openstack team mailing list archive

Thread
Date

quantum router, namespace, metadata and route back to guest network

To: openstack@xxxxxxxxxxxxxxxxxxx
From: Ilkka Tengvall <ilkka.tengvall@xxxxxxxxxxxx>
Date: Wed, 21 Nov 2012 16:46:48 +0200
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:16.0) Gecko/20121028 Thunderbird/16.0.2

Hi

could someone please explain how to get traffic flowing correctly withquantum? We are loosing traffic from quantum-server host back to guestnetwork. Guest ping works towards the host, but reply doesn't get sent.Guests can also make traffic out of the cloud.


This page tells to setup route back to guest network from metadata server:

http://docs.openstack.org/folsom/openstack-network/admin/content/adv_cfg_l3_agent_metadata.html

The problem is that the instruction on the above page will not work.Quantum uses namespaces to set nat rules for the router onquantum-server host. The host itself doesn't have ip in the guestnetwork, or public network. Thus it fails setting up a route to quantumgateway, since the host doesn't have ip in that network in defaultnamespace.

We have setup the provider network model using existing vlans accordingto instructions. The main host is running quantum-server,metadata-server, l3agent and actually almost every piece of theopenstack. The other node has only nova-compute andquantum-linux-bridge-plugin.


host1: 10.1.1.21/24, vlan1
   |
   |
host1: quantum router gw: 10.1.2.7/25, vlan2
host1: quantum router port: 10.1.3.1/24, vlan3
   |
   |
guest network 10.1.3.0/24, vlan3

So how should the route back to guest network be arranged?
1) adding ip to host into vlan3 guest network

2) using external router (default gw) that routes traffic back to guestnetwork outside of openstack

3) somehow adding ip to host into correct tap interface?
4) <insert correct answer here :)>

Obviously the guide is missing some crucial part. What might it be?

BR,

 Ilkka Tengvall