Networking 安装和配置compute node
安装组件
# yum install openstack-neutron-linuxbridge ebtables ipset
配置一般组件
网络一般组件的配置包括认证机制、消息队列以及插件
- 编辑`/etc/neutron/neutron.conf
- [database]条目中注释所有
connection
选项,因为计算节点不需要连接数据库 - 添加下列内容:
[DEFAULT]
...
transport_url = rabbit://openstack:123456@controller
auth_strategy = keystone
[keystone_authtoken]
...
auth_uri = http://controller:5000
auth_url = http://controller:35357
memcached_servers = controller:11211
auth_type = password
project_domain_name = Default
user_domain_name = Default
project_name = service
username = neutron
password = 123456
[oslo_concurrency]
...
lock_path = /var/lib/neutron/tmp
注释或删除[keystone_authtoken]条目中其他选项
配置网络选项
- 选择与控制节点相同的网络架构(下以option 1为例)进行下面的配置
编辑`/etc/neutron/plugins/ml2/linuxbridge_agent.ini
[linux_bridge]
physical_interface_mappings = provider:enp0s8
[vxlan]
enable_vxlan = False
[securitygroup]
...
enable_security_group = True
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver
- 编辑`/etc/nova/nova.conf
[neutron]
url = http://controller:9696
auth_url = http://controller:35357
auth_type = password
project_domain_name = Default
user_domain_name = Default
region_name = RegionOne
project_name = service
username = neutron
password = 123456
安装收尾
# systemctl restart openstack-nova-compute.service
# systemctl enable neutron-linuxbridge-agent.service
# systemctl start neutron-linuxbridge-agent.service
验证操作
在控制节点进行验证操作
- 切换到
admin
用户环境
$ . admin-openrc
- 列出已加载的扩展来验证
neutron-server
进程
$ neutron ext-list
+---------------------------+---------------------------------+
| alias | name |
+---------------------------+---------------------------------+
| default-subnetpools | Default Subnetpools |
| availability_zone | Availability Zone |
| network_availability_zone | Network Availability Zone |
| binding | Port Binding |
| agent | agent |
| subnet_allocation | Subnet Allocation |
| dhcp_agent_scheduler | DHCP Agent Scheduler |
| tag | Tag support |
| external-net | Neutron external network |
| flavors | Neutron Service Flavors |
| net-mtu | Network MTU |
| network-ip-availability | Network IP Availability |
| quotas | Quota management support |
| provider | Provider Network |
| multi-provider | Multi Provider Network |
| address-scope | Address scope |
| subnet-service-types | Subnet service types |
| standard-attr-timestamp | Resource timestamps |
| service-type | Neutron Service Type Management |
| extra_dhcp_opt | Neutron Extra DHCP opts |
| standard-attr-revisions | Resource revision numbers |
| pagination | Pagination support |
| sorting | Sorting support |
| security-group | security-group |
| rbac-policies | RBAC Policies |
| standard-attr-description | standard-attr-description |
| port-security | Port Security |
| allowed-address-pairs | Allowed Address Pairs |
| project-id | project_id field enabled |
+---------------------------+---------------------------------+
验证Networking Option 1:Provider networks
- 列出
neutron agent
$ openstack network agent list
+----------+------------+----------+-------------------+-------+-------+---
----------+
| ID | Agent Type | Host | Availability Zone | Alive | State | Bi
nary |
+----------+------------+----------+-------------------+-------+-------+---
----------+
| 16bc86fb | Linux | localhos | None | True | UP | ne
utron-lin |
| -c16f- | bridge | t.locald | | | | ux
bridge- |
| 40e9 | agent | omain | | | | ag
ent |
| -86ec-c6 | | | | | |
|
| ccc7c9e6 | | | | | |
|
| 7b | | | | | |
|
| 513513ca | Linux | controll | None | True | UP | ne
utron-lin |
| -5601-47 | bridge | er | | | | ux
bridge- |
| 77-a2d1- | agent | | | | | ag
ent |
| a398017a | | | | | |
|
| d804 | | | | | |
|
| 67633117 | Metadata | controll | None | True | UP | ne
utron- |
| -6a68-46 | agent | er | | | | me
tadata- |
| 52-b15d- | | | | | | ag
ent |
| 4a32b8fe | | | | | |
|
| 1f22 | | | | | |
|
| 8383fbdb | DHCP agent | controll | nova | True | UP | ne
utron- |
| -bd37 | | er | | | | dh
cp-agent |
| -485d-ad | | | | | |
|
| 57-91f1f | | | | | |
|
| cf719a0 | | | | | |
|
+----------+------------+----------+-------------------+-------+-------+---
----------+
输出信息应包括controller node
上的3个agent
以及每个compute node
上的一个agent