Cloudstack + XenServer 6.2 + NetApp in production

2015-02-13 Thread Yiping Zhang 
Hi, all:

I am wondering if any one is running their CloudStack in production deployments 
with  XenServer 6.2 + NetApp clusters ?

Recently, in our non production deployment (rhel 6.6 + CS 4.3.0 + XenServer 6.2 
cluster + NetApp cluster), all our XenServer rebooted automatically because of 
NFS timeout, when our NetApp cluster failover happened during a scheduled filer 
maintenance. My google search turned up this Citrix hot fix: 
http://support.citrix.com/article/CTX135623 for XenServer 6.0.2, and this post 
about XenServer 6.2: http://www.gossamer-threads.com/lists/xen/devel/320020 .

Obviously the problem still exists for XenServer 6.2 and we are very concerned 
about going to production deployment based on this technology stack.

If anyone has a similar setup, please share your experiences.

Thanks,

Yiping

Re: Cloudstack 4.5 and XS6.5

2015-02-13 Thread Geoff Higginbottom 
Are you using Security Groups, if so have you changed xenserver to Linux Bridge 
rather than OVS.

Regards

Geoff Higginbottom
CTO / Cloud Architect

D: +44 20 3603 0542 | S: +44 20 3603 0540 
| M: +447968161581

geoff.higginbot...@shapeblue.com | 
www.shapeblue.com | 
Twitter:@cloudstackguru

ShapeBlue Ltd, 53 Chandos Place, Covent Garden, London, WC2N 
4HS


On 13 Feb 2015, at 22:00, Leandro Mendes 
mailto:theflock...@gmail.com>> wrote:

I skip that step, but now i'm stucked at the server setup by cloudstack.

I've already did a fresh installation of XenServer 6.5 and try to setup
again, but i have a lot of this errors:

2015-02-13 19:53:45,384 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../cloud-plugin-storage
to /etc/xapi.d/plugins on 192.168.2.17 with permission 0755
2015-02-13 19:53:45,474 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../cloudstack_pluginlib.py
to /etc/xapi.d/plugins on 192.168.2.17 with permission 0755
2015-02-13 19:53:45,475 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Unable to create destination path:
/etc/xapi.d/plugins on 192.168.2.17 but trying anyway
2015-02-13 19:53:45,575 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../vmopsSnapshot
to /etc/xapi.d/plugins on 192.168.2.17 with permission 0755
2015-02-13 19:53:45,576 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Unable to create destination path:
/etc/xapi.d/plugins on 192.168.2.17 but trying anyway
2015-02-13 19:53:45,632 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../ovs-vif-flows.py
to /etc/xapi.d/plugins on 192.168.2.17 with permission 0755
2015-02-13 19:53:45,633 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Unable to create destination path:
/etc/xapi.d/plugins on 192.168.2.17 but trying anyway
2015-02-13 19:53:45,682 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../cloud-setup-bonding.sh
to /opt/cloud/bin on 192.168.2.17 with permission 0755
2015-02-13 19:53:45,683 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Unable to create destination path:
/opt/cloud/bin on 192.168.2.17 but trying anyway
2015-02-13 19:53:45,732 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../../../network/ovs-pvlan-dhcp-host.sh
to /opt/cloud/bin on 192.168.2.17 with permission 0755


What is really weird is, the directory /opt/cloud was created and populated
with lots of scripts.

Seems cloudstack is trying to create the /etc/xapi.d/plugins and
/opt/cloud/bin but they already exists.

And in the panel i got this one:

Cannot transit agent status with event AgentDisconnected for host 7,
mangement server id is 112921676884,Unable to transition to a new state
from Creating via AgentDisconnected


Thanks;

On Fri, Feb 13, 2015 at 7:37 PM, Leandro Mendes 
mailto:theflock...@gmail.com>>
wrote:

Ok Geoff.

I was installing based on the Cloudstack XenServer guide:
http://docs.cloudstack.apache.org/projects/cloudstack-installation/en/latest/hypervisor/xenserver.html#install-cloudstack-xenserver-support-package-csp

I will ignore this step.

Thanks.

On Fri, Feb 13, 2015 at 7:11 PM, Geoff Higginbottom <
geoff.higginbot...@shapeblue.com> 
wrote:

Hi Leandro,

I have been testing the latest release candidates of ACS 4.5.0 using
XenServer 6.5 and have not been installing any supplemental packages.

Regards

Geoff Higginbottom

D: +44 20 3603 0542 | S: +44 20 3603 0540 | M: +447968161581

geoff.higginbot...@shapeblue.com

-Original Message-
From: Leandro Mendes [mailto:theflock...@gmail.com]
Sent: 13 February 2015 20:47
To: users@cloudstack.apache.org
Subject: Cloudstack 4.5 and XS6.5

Hello guys,

Does anyone tried to setup XS6.5 with Cloudstack 4.5?

I couldn't install the supplemental package during incompatible libc6.

Is there a way to setup it without the supplemental pack?

thanks.
Find out more about ShapeBlue and our range of CloudStack related services

IaaS Cloud Design & Build<
http://shapeblue.com/iaas-cloud-design-and-build//>
CSForge - rapid IaaS deployment framework
CloudStack Consulting
CloudStack Software Engineering<
http://shapeblue.com/cloudstack-software-engineering/>
CloudStack Inf

Re: Cloudstack 4.5 and XS6.5

2015-02-13 Thread Leandro Mendes 
I skip that step, but now i'm stucked at the server setup by cloudstack.

I've already did a fresh installation of XenServer 6.5 and try to setup
again, but i have a lot of this errors:

2015-02-13 19:53:45,384 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../cloud-plugin-storage
to /etc/xapi.d/plugins on 192.168.2.17 with permission 0755
2015-02-13 19:53:45,474 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../cloudstack_pluginlib.py
to /etc/xapi.d/plugins on 192.168.2.17 with permission 0755
2015-02-13 19:53:45,475 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Unable to create destination path:
/etc/xapi.d/plugins on 192.168.2.17 but trying anyway
2015-02-13 19:53:45,575 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../vmopsSnapshot
to /etc/xapi.d/plugins on 192.168.2.17 with permission 0755
2015-02-13 19:53:45,576 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Unable to create destination path:
/etc/xapi.d/plugins on 192.168.2.17 but trying anyway
2015-02-13 19:53:45,632 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../ovs-vif-flows.py
to /etc/xapi.d/plugins on 192.168.2.17 with permission 0755
2015-02-13 19:53:45,633 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Unable to create destination path:
/etc/xapi.d/plugins on 192.168.2.17 but trying anyway
2015-02-13 19:53:45,682 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../cloud-setup-bonding.sh
to /opt/cloud/bin on 192.168.2.17 with permission 0755
2015-02-13 19:53:45,683 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Unable to create destination path:
/opt/cloud/bin on 192.168.2.17 but trying anyway
2015-02-13 19:53:45,732 DEBUG [c.c.h.x.r.CitrixResourceBase]
(DirectAgent-1:ctx-3fb2cbdd) Copying
/usr/share/cloudstack-common/scripts/vm/hypervisor/xenserver/xenserver65/../../../network/ovs-pvlan-dhcp-host.sh
to /opt/cloud/bin on 192.168.2.17 with permission 0755


What is really weird is, the directory /opt/cloud was created and populated
with lots of scripts.

Seems cloudstack is trying to create the /etc/xapi.d/plugins and
/opt/cloud/bin but they already exists.

And in the panel i got this one:

Cannot transit agent status with event AgentDisconnected for host 7,
mangement server id is 112921676884,Unable to transition to a new state
from Creating via AgentDisconnected


Thanks;

On Fri, Feb 13, 2015 at 7:37 PM, Leandro Mendes 
wrote:

> Ok Geoff.
>
> I was installing based on the Cloudstack XenServer guide:
> http://docs.cloudstack.apache.org/projects/cloudstack-installation/en/latest/hypervisor/xenserver.html#install-cloudstack-xenserver-support-package-csp
>
> I will ignore this step.
>
> Thanks.
>
> On Fri, Feb 13, 2015 at 7:11 PM, Geoff Higginbottom <
> geoff.higginbot...@shapeblue.com> wrote:
>
>> Hi Leandro,
>>
>> I have been testing the latest release candidates of ACS 4.5.0 using
>> XenServer 6.5 and have not been installing any supplemental packages.
>>
>> Regards
>>
>> Geoff Higginbottom
>>
>> D: +44 20 3603 0542 | S: +44 20 3603 0540 | M: +447968161581
>>
>> geoff.higginbot...@shapeblue.com
>>
>> -Original Message-
>> From: Leandro Mendes [mailto:theflock...@gmail.com]
>> Sent: 13 February 2015 20:47
>> To: users@cloudstack.apache.org
>> Subject: Cloudstack 4.5 and XS6.5
>>
>> Hello guys,
>>
>> Does anyone tried to setup XS6.5 with Cloudstack 4.5?
>>
>> I couldn't install the supplemental package during incompatible libc6.
>>
>> Is there a way to setup it without the supplemental pack?
>>
>> thanks.
>> Find out more about ShapeBlue and our range of CloudStack related services
>>
>> IaaS Cloud Design & Build<
>> http://shapeblue.com/iaas-cloud-design-and-build//>
>> CSForge – rapid IaaS deployment framework
>> CloudStack Consulting
>> CloudStack Software Engineering<
>> http://shapeblue.com/cloudstack-software-engineering/>
>> CloudStack Infrastructure Support<
>> http://shapeblue.com/cloudstack-infrastructure-support/>
>> CloudStack Bootcamp Training Courses<
>> http://shapeblue.com/cloudstack-training/>
>>
>> This email and any attachments to it may be confidential and are intended
>> solely for the use of the individual to whom it is addressed. Any views or
>> opinions expressed are solely those of the author and do not necessarily
>> represent those of Shape Blue Ltd or related companies. If you are not the
>> intended recipient of this email, you must neither take any action based

Re: Cloudstack 4.5 and XS6.5

2015-02-13 Thread Leandro Mendes 
Ok Geoff.

I was installing based on the Cloudstack XenServer guide:
http://docs.cloudstack.apache.org/projects/cloudstack-installation/en/latest/hypervisor/xenserver.html#install-cloudstack-xenserver-support-package-csp

I will ignore this step.

Thanks.

On Fri, Feb 13, 2015 at 7:11 PM, Geoff Higginbottom <
geoff.higginbot...@shapeblue.com> wrote:

> Hi Leandro,
>
> I have been testing the latest release candidates of ACS 4.5.0 using
> XenServer 6.5 and have not been installing any supplemental packages.
>
> Regards
>
> Geoff Higginbottom
>
> D: +44 20 3603 0542 | S: +44 20 3603 0540 | M: +447968161581
>
> geoff.higginbot...@shapeblue.com
>
> -Original Message-
> From: Leandro Mendes [mailto:theflock...@gmail.com]
> Sent: 13 February 2015 20:47
> To: users@cloudstack.apache.org
> Subject: Cloudstack 4.5 and XS6.5
>
> Hello guys,
>
> Does anyone tried to setup XS6.5 with Cloudstack 4.5?
>
> I couldn't install the supplemental package during incompatible libc6.
>
> Is there a way to setup it without the supplemental pack?
>
> thanks.
> Find out more about ShapeBlue and our range of CloudStack related services
>
> IaaS Cloud Design & Build<
> http://shapeblue.com/iaas-cloud-design-and-build//>
> CSForge – rapid IaaS deployment framework
> CloudStack Consulting
> CloudStack Software Engineering<
> http://shapeblue.com/cloudstack-software-engineering/>
> CloudStack Infrastructure Support<
> http://shapeblue.com/cloudstack-infrastructure-support/>
> CloudStack Bootcamp Training Courses<
> http://shapeblue.com/cloudstack-training/>
>
> This email and any attachments to it may be confidential and are intended
> solely for the use of the individual to whom it is addressed. Any views or
> opinions expressed are solely those of the author and do not necessarily
> represent those of Shape Blue Ltd or related companies. If you are not the
> intended recipient of this email, you must neither take any action based
> upon its contents, nor copy or show it to anyone. Please contact the sender
> if you believe you have received this email in error. Shape Blue Ltd is a
> company incorporated in England & Wales. ShapeBlue Services India LLP is a
> company incorporated in India and is operated under license from Shape Blue
> Ltd. Shape Blue Brasil Consultoria Ltda is a company incorporated in Brasil
> and is operated under license from Shape Blue Ltd. ShapeBlue SA Pty Ltd is
> a company registered by The Republic of South Africa and is traded under
> license from Shape Blue Ltd. ShapeBlue is a registered trademark.
>

RE: Cloudstack 4.5 and XS6.5

2015-02-13 Thread Geoff Higginbottom 
Hi Leandro,

I have been testing the latest release candidates of ACS 4.5.0 using XenServer 
6.5 and have not been installing any supplemental packages.

Regards

Geoff Higginbottom

D: +44 20 3603 0542 | S: +44 20 3603 0540 | M: +447968161581

geoff.higginbot...@shapeblue.com

-Original Message-
From: Leandro Mendes [mailto:theflock...@gmail.com]
Sent: 13 February 2015 20:47
To: users@cloudstack.apache.org
Subject: Cloudstack 4.5 and XS6.5

Hello guys,

Does anyone tried to setup XS6.5 with Cloudstack 4.5?

I couldn't install the supplemental package during incompatible libc6.

Is there a way to setup it without the supplemental pack?

thanks.
Find out more about ShapeBlue and our range of CloudStack related services

IaaS Cloud Design & Build
CSForge – rapid IaaS deployment framework
CloudStack Consulting
CloudStack Software 
Engineering
CloudStack Infrastructure 
Support
CloudStack Bootcamp Training Courses

This email and any attachments to it may be confidential and are intended 
solely for the use of the individual to whom it is addressed. Any views or 
opinions expressed are solely those of the author and do not necessarily 
represent those of Shape Blue Ltd or related companies. If you are not the 
intended recipient of this email, you must neither take any action based upon 
its contents, nor copy or show it to anyone. Please contact the sender if you 
believe you have received this email in error. Shape Blue Ltd is a company 
incorporated in England & Wales. ShapeBlue Services India LLP is a company 
incorporated in India and is operated under license from Shape Blue Ltd. Shape 
Blue Brasil Consultoria Ltda is a company incorporated in Brasil and is 
operated under license from Shape Blue Ltd. ShapeBlue SA Pty Ltd is a company 
registered by The Republic of South Africa and is traded under license from 
Shape Blue Ltd. ShapeBlue is a registered trademark.

Re: how to configure multi-homed management server?

2015-02-13 Thread Yiping Zhang 
Update:

Now my mgr¹s eth0 is configured with IP address on the lab network, the
hostname is set to the name of lab network IP. However, after I run
cloudstack-setup-databases and cloudstack-setup-management scripts, I
still find the wrong IP address in global setting param "hosts", and wrong
value for param ³management.network.cidr².

It looks like that running cloudstack-setup-management script (with
immediate start of cloudstack-management service) populates DB tables.  So
my question comes down to how does cloudstack-management service
determine these configuration values ?

Thanks

Yiping

On 2/11/15, 8:21 PM, "Praveen B"  wrote:

>Hi Zhang,
>
>"host" parameter in the global settings will decide system VMs to
>communicate to MGMT ip address on port 8250. Since you have two IP
>addresses on management server, CloudStack has picked up your corporate
>network IP address.
>
>As a fix, change the "host" parameter to your lab network IP address and
>destroy system VMs. New system VMs will point to correct mgmt IP. Let me
>know how it goes.
>
>Thanks,
>Praveen
>
>On Thu, Feb 12, 2015 at 5:39 AM, Yiping Zhang  wrote:
>
>> Hi, all:
>>
>> My  CS management server has two IP addresses: one IP address on our
>> corporate network (for general access) and one IP address on lab
>>network ,
>> which is used at CloudStack¹s management network.
>>
>> When I run cloudstack-setup-database script, I have given ³‹mshost²
>>option
>> with its IP address on lab network.  However,  when CPVM comes up, the
>> cloud service is not running . Looking at /var/log/cloud.log file on
>>CPVM
>> indicates that it is trying to connect to port 8250 of management
>>server¹s
>> IP address on corporate network instead of the IP address on lab
>>network.
>> On SSVM, its cloud service also tries to connect to port 8250 of the
>>wrong
>> MS IP address
>>
>> How does systemVMs decide which IP address on the management server to
>>use
>> when starting cloud service ?  How do I make systemVM¹s to use proper
>> interface on management server ?
>>
>> Thanks
>>
>> Yiping
>>

Re: Cloudstack 4.5 and XS6.5

2015-02-13 Thread Erik Weber 
What supplemental package? It should manage just fine without anything
extra.


-- 
Erik

On Fri, Feb 13, 2015 at 9:47 PM, Leandro Mendes 
wrote:

> Hello guys,
>
> Does anyone tried to setup XS6.5 with Cloudstack 4.5?
>
> I couldn't install the supplemental package during incompatible libc6.
>
> Is there a way to setup it without the supplemental pack?
>
> thanks.
>

Cloudstack 4.5 and XS6.5

2015-02-13 Thread Leandro Mendes 
Hello guys,

Does anyone tried to setup XS6.5 with Cloudstack 4.5?

I couldn't install the supplemental package during incompatible libc6.

Is there a way to setup it without the supplemental pack?

thanks.

Re: Docker Support?

2015-02-13 Thread Sebastien Goasguen 
for questions like these, submit a github issue on the project itself, since 
it's not cloudstack code.


On Feb 13, 2015, at 4:23 AM, Osay Osman Yuuni  wrote:

> Never mind @sebgoa.  Works like snake oil
> 
> On 13 February 2015 at 10:21, Osay Osman Yuuni  wrote:
> Hi @sebgoa,
> Thanks for putting up the ansible-kubernetes.  I'm trying it out and have hit 
> an issue.  I've edited k8s.yml and replaced the template with the name of my 
> own template.  When I try to run the playbook I get this error
> 
> failed: [localhost] => {"failed": true, "parsed": false}
> /bin/sh: 1: 
> /opt/local/Library/Frameworks/Python.framework/Versions/2.7/bin/python: not 
> found
> 
> I'm running this off an Ubuntu 14.04 VM.  The template I specified is a 
> coreOS (stable) template for cloudstack.  Are there any prerequisites I might 
> have missed?
> 
> Cheers
> Osay
> 
> On 12 February 2015 at 17:00, Sebastien Goasguen  wrote:
> 
> On Feb 5, 2015, at 6:07 PM, Phillip Kent  wrote:
> 
> > Thanks all for this useful thread.
> >
> > I can confirm that a CoreOS template runs fine on an ESXi hypervisor
> > in CloudStack 4.3.1. The type is set to "Other (64-bit)". I didn't set
> > up the template so I don't know about relative performance with other
> > type settings.
> >
> > Regarding CoreOS, does anyone know what port(s) are required for
> > CoreOS to do auto-updating?
> 
> good question. CoreOS uses the Omaha protocol for updates.
> But I am not sure what ports are being used. Might be worth asking in the 
> coreOS irc channel
> 
> >
> > Obviously I can set an egress rule to allow all ports but I might want
> > to be more restrictive.
> >
> > -Phillip
> 
> 
>

RE: VPC, Redundant Router and Seamless Upgrades

2015-02-13 Thread Adrian Lewis 
Hi Rob,

I believe it will be on the Shapeblue site early next week although the
session was part presentation and part demo so you won't get the demo bit.
There was no video recording done that I'm aware of.

Cheers,

Adrian

-Original Message-
From: r...@fotm.net [mailto:r...@fotm.net]
Sent: 13 February 2015 15:58
To: users@cloudstack.apache.org
Subject: RE: VPC, Redundant Router and Seamless Upgrades

Hi Adrian,

thank you for the quick reply. Do you know if this presentation is
publicly available?
I would like to read details of this implementation, because we consider
this as showstopper for our usecases.


Thanks,
Robert

-Original Message-
Hi Rob,

This is actively being worked on and most of the work is done pending
further testing. You should have your wishes granted in 4.6 (but no 100%
guarantees). Not sure if you're UK based but you just missed a
presentation on this at the London user group meet up yesterday. Some
great work by the guys at Schuberg Philis on this. This should (in theory
at least) allow controlled upgrades of the VPC VR instances for near zero
downtime during upgrades. This specific issue was apparently one of the
key drivers for this work.

Adrian

-Original Message-
From: r...@fotm.net [mailto:r...@fotm.net]
Sent: 13 February 2015 14:02
To: users@cloudstack.apache.org
Subject: VPC, Redundant Router and Seamless Upgrades

Hi,

currently we are investigating a deployment of Cloudstack for our
Webhosting company and we came to the conclusion that currently the
Redundant Router part is not supported for VPCs.

Do you know if this implementation is possible?
Additionally we hope that we are able to achieve "zero" downtime when we
are performing an system vm upgrade.


Can you please share your thoughts?



Thank you in advance,
Robert

RE: VPC, Redundant Router and Seamless Upgrades

2015-02-13 Thread rob 
Hi Adrian,

thank you for the quick reply. Do you know if this presentation is publicly 
available?
I would like to read details of this implementation, because we consider this 
as showstopper for our usecases.


Thanks,
Robert

-Original Message-
Hi Rob,

This is actively being worked on and most of the work is done pending further 
testing. You should have your wishes granted in 4.6 (but no 100% guarantees). 
Not sure if you're UK based but you just missed a presentation on this at the 
London user group meet up yesterday. Some great work by the guys at Schuberg 
Philis on this. This should (in theory at least) allow controlled upgrades of 
the VPC VR instances for near zero downtime during upgrades. This specific 
issue was apparently one of the key drivers for this work.

Adrian

-Original Message-
From: r...@fotm.net [mailto:r...@fotm.net]
Sent: 13 February 2015 14:02
To: users@cloudstack.apache.org
Subject: VPC, Redundant Router and Seamless Upgrades

Hi,

currently we are investigating a deployment of Cloudstack for our Webhosting 
company and we came to the conclusion that currently the Redundant Router part 
is not supported for VPCs.

Do you know if this implementation is possible?
Additionally we hope that we are able to achieve "zero" downtime when we are 
performing an system vm upgrade.


Can you please share your thoughts?



Thank you in advance,
Robert

RE: VPC Router without NAT (IPv4 or IPv6)

2015-02-13 Thread Adrian Lewis 
As a slightly different approach, would it be easier to allow us to delete
the 'public' shared network connected to the VPC VR and therefore allow us
to set the default route to a private gateway instead then? This would solve
my problem whilst leaving the current default 'public' connectivity alone. I
think that the concept of a 'public' network being defined as both the
destination for the default route as well as being a publicly routable IP
network (hence needing NAT) needs more flexibility. Both are not necessarily
the case.

I'm pretty sure this is not possible now (please tell me if I'm wrong) but
I'm trying to formulate a better thought out feature request for Jira.

We want to use the Cloudstack VPC concept to allow customers to create
whatever tiers they want to but for all of their WAN traffic to go via a
hardware gateway that performs a much richer set of features than can be
expected from a software VR (AV, IDS/IDP, Authentication, IPSec & SSL VPNs,
MPLS connections etc). This hardware gateway would be controlled
independently from ACS. The current workaround is for us to abandon the VPC
construct and create a bunch of shared networks assigned to the customer,
create all of the VLAN interfaces manually on the hardware gateway, and to
route between each network on the hardware gateway. The downside to this
approach is that a system VR is needed for every shared network created and
we have to do far more manual work on the hardware gateway on behalf of the
customer. Basically way more complicated than it needs to be simply
because we can't turn off NAT on the VPC VR (or set the default route for
the VR to a private gateway).

I'm simply trying to emulate the way that 95% of simple corporate networks
are structured (L3 core routing between VLANs with a transit network
connected to their firewalls) but it seems that I'm being forced into
working with concepts from home networks. There also does not seem to be a
way to use route summarisation in the VPC VR. If the tiers use a CIDR of
10.5.12.0/24, I should still be able to add a summarised static route to a
private gateway using a destination of 10.0.0.0/8. The CloudStack
'intelligence' blocks me from doing this as it thinks it knows networking
better than I do. Currently if there are multiple subnets connected via a
private gateway, I have to either add in every single one manually or else
make multiple summarised subnets with various masks just to avoid the VPC
CIDR.

Does anyone have any insight (Wilder, Daan?) into how the VPC VRs currently
work so that we could potentially focus on either:
1. Allowing source NAT to be turned off from the public network connection
to the VPC VR or
2. Allowing the public connection to be deleted so that we can set the
default route to a private gateway (without source nat)?

As I mentioned in my original post, when working on IPv6, NAT should not be
used anyway so this issue is likely to come up again regardless of whether
anyone thinks my use case is worth investigation.

Thanks in advance,

Adrian

-Original Message-
From: Sanjeev Neelarapu [mailto:sanjeev.neelar...@citrix.com]
Sent: 13 February 2015 06:12
To: users@cloudstack.apache.org
Subject: RE: VPC Router without NAT (IPv4 or IPv6)

As of now there is no way to disable NAT on VPC router.

-Sanjeev

-Original Message-
From: Adrian Lewis [mailto:adr...@alsiconsulting.co.uk]
Sent: Thursday, February 12, 2015 4:58 PM
To: users@cloudstack.apache.org
Subject: VPC Router without NAT (IPv4 or IPv6)

Hi,



It’s been asked before but does anyone know of a way to completely disable
NAT (specifically source NAT) on a VPC router on 4.4 or 4.5? There doesn’t
sem to be an easy way to do this via the web interface. I’d like to use the
VPC router for multi-subnet L3 routing but the ‘public’ network would be a
transit network to a hardware firewall which does NAT for internet access.



With IPv6 NAT is generally considered as a no-no so I was wondering if
anyone knows if there are plans to let users be more in control of the
pre-defined networking scenarios that CS seems to try to enforce.



Perhaps a suggestion for GSOC?



Cheers,



Adrian

RE: VPC, Redundant Router and Seamless Upgrades

2015-02-13 Thread Adrian Lewis 
Hi Rob,

This is actively being worked on and most of the work is done pending
further testing. You should have your wishes granted in 4.6 (but no 100%
guarantees). Not sure if you're UK based but you just missed a
presentation on this at the London user group meet up yesterday. Some
great work by the guys at Schuberg Philis on this. This should (in theory
at least) allow controlled upgrades of the VPC VR instances for near zero
downtime during upgrades. This specific issue was apparently one of the
key drivers for this work.

Adrian

-Original Message-
From: r...@fotm.net [mailto:r...@fotm.net]
Sent: 13 February 2015 14:02
To: users@cloudstack.apache.org
Subject: VPC, Redundant Router and Seamless Upgrades

Hi,

currently we are investigating a deployment of Cloudstack for our
Webhosting company and we came to the conclusion that currently the
Redundant Router part is not supported for VPCs.

Do you know if this implementation is possible?
Additionally we hope that we are able to achieve "zero" downtime when we
are performing an system vm upgrade.


Can you please share your thoughts?



Thank you in advance,
Robert

VPC, Redundant Router and Seamless Upgrades

2015-02-13 Thread rob 
Hi,

currently we are investigating a deployment of Cloudstack for our Webhosting 
company and we came to the conclusion that currently the Redundant Router part 
is not supported for VPCs.

Do you know if this implementation is possible?
Additionally we hope that we are able to achieve "zero" downtime when we are 
performing an system vm upgrade.


Can you please share your thoughts?



Thank you in advance,
Robert

Cloudmonkey question

2015-02-13 Thread Andrei Mikhailovsky 
Hello guys, 

I have a silly question; can't really find an answer by googling. How do I use 
tags when I want to query something. For instance, if I want to query volumes 
using "list volumes" command. If i would like to get only the results 
containing a certain tag, like a tag with key remote_backup and value of yes; 
how would the list volumes command should look like? 

Thanks 

Andrei

Re: query about 4.4 usage

2015-02-13 Thread Daan Hoogland 
Antoine,
Did you feed your patches back to the 4.4 branch and should we release
another 4.4 in your opinion?

On Thu, Feb 12, 2015 at 9:02 AM, Antoine Coetsier
 wrote:
> Hello Daan and users,
>
> We at Exoscale are now using in Production a 4.4 CloudStack base + our
> patches after an extensive preproduction run with this version.
> Next migration is unlikely to be 4.5. Please, let¹s adopt all proper
> rebasing from one version to another in order not to have bugs fixed in
> smaller versions being shipped in higher ones.
>
> Antoine
>
>
> Le 11.02.15 18:53, « Daan Hoogland »  a écrit :
>
>>H,
>>
>>Today we had a talk at work (Schuberg Philis) about our CloudStack
>>strategy. We decided that we will keep at 4.4 until we have a good
>>test environment of our own and then skip to 4.6 or up, depending on
>>where we merge our redundant vpc work in. We don't have any time to
>>put energy in 4.5 and need some features that won't make it there. The
>>afore mentioned redundant vpcs, but also ipv6 for vpcs and ovm
>>support.
>>
>>What I am wondering now is:
>>Who else is on 4.4 in production systems?
>>What versions do you run?
>>How did you test it before going to production?
>>What are your migration plans?
>>
>>thanks,
>>--
>>Daan
>
>



-- 
Daan

Re: Docker Support?

2015-02-13 Thread Osay Osman Yuuni 
Never mind @sebgoa.  Works like snake oil[?]

On 13 February 2015 at 10:21, Osay Osman Yuuni  wrote:

> Hi @sebgoa,
> Thanks for putting up the ansible-kubernetes.  I'm trying it out and have
> hit an issue.  I've edited k8s.yml and replaced the template with the name
> of my own template.  When I try to run the playbook I get this error
>
> failed: [localhost] => {"failed": true, "parsed": false}
> /bin/sh: 1:
> /opt/local/Library/Frameworks/Python.framework/Versions/2.7/bin/python: not
> found
>
> I'm running this off an Ubuntu 14.04 VM.  The template I specified is a
> coreOS (stable) template for cloudstack.  Are there any prerequisites I
> might have missed?
>
> Cheers
> Osay
>
> On 12 February 2015 at 17:00, Sebastien Goasguen  wrote:
>
>>
>> On Feb 5, 2015, at 6:07 PM, Phillip Kent 
>> wrote:
>>
>> > Thanks all for this useful thread.
>> >
>> > I can confirm that a CoreOS template runs fine on an ESXi hypervisor
>> > in CloudStack 4.3.1. The type is set to "Other (64-bit)". I didn't set
>> > up the template so I don't know about relative performance with other
>> > type settings.
>> >
>> > Regarding CoreOS, does anyone know what port(s) are required for
>> > CoreOS to do auto-updating?
>>
>> good question. CoreOS uses the Omaha protocol for updates.
>> But I am not sure what ports are being used. Might be worth asking in the
>> coreOS irc channel
>>
>> >
>> > Obviously I can set an egress rule to allow all ports but I might want
>> > to be more restrictive.
>> >
>> > -Phillip
>>
>>
>

Re: Docker Support?

2015-02-13 Thread Osay Osman Yuuni 
Hi @sebgoa,
Thanks for putting up the ansible-kubernetes.  I'm trying it out and have
hit an issue.  I've edited k8s.yml and replaced the template with the name
of my own template.  When I try to run the playbook I get this error

failed: [localhost] => {"failed": true, "parsed": false}
/bin/sh: 1:
/opt/local/Library/Frameworks/Python.framework/Versions/2.7/bin/python: not
found

I'm running this off an Ubuntu 14.04 VM.  The template I specified is a
coreOS (stable) template for cloudstack.  Are there any prerequisites I
might have missed?

Cheers
Osay

On 12 February 2015 at 17:00, Sebastien Goasguen  wrote:

>
> On Feb 5, 2015, at 6:07 PM, Phillip Kent  wrote:
>
> > Thanks all for this useful thread.
> >
> > I can confirm that a CoreOS template runs fine on an ESXi hypervisor
> > in CloudStack 4.3.1. The type is set to "Other (64-bit)". I didn't set
> > up the template so I don't know about relative performance with other
> > type settings.
> >
> > Regarding CoreOS, does anyone know what port(s) are required for
> > CoreOS to do auto-updating?
>
> good question. CoreOS uses the Omaha protocol for updates.
> But I am not sure what ports are being used. Might be worth asking in the
> coreOS irc channel
>
> >
> > Obviously I can set an egress rule to allow all ports but I might want
> > to be more restrictive.
> >
> > -Phillip
>
>