Friday, 2019-05-24

« Thursday, 2019-05-23 Index Saturday, 2019-05-25 »
*** itlinux_ has joined #openstack-trove00:04
*** rcernin has quit IRC00:07
*** itlinux has quit IRC00:07
*** rcernin has joined #openstack-trove01:05
*** minmin has joined #openstack-trove01:14
*** itlinux_ has quit IRC01:26
*** itlinux has joined #openstack-trove01:30
*** minmin has quit IRC01:33
*** minmin has joined #openstack-trove01:48
*** itlinux has quit IRC01:56
minminHello All, cloud anyone help to review https://review.opendev.org/#/c/660968/,  this bug blocks trove-specs Zuul verified.01:59
*** itlinux has joined #openstack-trove02:04
lxkongminmin: done, thanks for the fix02:04
lxkongminmin: i saw you've proposed a trove spec, just didn't get a chance to take a look02:05
lxkongon my todo list02:05
*** altlogbot_3 has quit IRC02:12
minminThanks very much. I am interesting in Trove project and hope to do more contribution :)02:14
*** altlogbot_1 has joined #openstack-trove02:14
openstackgerritMerged openstack/trove-specs master: docs: Resolve issues with Sphinx 2.0  https://review.opendev.org/66096802:14
lxkongminmin: may i ask which company or cloud you're working for?02:14
lxkongand your motivation of trove contribution?02:14
minminI am from china unicom, we did some development on trove kilo version and are trying to switch to Rocky release. As a personal, I did some trove development for private cloud production in my last company,  but I am not good at community contribution and connection.02:24
lxkongminmin: thanks for the info, that's helpful02:26
goldyfruitWe did 15 commits on Trove during the Queens cycle \o/02:27
goldyfruitWe had to fix the single tenant02:28
lxkongminmin, goldyfruit, i have been working on enabling the multi tenant deployment in devstack for some time, the CI still complains, need more time02:29
lxkongi hope i could finish that within this cycle02:29
goldyfruitNo problem :)02:29
lxkongminmin: how did you deploy Trove in your production? All the tenants share the Neutron network?02:31
minminwe use the proxy network, the trove instance have two nics tenant network and proxy network.02:36
lxkongminmin: you customzed the trove guest image?02:37
lxkongproxy network, i guess it's communicating with control plane, right?02:38
minmincorrect. I am not a network expert and don't know more details.02:39
lxkongminmin: thats all right, that's the same direction with what i am proposing02:39
goldyfruitWe are doing the same02:39
lxkonggoldyfruit: may i have more details from you?02:40
lxkonggoldyfruit: wait, you've also deployed Trove in production?02:40
goldyfruitYes02:40
goldyfruitTrove, Zun, Ironic, Magnum, Octavia02:40
lxkongWow02:41
goldyfruitFor Trove we have 2 networks, one for Trove that is used by the guest-agent to reach the RabbitMQ02:41
goldyfruitNot routable, no internet access on this network02:42
goldyfruitAnd a second network which is the tenant one02:42
lxkonggoldyfruit: how do you config the networks inside the guest vm?02:42
*** gmann has joined #openstack-trove02:42
lxkongso it doesn't conflict with the tenant network02:42
goldyfruitThe Trove network is a provider network02:42
goldyfruitThe tenant network is a VxLAN02:43
goldyfruitNo conflict, just make sure you don't have a gateway on each Neutron network02:43
goldyfruitOnly the tenant network should have one02:43
minminwe keep the network CIDR for proxy network and don't allow the customers use them.02:44
goldyfruitYeah, tenant network is only visible from service project02:44
lxkongminmin: yeah, that's the last resort solution for me02:44
goldyfruitAnd of course, user doesn't have SSH access to the Trove instance02:45
lxkong`make sure you don't have a gateway on each Neutron network`, i don't understand here. So inside the guest VM, there are 2 nics, right? What does the routing table looks like?02:46
lxkongthen trove-manager sends requests to the agent on control plane, how does the data packet return back without a gateway?02:47
goldyfruitThe instance is attached to two Neutron network, database network which is a provider network without gateway, tenant network which has a gateway (qrouter)02:47
lxkongi'm not network expert neither, but interested02:47
goldyfruitWe have routes on the controller node02:47
goldyfruitprovider network is neutron vlan network02:48
goldyfruitthis vlan is tagged on our switches02:48
lxkongi mean, inside the agent vm02:48
lxkongwhen a packet on the control plane returns back from the guest VM02:49
goldyfruitWe added a route to the neutron subnet too02:49
lxkongbecause the default gateway is the tenant network gateway02:49
goldyfruitThe route inside the Neutron subnet says, if you need to go to the internal network then go via the database network02:50
goldyfruitour network guy create the routing on the switches02:51
goldyfruitNothing to configure inside the inside02:51
goldyfruitinstance*02:51
lxkonghmm.. i need time to understand that :-)02:51
goldyfruitIn your trove.conf you have to configure the default-network which is the database network that Trove will use for the guest agent02:55
goldyfruitdefault_neutron_networks = NETWORK-UUID02:55
lxkongyesh02:55
lxkongi changed that config option name to `management_networks` :-)02:56
minminI am personal devstack development env, I will `socat` to forward the guest VM nework to controller service02:56
minminIn my  personal devstack development env, I will `socat` to forward the guest VM nework to controller service02:57
lxkongminmin: `socat ` inside the guest VM?02:57
lxkongor on the devstack host?02:57
minminno, in tenant network namespace02:58
lxkongi was supposed to do that using policy routing02:58
minminI use 169.254.169.254, It's similar to nova metadata proxy02:59
lxkongminmin: do you mind to paste me some commands for what you've done?03:00
minminip netns exec qdhcp-91fa504c-5d39-4dc9-b8e0-59d28d1986a7 socat -lpsocat-91fa504c-5d39-4dc9-b8e0-59d28d1986a7 TCP4-LISTEN:5672,fork UNIX-CONNECT:/var/lib/neutron/rabbitmq.sock03:02
lxkongminmin: thanks03:02
lxkongi guess i will be busy during the weekend :-)03:02
lxkongi need to learn some networking stuff03:02
minminthis command is to forward 169.254.169.254:5672 network traffic to unix socket03:03
minmin169.254.169.254 is routable for guest vm and in dhcp namespace03:03
minminsocat UNIX-LISTEN:/var/lib/neutron/rabbitmq.sock,fork TCP4-CONNECT:controller:567203:03
minminthis command is to forward from unix socket to controller 5672 (rabbitmq)03:04
minminin guest.conf 169.254.169.254 is rabbitmq server ip03:05
openstackgerritrenminmin proposed openstack/trove-specs master: Spec of volume data snapshot backup type  https://review.opendev.org/66092903:15
*** goldyfruit has quit IRC03:25
*** itlinux has quit IRC03:40
*** itlinux has joined #openstack-trove03:44
*** itlinux has quit IRC04:03
*** itlinux has joined #openstack-trove04:07
*** itlinux has quit IRC04:42
*** itlinux has joined #openstack-trove04:50
*** itlinux has quit IRC05:04
*** itlinux has joined #openstack-trove05:05
*** pcaruana has joined #openstack-trove05:08
*** pcaruana has quit IRC05:16
*** pcaruana has joined #openstack-trove05:17
*** itlinux has quit IRC05:44
openstackgerritinspurericzhang proposed openstack/trove-tempest-plugin master: Replace git.openstack.org URLs with opendev.org URLs  https://review.opendev.org/66119606:31
*** minmin has quit IRC07:11
*** minmin has joined #openstack-trove07:12
*** gmann has quit IRC07:28
*** rcernin has quit IRC07:36
*** tosky has joined #openstack-trove08:10
*** trident has quit IRC08:33
*** trident has joined #openstack-trove08:34
*** tesseract has joined #openstack-trove08:48
*** tesseract has quit IRC09:56
*** tesseract has joined #openstack-trove09:59
*** tesseract has quit IRC10:00
*** tesseract has joined #openstack-trove10:01
*** gmann has joined #openstack-trove11:02
*** tesseract has quit IRC11:10
*** Reepicheep has quit IRC11:47
*** Reepicheep has joined #openstack-trove11:49
*** Reepicheep has quit IRC11:52
*** Reepicheep has joined #openstack-trove11:53
*** jamesmcarthur has joined #openstack-trove12:52
*** goldyfruit has joined #openstack-trove13:06
*** jamesmcarthur has quit IRC14:24
*** jamesmcarthur has joined #openstack-trove14:55
*** jamesmcarthur has quit IRC14:59
*** genevievenantel_ has joined #openstack-trove15:00
*** genevievenantel has joined #openstack-trove15:01
*** itlinux has joined #openstack-trove15:03
*** jamesmcarthur has joined #openstack-trove15:05
*** jamesmcarthur has quit IRC15:11
*** itlinux has quit IRC15:15
*** itlinux has joined #openstack-trove15:17
*** jamesmcarthur has joined #openstack-trove15:19
*** itlinux has quit IRC15:19
*** itlinux has joined #openstack-trove15:21
*** jamesmcarthur has quit IRC15:46
*** itlinux has quit IRC15:49
*** genevievenantel has left #openstack-trove15:49
*** itlinux has joined #openstack-trove15:50
*** itlinux has quit IRC15:55
*** jamesmcarthur has joined #openstack-trove15:55
*** jamesmcarthur has quit IRC16:02
*** jamesmcarthur has joined #openstack-trove16:03
*** itlinux has joined #openstack-trove16:31
*** jamesmcarthur has quit IRC16:34
*** itlinux has quit IRC17:01
*** itlinux has joined #openstack-trove17:15
*** itlinux has quit IRC17:16
*** itlinux has joined #openstack-trove17:20
*** itlinux_ has joined #openstack-trove17:21
*** itlinux has quit IRC17:25
*** itlinux_ has quit IRC17:47
*** pcaruana has quit IRC17:53
*** pcaruana has joined #openstack-trove18:48
*** pcaruana has quit IRC18:48
*** tosky has quit IRC19:16
*** jamesmcarthur has joined #openstack-trove22:12
*** jamesmcarthur has quit IRC22:19
*** goldyfruit has quit IRC22:32
*** jamesmcarthur has joined #openstack-trove22:50
*** goldyfruit has joined #openstack-trove22:56
*** jamesmcarthur has quit IRC22:57
*** rcernin has joined #openstack-trove23:05
*** rcernin has quit IRC23:11
*** goldyfruit has quit IRC23:20
*** jamesmcarthur has joined #openstack-trove23:33
*** jamesmcarthur has quit IRC23:37
« Thursday, 2019-05-23 Index Saturday, 2019-05-25 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!