Sunday, 2017-10-08

« Saturday, 2017-10-07 Index Monday, 2017-10-09 »
*** dxiri has joined #openstack-ansible00:04
*** dxiri has quit IRC00:08
*** dxiri has joined #openstack-ansible00:08
*** smatzek has joined #openstack-ansible00:17
*** dxiri has quit IRC00:18
*** smatzek has quit IRC00:22
*** dxiri has joined #openstack-ansible00:36
*** dxiri has quit IRC00:41
*** dxiri has joined #openstack-ansible00:51
*** markvoelker has joined #openstack-ansible00:51
*** dxiri has quit IRC00:55
*** dxiri has joined #openstack-ansible01:05
*** dxiri has quit IRC01:10
*** dxiri has joined #openstack-ansible01:20
*** markvoelker has quit IRC01:24
*** dxiri has quit IRC01:24
*** galstrom_zzz is now known as galstrom01:32
*** dxiri has joined #openstack-ansible01:34
*** dxiri has quit IRC01:39
*** smatzek has joined #openstack-ansible01:48
*** dxiri has joined #openstack-ansible01:48
*** smatzek has quit IRC01:52
*** dxiri has quit IRC01:53
*** dxiri has joined #openstack-ansible02:03
*** galstrom is now known as galstrom_zzz02:04
*** dxiri has quit IRC02:08
*** galstrom_zzz is now known as galstrom02:10
*** dxiri has joined #openstack-ansible02:22
*** dxiri has quit IRC02:26
*** jwitko has quit IRC02:29
*** jwitko has joined #openstack-ansible02:29
*** askb has quit IRC02:30
*** dxiri has joined #openstack-ansible02:36
*** dxiri has quit IRC02:38
*** dxiri has joined #openstack-ansible02:38
*** sxc731 has joined #openstack-ansible02:52
*** sxc731 has left #openstack-ansible02:53
*** dxiri has quit IRC02:54
*** dave-mcc_ has joined #openstack-ansible02:58
*** dave-mccowan has quit IRC03:00
*** galstrom is now known as galstrom_zzz03:05
*** dxiri has joined #openstack-ansible03:05
*** germs1 has joined #openstack-ansible03:19
*** germs has quit IRC03:19
*** markvoelker has joined #openstack-ansible03:22
*** germs has joined #openstack-ansible03:23
*** germs1 has quit IRC03:26
*** dave-mcc_ has quit IRC03:36
*** sc68cal has quit IRC03:45
*** sc68cal has joined #openstack-ansible03:55
*** markvoelker has quit IRC03:55
*** germs has quit IRC04:06
*** masber has joined #openstack-ansible04:11
*** smatzek has joined #openstack-ansible05:50
*** markvoelker has joined #openstack-ansible05:52
*** smatzek has quit IRC05:55
*** sxc731 has joined #openstack-ansible05:55
*** sxc731 has quit IRC05:56
*** sxc731 has joined #openstack-ansible05:56
*** sxc731 has quit IRC05:57
*** sxc731 has joined #openstack-ansible05:58
*** sxc731 has left #openstack-ansible05:59
*** snowman4839 has joined #openstack-ansible06:16
snowman4839does anyone understand how the veth pairs in the neutron-agents container work? I've been trying to understand how all the linux bridges are hooked up and nothing is quite making sense06:17
snowman4839like many of the veth indexes don't have matching interfaces so I don't know where the traffic is going yet it still all works?06:19
snowman4839I've check all the network namespaces and still nothing06:20
*** markvoelker has quit IRC06:26
*** armaan has quit IRC06:27
*** hachi_ has joined #openstack-ansible06:36
*** DanyC has joined #openstack-ansible06:38
*** DanyC_ has joined #openstack-ansible06:46
*** DanyC has quit IRC06:49
SamYaplesnowman4839: are you refereing to general openstack networking? or OSA host <-> container veth pairs?06:54
snowman4839well both. I'm just playing with an AIO OSA install atm. When I look at the veth indexes of all of the container interfaces on the host, there is only one interface with that veth index available on the host06:56
SamYaplesnowman4839: if its openstack networking, check https://docs.openstack.org/ocata/networking-guide/deploy-lb.html06:56
snowman4839I've read most of it already but I'll give it another look.06:57
SamYaplethe host <-> container networking is pretty straight forward. nothing really special there, so without a more specific question i probably wont be of much help06:57
SamYaplethere are no diagrams that i know of showing pictures for that part06:57
snowman4839so veth interfaces are created in pairs correct?06:58
SamYapleyup06:58
snowman4839so my question is when I look at all of the interfaces on the host, more specifically the container<->host interfaces, why don't I see each half of the veth pair?06:58
snowman4839for example, 83: eca7b9ed_eth0@if82 is the host half of the veth0 pair corresponding to the eth0 interface inside my neutron-agents container06:59
SamYapleah. right06:59
SamYapleso when a veth pair goes into a network namespace that interface doesnt align the same way if i recall07:00
snowman4839the @if82 being the veth index. I don't see another interface tagged with the 82 index so I'm not sure how I'm supposed to know where the other half of that veth traffic goes07:00
SamYaplethere are various oneliners ive used to link those two together07:00
SamYaplebut it gets complicated07:00
snowman4839well on my host when running ip netns, it's empty07:00
SamYaplethe kernel doesnt maintain a list of network namespaces07:01
SamYapleip netns creates a network namespace mount in /run/netns07:01
SamYaplelxc netowrking creates a mount point elsewhere07:01
SamYaplei forget where07:01
snowman4839yes but running ip netns is a way of checking if there are namespaces create correct?07:01
SamYapleno07:01
SamYaplethats a way to see namespaces created by iproute207:02
SamYaplei mean something else could create one in the same place too and iproute2 would see it07:02
SamYaplebut its just walking /run/netns to see namepsaces that exist07:02
snowman4839that I didn't know07:02
snowman4839but regardless, what would be the point of having a veth interface without a corresponding interface on the same index?07:03
SamYapleyea the kernel doesnt have a list of namespaces, pid/user/net or otherwise07:03
SamYaplethe other side exists, in the container net namespace07:03
SamYaplethe kernel passes traffic between the two sides07:03
snowman4839would they share an index or is the other side implicit/hidden or something?07:04
snowman4839my host and my neutron container share no veth indexes on any container in any network namespace07:04
SamYaplewell they dont *share* an index, but one side has the index of its peer that you can find07:04
SamYaplei think you have to crawl /proc or /sys for it, its been a few years since ive needed to do it07:05
snowman4839yeah its in /sys/class/net07:05
SamYapleethtool -S <veth>07:06
snowman4839so here's the deal, can I just send you a pastebin real quick?07:06
snowman4839thanks for helping btw07:06
SamYaplethat will give you peer_ifindex07:06
SamYapleyou can send a pastebin sure07:07
snowman4839https://pastebin.com/Hb7z8rbS07:07
SamYapleanyway, ethtool will tell you the peer index, and then running the same command from the container interface will match the index07:07
snowman4839so at the top, those are the interfaces in my neutron container and their if# (indexes). at the bottom, those the associated host interfaces for that container07:07
SamYaplethe part after @ i dont think is garunteed to be the same07:08
SamYapleip defeintely doesnt expose the information you are looking for07:08
snowman4839it is, I've checked about 40 times today. I've been staring at this for about 8 hours07:08
snowman4839but the indicies are off by one inside and outside the container07:09
SamYaplethere are off by one because they are garaunteed to be the same07:09
SamYapleagain its been a few years since ive had to dig this deep, but i know you cant rely on it07:09
SamYapleit renumbers all the interfaces once they are in the mount namespace07:10
SamYaplestart using that ethtool command from above to track it07:10
snowman4839wait they ARE off by one because they ARE the same?07:10
SamYapleno they are coincidentally off by one07:10
SamYapleproabbly due to the way the container is created07:11
snowman4839https://pastebin.com/KZG9xF9N there's using ethtool, they're the same indicies07:11
snowman4839so I'm confused, does lxc do some auto veth pair index fixing or something? I'm assuming and index is like a vlan tag, they have to be the same to talk to each other?07:12
SamYapleim condused, how is 31 the same index as 32?07:12
snowman4839I'm sorry07:13
SamYaple31 and 32 appear to be peers here, yes07:13
snowman4839same as before when I used ip -d l07:13
snowman4839not 31 is the same as 32. I know that was confusing07:13
*** armaan has joined #openstack-ansible07:13
snowman4839but I thought the numbers had to be the same for them to be peers07:13
SamYapleif you are refering to the part after @ then no07:14
SamYaplethe peer index tells the kerenl were to forward the traffic07:14
SamYaplethe name doesnt really matter07:14
snowman4839REALLY?07:14
snowman4839oh I know the name of the interface didn't matter. I thought matching perr_ifindex numbers were what linked together interfaces07:15
SamYapleyes, thats all that matters.07:15
SamYapleit sounds like we are on the same page there... so what is the question?07:15
snowman4839but that goes back to my original question, how can the interface outside the container and the one inside be peers if their peer_ifindex is one off?07:16
SamYaple... each interface has a unique index07:16
SamYapleone side of the peer is 31, the other side is 3207:16
SamYapleeach side knows about the other one07:16
SamYaplethis isn't an off by one, that is the *peer* interface index07:17
SamYaple31 knows its *peer* is 3207:17
SamYaple32 knows its *peer* is 3107:17
snowman4839so are those peerings written in the /run/netns you were talking about earlier?07:18
SamYapleno07:18
SamYaplethe peering is part of the veth pair when its created07:18
snowman4839lol sorry I'm being so slow07:18
SamYapleno problem, just think07:18
SamYaplekernel creates veth pair07:18
SamYaplethats two interefaces07:18
SamYaplethe structure for the kernel to keep track of thse interfaces has a place for the peer07:18
SamYaplethe two are always linked, knowing about the other one07:19
SamYaplebut they are two unique interfaces07:19
SamYapletraffic comes in one, kernel looks up the peer, traffic does out the peer07:19
SamYaplegoes*07:19
snowman4839so is there a way to find the peer of a device if they are named abiguously?07:19
SamYapleethtool07:19
SamYapleyou posted all of this output07:20
SamYapleinterface 31 is telling you its peer is 3207:20
snowman4839OH MY GOD IM SO F*IN STUPID07:20
snowman4839WOW07:20
snowman4839WOW07:20
snowman4839just clicked07:20
SamYapleyea i was trying to highlight the word *peer*07:21
SamYapleive been there man07:21
snowman4839I've seriously been tcpdumping and lookin at iptables and jumpin in and out of network namespaces and stuff for about 10 hours07:21
SamYapleyea man. ive totally been there07:21
snowman4839and I just had to notice that the interface number was not the same as its peer number07:22
snowman4839omfg07:22
snowman4839jesus christ07:22
SamYapleyep. :)07:22
SamYaplethanks for taking me back a few years07:22
snowman4839well thank you for sitting through that07:22
snowman4839lol no problem07:22
SamYapleanytime :) glad it all clicked07:22
snowman4839I'm trying to understand neutron more in depth for my multinode deployment and this has been a bugger. should've come here earlier lol07:23
*** markvoelker has joined #openstack-ansible07:23
snowman4839seriously thank you07:23
snowman4839actually, one more thing.07:23
SamYapleNO NO NO07:23
SamYapleim goign to bed!07:23
snowman4839lol it should be easy I swear07:23
SamYapleshoot :)07:24
snowman4839can you only create veth pairs with lxc containers because they share the kernel unlike full kvm/qemu style virt?07:24
SamYapleyea07:24
snowman4839or does full virtualization also use veth07:24
SamYaplethough be careful with that, virtio devices are very similiar to veth pairs... just more memcpy'ing07:25
snowman4839gotcha. so does full virt use tun/tap or something?07:25
snowman4839that was my last quesiton I swear :)07:25
SamYaplebasically the virtio stuff is sharing memory, so you write something to memory in the vm and the kernel on the host can access that directly, rather than some other copmlicated full emulation method07:25
SamYaplemore or less, that gets a bit hairy though07:26
snowman4839lol gotcha. I'll leave that to google. thank you ver much sir. you're a godsend07:26
SamYaplethats what they all say07:26
SamYapleuntil they get to know me :(07:27
snowman4839don't say that lol07:27
snowman4839you helped a stranger with an obscure question at 2am07:27
SamYaplesomething about only being interested in myself and not listening. i dont know, i wasnt really paying attention07:27
snowman4839A+ person to me07:27
snowman4839hahahahaha07:27
snowman4839yall have a good night07:28
SamYaplenight07:28
*** sxc731 has joined #openstack-ansible07:46
*** sxc731 has left #openstack-ansible07:48
*** markvoelker has quit IRC07:56
*** hachi_ has quit IRC08:07
*** armaan has quit IRC08:21
*** sxc731 has joined #openstack-ansible08:23
*** vishwana_ has joined #openstack-ansible08:48
*** vishwanathj has quit IRC08:49
*** markvoelker has joined #openstack-ansible08:53
*** armaan has joined #openstack-ansible08:55
*** sxc731 has quit IRC09:13
*** markvoelker has quit IRC09:26
*** hachi_ has joined #openstack-ansible09:43
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-lxc_hosts master: tasks: lxc_cache_preparation.yml: Log cache preparation command output  https://review.openstack.org/51033909:47
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-lxc_hosts master: tasks: lxc_cache_preparation: Log cache preparation command output  https://review.openstack.org/51033909:48
*** smatzek has joined #openstack-ansible09:52
*** smatzek has quit IRC09:56
*** yifei has joined #openstack-ansible10:08
*** yifei has quit IRC10:12
*** masber has quit IRC10:14
*** markvoelker has joined #openstack-ansible10:24
*** drifterza has joined #openstack-ansible10:25
*** pbandark has joined #openstack-ansible10:28
*** sxc731 has joined #openstack-ansible10:29
*** pbandark has quit IRC10:30
*** drifterza1 has joined #openstack-ansible10:30
*** drifterza has quit IRC10:31
*** pbandark has joined #openstack-ansible10:32
*** drifterza has joined #openstack-ansible10:33
*** drifterza1 has quit IRC10:35
*** hachi__ has joined #openstack-ansible10:38
*** hachi_ has quit IRC10:38
*** hachi__ has quit IRC10:57
*** markvoelker has quit IRC10:57
*** drifterza has quit IRC11:20
*** drifterza has joined #openstack-ansible11:20
*** drifterza has quit IRC11:24
*** drifterza has joined #openstack-ansible11:45
*** sxc731 has quit IRC11:45
*** masber has joined #openstack-ansible11:51
*** markvoelker has joined #openstack-ansible11:54
*** markvoelker has quit IRC12:27
*** drifterza has quit IRC12:53
*** drifterza has joined #openstack-ansible12:56
*** drifterza1 has joined #openstack-ansible12:56
*** drifterza has quit IRC13:00
*** hachi_ has joined #openstack-ansible13:11
*** armaan has quit IRC13:53
*** hachi_ has quit IRC14:16
*** hachi_ has joined #openstack-ansible14:16
*** gunix has quit IRC14:21
*** markvoelker has joined #openstack-ansible14:24
*** markvoelker has quit IRC14:58
*** dxiri has quit IRC15:31
*** dxiri has joined #openstack-ansible15:38
*** hachi_ has quit IRC15:47
*** ivve has quit IRC15:54
*** smatzek has joined #openstack-ansible15:54
*** markvoelker has joined #openstack-ansible15:55
*** smatzek has quit IRC15:59
*** ivve has joined #openstack-ansible16:07
*** drifterza1 has quit IRC16:20
*** drifterza has joined #openstack-ansible16:22
*** markvoelker has quit IRC16:27
*** gouthamr has joined #openstack-ansible16:27
*** mpranjic has quit IRC16:52
*** pbandark has quit IRC16:53
*** gouthamr_ has joined #openstack-ansible16:57
*** gouthamr has quit IRC16:58
*** markvoelker has joined #openstack-ansible17:24
*** gunix has joined #openstack-ansible17:51
*** markvoelker has quit IRC17:58
*** hachi_ has joined #openstack-ansible18:25
*** armaan has joined #openstack-ansible18:34
*** armaan has quit IRC18:36
*** jwitko has quit IRC18:39
*** jwitko has joined #openstack-ansible18:39
*** jwitko has quit IRC18:41
*** jwitko has joined #openstack-ansible18:42
*** jwitko has quit IRC18:43
*** jwitko has joined #openstack-ansible18:43
*** gouthamr_ has quit IRC18:47
*** dxiri has quit IRC18:51
*** pbandark has joined #openstack-ansible18:55
*** markvoelker has joined #openstack-ansible18:56
*** dxiri has joined #openstack-ansible19:07
*** drifterza has quit IRC19:09
*** dave-mccowan has joined #openstack-ansible19:11
*** dave-mcc_ has joined #openstack-ansible19:16
*** dave-mccowan has quit IRC19:19
*** pbandark has quit IRC19:19
*** markvoelker has quit IRC19:28
*** smatzek has joined #openstack-ansible19:56
*** dave-mcc_ has quit IRC19:59
*** smatzek has quit IRC20:01
*** DanyC_ has quit IRC20:01
*** aaron has joined #openstack-ansible20:02
*** aaron is now known as Guest4929920:03
*** galstrom_zzz is now known as galstrom20:16
Guest49299Hey all, I am looking at the network-overview here: https://docs.openstack.org/project-deploy-guide/openstack-ansible/pike/overview-network-arch.html20:16
Guest49299I have 2 phy ports on 2 servers (1 controller, 1 compute) and not sure on the best/recommended way to create these 4 bridges on 2 phy interfaces.. any suggestions?20:17
Guest49299I was thinking this maybe a job for OVS? 2 bridges, 1 per interface and 1 port for each bridge?20:18
*** markvoelker has joined #openstack-ansible20:25
asb47Hi all, I'm hoping to use a Xen hypervisor, but looking in defaults/main.yml in os_nova there doesn't seem to be a xen "nova_supported_virt_types". Other openstack resources suggest that it's supported, but I'd like to be able to use openstack-ansible as much as possible.  Any suggestions?20:58
*** markvoelker has quit IRC20:58
asb47Aiming to use Xen with libvirt20:59
*** DanyC has joined #openstack-ansible21:03
*** DanyC has quit IRC21:07
*** galstrom is now known as galstrom_zzz21:09
*** dachary has left #openstack-ansible21:36
*** threestrands has joined #openstack-ansible21:49
*** hachi_ has quit IRC21:54
*** xingchao has joined #openstack-ansible21:56
*** markvoelker has joined #openstack-ansible21:56
*** xingchao has quit IRC21:58
*** DanyC has joined #openstack-ansible22:03
*** asb47 has quit IRC22:07
*** asb47 has joined #openstack-ansible22:07
*** DanyC has quit IRC22:09
*** Guest49299 has quit IRC22:09
*** aaron has joined #openstack-ansible22:09
*** aaron is now known as Guest632222:10
*** dave-mccowan has joined #openstack-ansible22:22
*** markvoelker has quit IRC22:29
*** gouthamr has joined #openstack-ansible22:32
*** askb has joined #openstack-ansible22:40
*** askb has quit IRC22:44
*** askb has joined #openstack-ansible22:45
*** askb has quit IRC22:53
*** askb has joined #openstack-ansible22:53
*** markvoelker has joined #openstack-ansible22:54
*** askb has quit IRC22:56
*** xingchao has joined #openstack-ansible23:03
*** dave-mccowan has quit IRC23:15
*** Guest6322 has quit IRC23:19
*** xingchao has quit IRC23:23
*** askb has joined #openstack-ansible23:23
*** askb has quit IRC23:27
*** askb has joined #openstack-ansible23:28
*** askb has quit IRC23:43
*** pmannidi has joined #openstack-ansible23:48
*** pbandark has joined #openstack-ansible23:52
*** jwitko has quit IRC23:54
*** jwitko has joined #openstack-ansible23:54
*** smatzek has joined #openstack-ansible23:58
*** xingchao has joined #openstack-ansible23:58
*** xingchao has quit IRC23:59
« Saturday, 2017-10-07 Index Monday, 2017-10-09 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!