全編目次
- 概要
- 必須編
- part01 - Environment
- part02 - Security
- part03 - Host networking
- part04 - Network Time Protocol (NTP)
- part05 - OpenStack packages
- part06 - SQL database
- part07 - Message queue
- part08 - Memcached
- part09 - Etcd
- part10 - Install OpenStack services
- part11 - Identity service (Keystone)
- part12 - Image service (Glance)
- part13 - Placement service (Placement)
- part14 - Compute service (Nova) - controller node
- part15 - Compute service (Nova) - compute node
- part16 - Networking service (Neutron) - controller node
- part17 - Networking service (Neutron) - compute node ◀here now
- part18 - Launch an instance - Network Option 1
- part19 - Dashboard (Horizon)
- 応用編
- part20 - Networking service (Neutron) - controller node
- part21 - Networking service (Neutron) - compute node
- part22 - Launch an instance - Network Option 2
- part23 - Block Storage service (Cinder) - LVM backend
- part24 - Block Storage service (Cinder) - NFS backend
- part25 - Launch an instance - Block Storage
Networking service (Neutron)
Install and configure compute node
Install the components
dnf -y install openstack-neutron-linuxbridge iptables-ebtables ipset
※ebtables→iptables-ebtables
cp -p /etc/neutron/neutron.conf{,_org}
ls -l /etc/neutron/neutron.conf*
cat << EOF > /etc/neutron/neutron.conf [DEFAULT] transport_url = rabbit://openstack:RABBIT_PASS@ctr01 auth_strategy = keystone [keystone_authtoken] www_authenticate_uri = http://ctr01:5000 auth_url = http://ctr01:5000 memcached_servers = ctr01:11211 auth_type = password project_domain_name = default user_domain_name = default project_name = service username = neutron password = NEUTRON_PASS [oslo_concurrency] lock_path = /var/lib/neutron/tmp EOF
cat /etc/neutron/neutron.conf
Configure networking options
▼jump page
Networking Option 1: Provider networks
Configure the Linux bridge agent
cp -p /etc/neutron/plugins/ml2/linuxbridge_agent.ini{,_org}
ls -l /etc/neutron/plugins/ml2/linuxbridge_agent.ini*
cat << EOF > /etc/neutron/plugins/ml2/linuxbridge_agent.ini [linux_bridge] physical_interface_mappings = provider:enp0s25 [vxlan] enable_vxlan = false [securitygroup] enable_security_group = true firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver EOF
cat /etc/neutron/plugins/ml2/linuxbridge_agent.ini
sysctl net.bridge.bridge-nf-call-iptables sysctl net.bridge.bridge-nf-call-ip6tables
→要確認
Network Option 1で構成した際はカーネルパラメータが存在しないと表示された。
その後、Network Option 2で構成した後から正しい値(1)が出力されるようになった。と思う。
▲return page
Install and configure compute node
Configure the Compute service to use the Networking service
cp -p /etc/nova/nova.conf{,_add_neutron}
ls -l /etc/nova/nova.conf*
cat << EOF >> /etc/nova/nova.conf
[neutron]
auth_url = http://ctr01:5000
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = NEUTRON_PASS
EOF
diff /etc/nova/nova.conf{,_add_neutron}
cat /etc/nova/nova.conf
Finalize installation
systemctl restart openstack-nova-compute.service
systemctl enable --now neutron-linuxbridge-agent.service systemctl status --no-pager -l neutron-linuxbridge-agent.service systemctl is-active neutron-linuxbridge-agent.service systemctl is-enabled neutron-linuxbridge-agent.service
