← Back to team overview

openstack team mailing list archive

Re: VM connectivity

 

Johanna, Veera, and Gary

The hybrid VIF driver is necessary for security groups to work (I think
this is why Gary is suggesting to use it).
This is likely to be the source of Johanna's problem of SSHing into VMs.

Just for the sake of pedantry, of which I am a die-hard aficionado, I'd
like to mention that in case you're running Quantum with namespaces, you
won't be able to SSH into them from the host machine unless you execute the
SSH command in the VM's namespace (same applies to ping or any other
operation involving the VM's IP address). For each quantum network, you'll
find a namespace called qdhcp-<net_id>. Hence you can SSH by doing sudo ip
netns exec qdhcp-<net_id> ssh <user>@<vm_ip>.

I do apologise If I'm stating the obvious.
Regards,
Salvatore

On 5 November 2012 14:16, Gary Kotton <gkotton@xxxxxxxxxx> wrote:

>  Please update the linuxnet_vif_driver
> Thanks
> Gary
>
>
> On 11/05/2012 02:14 PM, Veera Reddy wrote:
>
> Hi,
>
>  My Network Configuration in nova.conf
>
>  libvirt_vif_type=ethernet
> linuxnet_vif_driver=nova.network.linux_net.LinuxOVSInterfaceDriver
> firewall_driver=nova.virt.firewall.NoopFirewallDriver
> libvirt_use_virtio_for_bridges=True
>
>  Regards,
> Veera.
>
> On Mon, Nov 5, 2012 at 5:12 PM, Gary Kotton <gkotton@xxxxxxxxxx> wrote:
>
>>  Hi,
>> Can you please check that in nova.conf the value of libvirt_vif_driver is
>> nova.virt.libvirt.vif.LibvirtHybridOVSBridgeDriver
>> Thanks
>> Gary
>>
>>
>> On 11/05/2012 11:15 AM, Heinonen, Johanna (NSN - FI/Espoo) wrote:
>>
>>  Hi Veera,
>>
>>
>>
>> I forgot to mention that I have already configured the security groups
>>  for bothe ssh/icmp, but this did not help.
>>
>>
>>
>> Regards,
>>
>> Johanna
>>
>>
>>
>>
>>
>> *From:* ext Veera Reddy [mailto:veeraready@xxxxxxxxx<veeraready@xxxxxxxxx>]
>>
>> *Sent:* Monday, November 05, 2012 11:02 AM
>> *To:* Heinonen, Johanna (NSN - FI/Espoo)
>> *Cc:* ext Salvatore Orlando; openstack@xxxxxxxxxxxxxxxxxxx
>> *Subject:* Re: [Openstack] VM connectivity
>>
>>
>>
>> Hi Johanna,
>>
>>
>>
>> Using Security Groups you can ping and SSh to your VM.
>>
>>
>>
>>
>> http://docs.openstack.org/trunk/openstack-compute/admin/content/enabling-ping-and-ssh-on-vms.html
>>
>>
>>
>>
>>
>>
>>
>> Regards,
>>
>> Veera.
>>
>> On Mon, Nov 5, 2012 at 2:24 PM, Heinonen, Johanna (NSN - FI/Espoo) <
>> johanna.heinonen@xxxxxxx> wrote:
>>
>> Hi Salvatore,
>>
>>
>>
>> I am using Quantum with OVS-plugin. My quantum files are attached.
>>
>>
>>
>> I have done my configuration by following the instructions by E. Macchi
>> (includes a tenant internal network and a provider network) and Quantum
>> admin quide (folsom). I have a single node installation with one interface
>> eth0 and ubuntu 12.04. The OVS is configured like this:
>>
>>
>>
>> ovs-vsctl add-br br-int
>>
>> ovs-vsctl add-br br-ex
>>
>> ovs-vsctl br-set-external-id br-ex bridge-id br-ex
>>
>> ovs-vsctl add-port br-ex eth0
>>
>>
>>
>> I am able to start VMs in both the tenant network and provider network,
>> they are getting IPs and they become active. The only problem is that I am
>> not able to connect to them anyhow (no ssh, no ping…)
>>
>> ovs-vsctl looks like this:
>>
>>
>>
>> root@localadmin:~# ovs-vsctl show
>>
>> 86f47d37-93b0-4037-a988-1667f85d7c10
>>
>>     Bridge br-tun
>>
>>         Port br-tun
>>
>>             Interface br-tun
>>
>>                 type: internal
>>
>>         Port patch-int
>>
>>             Interface patch-int
>>
>>                 type: patch
>>
>>                 options: {peer=patch-tun}
>>
>>     Bridge br-ex
>>
>>         Port br-ex
>>
>>             Interface br-ex
>>
>>                 type: internal
>>
>>         Port "eth0"
>>
>>             Interface "eth0"
>>
>>         Port "qg-89636625-f4"
>>
>>             Interface "qg-89636625-f4"
>>
>>                 type: internal
>>
>>     Bridge br-int
>>
>>         Port patch-tun
>>
>>             Interface patch-tun
>>
>>                 type: patch
>>
>>                 options: {peer=patch-int}
>>
>>         Port "vnet1"
>>
>>             tag: 6
>>
>>             Interface "vnet1"
>>
>>         Port "vnet2"
>>
>>             tag: 1
>>
>>             Interface "vnet2"
>>
>>         Port "tap2fd9694b-51"
>>
>>             tag: 1
>>
>>             Interface "tap2fd9694b-51"
>>
>>                 type: internal
>>
>>         Port "vnet0"
>>
>>             tag: 1
>>
>>             Interface "vnet0"
>>
>>         Port br-int
>>
>>             Interface br-int
>>
>>                 type: internal
>>
>>     ovs_version: "1.4.0+build0"
>>
>>
>>
>> Maybe there is something wrong in my configuration? What are the best
>> troubleshooting tools in this case?
>>
>>
>>
>> Best regards,
>>
>> Johanna
>>
>>
>>
>>
>>
>> *From:* ext Salvatore Orlando [mailto:sorlando@xxxxxxxxxx]
>> *Sent:* Friday, November 02, 2012 10:53 AM
>> *To:* Heinonen, Johanna (NSN - FI/Espoo)
>> *Cc:* ext Daniel Oliveira; openstack@xxxxxxxxxxxxxxxxxxx
>> *Subject:* Re: [Openstack] VM connectivity
>>
>>
>>
>> Hi Johanna,
>>
>>
>>
>> are you running Openstack with Quantum or nova-network? In the former
>> case, which plugin are you using?
>>
>> If you are using nova-network, which network manager are you using?
>>
>>
>>
>> Salvatore
>>
>>
>>
>> On 2 November 2012 06:32, Heinonen, Johanna (NSN - FI/Espoo) <
>> johanna.heinonen@xxxxxxx> wrote:
>>
>> Hi Daniel,
>>
>>
>>
>> Did you solve your problem? If yes, what was the solution? I am
>> interested because I have similar issues in my setup.
>>
>>
>>
>> BR
>>
>> Johanna
>>
>>
>>
>> *From:* openstack-bounces+johanna.heinonen=nsn.com@xxxxxxxxxxxxxxxxxxx[mailto:
>> openstack-bounces+johanna.heinonen=nsn.com@xxxxxxxxxxxxxxxxxxx] *On
>> Behalf Of *ext Daniel Oliveira
>> *Sent:* Thursday, October 18, 2012 3:17 PM
>> *To:* openstack@xxxxxxxxxxxxxxxxxxx
>>
>>
>> *Subject:* Re: [Openstack] VM connectivity
>>
>>
>>
>> So, can anyone help me?
>>
>>
>>
>> 2012/10/16 Daniel Oliveira <dvalbrand@xxxxxxxxx>
>>
>> When viewing the console-log of a VM, I noticed the following:
>>
>>
>>
>> "
>>
>> Starting network...
>>
>> udhcpc (v1.18.5) started
>>
>> Sending discover...
>>
>> Sending discover...
>>
>> Sending discover...
>>
>> No lease, failing
>>
>> WARN: /etc/rc3.d/S40-network failed
>>
>> "
>>
>> 2012/10/16 Daniel Oliveira <dvalbrand@xxxxxxxxx>
>>
>> Hello. I installed OpenStack via devStack, and I've noticed I am unable
>> to SSH, or even ping, to any VM I launch. I've already added both rules to
>> the default security group (port 22 for SSH, and ICMP rule). I hope someone
>> can help me, thanks in advance.
>>
>>
>>
>> P.S.:
>>
>> -I am not very experienced with all of this, so if you ask me for the
>> output of some command or log, please specify the file path/command;
>>
>> -I had a thread with a similar question on this list, but I deleted it
>> from my email unintentionally.
>>
>>
>>
>> --
>> My best regards,
>>
>>
>>
>> Daniel Oliveira.
>>
>>
>>
>>
>>
>>
>>
>> --
>> My best regards,
>>
>>
>>
>> Daniel Oliveira.
>>
>>
>>
>>
>>
>>
>>
>> --
>> My best regards,
>>
>>
>>
>> Daniel Oliveira.
>>
>>
>>
>>
>> _______________________________________________
>> Mailing list: https://launchpad.net/~openstack
>> Post to     : openstack@xxxxxxxxxxxxxxxxxxx
>> Unsubscribe : https://launchpad.net/~openstack
>> More help   : https://help.launchpad.net/ListHelp
>>
>>
>>
>>
>> _______________________________________________
>> Mailing list: https://launchpad.net/~openstack
>> Post to     : openstack@xxxxxxxxxxxxxxxxxxx
>> Unsubscribe : https://launchpad.net/~openstack
>> More help   : https://help.launchpad.net/ListHelp
>>
>>
>>
>>
>>
>> --
>> Regards,
>> VeeraReddy.B
>> 9959236555.
>>
>>
>> _______________________________________________
>> Mailing list: https://launchpad.net/~openstack
>> Post to     : openstack@xxxxxxxxxxxxxxxxxxx
>> Unsubscribe : https://launchpad.net/~openstack
>> More help   : https://help.launchpad.net/ListHelp
>>
>>
>>
>> _______________________________________________
>> Mailing list: https://launchpad.net/~openstack
>> Post to     : openstack@xxxxxxxxxxxxxxxxxxx
>> Unsubscribe : https://launchpad.net/~openstack
>> More help   : https://help.launchpad.net/ListHelp
>>
>>
>
>
>  --
> Regards,
> VeeraReddy.B
> 9959236555.
>
>
>
> _______________________________________________
> Mailing list: https://launchpad.net/~openstack
> Post to     : openstack@xxxxxxxxxxxxxxxxxxx
> Unsubscribe : https://launchpad.net/~openstack
> More help   : https://help.launchpad.net/ListHelp
>
>

Follow ups

References