OpenStackstein安裝(八)networkoption1

安裝和配置網(wǎng)絡(luò)組件在controller節(jié)點(diǎn)上

成都創(chuàng)新互聯(lián)長(zhǎng)期為上千家客戶提供的網(wǎng)站建設(shè)服務(wù),團(tuán)隊(duì)從業(yè)經(jīng)驗(yàn)10年,關(guān)注不同地域、不同群體,并針對(duì)不同對(duì)象提供差異化的產(chǎn)品和服務(wù);打造開放共贏平臺(tái),與合作伙伴共同營造健康的互聯(lián)網(wǎng)生態(tài)環(huán)境。為三都企業(yè)提供專業(yè)的網(wǎng)站建設(shè)、成都做網(wǎng)站三都網(wǎng)站改版等技術(shù)服務(wù)。擁有10余年豐富建站經(jīng)驗(yàn)和眾多成功案例,為您定制開發(fā)。

  1. 安裝包 
    # yum install openstack-neutron openstack-neutron-ml2 openstack-neutron-linuxbridge ebtables
  2. 配置服務(wù)器組件
網(wǎng)絡(luò)服務(wù)組件配置包括數(shù)據(jù),驗(yàn)證機(jī)制,消息隊(duì)列,拓?fù)涓淖兺ㄖ筒寮?
Edit the /etc/neutron/neutron.conf file and complete the following actions:
○ In the [database] section, configure database access:
    [database]
    # ...
    connection = MySQL+pymysql://neutron:neutron123@dbs.flex.net/neutron
    注意:注釋或移除其它連接選項(xiàng)在[database]區(qū)域中

○ In the [DEFAULT] section, enable the Modular Layer 2 (ML2) plug-in and disable additional plug-ins:
    [DEFAULT]
    # ...
    core_plugin = ml2
    service_plugins =

○ In the [DEFAULT] section, configure RabbitMQ message queue access:
    [DEFAULT]
    # ...
    transport_url = rabbit://openstack:openstack123@dbs.flex.net

○ In the [DEFAULT] and [keystone_authtoken] sections, configure Identity service access:
    [DEFAULT]
    # ...
    auth_strategy = keystone

    [keystone_authtoken]
    # ...
    www_authenticate_uri = http://stack.flex.net:5000
    auth_url = http://stack.flex.net:5000
    memcached_servers = dbs.flex.net:11211
    auth_type = password
    project_domain_name = default
    user_domain_name = default
    project_name = service
    username = neutron
    password = neutron123
    注意:注釋或移除其它連接選項(xiàng)在[keystone_authtoken]區(qū)域中

○ In the [DEFAULT] and [nova] sections, configure Networking to notify Compute of network topology changes:
    [DEFAULT]
    # ...
    notify_nova_on_port_status_changes = true
    notify_nova_on_port_data_changes = true

    [nova]
    auth_url = http://stack.flex.net:5000
    auth_type = password
    project_domain_name = default
    user_domain_name = default
    region_name = RegionOne
    project_name = service
    username = nova
    password = nova123

○ In the [oslo_concurrency] section, configure the lock path:
    [oslo_concurrency]
    # ...
    lock_path = /var/lib/neutron/tmp
  1. 配置模塊Layer 2 (ML2)插件
    實(shí)列中使用ML2插件,ML2使用Linux bridge機(jī)制建立layer-2(橋接和交換)虛擬網(wǎng)絡(luò)架構(gòu)。
    Edit the /etc/neutron/plugins/ml2/ml2_conf.ini file and complete the following actions:
○ In the [ml2] section, enable flat and VLAN networks:
    [ml2]
    # ...
    type_drivers = flat,vlan

○ In the [ml2] section, disable self-service networks:
    [ml2]
    # ...
    tenant_network_types =

○ In the [ml2] section, enable the Linux bridge mechanism:
    [ml2]
    # ...
    mechanism_drivers = linuxbridge
    警告:配置ML2插件后, 從type_drivers移除這個(gè)選項(xiàng)會(huì)導(dǎo)致數(shù)據(jù)庫不一致.

○ In the [ml2] section, enable the port security extension driver:
    [ml2]
    # ...
    extension_drivers = port_security

○ In the [ml2_type_flat] section, configure the provider virtual network as a flat network:
    [ml2_type_flat]
    # ...
    flat_networks = provider

○ In the [securitygroup] section, enable ipset to increase efficiency of security group rules:
    [securitygroup]
    # ...
    enable_ipset = true
  1. Configure the Linux bridge agent
    The Linux bridge agent builds layer-2 (bridging and switching) virtual networking infrastructure for instances and handles security groups.
    Edit the /etc/neutron/plugins/ml2/linuxbridge_agent.ini file and complete the following actions:
○ In the [linux_bridge] section, map the provider virtual network to the provider physical network interface:
    [linux_bridge]
    physical_interface_mappings = provider:eht1
    使用eth2物理網(wǎng)絡(luò)接口做為租戶的網(wǎng)絡(luò)連接.

○ In the [vxlan] section, disable VXLAN overlay networks:
    [vxlan]
    enable_vxlan = false
○ In the [securitygroup] section, enable security groups and configure the Linux bridge iptables firewall driver:
    [securitygroup]
    # ...
    enable_security_group = true
    firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver

○ Ensure your Linux operating system kernel supports network bridge filters by verifying all the following sysctl values are set to 1:
    net.bridge.bridge-nf-call-iptables
    net.bridge.bridge-nf-call-ip6tables

    #  modprobe br_netfilter
    #  vi /etc/sysctl.conf
    net.bridge.bridge-nf-call-ip6tables = 1
    net.bridge.bridge-nf-call-iptables = 1 
    # sysctl -p
    net.bridge.bridge-nf-call-ip6tables = 1
    net.bridge.bridge-nf-call-iptables = 1

    為了網(wǎng)絡(luò)支持橋接, 通常的需要加載br_netfilter內(nèi)核模塊. 但這里可以忽略錯(cuò)誤,當(dāng)你重啟neutron時(shí)會(huì)自動(dòng)加載.

  1. Configure the DHCP agent

    The DHCP agent provides DHCP services for virtual networks.
Edit the /etc/neutron/dhcp_agent.ini file and complete the following actions:
○ In the [DEFAULT] section, configure the Linux bridge interface driver, DNSmasq DHCP driver, and enable isolated metadata so instances on provider networks can access metadata over the network:
[DEFAULT]
# ...
interface_driver = linuxbridge
dhcp_driver = neutron.agent.linux.dhcp.Dnsmasq
enable_isolated_metadata = true

完成后返回網(wǎng)絡(luò)配置或繼續(xù)網(wǎng)絡(luò)選項(xiàng)2.

新聞標(biāo)題:OpenStackstein安裝(八)networkoption1
標(biāo)題來源:http://muchs.cn/article10/jpihdo.html

成都網(wǎng)站建設(shè)公司_創(chuàng)新互聯(lián),為您提供網(wǎng)站制作、云服務(wù)器、品牌網(wǎng)站制作、Google、面包屑導(dǎo)航、營銷型網(wǎng)站建設(shè)

廣告

聲明:本網(wǎng)站發(fā)布的內(nèi)容(圖片、視頻和文字)以用戶投稿、用戶轉(zhuǎn)載內(nèi)容為主,如果涉及侵權(quán)請(qǐng)盡快告知,我們將會(huì)在第一時(shí)間刪除。文章觀點(diǎn)不代表本網(wǎng)站立場(chǎng),如需處理請(qǐng)聯(lián)系客服。電話:028-86922220;郵箱:631063699@qq.com。內(nèi)容未經(jīng)允許不得轉(zhuǎn)載,或轉(zhuǎn)載時(shí)需注明來源: 創(chuàng)新互聯(lián)

微信小程序開發(fā)