Tuesday, 2015-08-04

« Monday, 2015-08-03 Index Wednesday, 2015-08-05 »
*** jaypipes has quit IRC00:18
*** chlong has joined #openstack-operators00:26
*** SimonChung has quit IRC00:28
*** saneax has quit IRC00:46
*** alop has quit IRC00:55
*** gyee has quit IRC02:11
*** hakimo has joined #openstack-operators02:52
*** hakimo_ has quit IRC02:55
*** bhunter71 has quit IRC03:08
*** SimonChung has joined #openstack-operators03:14
*** SimonChung1 has joined #openstack-operators03:15
*** SimonChung has quit IRC03:18
*** maishsk has joined #openstack-operators04:47
*** maishsk has quit IRC04:53
*** fawadkhaliq has joined #openstack-operators05:14
*** fawadk has joined #openstack-operators05:15
*** fawadkhaliq has quit IRC05:18
*** saneax has joined #openstack-operators05:27
*** ig0r_ has joined #openstack-operators05:46
*** ig0r_ has quit IRC06:04
*** maishsk has joined #openstack-operators06:09
*** ig0r_ has joined #openstack-operators06:11
*** belmoreira has joined #openstack-operators06:31
*** Marga_ has joined #openstack-operators06:46
*** Marga_ has quit IRC06:46
*** Marga_ has joined #openstack-operators06:47
*** fawadkhaliq has joined #openstack-operators07:12
*** fawadk has quit IRC07:14
*** fawadk has joined #openstack-operators07:15
*** Marga_ has quit IRC07:17
*** fawadkhaliq has quit IRC07:18
*** fawadk has quit IRC07:45
*** Marga_ has joined #openstack-operators07:46
*** chlong has quit IRC07:47
*** fawadkhaliq has joined #openstack-operators07:57
*** fawadkhaliq has quit IRC08:06
*** Marga_ has quit IRC08:25
*** Marga_ has joined #openstack-operators08:26
*** Marga_ has quit IRC08:32
*** SimonChung1 has quit IRC08:35
*** crinkle has quit IRC08:35
*** Marga_ has joined #openstack-operators08:37
*** SimonChung1 has joined #openstack-operators08:37
*** crinkle has joined #openstack-operators08:37
*** Marga_ has quit IRC08:42
*** maishsk has quit IRC08:56
*** maishsk has joined #openstack-operators08:59
*** fawadkhaliq has joined #openstack-operators09:31
*** saneax has quit IRC09:38
*** maishsk has quit IRC10:01
*** maishsk has joined #openstack-operators10:02
*** saneax has joined #openstack-operators10:08
*** Marga_ has joined #openstack-operators10:17
*** Marga_ has quit IRC10:20
*** Marga_ has joined #openstack-operators10:20
*** Marga_ has quit IRC10:31
*** fawadk has joined #openstack-operators10:35
*** fawadkhaliq has quit IRC10:37
*** fawadkhaliq has joined #openstack-operators10:38
*** fawadk has quit IRC10:43
*** ToMiles has quit IRC10:44
*** radez is now known as radez_g0n311:01
*** Marga_ has joined #openstack-operators11:25
*** fawadkhaliq has quit IRC11:48
*** Marga_ has quit IRC11:54
*** jaypipes has joined #openstack-operators11:59
*** Marga_ has joined #openstack-operators12:11
*** fawadkhaliq has joined #openstack-operators12:23
*** VW_ has joined #openstack-operators12:24
*** chlong has joined #openstack-operators12:41
*** VW_ has quit IRC12:52
*** VW_ has joined #openstack-operators12:52
*** zul has joined #openstack-operators12:53
*** zul has quit IRC12:53
*** zul has joined #openstack-operators12:53
*** VW__ has joined #openstack-operators12:54
*** VW_ has quit IRC12:54
*** VW__ has quit IRC12:56
*** VW_ has joined #openstack-operators12:56
*** jaypipes has quit IRC12:57
*** laron has joined #openstack-operators12:59
*** jaypipes has joined #openstack-operators13:00
*** VW_ has quit IRC13:00
*** Marga_ has quit IRC13:08
*** radez_g0n3 is now known as radez13:16
*** ig0r_ has quit IRC13:27
*** ig0r_ has joined #openstack-operators13:30
*** chlong has quit IRC13:31
*** VW_ has joined #openstack-operators13:31
*** dminer has joined #openstack-operators13:35
*** matrohon has joined #openstack-operators13:37
*** kencjohnston has joined #openstack-operators13:41
*** bhunter71 has joined #openstack-operators13:42
*** laron has quit IRC13:42
*** ferest has joined #openstack-operators13:45
*** saneax has quit IRC13:47
*** esker has joined #openstack-operators13:49
*** Marga_ has joined #openstack-operators13:51
*** kencjohnston has quit IRC13:53
*** gfa is now known as gfa_13:54
*** gfa_ is now known as gfa13:54
*** mdorman has joined #openstack-operators13:56
*** ferest has quit IRC13:59
*** ig0r_ has quit IRC14:00
*** Marga_ has quit IRC14:01
*** Marga_ has joined #openstack-operators14:02
*** ferest has joined #openstack-operators14:18
*** ferest has quit IRC14:21
*** Marga_ has quit IRC14:21
*** Piet has quit IRC14:26
*** klindgren has joined #openstack-operators14:37
*** emagana has joined #openstack-operators14:39
*** emagana has quit IRC14:42
*** emagana has joined #openstack-operators14:48
*** Marga_ has joined #openstack-operators14:49
*** Piet has joined #openstack-operators14:51
*** bradjones has joined #openstack-operators14:54
*** bradjones has quit IRC14:54
*** bradjones has joined #openstack-operators14:54
*** kencjohnston has joined #openstack-operators14:57
*** maishsk has quit IRC14:59
*** belmoreira has quit IRC15:01
*** SimonChung1 has quit IRC15:15
*** esker has quit IRC15:20
*** Marga_ has quit IRC15:23
*** Marga_ has joined #openstack-operators15:24
*** emagana has quit IRC15:24
*** gfa is now known as gfa_15:24
*** gfa_ is now known as gfa15:25
*** cdelatte has joined #openstack-operators15:29
*** alop has joined #openstack-operators15:48
*** HenryG has quit IRC15:51
*** esker has joined #openstack-operators15:55
*** HenryG has joined #openstack-operators16:01
*** gyee has joined #openstack-operators16:02
*** esker has quit IRC16:04
*** gyee has quit IRC16:06
*** emagana has joined #openstack-operators16:07
*** HenryG has quit IRC16:08
*** SimonChung has joined #openstack-operators16:09
*** HenryG has joined #openstack-operators16:18
*** Marga_ has quit IRC16:23
*** gyee has joined #openstack-operators16:33
*** gfa is now known as gfa_16:36
*** matrohon has quit IRC16:38
*** HenryG has quit IRC16:39
*** kencjohnston has quit IRC16:51
*** fawadkhaliq has quit IRC16:52
*** gfa_ is now known as gfa16:52
*** maishsk has joined #openstack-operators16:58
*** kencjohnston has joined #openstack-operators17:00
*** HenryG has joined #openstack-operators17:10
*** maishsk has quit IRC17:16
*** HenryG has quit IRC17:20
*** VW_ has quit IRC17:25
*** VW_ has joined #openstack-operators17:26
*** VW_ has quit IRC17:31
*** VW_ has joined #openstack-operators17:32
*** david-lyle has quit IRC17:48
*** radez is now known as radez_g0n318:01
*** VW_ has quit IRC18:04
*** VW_ has joined #openstack-operators18:05
*** VW_ has quit IRC18:09
*** VW_ has joined #openstack-operators18:12
mgagneklindgren: ping18:14
klindgrenmgagne, pong18:15
mgagneklindgren: mdorman told me you could explain me how to setup floating IPs with provider networks. would you mind sharing?18:16
klindgrenmgagne, short answer crazyness18:18
mgagneklindgren: we do have private provider networks (no SDN coolaid so far, pure VLANs) and wishes to know how to setup floating IPs with eventually a driver of my own. Do I need to create routers and such?18:18
mgagneklindgren: I'm used to crazyness =)18:18
klindgrenSo we create a router in the API, but do not run an agent18:19
klindgrenand the reason is that unless you change the gateway of the vm's to be the router handling the floating_ip's you end up with unusable traffic18:19
mgagneklindgren: so Neutron is satisfied18:19
klindgrenmgagne, yea18:19
mgagneklindgren: do you need to create an ext network?18:20
klindgrenso that way you can associate floating ip's to a port18:20
mgagneklindgren: and pump IPs into it right?18:20
klindgrenyea - we create a floating ip network18:20
klindgrenand assign ext-true18:20
klindgrendon't make it shared otherwise peopel can provision vm's on it18:20
mgagneklindgren: oh, so it's not that crazy. you following the network guide but just don't start an L3 agent18:21
klindgrenthen we add the ip's we want to use to it for as subnets, and we do as many subnets as we want18:21
mgagneklindgren: is custom code used to provision the routes?18:21
klindgrenso.... crazyness comes18:21
klindgrenbecause we do route injection into the network18:21
mgagneklindgren: I often use that one here: "go on..."18:22
klindgrento route the ip to the vm, then we modify the allowed_address_pair stuff to alolow the floating_ip into/out of the vm18:22
mgagneklindgren: that's not done by neutron alright?18:22
mgagnealready*18:22
klindgrencorrect - thats an additional step18:23
mgagnesad panda now18:23
klindgrensoooooo - that becuase of our specific network setup18:23
mgagneand the routes are setup on a "real" router somewhere?18:23
klindgrenI think their is a way to do it without huge changes18:24
mgagneklindgren: we are all snowflakes =)18:24
klindgrenwe are adding them to the TOR switches18:24
mgagneklindgren: any hooks in neutron or you happen to have a custom API/portal taking care of this orchestration?18:24
klindgrenbut yea essentially add routes to a router to make the nexthop of the floating ip the fixed_ip of them18:24
klindgrenthe vm*18:24
mgagneklindgren: we are looking for a similar setup tbh18:25
klindgrenwe implemented it all in neutron18:25
klindgren>_>18:25
klindgren<_<18:25
mgagneklindgren: that's fine with me ;)18:25
klindgrenI think we even have patches out there18:25
klindgrenlet me see if I can dig this stuff up18:25
mgagneklindgren: why not leveraging l3 agent with custom driver to proxy the calls to your TOR? too complex?18:25
klindgrenthe L# agent stuff bascially gets called to do a full sync18:26
klindgrenquerry the DB and apply everything18:26
klindgrenso it doesn't jsut add/remove an IP it rebuilds the whole config18:26
mgagneklindgren: I don't know why I thought you would answer something else :P18:26
klindgrenso we made our own L3 extension that implements the base L3 extenstions18:27
mgagneklindgren: yea, that's what I kind of expected. I thought you would have come up with a super magic thing to avoid this router/ext-net mess I don't care bout18:27
klindgrenand then either on create - after the base class does it thing - we call our static route client to add the route to the network18:28
klindgrenand on delete, before the base class does its thing, we call our client to remove the route18:28
klindgrenmgagne, nope - its builds the db relationships18:28
klindgrenbut what I was talking about to carl was back when this frontnet-backnet thing was hpaening18:29
klindgrenwas associating a front net ot the router18:29
klindgrenso we didn't have to add each "backnet" to the routers18:29
mgagneoh...18:29
mgagneyea, that's the bad part for me18:29
mgagneI do not fully control the network provisioning part18:30
mgagneso I'll have to explain to an other team this router concept and what they need to do18:30
klindgrenare customers creating the networks?18:30
mgagneklindgren: they are not18:30
klindgrenkk18:30
mgagneklindgren: we provision them for them (for now)18:30
klindgrenfront the end user XP - this stuff all works api wise exactly the same as neutron does today18:31
mgagneyea18:31
klindgrenwe also have some custom patches to allow assigning more than one floating_ip to fixed_ip18:31
mgagneklindgren: but we only care about WAN networks in that case and we might never let them create WAN networks by themselves anyway18:31
klindgrenwhich is really removal of some code18:31
mgagneklindgren: oh, you can't assign more than one?18:31
mgagneklindgren: dying panda now18:31
klindgrennot by default18:31
klindgren(removal of 7 lines of code)18:32
klindgrenand also worked on how to get differnt types of floating ip's onto the same router18:32
klindgrenIE a router in neutron can only be attached to one upstream "network"18:33
klindgrenso if you had say - public_floating_ips and private_floating_ip18:33
mgagnehmm why would you mix public and private IPs?18:34
klindgrenyou can't attach both of those networks to the same router18:34
klindgreninterally in specific security zones all vm's have are rfc1918 ip's18:34
klindgrenincluding floating ip's that can be moved from vm to vm18:34
klindgrenreasons are: LB's are configured by another team and are manual - so assigning a floating-private ip allows people to not let that team slow htem down18:35
klindgrenfrom replacing vm's18:35
klindgrenalso - some endpoints people want to talk to are locked down to only allow specific ip's18:36
klindgrenand those have to have all sorts of specificrequests and other crap18:36
klindgrenIE talking into pci or pki environments18:36
mgagneok it's mostly for business specific reasons18:36
klindgrenso having a private floating_ip that can move between vm's allows new vm's to take place of old ones without to go through that request process all over18:37
klindgrenwell and end-users asks18:37
klindgren:-)18:37
mgagne=)18:37
*** radez_g0n3 is now known as radez18:37
klindgrenanyway - I thik without code changes - if you wanted to do floating_ips with poriver networks you could18:38
mgagneI really appreciate sharing your info with me. it more or less confirmed what I expected ;)18:38
klindgrenrun an l3 agent18:38
klindgrendo all the standard stuff18:38
klindgrenbut change the gateway of the vm to use the router - vs's the real network18:38
mgagneklindgren: yea, I was wondering if I had to model a router or not. and it looks like neutron expects a router to exist to allow use of floating ips18:38
klindgrenwhen a floating ip was assigned18:38
klindgrenmgagne, yea - I didn't even want to take a look at what it would take to remove that asumption18:39
klindgrenI assume it would also be totally possible to gut the existing l3 extension and just do that stuff yo ucare about18:39
klindgrenyou care*18:39
mgagneklindgren: I read (in diagonal) the thread about representing L2 segments and everything is tightly coupled so not much hope in that aspect18:40
klindgrenthen its time for quark (not rackspaces quark) to replace neutron18:41
mgagnehehe18:41
klindgrenhonestly something is going to have to change18:42
klindgrentunneling all the things to provide a huge L2 domain - is jsut not how large companys build scaleable networks18:42
klindgrenwe all build networks where we clumb multiple constrained L2 segments together into a larger L3 network18:43
mgagneyep18:43
mgagneyes, I'm tired of people pushing SDN or policy-based networking whenever they can like it's the holy grail and like we are just not enlightened yet. I still haven't heard an answer to a guy asking: "What about my legacy networks and existing hardware? How do I hook it up to OpenStack" in a Neutron feedback session in Atlanta IIRC.18:45
*** HenryG_ has joined #openstack-operators18:46
mgagnesometimes I feel like we just don't speak the same language or some just don't grasp the reality (of production/scale) in which some operators/providers are18:47
*** SimonChung1 has joined #openstack-operators18:47
*** SimonChung has quit IRC18:47
*** SimonChung1 has quit IRC18:47
*** SimonChung has joined #openstack-operators18:47
mgagnebtw, someone just mentioned the akanda project to me. anyone with feedback on it? there is a lot of interesting keywords in the project description but don't know if I should trust them. :P18:48
mgagnehttps://github.com/stackforge/akanda18:48
klindgrenI kinda have the same feeling RE: big tent projects19:01
*** esker has joined #openstack-operators19:02
klindgrenseems like their is a project for just about everything - but not enough time to see whats actually viable19:02
klindgrenand by viable I mean - someone actually run it, at scale.  Where scale is something more than say 10-20 compute nodes19:03
klindgren:-)19:03
*** SimonChung1 has joined #openstack-operators19:03
*** SimonChung has quit IRC19:03
logan2i think akanda is a dreamhost spinoff19:06
*** Piet has quit IRC19:07
klindgrenhas anyone seen issues re: urllib3 and connection pool and EPIPE errors?19:16
klindgrenout of the blue starting to get a number of them - seems like its a bug in urllib3 1.10.0 fixed in 1.11.019:17
*** Marga_ has joined #openstack-operators19:21
*** Marga_ has quit IRC19:24
*** Marga_ has joined #openstack-operators19:25
klindgrenspecifically: 2015-08-04 12:15:00.432 32371 TRACE neutron.notifiers.nova   File "/usr/lib/python2.7/site-packages/OpenSSL/SSL.py", line 1178, in _raise_ssl_error19:25
klindgren2015-08-04 12:15:00.432 32371 TRACE neutron.notifiers.nova     raise SysCallError(errno, errorcode.get(errno))19:25
klindgren2015-08-04 12:15:00.432 32371 TRACE neutron.notifiers.nova SysCallError: (32, 'EPIPE')19:25
klindgrenfull error: http://paste.ubuntu.com/12002236/19:26
klindgrenbut seeing it in a number of spots19:26
*** gyee has quit IRC19:29
*** godp1301 has joined #openstack-operators19:34
*** dminer has quit IRC19:38
*** britthouser has joined #openstack-operators19:39
*** britthou_ has joined #openstack-operators19:40
*** britthouser has quit IRC19:43
*** samueldmq has joined #openstack-operators19:48
*** bhunter71 has quit IRC19:56
*** VW__ has joined #openstack-operators20:01
*** VW__ has quit IRC20:03
*** VW__ has joined #openstack-operators20:04
*** VW_ has quit IRC20:05
*** VW__ has quit IRC20:06
*** VW_ has joined #openstack-operators20:07
*** esker has quit IRC20:09
*** Piet has joined #openstack-operators20:10
*** esker has joined #openstack-operators20:11
*** esker has quit IRC20:11
*** esker has joined #openstack-operators20:11
*** Marga_ has quit IRC20:21
*** emagana has quit IRC20:45
*** emagana has joined #openstack-operators20:48
*** godp1301 has quit IRC20:52
*** jmckind has joined #openstack-operators20:56
*** Marga_ has joined #openstack-operators21:01
*** esker has quit IRC21:01
*** HenryG_ is now known as HenryG21:17
*** dmsimard has quit IRC21:21
*** Marga_ has quit IRC21:21
*** Marga_ has joined #openstack-operators21:22
*** kencjohnston has quit IRC21:23
*** jmckind has quit IRC21:24
*** jmckind has joined #openstack-operators21:26
*** VW_ has quit IRC21:31
*** VW_ has joined #openstack-operators21:32
*** VW_ has quit IRC21:37
*** dmsimard has joined #openstack-operators21:40
*** jmckind has quit IRC22:02
*** chlong has joined #openstack-operators22:07
*** VW_ has joined #openstack-operators22:16
*** zul has quit IRC22:23
*** jaypipes has quit IRC22:35
*** VW_ has quit IRC22:39
*** VW_ has joined #openstack-operators22:39
*** VW_ has quit IRC22:44
*** j05hk has quit IRC22:58
*** Marga_ has quit IRC23:01
*** jmckind has joined #openstack-operators23:22
*** jmckind has quit IRC23:23
*** jmckind has joined #openstack-operators23:24
*** cdelatte has quit IRC23:28
*** kencjohnston has joined #openstack-operators23:46
*** cdelatte has joined #openstack-operators23:51
*** delattec has joined #openstack-operators23:51
*** emagana has quit IRC23:56
*** kencjohnston has quit IRC23:58
*** kencjohnston has joined #openstack-operators23:58
« Monday, 2015-08-03 Index Wednesday, 2015-08-05 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!