| *** ysandeep|out is now known as ysandeep | 00:29 | |
| opendevreview | Kevin Carter proposed openstack/openstack-ansible-os_horizon master: Add uwsgi option to horizon https://review.opendev.org/c/openstack/openstack-ansible-os_horizon/+/856393 | 01:18 |
|---|---|---|
| jamesdenton | @cloudnull multiple patchsets? have you lost your touch? | 01:44 |
| *** ysandeep is now known as ysandeep|afk | 03:31 | |
| *** Guest931 is now known as prometheanfire | 03:47 | |
| *** ianw is now known as ianw_pto | 05:09 | |
| *** ysandeep|afk is now known as ysandeep | 05:58 | |
| opendevreview | Dmitriy Rabotyagov proposed openstack/openstack-ansible-galera_server master: Bump mariadb version to 10.6.10 https://review.opendev.org/c/openstack/openstack-ansible-galera_server/+/858555 | 07:46 |
| *** Ultra is now known as ThiagoCMC | 08:27 | |
| ThiagoCMC | jamesdenton, thanks! | 08:27 |
| *** ysandeep is now known as ysandeep|lunch | 10:06 | |
| *** ysandeep|lunch is now known as ysandeep | 10:58 | |
| *** frenzyfriday is now known as frenzyfriday|lunch | 11:44 | |
| *** ysandeep is now known as ysandeep|afk | 12:26 | |
| *** ysandeep|afk is now known as ysandeep | 12:39 | |
| *** frenzyfriday|lunch is now known as frenzyfriday | 12:46 | |
| *** ysandeep is now known as ysandeep|out | 14:16 | |
| opendevreview | Dmitriy Rabotyagov proposed openstack/openstack-ansible master: Bump ansible-core version to 2.13.4 https://review.opendev.org/c/openstack/openstack-ansible/+/857506 | 14:51 |
| spatel | jamesdenton around? | 16:13 |
| spatel | I want to assign specific fix IP from floating, how to do that? | 16:15 |
| spatel | Can i have multiple physnet1 on same physical interface, example bridge_mappings=Physnet1:br-eth1,Physnet2:br-eth1,Physnet3:br-eth1 ? | 16:44 |
| mgariepy | spatel, it works. | 17:48 |
| mgariepy | about ovn | 17:48 |
| mgariepy | also. jamesdenton ^^ | 17:48 |
| mgariepy | tl;dr; i did the deployment of ovn (a couple taks in ansible playbook) + lxd cluster (by hand) + ceph (ceph-ansible) | 17:50 |
| mgariepy | ceph-ansible changed some iptable policy.. and then it stopped working. and i went a bit too fast blaming ovn for all my issues :D | 17:52 |
| jamesdenton | spatel assign a particular port to a floating IP? or specify a particular IP addr when creating the float? | 17:54 |
| jamesdenton | also, regarding the same interface.... i seem to recall seeing recently OVN did not like that | 17:55 |
| jamesdenton | Looking at my notes... it was neutron-openvswitch-agent that was mad, not OVN. | 17:59 |
| jamesdenton | > Parsing bridge_mappings failed: Value br-provider in mapping: 'flat:br-provider' not unique. agent terminated! | 18:00 |
| spatel | jamesdenton i have very strange requirement | 18:13 |
| spatel | I have already flat network configured and working fine. | 18:13 |
| spatel | Now one of voice provider giving us SIP trunk for calling..and he gave us 10.53.65.148/30 subnet. means i have two host ip in that range one for my VM and other one is gateway of provider.. | 18:15 |
| spatel | How do i directly attach that IP to one of my VM ? | 18:15 |
| jamesdenton | will this be a new network or could you stack that subnet onto the existing network? | 18:16 |
| spatel | stack to existing network because i have only single physnet1 | 18:16 |
| jamesdenton | so, a second subnet on top of the existing flat network? | 18:16 |
| spatel | Yes, i have one flat provider-network | 18:17 |
| jamesdenton | you could create as /30 subnet, set the gateway accordingly, disable dhcp, and create a port using .150 (if .149 is the GW) and assign to your VM or create as a reservation only and setup allowed-address-pairs on the existing VM port to allow that .150 addr | 18:18 |
| spatel | Now this new SIP trunk i want to terminate on one of VM so how do i add that subnet in existing provider-network? | 18:18 |
| spatel | its not letting me create /30 subnet because it need router IP also | 18:19 |
| jamesdenton | openstack subnet create --network <existing flat network uuid> --subnet-range 10.53.65.148/30 --gateway 10.53.65.149 --no-dhcp <subnet name> | 18:19 |
| spatel | hmm let me try again.. hold on | 18:20 |
| spatel | I have create network | 18:23 |
| spatel | do you want me to create --fix-ip ? | 18:23 |
| jamesdenton | are you needing to assign this IP directly to VM? or is this supposed to be a floating IP? | 18:23 |
| spatel | Yes i want to assign directly.. i don't think floating way it will work? does it? | 18:24 |
| spatel | I am ok with anything floating or direct.. whatever method work | 18:24 |
| jamesdenton | well, it could work if you had something bigger than a /30 | 18:24 |
| spatel | Lets say if i want to use floating then how do i tell to create floating ip 10.53.65.150 ? | 18:25 |
| jamesdenton | openstack floating ip create --floating-ip-address <x.x.x.x> --subnet <subnet> --port <existing port> | 18:25 |
| jamesdenton | but in this case, a /30 is too small, your router would need an IP, too | 18:26 |
| jamesdenton | the neutron router, that is | 18:26 |
| spatel | hmm let me try.. otherwise i am thinking to create network of /28 :) | 18:26 |
| jamesdenton | well, i thought they only gave you a /30? | 18:26 |
| spatel | just lying.. to ISP but it should work | 18:27 |
| spatel | --port <existing port> what is this? | 18:27 |
| spatel | which port its? | 18:27 |
| jamesdenton | the port of the fixed ip attached to the instance | 18:27 |
| spatel | existing VM ip ? | 18:27 |
| jamesdenton | existing VM port, yes. | 18:28 |
| spatel | let me try hold on.. | 18:28 |
| jamesdenton | but let's take a step back here... i know you have this existing FLAT network. Is that an external network attached to a Neutron router? Or are VMs connected to it and there's no neutron router? | 18:28 |
| spatel | I have router create | 18:29 |
| spatel | and external flat network attach to router | 18:29 |
| spatel | all my vm use floating ip to talk to external network.. using router | 18:29 |
| spatel | jamesdenton i did this - openstack floating ip create --floating-ip-address 10.53.65.150 --subnet sip-subnet --port 505627ef-cf4a-42b6-b7d6-ffe97edfda68 provider-net | 18:33 |
| spatel | it attached floating ip to vm but can't ping gateway.. | 18:33 |
| spatel | 10.53.65.149 - direct peer ip | 18:34 |
| jamesdenton | yeah, you can't use this as a floating IP network, unfortunately | 18:34 |
| jamesdenton | the router will need an IP for arp to work, and there's none left | 18:34 |
| spatel | Let me try this openstack subnet create --network <existing flat network uuid> --subnet-range 10.53.65.144/28 --gateway 10.53.65.149 --no-dhcp <subnet name> | 18:35 |
| spatel | 10.53.65.144/28 | 18:35 |
| spatel | it will give us enough ip to have some for router | 18:35 |
| jamesdenton | where did 10.53.65.149 get configured? | 18:35 |
| spatel | 149 is ISP gateway | 18:35 |
| jamesdenton | is it a secondary address on an existing interface? for the existing flat network in particular? | 18:35 |
| spatel | I have l2 switch.. and i just terminate physical cable from ISP to l2 switch (its pretty much visible on all my openstack node) | 18:37 |
| jamesdenton | ok. then you faking it should be OK | 18:39 |
| spatel | i did 10.53.65.144/28 way and attach vm | 18:41 |
| spatel | but didn't work | 18:41 |
| spatel | also i am not seeing any IP assigned to router | 18:41 |
| spatel | do i need to do allocate=start/end? | 18:41 |
| jamesdenton | look at subnet show and see how it carved up for the allocation pool | 18:42 |
| jamesdenton | but yes, you would need at least 1 available IP in the allocation pool for the router (and it should configure qg automatically0 | 18:44 |
| spatel | very strange i am not seeing any single ip assign to router | 18:44 |
| spatel | let me try allocate start/end way... | 18:44 |
| spatel | Very strange, router not getting any ip address from this new subnet | 18:52 |
| jamesdenton | did you see anything in neutron-l3-agent logs? | 18:52 |
| spatel | https://paste.opendev.org/show/bosG2ffuYkRBLTnA7l4c/ | 18:52 |
| jamesdenton | oh, right. OVN. I have not done this with OVN | 18:53 |
| jamesdenton | only OVS/LXB w/ L3 agent | 18:53 |
| spatel | :D | 18:53 |
| jamesdenton | there's a chance... that this use case has not been tested | 18:53 |
| jamesdenton | would need to reproduce this | 18:54 |
| spatel | Feel like because of openflow its not routing traffic | 18:54 |
| spatel | you can't put any ip and any interface because openflow rules won't let it do that | 18:55 |
| jamesdenton | right | 18:55 |
| spatel | Can i add one extra nic in openstack and create new flat network then it should work correct? | 18:57 |
| jamesdenton | you could add a second nic to your VM right on that flat network, and assign the IP, but you'd need some static routes | 18:57 |
| spatel | How..? | 18:58 |
| spatel | how do i add second nic in VM without provider-net? | 18:58 |
| jamesdenton | openstack server add port [-h] [--tag <tag>] <server> <port> | 18:58 |
| jamesdenton | you'd delete that floating IP and instead, create a port whose fixed ip is .150 | 18:59 |
| spatel | let me understand.. | 19:00 |
| spatel | add port to server but i need to create port first right? | 19:00 |
| jamesdenton | right | 19:01 |
| spatel | openstack server add port [-h] [--tag <tag>] <vm1> <?????> | 19:01 |
| jamesdenton | yes | 19:02 |
| spatel | openstack port create --network provider-net --fixed-ip subnet=d033e4ac-6f14-4da4-818b-87311abcb087,ip-address=10.53.65.150 sip-port0 | 19:04 |
| jamesdenton | LGTM | 19:05 |
| spatel | openstack server add port sip-1 sip-port0 | 19:05 |
| jamesdenton | k | 19:05 |
| jamesdenton | you should then see an eth1 on the VM. you'll need to configure IP by hand | 19:05 |
| jamesdenton | (since dhcp was disabled) | 19:06 |
| spatel | Yes , i can see ens4 | 19:06 |
| jamesdenton | right, ok. | 19:06 |
| spatel | i have assigned IP to ens4 manually | 19:06 |
| spatel | but still can't ping to GW | 19:06 |
| jamesdenton | i would double check that you see the pings on the interface connected to br-provider | 19:07 |
| jamesdenton | on the compute itself | 19:07 |
| spatel | Do you think port security could be issue here? | 19:07 |
| spatel | because we are doing thing outside openflow rules.. | 19:08 |
| jamesdenton | well, the port ought to have a default security group applied, and as long as IP/MAC on the VM matches the port, that should be OK | 19:09 |
| spatel | i am not seeing icmp packet in compute physical interface - tcpdump -i eth1 -nn icmp | 19:10 |
| jamesdenton | this approach should not be circumventing any openflow/ovn stuff. this is a "supported" method | 19:10 |
| jamesdenton | eth1 is in br-provider? | 19:10 |
| spatel | yes | 19:10 |
| jamesdenton | ok, do you see the icmp on the tap interface? | 19:10 |
| spatel | it works :) | 19:13 |
| spatel | DAMN it | 19:13 |
| spatel | i forgot to bring up nic :( | 19:13 |
| spatel | after doing ip link set ens4 up (it works.. i can ping) | 19:14 |
| jamesdenton | lol | 19:14 |
| jamesdenton | very good | 19:14 |
| jamesdenton | like i mentioned, you may need static routes on the VM | 19:14 |
| spatel | Thank you.. you saved my life :D | 19:14 |
| jamesdenton | since replies would be asymmetric | 19:14 |
| spatel | you may need static routes on the VM ??? | 19:15 |
| jamesdenton | you're multi-homed, right? default gateway is not out ens4? | 19:15 |
| spatel | Yes.. i know.. | 19:15 |
| spatel | I have to set default + subnet specific route | 19:15 |
| jamesdenton | yes | 19:16 |
| jamesdenton | this might help; haven't done this but i've seen it done: https://osric.com/chris/accidental-developer/2019/03/linux-policy-based-routing/ | 19:17 |
| jamesdenton | set a mark on the traffic coming into ens4 and use a different routing table back out | 19:17 |
| spatel | ip router2 magic :) | 19:18 |
| opendevreview | Merged openstack/openstack-ansible stable/wallaby: Fix dynamic-address-fact gathering with tags https://review.opendev.org/c/openstack/openstack-ansible/+/858330 | 19:29 |
| ThiagoCMC | Folks, I'm trying to deploy stable/yoga Ironic, Ubuntu, 3 Controllers, 3 Nova Computes for VMs, 3 Nova Computes for Ironic. When I add 3 'ironic-infra_hosts' to Controllers, all good ('baremetal conductor list' shows 3), Ironic APT deployed, however, when I add one 'ironic-compute_hosts' to "first" Controller, then, the following error appear during TASK '': | 23:11 |
| ThiagoCMC | ERROR! Unexpected templating type error occurred on ({{ (lxc_container_networks_combined.values() | list) | sort(attribute='interface') }}): '<' not supported between instances of 'str' and 'NoneType' | 23:11 |
| ThiagoCMC | After this error, `lxc-ls -f` shows a "$hostname_ironic_compute_container-45356gds" doesn't show any IPs. | 23:11 |
| ThiagoCMC | Reference: https://cloudnull.io/2016/11/multi-hypervisor-openstack-cloud/ | 23:12 |
| ThiagoCMC | Any clues? ^_^ | 23:12 |
| ThiagoCMC | The 'ironic-compute_hosts' are also conintainers in the Controllers, right? | 23:12 |
| ThiagoCMC | Then I have to use the `inventory-manage.py` to remove it. | 23:15 |
| ThiagoCMC | I forgot to mention the TASK: 'LXC host config for container networks'. | 23:30 |
Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!