OpenStack installation Configuration (iii)

Increase networking-Pre-preparation (Controller)

Networking, also known as neutron, is an essential component of OpenStack, which is actually a network virtualization implementation tool that allows us to simulate routers, switches, network cards and other networking devices.

The neutron supports two network modes, the first of which is a very simple network architecture that supports only the external network of instances, and does not support custom networks, routers, and floating IPs. Only Administrators or authorized users have permission to administer the network. The second network function is powerful, supports custom network management, supports self-built routers, and also supports floating IP. Users can manage the network even if they are not authorized, enabling them to configure and manage themselves.

Create a library, authorized account Mysql-uroot-ptn1pi6ytm

> CREATE DATABASE Neutron;

> GRANT All privileges the nova.* to ' nova ' @ ' localhost ' identified by ' rygv0rg7p ';

> GRANT All privileges the nova.* to ' Nova ' @ ' percent ' identified by ' rygv0rg7p ';

Execute Script Source admin-openrc.sh

Create neutron user (password is mdcgvl29i)

OpenStack user Create--domain default--password-prompt neutron

Add the Admin role to the neutron user

OpenStack role Add--project service--user Neutron admin

Creating an Neutron instance

OpenStack Service Create--name neutron--description "OpenStack Networking" network

Creating the Networking service API terminal

OpenStack Endpoint Create--region regionone network public http://controller:9696

OpenStack Endpoint Create--region regionone network internal http://controller:9696

OpenStack Endpoint Create--region regionone network admin http://controller:9696

Add Networking-Config (Controller)

Installing components

Yum install Openstack-neutron openstack-neutron-ml2 \

Openstack-neutron-linuxbridge python-neutronclient ebtables ipset-y

Configuring service-side components

vim/etc/neutron/neutron.conf//Change or increase

[DEFAULT]

Core_plugin = ML2

Service_plugins =

Rpc_backend = Rabbit

Auth_strategy = Keystone

Notify_nova_on_port_status_changes = True

Notify_nova_on_port_data_changes = True

Nova_url = Http://controller:8774/v2

verbose = True

[Database]

Connection = Mysql://neutron:[email Protected]/neutron

[Oslo_messaging_rabbit]

Rabbit_host = Controller

Rabbit_userid = OpenStack

Rabbit_password = O3nxovnz5

[Keystone_authtoken]

Auth_uri = http://controller:5000

Auth_url = http://controller:35357

Auth_plugin = password

project_domain_id = Default

user_domain_id = Default

PROJECT_NAME = Service

Username = Neutron

Password = mdcgvl29i

[Nova]

Auth_url = http://controller:35357

Auth_plugin = password

project_domain_id = Default

user_domain_id = Default

Region_name = Regionone

PROJECT_NAME = Service

Username = Nova

Password = hsSNsqc43

[Oslo_concurrency]

Lock_path =/var/lib/neutron/tmp

Configuring the ML2 Plugin

Vim/etc/neutron/plugins/ml2/ml2_conf.ini//Change or increase

[ML2]

Type_drivers = Flat,vlan

Tenant_network_types =

Mechanism_drivers = Linuxbridge

Extension_drivers = port_security

[Ml2_type_flat]

Flat_networks = Public

[Securitygroup]

Enable_ipset = True

Edit the Linux bridging agent

Vim/etc/neutron/plugins/ml2/linuxbridge_agent.ini//Add or change

[Linux_bridge]

Physical_interface_mappings = public:eno16777736

[Vxlan]

Enable_vxlan = False

[Agent]

prevent_arp_spoofing = True

[Securitygroup]

Enable_security_group = True

Firewall_driver = Neutron.agent.linux.iptables_firewall. Iptablesfirewalldriver

Configure DHCP Agent

Vim/etc/neutron/dhcp_agent.ini//Add or change

[DEFAULT]

Interface_driver = Neutron.agent.linux.interface.BridgeInterfaceDriver

Dhcp_driver = NEUTRON.AGENT.LINUX.DHCP.DNSMASQ

Enable_isolated_metadata = True

verbose = True

Add networking-Configure Meta Data Agent (Controller)

Editing a configuration file

Vim/etc/neutron/metadata_agent.ini//Change or increase

[DEFAULT]

Auth_uri = http://controller:5000

Auth_url = http://controller:35357

Auth_region = Regionone

Auth_plugin = password

project_domain_id = Default

user_domain_id = Default

PROJECT_NAME = Service

Username = Neutron

Password = mdcgvl29i

NOVA_METADATA_IP = Controller

Metadata_proxy_shared_secret = M8UHMQTU2

verbose = True

Description: Need to delete the original Auth_url auth_region admin_tenant_name admin_user Admin_password in the configuration file

Increase Networking-compute Use Network (Controller)

vim/etc/nova/nova.conf//Change or add

[Neutron]

URL = http://controller:9696

Auth_url = http://controller:35357

Auth_plugin = password

project_domain_id = Default

user_domain_id = Default

Region_name = Regionone

PROJECT_NAME = Service

Username = Neutron

Password = mdcgvl29i

Service_metadata_proxy = True

Metadata_proxy_shared_secret = M8UHMQTU2

Add Networking-Start Service (Controller)

Creating a ML2 plug-in configuration file creating a soft connection

Ln-s/etc/neutron/plugins/ml2/ml2_conf.ini/etc/neutron/plugin.ini

Generate Data

Su-s/bin/sh-c "Neutron-db-manage--config-file/etc/neutron/neutron.conf \

--config-file/etc/neutron/plugins/ml2/ml2_conf.ini Upgrade Head "neutron

Restart the Compute API Service

Systemctl Restart Openstack-nova-api.service

Start the service

Systemctl enable Neutron-server.service \

Neutron-linuxbridge-agent.service neutron-dhcp-agent.service \

Neutron-metadata-agent.service

Systemctl start Neutron-server.service \

Neutron-linuxbridge-agent.service neutron-dhcp-agent.service \

Neutron-metadata-agent.service

Systemctl Enable Neutron-l3-agent.service

Systemctl Start Neutron-l3-agent.service

Add Networking-Configure compute node (COMPUTE)

Installing Components Yum install-y Openstack-neutron Openstack-neutron-linuxbridge ebtables ipset

Configure normal components vim/etc/neutron/neutron.conf//change or add

[DEFAULT]

Rpc_backend = Rabbit

Auth_strategy = Keystone

verbose = True

[Oslo_messaging_rabbit]

Rabbit_host = Controller

Rabbit_userid = OpenStack

Rabbit_password = O3nxovnz5

[Keystone_authtoken]

Auth_uri = http://controller:5000

Auth_url = http://controller:35357

Auth_plugin = password

project_domain_id = Default

user_domain_id = Default

PROJECT_NAME = Service

Username = Neutron

Password = mdcgvl29i

[Oslo_concurrency]

Lock_path =/var/lib/neutron/tmp

Configuring the Linux bridging Agent

Vim/etc/neutron/plugins/ml2/linuxbridge_agent.ini

[Linux_bridge]

Physical_interface_mappings = public:eno16777736

[Vxlan]

Enable_vxlan = False

[Agent]

prevent_arp_spoofing = True

[Securitygroup]

Enable_security_group = True

Firewall_driver = Neutron.agent.linux.iptables_firewall. Iptablesfirewalldriver

Configure compute to use the network

vim/etc/nova/nova.conf//Change or increase

[Neutron]

URL = http://controller:9696

Auth_url = http://controller:35357

Auth_plugin = password

project_domain_id = Default

user_domain_id = Default

Region_name = Regionone

PROJECT_NAME = Service

Username = Neutron

Password = mdcgvl29i

Start the service

Systemctl Restart Openstack-nova-compute.service

Systemctl Enable Neutron-linuxbridge-agent.service

Systemctl Start Neutron-linuxbridge-agent.service

Add Networking-Verify configuration (Controller)

Execute environment variable Script

SOURCE admin-openrc.sh

List all the extensions

Neutron ext-list

List all agents

Neutron agent-list

The agent type is as follows:

Linux Bridge Agent

Linux Bridge Agent

DHCP Agent

Metadata Agent

There must be 4, otherwise there is a problem with the configuration of one of the above steps.

This article from "愺 Burgundy pounding his 豩" blog, declined reprint!

OpenStack installation Configuration (iii)