on. Is there a way? I assume the answer is pretty much "No," but if there was a way, it would be helpful. Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] IPv6 and Liberty (or Mitaka).
Hey, all. I have a Liberty cloud, and decided for the heck of it to start dipping my toe into IPv6. I do have some confusion, however. I can choose between SLAAC, DHCPv6 stateful and DHCPv6 stateless -- and I see some writeups on what they do, but I don't understand what differentiates them. As far as I can tell, they all do pretty much the same thing, just with different pieces doing different things. E.g., the chart, found here (http://docs.openstack.org/liberty/networking-guide/adv-config-ipv6.html -- page down a little) shows those three options, but it isn't clear: * How to configure the elements involved * What they exactly do (e.g., "optional info"? What's that?) * Why there even *are* different choices. Do they offer functionally different results? Any pointers would be much appreciated. While I was able to get a host up with IPv4/IPv6, I wish I understood more of what was going on behind the scenes. Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Disable compute node from accepting new VMs?
Hi, all. Trying to figure out how to disable a compute node from getting new VMs scheduled for it on my Liberty cloud. I did see the "nova host-update --maintenance" command, but (as noted elsewhere) it seems not to work for KVM-based VMs. Is there a way to accomplish what I'm looking to do? Note that I'm not looking to take the host down, just take it out of the pool of compute hosts ready to accept new VMs. Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] "There are not enough hosts available."
Trying to orchestrate a bunch of VMs on our ~500 core cloud, and we're getting the "not enough hosts" problem. Only issue is that the dashboard seems to imply we've got the elbow room needed to instantiate. Furthermore, it would be *really handy* if I knew what the bottleneck it thought was: disk, RAM, CPU, whatever. Here's a sample of the error: --- begin --- 2016-07-28 18:40:47.961 1080 WARNING nova.scheduler.utils [req-977badf4-a4a2-4766-87fd-c4e3ceb2e293 a4c895a6fe294ae3a81e3c6bb9209f52 33c2cf3cb61c425abcb0e0d35fdf21b7 - - -] [instance: ee175a40-11d9-4a43-b6e1-c4d7935acff1] Setting instance to ERROR state. 2016-07-28 18:40:51.892 1023 WARNING nova.scheduler.utils [req-e2a65200-1662-4cd7-aa9e-db5e225adfa1 a4c895a6fe294ae3a81e3c6bb9209f52 33c2cf3cb61c425abcb0e0d35fdf21b7 - - -] Failed to compute_task_build_instances: No valid host was found. There are not enough hosts available. Traceback (most recent call last): File "/usr/lib/python2.7/dist-packages/oslo_messaging/rpc/server.py", line 142, in inner return func(*args, **kwargs) File "/usr/lib/python2.7/dist-packages/nova/scheduler/manager.py", line 84, in select_destinations filter_properties) File "/usr/lib/python2.7/dist-packages/nova/scheduler/filter_scheduler.py", line 90, in select_destinations raise exception.NoValidHost(reason=reason) NoValidHost: No valid host was found. There are not enough hosts available. --- begin --- Any suggestions on how to track down exactly what's going wrong? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] UDP issues?
Hey, all. We're trying to track down some UDP fragmentation issues, and I'm trying to fully grasp exactly what goes on. The tool I'm using is "iperf." My first confusion is that when I point iperf (client) to a host behind a floating IP, that simply doesn't work. Any ideas what the issue is, and how to get around it? Next up is this that when I have to VMs talk to each other -- on the same subnet, using "iperf -c 172.23.244.169 -u -b 100m" -- I wind up with this: [ 3] Sent 85471 datagrams [ 3] WARNING: did not receive ack of last datagram after 10 tries. When I go from physical machine to physical machine, it works great, even though a few datagrams are received out-of-order. But a flat-out missing packet does sound a bit like the issue I'm having. --- Additionally, I'd really like a tool that would allow me to set packet size for UDP tests; I've poked around, but haven't really found anything. If anyone has a suggestion, I'm all ears. Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] Horizon console WAY slow for an instance
My rule-of-thumb for stuff that falls into the "really slow but works" camp is, check DNS. If possible, disable reverse lookups, or else ensure that the hosts involved all know how to reverse-resolve each other's IP addresses. That's where I'd start, anyway. Good luck! -Ken On 2016-06-28 20:28, Sterdnot Shaken wrote: > Does anyone have any idea why a console session's would be so slow from > horizon? After creating an instance, I go to Compute, Instance, then Console > tab where I click "Click here to show only console". From there, it's > EXTREMELY slow interacting with the instance itself... I can RDP or ssh to > the instance and speed is fine, so it seems like it's got something to do > with the console interaction with the instance. Is this a VNC issue? > > Response time is fine for everything else with Horizon and Instances, it's > just interacting with the console that's slow. > > Any help would be greatly appreciated! > > Thanks > > ___ > Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > [1] > Post to : openstack@lists.openstack.org > Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > [1] Links: -- [1] http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] See users associated with project?
Hey, all. I am trying to figure out how to see which users are associated with which projects, and, for the life of me, I can't seem to figure out the magic juju from the CLI. Any suggestions? I thought things like "openstack user show" or "openstack project show" would do the job, but only for the default user, not for additional ones. Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Adding user to tenant (or tenant to user).
From the CLI, there must be a way to add a user to a tenant (or vice-versa), but I simply can't seem to figure out the syntax. This isn't for newly created users; this is for changes after-the-fact. Suggestions? Thanks much! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] neutron-server problems on cloud-controller.
We had some issues yesterday on our Liberty cloud that smelled networky, so I went to check the neutron logfiles on cloud-controller... and there were a bunch of issues. 1) neutron-server hadn't been *running* since February. 2) It doesn't start on reboot. 3) When I try to start it manually, I get all sorts of errors in neutron-server.log; all of them seem to boil down to this: 2016-06-07 10:12:29.364 3824 ERROR neutron.services.service_base ImportError: No module named drivers.haproxy.plugin_driver 2016-06-07 10:12:29.366 3824 ERROR neutron.common.config ImportError: No module named drivers.haproxy.plugin_driver From poking around, it certainly *looks* as if the right files exist: root@juju-machine-1-lxc-1:/var/log/neutron# locate haproxy | grep plugin /usr/lib/python2.7/dist-packages/neutron_lbaas/drivers/haproxy/plugin_driver.py /usr/lib/python2.7/dist-packages/neutron_lbaas/drivers/haproxy/plugin_driver.pyc /usr/lib/python2.7/dist-packages/neutron_lbaas/services/loadbalancer/drivers/haproxy/plugin_driver.py /usr/lib/python2.7/dist-packages/neutron_lbaas/services/loadbalancer/drivers/haproxy/plugin_driver.pyc /usr/local/lib/nagios/plugins/check_haproxy.sh /usr/local/lib/nagios/plugins/check_haproxy_queue_depth.sh But I'm unsure how to verify that those are, indeed, the correct files, as the error message seems to be using a namespace unrelated to filenames. If anyone has any insights, advice, etc., it would be much appreciated. Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] Exceeded floatingip quota... except I haven't.
Needless to say, 13.7 ms after I sent this e-mail, I found this bug report: https://bugs.launchpad.net/mos/+bug/1527581 Humble apologies... -Ken On 2016-04-21 23:11, Ken D'Ambrosio wrote: I'd heard from some users they were having trouble allocating floating IPs in our Liberty cloud, so I tried on my test account. I had two floating IPs (with a quota of (at least) three); I released and immediately tried to re-acquire, and it failed with: [Fri Apr 22 02:59:36.839441 2016] [:error] [pid 25146:tid 140282618590976] Recoverable error: Quota exceeded for resources: ['floatingip'] Note that Horizon shows me with one out of my quota of three IPs allocated and associated. Helpfully (not), here are the values I get back from various commands: gbadmin@openstack-cli:~ liberty(prod)$ openstack quota show kentenant | grep float | floating-ips | 50| gbadmin@openstack-cli:~ liberty(prod)$ neutron quota-show | grep float | floatingip| 50| gbadmin@openstack-cli:~ liberty(prod)$ nova quota-show | grep float | floating_ips| 10| You'll note that none of these is the "three" shown in Horizon. Regardless, even if they were, I should still have two floating IPs available to me, as I have exactly one allocated. Smells like a bug to me -- perhaps released addresses not being returned to a pool? Googling hasn't shown me anything of note; any ideas? Thanks, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Exceeded floatingip quota... except I haven't.
I'd heard from some users they were having trouble allocating floating IPs in our Liberty cloud, so I tried on my test account. I had two floating IPs (with a quota of (at least) three); I released and immediately tried to re-acquire, and it failed with: [Fri Apr 22 02:59:36.839441 2016] [:error] [pid 25146:tid 140282618590976] Recoverable error: Quota exceeded for resources: ['floatingip'] Note that Horizon shows me with one out of my quota of three IPs allocated and associated. Helpfully (not), here are the values I get back from various commands: gbadmin@openstack-cli:~ liberty(prod)$ openstack quota show kentenant | grep float | floating-ips | 50| gbadmin@openstack-cli:~ liberty(prod)$ neutron quota-show | grep float | floatingip| 50| gbadmin@openstack-cli:~ liberty(prod)$ nova quota-show | grep float | floating_ips| 10| You'll note that none of these is the "three" shown in Horizon. Regardless, even if they were, I should still have two floating IPs available to me, as I have exactly one allocated. Smells like a bug to me -- perhaps released addresses not being returned to a pool? Googling hasn't shown me anything of note; any ideas? Thanks, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Get URL for Horizon from CLI?
So I'm trying to write up a user/tenant creation script, and then when it's done, I want to fire off an e-mail with relevant info to the new user. One thing I'd like to send along is the URL for horizon for whichever cloud I've just created them accounts on... but I don't see how to get that from the CLI. Is there a way? Thanks, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Migrating images off compute node?
Hey, all. We're having some significant network issues in our Icehouse cloud, and I was wondering if there's a way to migrate quiescent VM images right off the compute node, and, if there is, if there'd be a problem migrating them to (say) Liberty. Thanks kindly, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Metadata server issues [Icehouse].
So, I've got an Icehouse cloud that had been working fine; then we had to bring everything down for an extended power outage, and stuff still isn't quite right. The nutshell problem is that only one of my two neutron gateways seems to be able to route to the metadata server. The "working" neutron gateway, however, has switched after a reboot. Symptoms: * Initially, I set eth0 to point to my first neutron gateway (hereinafter "NG") * It failed to be able to access the metadata server (verified by telnetting to 169.254.169.254:80) * Associating eth0 with the secondary NG worked fine * All this held true through multiple VM reboots, and a cloud controller reboot I then rebooted, respectively, the primary NG, the secondary NG, and the cloud controller When everything came back up, the "functioning" NG had swapped to the primary. Note that, otherwise, the gateways both work great -- DHCP addresses are assigned; I can ping internally; I can ping externally; I can access floating IPs. Just the metadata server access doesn't work. Last datapoint: I've noticed that when I have multiple NICs, one per NG, a static host route to 169.254.169.254 can sometimes be assigned by DHCP; that is not assigned by the non-functional NG. (I can't decide if that's expected behavior or not, but figured someone more conversant than I might know.) Any ideas on what I should be digging into? I've gone down lots of rabbit holes, but am uncertain where to dig further. Thanks, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Error: Unable to create new image [Liberty]
Hi, all. In our Icehouse cloud, I had no problems with non-admin users creating images. In the Liberty cloud we recently stood up, however, that doesn't appear to be enabled. From reading, I see that it appears to be a setting that needs to be altered in /etc/glance/glance-api.conf, but it's not clear to me what needs to be added. I've done a fair bit of digging through docs and Stack Overflow, etc., but just don't see a) what permission it is that needs to be changed, and b) how to enable it specifically in glance-api.conf Any pointers much appreciated. -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Cells: *how* experimental?
Hey, all. Trying to have geographically-dispersed legs to a ~60 node liberty development cloud. Based on the traffic I see back and forth on our icehouse cloud, it makes me think that having a cell hierarchy for the new cloud might cut down on the back-and-forth chatter -- which would be good, as I don't want to be yelled at by the network team. However, I see in the docs that it's been listed as "experimental" since Juno, and three releases of "experimental" makes me wonder if it's actually moving anywhere, and something I should even consider using, or if I should use a different approach altogether (suggestions welcome). Advice? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Slow Horizon on Icehouse.
Hey, all. I've got an Openstack install, with each control node on its own 24 GB, quad-core system. And yet my Horizon is really quite slow; I've seen it take 15+ seconds to log in, click on the "routers" tab, etc. The only host among the control nodes that showed significant pain was the MySQL host; I replaced its SATA disk with an SSD last night, and now instead of a load average ~1.65, it's now around 0.10. And things feel marginally better, but it's still darn slow, so I'm guessing the primary bottleneck was *not* MySQL. Any suggestions on what I should be digging into? Logs in the cloud controller box? Known API bottlenecks? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] Slow Horizon on Icehouse.
On 2015-08-31 14:58, stephen_fri...@dell.com wrote: Try looking at your keystone table, not sure how old your stamp is but if you are not pruning then the keystone table becomes large and can slow response times, at least that is what I have seen in the past I appreciate the thought, Steve, but I'd actually given that a try before installing the SSD. I'd had ~100K entries in the token table, and brought it down to ~25K. Just now, I did some more pruning, and have it to ~2500, and it's still slow as molasses logging in and clicking stuff. I tried doing a tcpdump on the cloud controller, but, aside from the fact that interaction with horizon is slow (which I already knew), nothing really stands out. (If it matters any, on my tcpdump, there are two five-second pauses in interaction with Horizon. I tried to find five-second pauses in other interactions, e.g., with keystone, or MySQL, to no avail.) -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] Slow Horizon on Icehouse.
On 2015-08-31 17:14, George Mihaiescu wrote: Is it just dashboard that's slow? How about "nova list" or "neutron port-list" from your dashboard node, as well as from outside your environment? Depending on how you have your endpoints configured in keystone (ip or name) and how dns resolution is set in your environment, there might be delays in the api calls... Thanks for the sanity check, George. You know -- I've gotten so used to thinking in terms of performance and GRE tunnels and other abstractions that sometimes I just forget to look at the physical layer... where, yes, the dashboard node was dropping ~20% of its packets. Bad port or cable (haven't checked which, yet). Wups. Don't understand why I didn't see massive retransmits in the pcap, but I guess I'm not going to worry myself with that too much. Thanks, all, -Ken George On 31 Aug 2015 15:03, "Ken D'Ambrosio" <k...@jots.org> wrote: Hey, all. I've got an Openstack install, with each control node on its own 24 GB, quad-core system. And yet my Horizon is really quite slow; I've seen it take 15+ seconds to log in, click on the "routers" tab, etc. The only host among the control nodes that showed significant pain was the MySQL host; I replaced its SATA disk with an SSD last night, and now instead of a load average ~1.65, it's now around 0.10. And things feel marginally better, but it's still darn slow, so I'm guessing the primary bottleneck was *not* MySQL. Any suggestions on what I should be digging into? Logs in the cloud controller box? Known API bottlenecks? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [1] Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [1] Links: -- [1] http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [openstack-dev] [Neutron] Missing allowed address pairs?
You have better chances of getting an answer if you asked the -dev list and add [Neutron] to the subject (done here). That said, can you tell us a bit more about your deployment? You can also hop on #openstack-neutron on Freenode to look for neutron developers who can help you more interactively. Cheers, Armando Hi. As per Armando's suggestion, e-mailing openstack-dev for advice, and have pasted files and command output, below. Our Ubuntu-based Openstack installations do not seem to be enabling allowed address pairs. It seems that we (or Ubuntu) are disabling them somehow, and we were wondering if you might have advice on where to look. If there's any additional information you need, please let us know. Thanks kindly, -Ken files and output below ubuntu@magnificent-hill:~$ neutron ext-list +---+---+ | alias | name | +---+---+ | service-type | Neutron Service Type Management | | ext-gw-mode | Neutron L3 Configurable external gateway mode | | l3_agent_scheduler| L3 Agent Scheduler | | lbaas_agent_scheduler | Loadbalancer Agent Scheduler | | external-net | Neutron external network | | binding | Port Binding | | metering | Neutron Metering | | agent | agent | | quotas| Quota management support | | dhcp_agent_scheduler | DHCP Agent Scheduler | | multi-provider| Multi Provider Network | | fwaas | Firewall service | | router| Neutron L3 Router | | vpnaas| VPN service | | extra_dhcp_opt| Neutron Extra DHCP opts | | provider | Provider Network | | lbaas | LoadBalancing service | | extraroute| Neutron Extra Route | +---+---+ neutron.conf: ## # [ WARNING ] # Configuration file maintained by Juju. Local changes may be overwritten. ## [DEFAULT] verbose = False debug = False lock_path = /var/lock/neutron core_plugin = neutron.plugins.ml2.plugin.Ml2Plugin rabbit_userid = neutron rabbit_virtual_host = openstack rabbit_password = myhashhere rabbit_host = 10.10.3.6 control_exchange = neutron notification_driver = neutron.openstack.common.notifier.list_notifier list_notifier_drivers = neutron.openstack.common.notifier.rabbit_notifier [agent] root_helper = sudo /usr/bin/neutron-rootwrap /etc/neutron/rootwrap.conf end neutron.conf --- ml2_conf.ini: ### # [ WARNING ] # Configuration file maintained by Juju. Local changes may be overwritten. ### [ml2] type_drivers = gre,vxlan,vlan,flat tenant_network_types = gre,vxlan,vlan,flat mechanism_drivers = openvswitch,l2population [ml2_type_gre] tunnel_id_ranges = 1:1000 [ml2_type_vxlan] vni_ranges = 1001:2000 [ml2_type_vlan] network_vlan_ranges = physnet1:1000:2000 [ml2_type_flat] flat_networks = [ovs] enable_tunneling = True local_ip = 10.10.3.8 bridge_mappings = physnet1:br-data [agent] tunnel_types = gre l2_population = False [securitygroup] firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver end ml2_conf.ini --- __ OpenStack Development Mailing List (not for usage questions) Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
[Openstack] Missing allowed address pairs?
Hi, all. I've got two instances -- a Juno and an Icehouse -- both set up via Ubuntu/Juju. And neither of them shows allowed address pairs when I do a neutron ext-list (I've tried on both the neutron-gateway and nova-cloud-controller). From everything my co-worker and I have read, it seems like it *should* be in both of them, leading us to assume that we've somehow disabled that particular functionality. Any ideas on what to look at? Thanks much, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Remote console: two questions.
Question #1: Spice, or VNC? Question #2: anything like an installation guide? The docs mention various parameters, etc., but it's not really clear how it all ties together. Haven't found anything that quite spells it out, either. Thanks much for any insights! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Still wading through my first setup...
On page 66 (as per the PDF), from http://docs.openstack.org/juno/install-guide/install/apt/openstack-install-guide-apt-juno.pdf, I am at Install and configure network node. This strikes me as stuff I should, then, be typing on... well, my network node. However, at the top of the same page, it tells me to Perform these commands on the controller node, and at no point does it actually say perform these commands on the network node. Since much of the setup is similar to stuff I've already done -- e.g., modifying the neutron.conf file -- I'm *ASSUMING* I should be doing this on the network node. So: A) Am I right? B) If I am, to whom should I report a bug? I know it's probably pretty obvious to those who've been down this road before, but to newbies like me, being as crazy clear about what gets typed on which machine is really, really helpful. ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] nova.conf (on Ubuntu 14.04) and documentation differing.
On 2015-01-27 18:45, Matt Kassawara wrote: Packages should include at least the upstream example configuration file(s). For some reason, Ubuntu continues to package a very minimal nova.conf file. Please file a bug under the Ubuntu nova package [1] rather than the documentation. [1] https://bugs.launchpad.net/ubuntu/+source/nova [3] Thanks for the link -- that was my next question. I've tried submitting a bug report... and, of course, it's crashed with a timeout error. (Repeatedly.) I'll try again tomorrow. On Tue, Jan 27, 2015 at 3:33 PM, Mohammed Naser mna...@vexxhost.com wrote: Hi Ken, You would need to add those sections, if the docs don't make it clear, please report it as a bug :) Thanks Mohammed On Tue, Jan 27, 2015 at 4:25 PM, Ken D'Ambrosio k...@jots.org wrote: Hi, all. On page 52 (as per the PDF page numbering; page 60 by absolute numbering), I'm told about [database], [glance], and [keystone_authtoken] sections. However, what's below is the entirety of my /etc/nova/nova.conf file: root@controller:/tmp# cat /etc/nova/nova.conf [DEFAULT] dhcpbridge_flagfile=/etc/nova/nova.conf dhcpbridge=/usr/bin/nova-dhcpbridge logdir=/var/log/nova state_path=/var/lib/nova lock_path=/var/lock/nova force_dhcp_release=True libvirt_use_virtio_for_bridges=True verbose=True ec2_private_dns_show_ip=True api_paste_config=/etc/nova/api-paste.ini enabled_apis=ec2,osapi_compute,metadata dpkg -S /etc/nova/nova.conf shows package nova-common as the owner. Extracting nova.conf from the .deb file manually shows me it having the same contents. Am I doing something dumb? This is a stock 14.04 install, updated as of this morning. Thanks for any insights... -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [1] Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [1] -- Mohammed Naser — vexxhost - W. http://vexxhost.com [2] ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [1] Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [1] Links: -- [1] http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [2] http://vexxhost.com/ [3] https://bugs.launchpad.net/ubuntu/+source/nova ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Davstack issue?
Hey, all. Looks like I'm not alone, as the same is happening to me: http://stackoverflow.com/questions/27648067/rejoin-stack-sh-command-unable-to-execute-completely Has something changed recently? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] Can't restart devstack.
On 2014-12-24 04:38, Venu Murthy wrote: Hello Ken, Try switch to the screen for eg. screen -x stack Oh, wow. Thanks! That sure showed what happened... though I don't know why. Looks like I'm timing out trying to fetch a .PNG: -- 2014-12-24 01:19:53.404 DEBUG eventlet.wsgi.server [-] 125.64.35.67 - - [24/Dec/2014 01:19:53] GET http://s1.bdstatic.com/r/www/cache/static/home/img/logos/nuomi_ade5465d.png HTTP/1.1 404 278 0.003209 from (pid=10629) write /opt/stack/heat/heat/common/wsgi.py:183 Traceback (most recent call last): File /usr/local/lib/python2.7/dist-packages/eventlet/greenpool.py, line 82, in _spawn_n_impl func(*args, **kwargs) File /usr/local/lib/python2.7/dist-packages/eventlet/wsgi.py, line 661, in process_request proto.__init__(sock, address, self) File /usr/lib/python2.7/SocketServer.py, line 649, in __init__ self.handle() File /usr/lib/python2.7/BaseHTTPServer.py, line 342, in handle self.handle_one_request() File /usr/local/lib/python2.7/dist-packages/eventlet/wsgi.py, line 267, in handle_one_request self.raw_requestline = self.rfile.readline(self.server.url_length_limit) File /usr/lib/python2.7/socket.py, line 476, in readline data = self._sock.recv(self._rbufsize) File /usr/local/lib/python2.7/dist-packages/eventlet/greenio.py, line 296, in recv return fd.recv(buflen, flags) error: [Errno 110] Connection timed out -- Upon reflection, I noticed what was probably the same behavior when I tried to download an Ubuntu cloud image via URL -- it just sat there, saying it was queued, but there was zero network I/O. In both cases, I was able to use the system to successfully download both files using wget, so it's not a connectivity issue. Why would Python GETs work any differently than wget? Thanks, -Ken Best regards, Venu [2] --- _“Excellence is never an accident. It is always the result of high intention, sincere effort, and intelligent execution ― Aristotle_ On Wed, Dec 24, 2014 at 11:29 AM, Ken D'Ambrosio k...@jots.org wrote: Hi, all. Trying to get a feel for OpenStack, so I installed DevStack. And it works great... until I have the audacity to restart it. Apache doesn't go fully live unless I do a restart -- and if I do that, I don't get past the login screen (just tells me that admin had trouble authenticating). Likewise, the few things I'm even mildly familiar with -- e.g., nova commands -- never seem to execute, or even return to the CLI. I'm guessing it's getting hung up on something during rejoin-stack.sh. The log files aren't showing me anything that leaps to my eye. I've done a full DevStack re-install from scratch -- same problem. 1) Which log files should I be digging into for more info? 2) Is there a way to get a status on the various components? 3) Should I wipe my Ubuntu 14.04 install entirely, and start from scratch? Thanks much -- and Happy Holidays to thems that celebrate 'em! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [1] Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [1] Links: -- [1] http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [2] http://www.thoughtworks.com/ ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Can't restart devstack.
Hi, all. Trying to get a feel for OpenStack, so I installed DevStack. And it works great... until I have the audacity to restart it. Apache doesn't go fully live unless I do a restart -- and if I do that, I don't get past the login screen (just tells me that admin had trouble authenticating). Likewise, the few things I'm even mildly familiar with -- e.g., nova commands -- never seem to execute, or even return to the CLI. I'm guessing it's getting hung up on something during rejoin-stack.sh. The log files aren't showing me anything that leaps to my eye. I've done a full DevStack re-install from scratch -- same problem. 1) Which log files should I be digging into for more info? 2) Is there a way to get a status on the various components? 3) Should I wipe my Ubuntu 14.04 install entirely, and start from scratch? Thanks much -- and Happy Holidays to thems that celebrate 'em! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Failing to upload image via glance.
Hi, all. Stepping through the Juno install docs for Ubuntu, trying to fire up my first-time install. At page 41 in the PDF, where it has me: * Source my credentials file, then * lance image-create --name cirros-0.3.3-x86_64 --file cirros-0.3.3-x86_64-disk.img --disk-format qcow2 --container-format bare --is-public True --progress I'm getting: [=] 100% Request returned failure status 401. Invalid OpenStack Identity credentials. My /var/log/glance/api.log file gives me: 2014-11-19 22:46:04.493 9961 INFO urllib3.connectionpool [-] Starting new HTTP connection (1): openstack-controller 2014-11-19 22:46:04.580 9961 INFO keystonemiddleware.auth_token [-] Auth Token confirmed use of v2.0 apis 2014-11-19 22:46:04.583 9961 INFO urllib3.connectionpool [-] Starting new HTTP connection (1): openstack-controller 2014-11-19 22:46:04.784 9961 WARNING keystonemiddleware.auth_token [-] Unexpected response from keystone service: {u'error': {u'message': u'The request you have made requires authentication.', u'code': 401, u'title': u'Unauthorized'}} 2014-11-19 22:46:04.785 9961 WARNING keystonemiddleware.auth_token [-] Authorization failed for token 2014-11-19 22:46:04.787 9961 INFO keystonemiddleware.auth_token [-] Invalid user token - deferring reject downstream 2014-11-19 22:46:04.888 9961 INFO glance.wsgi.server [-] 192.168.21.169 - - [19/Nov/2014 22:46:04] POST /v1/images HTTP/1.1 401 485 0.427956 keystone-all.log gives me: 2014-11-19 23:05:07.856 6039 WARNING keystone.common.wsgi [-] Authorization failed. The request you have made requires authentication. from 192.168.21.169 Clearly, something isn't (no duh) authenticating properly. Since there were roughly 10 zillion steps leading up to this verification step, can anyone point me in the direction of the file(s) I should be paying special attention to? Thanks! -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Re: [Openstack] Networking documentation
Well, this one doesn't specify a release name, but... http://docs.openstack.org/admin-guide-cloud/content/under_the_hood_openvswitch.html And may I just say, Thanks! I'd been looking for some documentation. Good stuff! -Ken On 2014-11-13 14:50, CARVER, PAUL wrote: If anyone knows where this page http://docs.openstack.org/havana/config-reference/content/under_the_hood_openvswitch.html [1] went in the Juno documentation please let me know. Links: -- [1] http://docs.openstack.org/havana/config-reference/content/under_the_hood_openvswitch.html ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
[Openstack] Complete Newb Questions.
Hi! Long time Linux admin, who's finally decided that the cloud is real, and I'm just thankful that there's an OSS answer to AWS. And now, it's time to get my feet wet. Which leads me to two questions: 1) I'm really surprised by how few books I see on OpenStack -- especially at the introductory level -- and how tepid the reviews for the O'Reilly books are. Is there favored documentation, either dead tree, or electronic, that I should be checking out? 2) I'd really like to set up a home install -- DevStack seems to be the way to fly since I don't exactly have a rack of systems lying around for my own personal use. Is there a better approach I should be taking? Thanks much, -Ken ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack