Thanks, this is getting me closer! I still have a few questions:
When I configure the bridges (for br-ex and br-int), do those bridges
need to be configured with IP addressed? Or can I just configure the
interfaces without IP addresses? I guess at least for the br-ex, it
needs to know the g
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Heat templates with invalid references allows unintended network access
- ---
### Summary ###
Orchestration templates can create security groups to define network
access rules. When creating these rules, it is possible to have a rule
grant incoming n
Hey OpenStack peeps!
Most of the .conf files within OpenStack contain credentials and/or token
ID's that allow services to talk to each other. And interestingly, I have
not found a way to obfuscate this data from system admins who do not need
the keys to the entire kingdom.
Is there a best practi
Hi Alejandro,
On Thu, Apr 3, 2014 at 11:41 PM, Alejandro Comisario
wrote:
> I would love to have insights regarding people using _base with no
> shared storage but locally on the compute, up&down sides, experiences
> & comments.
We currently have a small cloud made of heterogeneous hardware.
Whe
Hi Alejandro,
In our case, though we use shared storage for volumes and application data,
we use local disks for the VM's backing files (_base).
To mitigate the space and performance issues, we adopted the following
measures, of which standardization and minimization of ami's quantity are
very im
A few of us on the openstack-hpc mailing list are proposing a
birds-of-a-feather session on OpenStack for HPC.
I went ahead and pushed the button on the session request:
http://summit.openstack.org/cfp/details/227
Anyone interested in participating welcome to contribute to the Etherpad:
https://
> Hi Juha,
>
> Smells like a bug in the sample POST API, in the sense that:
>
> "resource_metadata" : { ... "user_metadata": {"server_group": "Group_B"} }
>
> is flattened to:
>
> "metadata": { ... "user_metadata.server_group": "Group_B" }
>
> in the metering message generated from the s
Hi Juha,
Smells like a bug in the sample POST API, in the sense that:
"resource_metadata" : { ... "user_metadata": {"server_group": "Group_B"} }
is flattened to:
"metadata": { ... "user_metadata.server_group": "Group_B" }
in the metering message generated from the sample.
I'll dig some m
Hi 'All'
Thanks for your responses, If going with a Ceph storage solution, the
plan would be to use two R720xds per site with each having 128Gb RAM,
10gbe network connections and 24 x 600Gb 10k SAS drives for each storage
server with each disk being a single OSD setup as RAID0.
Regards
Ian
Hello everyone,
Sahara published its first Icehouse release candidate today. The list of
bugs fixed since feature freeze and the RC1 tarball are available at:
https://launchpad.net/sahara/icehouse/icehouse-rc1
Unless release-critical issues are found that warrant a release
candidate respin, this
On 04/03/2014 05:02 PM, Diego Woitasen wrote:
> Hi,
> I need another opinion about what I am doing. I'm setting up
> OpenStack using Neutron (1 controller node, 1 network node, N computes
> nodes). In my setup every tenant have its own private network using
> VLANs (OpenVSwitch). I only need one r
100 servers has your running 400GB of ram and 2TB of storage per server
or 4TB of storage overall.
That would actually be within the range of 2 systems using DBRB and SSDs
and you would get extremely fast performance.
I would argue that CEPH works best for large data sets and where there
ar
Hello,
I am not entirely familiar with Ceph but when considering SAN deployments make
sure you check out some of the newer providers in that market like Nimble
Storage, Pure Storage, etc.
Equallogic is pretty far behind in hardware/technology vs. what some of the
newer competitors are doing wi
Hello everyone,
Last but not least, Swift just published its first Icehouse release
candidate. You can find the tarball for 1.13.1-rc1 at:
https://launchpad.net/swift/icehouse/1.13.1-rc1
Unless release-critical issues are found that warrant a release
candidate respin, this RC1 will be formally r
How do you route every tenant network to the corporate network?
From: Diego Woitasen [di...@woitasen.com.ar]
Sent: Friday, April 04, 2014 1:32 AM
To: openstack@lists.openstack.org
Subject: [Openstack] [RFC] Routed private networks per tenant
Hi,
I need an
The answer is a bit complicated.
Multiple users can belong to a tenant in openstack however a user can have
multiple vpc in aws. However In aws most of the resources(security groups,
routing table, access list are aligned to a vpc) Similarly in openstack all
such resources are aligned to the te
You may want the account ACLs :
http://docs.openstack.org/developer/swift/overview_auth.html?highlight=ACLs
2014-04-04 15:13 GMT+08:00 Kuo Hugo :
> What's the authentication mechanism that you use in the environment ?
>
>
> 2014-04-04 14:15 GMT+08:00 Ankit Deshwal :
>
>> Hello Everyone
>>
>> Ca
What's the authentication mechanism that you use in the environment ?
2014-04-04 14:15 GMT+08:00 Ankit Deshwal :
> Hello Everyone
>
> Can i have a user that has restricted access to its containers and
> objects(only view and download objects)??
>
> ___
Sir could you please help us in installing ssbench i am getting errors.
ashish@ubuntu:~$ ssbench-worker -h
Traceback (most recent call last):
File "/usr/local/bin/ssbench-worker", line 22, in
from ssbench.worker import Worker
File "/usr/local/lib/python2.7/dist-packages/ssbench/worker.py
19 matches
Mail list logo