openstack team mailing list archive

Thread
Date

Re: Can't access external network when starting cloud-init

To: openstack@xxxxxxxxxxxxxxxxxxx
From: 이창만 <cm224.lee@xxxxxxxxxxx>
Date: Thu, 20 Dec 2012 08:26:00 +0900
Dlp-filter: Pass
In-reply-to: <004901cddcf3$52069860$f613c920$%lee@samsung.com>
Thread-index: Ac3c81CsFJDKSzgSRBuMYyYq+mPN5wBS3Sfw

I think that this is due to firewall, because I'm using masquerade with 2 NICs as I'm in proxy.
Does anyone have a clue to solve this?

[My Environment]
My PC used as gateway.
Public ip (eth0 : 12.xxx.xxx.xxx)
Private ip (eth1 : 192.168.1.1)   <--- switch ----> Controller, Compute1, Compute2 (all use 192.168.x.x)


> * Error Log
> cloud-init start-local running: Tue, 18 Dec 2012 16:19:07 +0000. up 1.53
> seconds
> no instance data found in start-local
> ci-info: lo    : 1 127.0.0.1       255.0.0.0       .
> ci-info: eth0  : 1 10.10.10.4      255.255.255.0   fa:16:3e:68:ee:b2
> ci-info: route-0: 0.0.0.0         10.10.10.1      0.0.0.0         eth0   UG
> ci-info: route-1: 10.10.10.0      0.0.0.0         255.255.255.0   eth0   U
> cloud-init start running: Tue, 18 Dec 2012 16:19:09 +0000. up 3.62 seconds
> 2012-12-18 16:20:00,031 - util.py[WARNING]: 'http://169.254.169.254/2009-
> 04-04/meta-data/instance-id' failed [50/120s]: url error [timed out]


$ sudo iptables -t nat -L -n

Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination         

Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination         
MASQUERADE  all  --  192.168.1.0/24       0.0.0.0/0           
MASQUERADE  all  --  192.168.1.0/24       0.0.0.0/0           
MASQUERADE  all  --  192.168.1.0/24       0.0.0.0/0


$ tail -f /var/log/kern.log

Dec 20 08:10:46 lcm kernel: [842945.911608] [UFW BLOCK] IN=eth1 OUT= MAC=33:33:00:00:00:01:50:e5:49:bd:5a:cc:86:dd SRC=fe80:0000:0000:0000:52e5:49ff:febd:5acc DST=ff02:0000:0000:0000:0000:0000:0000:0001 LEN=72 TC=0 HOPLIMIT=1 FLOWLBL=0 PROTO=ICMPv6 TYPE=130 CODE=0 
Dec 20 08:10:47 lcm kernel: [842946.898156] [UFW BLOCK] IN=eth1 OUT= MAC=33:33:00:00:00:fb:e8:11:32:32:50:78:86:dd SRC=fe80:0000:0000:0000:ea11:32ff:fe32:5078 DST=ff02:0000:0000:0000:0000:0000:0000:00fb LEN=72 TC=0 HOPLIMIT=1 FLOWLBL=0 PROTO=ICMPv6 TYPE=131 CODE=0 
Dec 20 08:12:51 lcm kernel: [843071.361815] [UFW BLOCK] IN=eth1 OUT= MAC=33:33:00:00:00:01:50:e5:49:bd:5a:cc:86:dd SRC=fe80:0000:0000:0000:52e5:49ff:febd:5acc DST=ff02:0000:0000:0000:0000:0000:0000:0001 LEN=72 TC=0 HOPLIMIT=1 FLOWLBL=0 PROTO=ICMPv6 TYPE=130 CODE=0 
Dec 20 08:12:52 lcm kernel: [843071.588065] [UFW BLOCK] IN=eth1 OUT= MAC=33:33:00:00:00:fb:e8:11:32:32:50:78:86:dd SRC=fe80:0000:0000:0000:ea11:32ff:fe32:5078 DST=ff02:0000:0000:0000:0000:0000:0000:00fb LEN=72 TC=0 HOPLIMIT=1 FLOWLBL=0 PROTO=ICMPv6 TYPE=131 CODE=0




> -----Original Message-----
> From: openstack-bounces+cm224.lee=samsung.com@xxxxxxxxxxxxxxxxxxx
> [mailto:openstack-bounces+cm224.lee=samsung.com@xxxxxxxxxxxxxxxxxxx] On
> Behalf Of 이창만
> Sent: Tuesday, December 18, 2012 4:43 PM
> To: openstack@xxxxxxxxxxxxxxxxxxx
> Subject: [Openstack] Can't access external network when starting cloud-init
> 
> Hello, list.
> 
> I've used precise-server-cloudimg-amd64-disk1.img.
> And I've launched instance with keypair.
> Ping is good but ssh can't access. As below log, I think due to cloud-init
> is failed.
> 
> What's the problem?
> 
> 
> $ quantum floatingip-create --port-id 413fd335-fb30-47fd-bd5e-6e3646924d52
> ext_net
> Created a new floatingip:
> +---------------------+--------------------------------------+
> | Field               | Value                                |
> +---------------------+--------------------------------------+
> | fixed_ip_address    | 10.10.10.4                           |
> | floating_ip_address | 192.168.1.4                          |
> | floating_network_id | c6cfe1a8-6b57-4ec9-99b3-093911e3720b |
> | id                  | a94e7feb-36d5-4f4c-948f-a02f62e7344d |
> | port_id             | 413fd335-fb30-47fd-bd5e-6e3646924d52 |
> | router_id           | df2d5b7b-31c7-4266-93b0-3d172664f892 |
> | tenant_id           | c2465f074a4b43f483bd07a2d6c3b80a     |
> +---------------------+--------------------------------------+
> 
> 
> * Error Log
> cloud-init start-local running: Tue, 18 Dec 2012 16:19:07 +0000. up 1.53
> seconds
> no instance data found in start-local
> ci-info: lo    : 1 127.0.0.1       255.0.0.0       .
> ci-info: eth0  : 1 10.10.10.4      255.255.255.0   fa:16:3e:68:ee:b2
> ci-info: route-0: 0.0.0.0         10.10.10.1      0.0.0.0         eth0   UG
> ci-info: route-1: 10.10.10.0      0.0.0.0         255.255.255.0   eth0   U
> cloud-init start running: Tue, 18 Dec 2012 16:19:09 +0000. up 3.62 seconds
> 2012-12-18 16:20:00,031 - util.py[WARNING]: 'http://169.254.169.254/2009-
> 04-04/meta-data/instance-id' failed [50/120s]: url error [timed out]
> 
> 
> Regards.
> 
> 
> _______________________________________________
> Mailing list: https://launchpad.net/~openstack
> Post to     : openstack@xxxxxxxxxxxxxxxxxxx
> Unsubscribe : https://launchpad.net/~openstack
> More help   : https://help.launchpad.net/ListHelp

Follow ups

Re: Can't access external network when starting cloud-init
From: 이창만, 2012-12-20

References

Can't access external network when starting cloud-init
From: 이창만, 2012-12-18