Last active
May 12, 2016 06:13
-
-
Save marrabld/f92b1b30e117c6806d1154eddab4db53 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="utf-8"?> | |
| <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" | |
| "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> | |
| <html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en"> | |
| <head> | |
| <title>160512_notes</title> | |
| <!-- 2016-05-12 Thu 14:12 --> | |
| <meta http-equiv="Content-Type" content="text/html;charset=utf-8" /> | |
| <meta name="generator" content="Org-mode" /> | |
| <meta name="author" content="Daniel Marrable" /> | |
| <style type="text/css"> | |
| <!--/*--><![CDATA[/*><!--*/ | |
| .title { text-align: center; } | |
| .todo { font-family: monospace; color: red; } | |
| .done { color: green; } | |
| .tag { background-color: #eee; font-family: monospace; | |
| padding: 2px; font-size: 80%; font-weight: normal; } | |
| .timestamp { color: #bebebe; } | |
| .timestamp-kwd { color: #5f9ea0; } | |
| .right { margin-left: auto; margin-right: 0px; text-align: right; } | |
| .left { margin-left: 0px; margin-right: auto; text-align: left; } | |
| .center { margin-left: auto; margin-right: auto; text-align: center; } | |
| .underline { text-decoration: underline; } | |
| #postamble p, #preamble p { font-size: 90%; margin: .2em; } | |
| p.verse { margin-left: 3%; } | |
| pre { | |
| border: 1px solid #ccc; | |
| box-shadow: 3px 3px 3px #eee; | |
| padding: 8pt; | |
| font-family: monospace; | |
| overflow: auto; | |
| margin: 1.2em; | |
| } | |
| pre.src { | |
| position: relative; | |
| overflow: visible; | |
| padding-top: 1.2em; | |
| } | |
| pre.src:before { | |
| display: none; | |
| position: absolute; | |
| background-color: white; | |
| top: -10px; | |
| right: 10px; | |
| padding: 3px; | |
| border: 1px solid black; | |
| } | |
| pre.src:hover:before { display: inline;} | |
| pre.src-sh:before { content: 'sh'; } | |
| pre.src-bash:before { content: 'sh'; } | |
| pre.src-emacs-lisp:before { content: 'Emacs Lisp'; } | |
| pre.src-R:before { content: 'R'; } | |
| pre.src-perl:before { content: 'Perl'; } | |
| pre.src-java:before { content: 'Java'; } | |
| pre.src-sql:before { content: 'SQL'; } | |
| table { border-collapse:collapse; } | |
| caption.t-above { caption-side: top; } | |
| caption.t-bottom { caption-side: bottom; } | |
| td, th { vertical-align:top; } | |
| th.right { text-align: center; } | |
| th.left { text-align: center; } | |
| th.center { text-align: center; } | |
| td.right { text-align: right; } | |
| td.left { text-align: left; } | |
| td.center { text-align: center; } | |
| dt { font-weight: bold; } | |
| .footpara:nth-child(2) { display: inline; } | |
| .footpara { display: block; } | |
| .footdef { margin-bottom: 1em; } | |
| .figure { padding: 1em; } | |
| .figure p { text-align: center; } | |
| .inlinetask { | |
| padding: 10px; | |
| border: 2px solid gray; | |
| margin: 10px; | |
| background: #ffffcc; | |
| } | |
| #org-div-home-and-up | |
| { text-align: right; font-size: 70%; white-space: nowrap; } | |
| textarea { overflow-x: auto; } | |
| .linenr { font-size: smaller } | |
| .code-highlighted { background-color: #ffff00; } | |
| .org-info-js_info-navigation { border-style: none; } | |
| #org-info-js_console-label | |
| { font-size: 10px; font-weight: bold; white-space: nowrap; } | |
| .org-info-js_search-highlight | |
| { background-color: #ffff00; color: #000000; font-weight: bold; } | |
| /*]]>*/--> | |
| </style> | |
| <script type="text/javascript"> | |
| /* | |
| @licstart The following is the entire license notice for the | |
| JavaScript code in this tag. | |
| Copyright (C) 2012-2013 Free Software Foundation, Inc. | |
| The JavaScript code in this tag is free software: you can | |
| redistribute it and/or modify it under the terms of the GNU | |
| General Public License (GNU GPL) as published by the Free Software | |
| Foundation, either version 3 of the License, or (at your option) | |
| any later version. The code is distributed WITHOUT ANY WARRANTY; | |
| without even the implied warranty of MERCHANTABILITY or FITNESS | |
| FOR A PARTICULAR PURPOSE. See the GNU GPL for more details. | |
| As additional permission under GNU GPL version 3 section 7, you | |
| may distribute non-source (e.g., minimized or compacted) forms of | |
| that code without the copy of the GNU GPL normally required by | |
| section 4, provided you include this license notice and a URL | |
| through which recipients can access the Corresponding Source. | |
| @licend The above is the entire license notice | |
| for the JavaScript code in this tag. | |
| */ | |
| <!--/*--><![CDATA[/*><!--*/ | |
| function CodeHighlightOn(elem, id) | |
| { | |
| var target = document.getElementById(id); | |
| if(null != target) { | |
| elem.cacheClassElem = elem.className; | |
| elem.cacheClassTarget = target.className; | |
| target.className = "code-highlighted"; | |
| elem.className = "code-highlighted"; | |
| } | |
| } | |
| function CodeHighlightOff(elem, id) | |
| { | |
| var target = document.getElementById(id); | |
| if(elem.cacheClassElem) | |
| elem.className = elem.cacheClassElem; | |
| if(elem.cacheClassTarget) | |
| target.className = elem.cacheClassTarget; | |
| } | |
| /*]]>*///--> | |
| </script> | |
| </head> | |
| <body> | |
| <div id="content"> | |
| <h1 class="title">160512_notes</h1> | |
| <div id="table-of-contents"> | |
| <h2>Table of Contents</h2> | |
| <div id="text-table-of-contents"> | |
| <ul> | |
| <li><a href="#sec-1">1. Notes</a></li> | |
| <li><a href="#sec-2">2. Lab 3</a> | |
| <ul> | |
| <li><a href="#sec-2-1">2.1. Openstack networking</a></li> | |
| <li><a href="#sec-2-2">2.2. Working with security groups</a></li> | |
| <li><a href="#sec-2-3">2.3. Debugging data flow</a></li> | |
| <li><a href="#sec-2-4">2.4. Can't make this work, come back to it later</a></li> | |
| <li><a href="#sec-2-5">2.5. Create Neutron load-balancer</a></li> | |
| <li><a href="#sec-2-6">2.6. Clean up</a></li> | |
| </ul> | |
| </li> | |
| </ul> | |
| </div> | |
| </div> | |
| <div id="outline-container-sec-1" class="outline-2"> | |
| <h2 id="sec-1"><span class="section-number-2">1</span> Notes</h2> | |
| </div> | |
| <div id="outline-container-sec-2" class="outline-2"> | |
| <h2 id="sec-2"><span class="section-number-2">2</span> Lab 3</h2> | |
| <div class="outline-text-2" id="text-2"> | |
| </div><div id="outline-container-sec-2-1" class="outline-3"> | |
| <h3 id="sec-2-1"><span class="section-number-3">2.1</span> Openstack networking</h3> | |
| <div class="outline-text-3" id="text-2-1"> | |
| <ul class="org-ul"> | |
| <li>Neutron is used for networking | |
| </li> | |
| <li>Create an external network | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron net-create ext -- --router:external=True | |
| </pre> | |
| <p> | |
| Created a new network: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| admin_state_up <br /> | |
| id <br /> | |
| mtu <br /> | |
| name <br /> | |
| provider:network_type <br /> | |
| provider:physical_network <br /> | |
| provider:segmentation_id <br /> | |
| router:external <br /> | |
| shared <br /> | |
| status <br /> | |
| subnets <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| True <br /> | |
| e0714ea6-b48c-41fe-bce5-14098ce62bb0 <br /> | |
| 0 <br /> | |
| ext <br /> | |
| vlan <br /> | |
| physnet1 <br /> | |
| 189 <br /> | |
| True <br /> | |
| False <br /> | |
| ACTIVE <br /> | |
| <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Create a subnet | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron subnet-create --allocation-pool start=192.168.100.100,end=192.168.100.200 --gateway=192.168.100.1 --disable-dhcp ext 192.168.100.0/24 | |
| </pre> | |
| <p> | |
| Created a new subnet: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| allocation_pools <br /> | |
| cidr <br /> | |
| dns_nameservers <br /> | |
| enable_dhcp <br /> | |
| gateway_ip <br /> | |
| host_routes <br /> | |
| id <br /> | |
| ip_version <br /> | |
| ipv6_address_mode <br /> | |
| ipv6_ra_mode <br /> | |
| name <br /> | |
| network_id <br /> | |
| subnetpool_id <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| {"start": "192.168.100.100", "end": "192.168.100.200"} <br /> | |
| 192.168.100.0/24 <br /> | |
| <br /> | |
| False <br /> | |
| 192.168.100.1 <br /> | |
| <br /> | |
| 619aa40b-3cae-4fb9-ac0e-081edf4286da <br /> | |
| 4 <br /> | |
| <br /> | |
| <br /> | |
| <br /> | |
| e0714ea6-b48c-41fe-bce5-14098ce62bb0 <br /> | |
| <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Create GRE tunnelled internal network | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| grep tunnel_id /etc/neutron/plugins/ml2/ml2_conf.ini |grep -v '#' | |
| neutron net-create --provider:network_type=gre --provider:segmentation_id=101 int_gre1 | |
| </pre> | |
| <p> | |
| Created a new network: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| admin_state_up <br /> | |
| id <br /> | |
| mtu <br /> | |
| name <br /> | |
| provider:network_type <br /> | |
| provider:physical_network <br /> | |
| provider:segmentation_id <br /> | |
| router:external <br /> | |
| shared <br /> | |
| status <br /> | |
| subnets <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| True <br /> | |
| 1ff3cdeb-f45b-4883-a687-cd306b02b273 <br /> | |
| 0 <br /> | |
| int_gre1 <br /> | |
| gre <br /> | |
| <br /> | |
| 101 <br /> | |
| False <br /> | |
| False <br /> | |
| ACTIVE <br /> | |
| <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Create a new subnet | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron subnet-create --name 10_30 --allocation-pool start=10.30.30.100,end=10.30.30.200 --gateway 10.30.30.254 int_gre1 10.30.30.0/24 | |
| </pre> | |
| <p> | |
| Created a new subnet: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| allocation_pools <br /> | |
| cidr <br /> | |
| dns_nameservers <br /> | |
| enable_dhcp <br /> | |
| gateway_ip <br /> | |
| host_routes <br /> | |
| id <br /> | |
| ip_version <br /> | |
| ipv6_address_mode <br /> | |
| ipv6_ra_mode <br /> | |
| name <br /> | |
| network_id <br /> | |
| subnetpool_id <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| {"start": "10.30.30.100", "end": "10.30.30.200"} <br /> | |
| 10.30.30.0/24 <br /> | |
| <br /> | |
| True <br /> | |
| 10.30.30.254 <br /> | |
| <br /> | |
| a4ad7867-f36d-4d25-b1b2-d0e6eec47615 <br /> | |
| 4 <br /> | |
| <br /> | |
| <br /> | |
| 10_30 <br /> | |
| 1ff3cdeb-f45b-4883-a687-cd306b02b273 <br /> | |
| <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Create a VLAN | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron net-create --provider:network_type=vlan --provider:physical_network=physnet1 --provider:segmentation_id=102 int_vlan1 | |
| </pre> | |
| <p> | |
| Created a new network: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| admin_state_up <br /> | |
| id <br /> | |
| mtu <br /> | |
| name <br /> | |
| provider:network_type <br /> | |
| provider:physical_network <br /> | |
| provider:segmentation_id <br /> | |
| router:external <br /> | |
| shared <br /> | |
| status <br /> | |
| subnets <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| True <br /> | |
| a5c376c8-0a3d-492f-aa96-4ff53a73540d <br /> | |
| 0 <br /> | |
| int_vlan1 <br /> | |
| vlan <br /> | |
| physnet1 <br /> | |
| 102 <br /> | |
| False <br /> | |
| False <br /> | |
| ACTIVE <br /> | |
| <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Add the subnet to the VLAN | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron subnet-create --name 10_40 --allocation-pool start=10.40.40.100,end=10.40.40.200 --gateway 10.40.40.254 int_vlan1 10.40.40.0/24 | |
| </pre> | |
| <p> | |
| Created a new subnet: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| allocation_pools <br /> | |
| cidr <br /> | |
| dns_nameservers <br /> | |
| enable_dhcp <br /> | |
| gateway_ip <br /> | |
| host_routes <br /> | |
| id <br /> | |
| ip_version <br /> | |
| ipv6_address_mode <br /> | |
| ipv6_ra_mode <br /> | |
| name <br /> | |
| network_id <br /> | |
| subnetpool_id <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| {"start": "10.40.40.100", "end": "10.40.40.200"} <br /> | |
| 10.40.40.0/24 <br /> | |
| <br /> | |
| True <br /> | |
| 10.40.40.254 <br /> | |
| <br /> | |
| 351625e2-b3ee-48d1-b001-2e468779f54a <br /> | |
| 4 <br /> | |
| <br /> | |
| <br /> | |
| 10_40 <br /> | |
| a5c376c8-0a3d-492f-aa96-4ff53a73540d <br /> | |
| <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Connect the internal and external networks | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron router-create int_gre1_router | |
| neutron router-gateway-set int_gre1_router ext | |
| neutron router-interface-add int_gre1_router 10_30 | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| admin_state_up <br /> | |
| distributed <br /> | |
| external_gateway_info <br /> | |
| ha <br /> | |
| id <br /> | |
| name <br /> | |
| routes <br /> | |
| status <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| True <br /> | |
| False <br /> | |
| <br /> | |
| False <br /> | |
| 177975e5-9a6e-4a98-a31f-3fe0fe3a10e5 <br /> | |
| int_gre1_router <br /> | |
| <br /> | |
| ACTIVE <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Create a router and set it as a gateway for the network | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron router-create int_vlan1_router | |
| neutron router-gateway-set int_vlan1_router ext | |
| neutron router-interface-add int_vlan1_router 10_40 | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| admin_state_up <br /> | |
| distributed <br /> | |
| external_gateway_info <br /> | |
| ha <br /> | |
| id <br /> | |
| name <br /> | |
| routes <br /> | |
| status <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| True <br /> | |
| False <br /> | |
| <br /> | |
| False <br /> | |
| 0ca739ed-18df-4be4-92c6-c3d43711b042 <br /> | |
| int_vlan1_router <br /> | |
| <br /> | |
| ACTIVE <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Start a VM with an interface in both int<sub>gre1</sub> and int<sub>vlan</sub> | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron net-list -F id -F name | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| id | |
| </td> | |
| <td align="left" valign="top"> | |
| name | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| a5c376c8-0a3d-492f-aa96-4ff53a73540d <br /> | |
| e0714ea6-b48c-41fe-bce5-14098ce62bb0 <br /> | |
| 1ff3cdeb-f45b-4883-a687-cd306b02b273 | |
| </td> | |
| <td align="left" valign="top"> | |
| int_vlan1 <br /> | |
| ext <br /> | |
| int_gre1 | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| nova boot --flavor 1 --image cirros --nic net-id=a5c376c8-0a3d-492f-aa96-4ff53a73540d --nic net-id=1ff3cdeb-f45b-4883-a687-cd306b02b273 vm1 | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Property | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| OS-DCF:diskConfig <br /> | |
| OS-EXT-AZ:availability_zone <br /> | |
| OS-EXT-SRV-ATTR:host <br /> | |
| OS-EXT-SRV-ATTR:hypervisor_hostname <br /> | |
| OS-EXT-SRV-ATTR:instance_name <br /> | |
| OS-EXT-STS:power_state <br /> | |
| OS-EXT-STS:task_state <br /> | |
| OS-EXT-STS:vm_state <br /> | |
| OS-SRV-USG:launched_at <br /> | |
| OS-SRV-USG:terminated_at <br /> | |
| accessIPv4 <br /> | |
| accessIPv6 <br /> | |
| adminPass <br /> | |
| config_drive <br /> | |
| created <br /> | |
| flavor <br /> | |
| hostId <br /> | |
| id <br /> | |
| image <br /> | |
| key_name <br /> | |
| metadata <br /> | |
| name <br /> | |
| os-extended-volumes:volumes_attached <br /> | |
| progress <br /> | |
| security_groups <br /> | |
| status <br /> | |
| tenant_id <br /> | |
| updated <br /> | |
| user_id | |
| </td> | |
| <td align="left" valign="top"> | |
| MANUAL <br /> | |
| nova <br /> | |
| - <br /> | |
| - <br /> | |
| instance-00000011 <br /> | |
| 0 <br /> | |
| scheduling <br /> | |
| building <br /> | |
| - <br /> | |
| - <br /> | |
| <br /> | |
| <br /> | |
| 9YyN88RFwAwr <br /> | |
| <br /> | |
| 2016-05-12T02:03:23Z <br /> | |
| m1.tiny (1) <br /> | |
| <br /> | |
| b62a5924-4e70-44b1-96cd-961fb9de66ac <br /> | |
| cirros (9f7e9ca7-3608-4e9c-af96-71e955eb1e8d) <br /> | |
| - <br /> | |
| {} <br /> | |
| vm1 <br /> | |
| [] <br /> | |
| 0 <br /> | |
| default <br /> | |
| BUILD <br /> | |
| eb77b585a9184304a0248537431c723f <br /> | |
| 2016-05-12T02:03:24Z <br /> | |
| 8f3c9ec8bbe641758ded53f333eb59f6 | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Attach a floating IP to the virtual machine | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| nova list | grep vm1 | |
| </pre> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="left">b62a5924-4e70-44b1-96cd-961fb9de66ac</td> | |
| <td class="left">vm1</td> | |
| <td class="left">ACTIVE</td> | |
| <td class="left">-</td> | |
| <td class="left">Running</td> | |
| <td class="left">int<sub>vlan1</sub>=10.40.40.101; int<sub>gre1</sub>=10.30.30.101</td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <pre class="example"> | |
| nova interface-list vm1 | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Port State | |
| </td> | |
| <td align="left" valign="top"> | |
| Port ID | |
| </td> | |
| <td align="left" valign="top"> | |
| Net ID | |
| </td> | |
| <td align="left" valign="top"> | |
| IP addresses | |
| </td> | |
| <td align="left" valign="top"> | |
| MAC Addr | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| ACTIVE <br /> | |
| ACTIVE | |
| </td> | |
| <td align="left" valign="top"> | |
| e65e469e-3f72-4f02-8d48-c957ce1aefc4 <br /> | |
| f3a89960-a730-4678-96c4-5b3977df08f1 | |
| </td> | |
| <td align="left" valign="top"> | |
| a5c376c8-0a3d-492f-aa96-4ff53a73540d <br /> | |
| 1ff3cdeb-f45b-4883-a687-cd306b02b273 | |
| </td> | |
| <td align="left" valign="top"> | |
| 10.40.40.101 <br /> | |
| 10.30.30.101 | |
| </td> | |
| <td align="left" valign="top"> | |
| fa:16:3e:ba:90:c1 <br /> | |
| fa:16:3e:f8:94:ee | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| neutron floatingip-create ext | |
| </pre> | |
| <p> | |
| Created a new floatingip: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| fixed_ip_address <br /> | |
| floating_ip_address <br /> | |
| floating_network_id <br /> | |
| id <br /> | |
| port_id <br /> | |
| router_id <br /> | |
| status <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| <br /> | |
| 192.168.100.102 <br /> | |
| e0714ea6-b48c-41fe-bce5-14098ce62bb0 <br /> | |
| 2b3f6c4f-6248-4981-8f64-67b31d94e0e4 <br /> | |
| <br /> | |
| <br /> | |
| DOWN <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| neutron floatingip-associate <flaotingip ID><PortID> | |
| neutron floatingip-associate 2b3f6c4f-6248-4981-8f64-67b31d94e0e4 f3a89960-a730-4678-96c4-5b3977df08f1 | |
| </pre> | |
| </div> | |
| </div> | |
| <div id="outline-container-sec-2-2" class="outline-3"> | |
| <h3 id="sec-2-2"><span class="section-number-3">2.2</span> Working with security groups</h3> | |
| <div class="outline-text-3" id="text-2-2"> | |
| <ul class="org-ul"> | |
| <li>List the rules for the group | |
| </li> | |
| <li>Add a new rule to the group | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| nova show vm1 | grep sec | |
| nova secgroup-list-rules default | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| IP Protocol | |
| </td> | |
| <td align="left" valign="top"> | |
| From Port | |
| </td> | |
| <td align="left" valign="top"> | |
| To Port | |
| </td> | |
| <td align="left" valign="top"> | |
| IP Range | |
| </td> | |
| <td align="left" valign="top"> | |
| Source Group | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| <br /> | |
| icmp <br /> | |
| tcp <br /> | |
| <br /> | |
| udp | |
| </td> | |
| <td align="left" valign="top"> | |
| <br /> | |
| -1 <br /> | |
| 1 <br /> | |
| <br /> | |
| 1 | |
| </td> | |
| <td align="left" valign="top"> | |
| <br /> | |
| -1 <br /> | |
| 65535 <br /> | |
| <br /> | |
| 65535 | |
| </td> | |
| <td align="left" valign="top"> | |
| <br /> | |
| 0.0.0.0/0 <br /> | |
| 0.0.0.0/0 <br /> | |
| <br /> | |
| 0.0.0.0/0 | |
| </td> | |
| <td align="left" valign="top"> | |
| default <br /> | |
| <br /> | |
| <br /> | |
| default <br /> | |
| | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| nova secgroup-add-rule default tcp 12345 12345 1.2.3.4/32 | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| IP Protocol | |
| </td> | |
| <td align="left" valign="top"> | |
| From Port | |
| </td> | |
| <td align="left" valign="top"> | |
| To Port | |
| </td> | |
| <td align="left" valign="top"> | |
| IP Range | |
| </td> | |
| <td align="left" valign="top"> | |
| Source Group | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| tcp | |
| </td> | |
| <td align="left" valign="top"> | |
| 12345 | |
| </td> | |
| <td align="left" valign="top"> | |
| 12345 | |
| </td> | |
| <td align="left" valign="top"> | |
| 1.2.3.4/32 | |
| </td> | |
| <td align="left" valign="top"> | |
| | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| nova secgroup-list-rules default | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| IP Protocol | |
| </td> | |
| <td align="left" valign="top"> | |
| From Port | |
| </td> | |
| <td align="left" valign="top"> | |
| To Port | |
| </td> | |
| <td align="left" valign="top"> | |
| IP Range | |
| </td> | |
| <td align="left" valign="top"> | |
| Source Group | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| tcp <br /> | |
| <br /> | |
| icmp <br /> | |
| tcp <br /> | |
| <br /> | |
| udp | |
| </td> | |
| <td align="left" valign="top"> | |
| 12345 <br /> | |
| <br /> | |
| -1 <br /> | |
| 1 <br /> | |
| <br /> | |
| 1 | |
| </td> | |
| <td align="left" valign="top"> | |
| 12345 <br /> | |
| <br /> | |
| -1 <br /> | |
| 65535 <br /> | |
| <br /> | |
| 65535 | |
| </td> | |
| <td align="left" valign="top"> | |
| 1.2.3.4/32 <br /> | |
| <br /> | |
| 0.0.0.0/0 <br /> | |
| 0.0.0.0/0 <br /> | |
| <br /> | |
| 0.0.0.0/0 | |
| </td> | |
| <td align="left" valign="top"> | |
| <br /> | |
| default <br /> | |
| <br /> | |
| <br /> | |
| default <br /> | |
| | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Find the network device of the instance | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| nova show vm1 | grep -E 'hyper|instance' | |
| </pre> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="left">OS-EXT-SRV-ATTR:hypervisor<sub>hostname</sub></td> | |
| <td class="left">compute2.openstack.local</td> | |
| </tr> | |
| <tr> | |
| <td class="left">OS-EXT-SRV-ATTR:instance<sub>name</sub></td> | |
| <td class="left">instance-00000011</td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>SSH in to compute2 | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| virsh list | grep instance-000 | |
| </pre> | |
| <p> | |
| 8 instance-00000011 running | |
| </p> | |
| <pre class="example"> | |
| virsh domiflist 8 | |
| </pre> | |
| <p> | |
| Interface Type Source Model MAC | |
| </p> | |
| <hr /> | |
| <p> | |
| tape65e469e-3f bridge qbre65e469e-3f virtio fa:16:3e:ba:90:c1 | |
| tapf3a89960-a7 bridge qbrf3a89960-a7 virtio fa:16:3e:f8:94:ee | |
| </p> | |
| <pre class="example"> | |
| iptables -nvL FORWARD | |
| </pre> | |
| <p> | |
| Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) | |
| </p> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="right" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="right">pkts</td> | |
| <td class="left">bytes</td> | |
| <td class="left">target</td> | |
| <td class="left">prot</td> | |
| <td class="left">opt</td> | |
| <td class="left">in</td> | |
| <td class="left">out</td> | |
| <td class="left">source</td> | |
| <td class="left">destination</td> | |
| </tr> | |
| <tr> | |
| <td class="right">4355</td> | |
| <td class="left">422K</td> | |
| <td class="left">neutron-filter-top</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| </tr> | |
| <tr> | |
| <td class="right">4355</td> | |
| <td class="left">422K</td> | |
| <td class="left">neutron-openvswi-FORWARD</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <pre class="example"> | |
| iptables -nvL neutron-openvswi-FORWARD | grep tape65e469e-3f | |
| </pre> | |
| <hr /> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="right" /> | |
| <col class="right" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="right">63</td> | |
| <td class="right">6195</td> | |
| <td class="left">neutron-openvswi-sg-chain</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">PHYSDEV</td> | |
| <td class="left">match</td> | |
| <td class="left">–physdev-out</td> | |
| <td class="left">tape65e469e-3f</td> | |
| <td class="left">–physdev-is-bridged</td> | |
| <td class="left">/*</td> | |
| <td class="left">Direct</td> | |
| <td class="left">traffic</td> | |
| <td class="left">from</td> | |
| <td class="left">the</td> | |
| <td class="left">VM</td> | |
| <td class="left">interface</td> | |
| <td class="left">to</td> | |
| <td class="left">the</td> | |
| <td class="left">security</td> | |
| <td class="left">group</td> | |
| <td class="left">chain.</td> | |
| <td class="left">*/</td> | |
| </tr> | |
| <tr> | |
| <td class="right">93</td> | |
| <td class="right">8192</td> | |
| <td class="left">neutron-openvswi-sg-chain</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">PHYSDEV</td> | |
| <td class="left">match</td> | |
| <td class="left">–physdev-in</td> | |
| <td class="left">tape65e469e-3f</td> | |
| <td class="left">–physdev-is-bridged</td> | |
| <td class="left">/*</td> | |
| <td class="left">Direct</td> | |
| <td class="left">traffic</td> | |
| <td class="left">from</td> | |
| <td class="left">the</td> | |
| <td class="left">VM</td> | |
| <td class="left">interface</td> | |
| <td class="left">to</td> | |
| <td class="left">the</td> | |
| <td class="left">security</td> | |
| <td class="left">group</td> | |
| <td class="left">chain.</td> | |
| <td class="left">*/</td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <hr /> | |
| <pre class="example"> | |
| iptables -nvL neutron-openvswi-sg-chain | grep tape65e469e-3f | |
| </pre> | |
| <hr /> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="right" /> | |
| <col class="right" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="right">63</td> | |
| <td class="right">6195</td> | |
| <td class="left">neutron-openvswi-ie65e469e-3</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">PHYSDEV</td> | |
| <td class="left">match</td> | |
| <td class="left">–physdev-out</td> | |
| <td class="left">tape65e469e-3f</td> | |
| <td class="left">–physdev-is-bridged</td> | |
| <td class="left">/*</td> | |
| <td class="left">Jump</td> | |
| <td class="left">to</td> | |
| <td class="left">the</td> | |
| <td class="left">VM</td> | |
| <td class="left">specific</td> | |
| <td class="left">chain.</td> | |
| <td class="left">*/</td> | |
| </tr> | |
| <tr> | |
| <td class="right">93</td> | |
| <td class="right">8192</td> | |
| <td class="left">neutron-openvswi-oe65e469e-3</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">PHYSDEV</td> | |
| <td class="left">match</td> | |
| <td class="left">–physdev-in</td> | |
| <td class="left">tape65e469e-3f</td> | |
| <td class="left">–physdev-is-bridged</td> | |
| <td class="left">/*</td> | |
| <td class="left">Jump</td> | |
| <td class="left">to</td> | |
| <td class="left">the</td> | |
| <td class="left">VM</td> | |
| <td class="left">specific</td> | |
| <td class="left">chain.</td> | |
| <td class="left">*/</td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <hr /> | |
| <pre class="example"> | |
| iptables -nvL neutron-openvswi-ie65e469e-3 | |
| </pre> | |
| <p> | |
| Chain neutron-openvswi-ie65e469e-3 (1 references) | |
| </p> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="right" /> | |
| <col class="right" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="right">pkts</td> | |
| <td class="right">bytes</td> | |
| <td class="left">target</td> | |
| <td class="left">prot</td> | |
| <td class="left">opt</td> | |
| <td class="left">in</td> | |
| <td class="left">out</td> | |
| <td class="left">source</td> | |
| <td class="left">destination</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">DROP</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">state</td> | |
| <td class="left">INVALID</td> | |
| <td class="left">/*</td> | |
| <td class="left">Drop</td> | |
| <td class="left">packets</td> | |
| <td class="left">that</td> | |
| <td class="left">appear</td> | |
| <td class="left">related</td> | |
| <td class="left">to</td> | |
| <td class="left">an</td> | |
| <td class="left">existing</td> | |
| <td class="left">connection</td> | |
| <td class="left">(e.g.</td> | |
| <td class="left">TCP</td> | |
| <td class="left">ACK/FIN)</td> | |
| <td class="left">but</td> | |
| <td class="left">do</td> | |
| <td class="left">not</td> | |
| <td class="left">have</td> | |
| <td class="left">an</td> | |
| <td class="left">entry</td> | |
| <td class="left">in</td> | |
| <td class="left">conntrack.</td> | |
| <td class="left">*/</td> | |
| </tr> | |
| <tr> | |
| <td class="right">61</td> | |
| <td class="right">5496</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">state</td> | |
| <td class="left">RELATED,ESTABLISHED</td> | |
| <td class="left">/*</td> | |
| <td class="left">Direct</td> | |
| <td class="left">packets</td> | |
| <td class="left">associated</td> | |
| <td class="left">with</td> | |
| <td class="left">a</td> | |
| <td class="left">known</td> | |
| <td class="left">session</td> | |
| <td class="left">to</td> | |
| <td class="left">the</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">chain.</td> | |
| <td class="left">*/</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">udp</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">10.40.40.100</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">udp</td> | |
| <td class="left">spt:67</td> | |
| <td class="left">dpt:68</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">tcp</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">1.2.3.4</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">tcp</td> | |
| <td class="left">dpt:12345</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">match-set</td> | |
| <td class="left">NETIPv480cb4a3b-faee-451d-a</td> | |
| <td class="left">src</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">icmp</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">tcp</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">tcp</td> | |
| <td class="left">multiport</td> | |
| <td class="left">dports</td> | |
| <td class="left">1:65535</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">udp</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">udp</td> | |
| <td class="left">multiport</td> | |
| <td class="left">dports</td> | |
| <td class="left">1:65535</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">neutron-openvswi-sg-fallback</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">/*</td> | |
| <td class="left">Send</td> | |
| <td class="left">unmatched</td> | |
| <td class="left">traffic</td> | |
| <td class="left">to</td> | |
| <td class="left">the</td> | |
| <td class="left">fallback</td> | |
| <td class="left">chain.</td> | |
| <td class="left">*/</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <pre class="example"> | |
| iptables -nvL neutron-openvswi-oe65e469e-3 | |
| </pre> | |
| <p> | |
| Chain neutron-openvswi-oe65e469e-3 (2 references) | |
| </p> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="right" /> | |
| <col class="right" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="right">pkts</td> | |
| <td class="right">bytes</td> | |
| <td class="left">target</td> | |
| <td class="left">prot</td> | |
| <td class="left">opt</td> | |
| <td class="left">in</td> | |
| <td class="left">out</td> | |
| <td class="left">source</td> | |
| <td class="left">destination</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">2</td> | |
| <td class="right">648</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">udp</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">udp</td> | |
| <td class="left">spt:68</td> | |
| <td class="left">dpt:67</td> | |
| <td class="left">/*</td> | |
| <td class="left">Allow</td> | |
| <td class="left">DHCP</td> | |
| <td class="left">client</td> | |
| <td class="left">traffic.</td> | |
| <td class="left">*/</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">91</td> | |
| <td class="right">7544</td> | |
| <td class="left">neutron-openvswi-se65e469e-3</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">DROP</td> | |
| <td class="left">udp</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">udp</td> | |
| <td class="left">spt:67</td> | |
| <td class="left">dpt:68</td> | |
| <td class="left">/*</td> | |
| <td class="left">Prevent</td> | |
| <td class="left">DHCP</td> | |
| <td class="left">Spoofing</td> | |
| <td class="left">by</td> | |
| <td class="left">VM.</td> | |
| <td class="left">*/</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">DROP</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">state</td> | |
| <td class="left">INVALID</td> | |
| <td class="left">/*</td> | |
| <td class="left">Drop</td> | |
| <td class="left">packets</td> | |
| <td class="left">that</td> | |
| <td class="left">appear</td> | |
| <td class="left">related</td> | |
| <td class="left">to</td> | |
| <td class="left">an</td> | |
| <td class="left">existing</td> | |
| <td class="left">connection</td> | |
| <td class="left">(e.g.</td> | |
| <td class="left">TCP</td> | |
| <td class="left">ACK/FIN)</td> | |
| <td class="left">but</td> | |
| <td class="left">do</td> | |
| <td class="left">not</td> | |
| <td class="left">have</td> | |
| <td class="left">an</td> | |
| <td class="left">entry</td> | |
| <td class="left">in</td> | |
| <td class="left">conntrack.</td> | |
| <td class="left">*/</td> | |
| </tr> | |
| <tr> | |
| <td class="right">75</td> | |
| <td class="right">6560</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">state</td> | |
| <td class="left">RELATED,ESTABLISHED</td> | |
| <td class="left">/*</td> | |
| <td class="left">Direct</td> | |
| <td class="left">packets</td> | |
| <td class="left">associated</td> | |
| <td class="left">with</td> | |
| <td class="left">a</td> | |
| <td class="left">known</td> | |
| <td class="left">session</td> | |
| <td class="left">to</td> | |
| <td class="left">the</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">chain.</td> | |
| <td class="left">*/</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">16</td> | |
| <td class="right">984</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">neutron-openvswi-sg-fallback</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">/*</td> | |
| <td class="left">Send</td> | |
| <td class="left">unmatched</td> | |
| <td class="left">traffic</td> | |
| <td class="left">to</td> | |
| <td class="left">the</td> | |
| <td class="left">fallback</td> | |
| <td class="left">chain.</td> | |
| <td class="left">*/</td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <pre class="example"> | |
| iptables -nvL neutron-openvswi-se65e469e-3 | |
| </pre> | |
| <p> | |
| Chain neutron-openvswi-se65e469e-3 (1 references) | |
| </p> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="right" /> | |
| <col class="right" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="right">pkts</td> | |
| <td class="right">bytes</td> | |
| <td class="left">target</td> | |
| <td class="left">prot</td> | |
| <td class="left">opt</td> | |
| <td class="left">in</td> | |
| <td class="left">out</td> | |
| <td class="left">source</td> | |
| <td class="left">destination</td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">RETURN</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">10.40.40.101</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">MAC FA:16:3E:BA:90:C1 <i>* Allow traffic from defined IP/MAC pairs. *</i></td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">DROP</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left"><i>* traffic without an IP/MAC allow rule.*</i></td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <pre class="example"> | |
| iptables -nvL neutron-openvswi-sg-fallback | |
| </pre> | |
| <p> | |
| Chain neutron-openvswi-sg-fallback (4 references) | |
| </p> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="right" /> | |
| <col class="right" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="right">pkts</td> | |
| <td class="right">bytes</td> | |
| <td class="left">target</td> | |
| <td class="left">prot</td> | |
| <td class="left">opt</td> | |
| <td class="left">in</td> | |
| <td class="left">out</td> | |
| <td class="left">source</td> | |
| <td class="left">destination</td> | |
| <td class="left"> </td> | |
| </tr> | |
| <tr> | |
| <td class="right">0</td> | |
| <td class="right">0</td> | |
| <td class="left">DROP</td> | |
| <td class="left">all</td> | |
| <td class="left">--</td> | |
| <td class="left">*</td> | |
| <td class="left">*</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left">0.0.0.0/0</td> | |
| <td class="left"><i>* Default drop rule for unmatched traffic. *</i></td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| </div> | |
| </div> | |
| <div id="outline-container-sec-2-3" class="outline-3"> | |
| <h3 id="sec-2-3"><span class="section-number-3">2.3</span> Debugging data flow</h3> | |
| <div class="outline-text-3" id="text-2-3"> | |
| <ul class="org-ul"> | |
| <li>Debugging the network flow | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| nova interface-list vm1 | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Port State | |
| </td> | |
| <td align="left" valign="top"> | |
| Port ID | |
| </td> | |
| <td align="left" valign="top"> | |
| Net ID | |
| </td> | |
| <td align="left" valign="top"> | |
| IP addresses | |
| </td> | |
| <td align="left" valign="top"> | |
| MAC Addr | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| ACTIVE <br /> | |
| ACTIVE | |
| </td> | |
| <td align="left" valign="top"> | |
| e65e469e-3f72-4f02-8d48-c957ce1aefc4 <br /> | |
| f3a89960-a730-4678-96c4-5b3977df08f1 | |
| </td> | |
| <td align="left" valign="top"> | |
| a5c376c8-0a3d-492f-aa96-4ff53a73540d <br /> | |
| 1ff3cdeb-f45b-4883-a687-cd306b02b273 | |
| </td> | |
| <td align="left" valign="top"> | |
| 10.40.40.101 <br /> | |
| 10.30.30.101 | |
| </td> | |
| <td align="left" valign="top"> | |
| fa:16:3e:ba:90:c1 <br /> | |
| fa:16:3e:f8:94:ee | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| nova show vm1 | grep -E '\bid|hyper|inst' | |
| </pre> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="left">OS-EXT-SRV-ATTR:hypervisor<sub>hostname</sub></td> | |
| <td class="left">compute2.openstack.local</td> | |
| </tr> | |
| <tr> | |
| <td class="left">OS-EXT-SRV-ATTR:instance<sub>name</sub></td> | |
| <td class="left">instance-00000011</td> | |
| </tr> | |
| <tr> | |
| <td class="left">id</td> | |
| <td class="left">b62a5924-4e70-44b1-96cd-961fb9de66ac</td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <pre class="example"> | |
| neutron net-show -F provider:segmentation_id -F provider:network_type 1ff3cdeb-f45b-4883-a687-cd306b02b273 | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| provider:network_type <br /> | |
| provider:segmentation_id | |
| </td> | |
| <td align="left" valign="top"> | |
| gre <br /> | |
| 101 | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| virsh list | grep instance-0000 | |
| </pre> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="left">8 instance-00000011 running</td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <pre class="example"> | |
| virsh domiflist 8 | |
| </pre> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="left">Interface</td> | |
| <td class="left">Type</td> | |
| <td class="left">Source</td> | |
| <td class="left">Model</td> | |
| <td class="left">MAC</td> | |
| </tr> | |
| <tr> | |
| <td class="left">tape65e469e-3f</td> | |
| <td class="left">bridge</td> | |
| <td class="left">qbre65e469e-3f</td> | |
| <td class="left">virtio</td> | |
| <td class="left">fa:16:3e:ba:90:c1</td> | |
| </tr> | |
| <tr> | |
| <td class="left">tapf3a89960-a7</td> | |
| <td class="left">bridge</td> | |
| <td class="left">qbrf3a89960-a7</td> | |
| <td class="left">virtio</td> | |
| <td class="left">fa:16:3e:f8:94:ee</td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <pre class="example"> | |
| tcpdump -ni qbre65e469e-3f icmp | |
| </pre> | |
| <p> | |
| tcpdump: WARNING: qbre65e469e-3f: no IPv4 address assigned | |
| tcpdump: verbose output suppressed, use -v or -vv for full protocol decode | |
| listening on qbre65e469e-3f, link-type EN10MB (Ethernet), capture size 65535 bytes | |
| ^C | |
| 0 packets captured | |
| 0 packets received by filter | |
| 0 packets dropped by kernel | |
| </p> | |
| <pre class="example"> | |
| brctl show qbre65e469e-3f | |
| </pre> | |
| <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> | |
| <colgroup> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| <col class="left" /> | |
| </colgroup> | |
| <tbody> | |
| <tr> | |
| <td class="left">bridge name</td> | |
| <td class="left">bridge id</td> | |
| <td class="left"> </td> | |
| <td class="left">STP enabled</td> | |
| <td class="left">interfaces</td> | |
| </tr> | |
| <tr> | |
| <td class="left">qbre65e469e-3f</td> | |
| <td class="left">8000.f2ca19367e0c</td> | |
| <td class="left">no</td> | |
| <td class="left"> </td> | |
| <td class="left">qvbe65e469e-3f</td> | |
| </tr> | |
| <tr> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left"> </td> | |
| <td class="left">tape65e469e-3f</td> | |
| </tr> | |
| </tbody> | |
| </table> | |
| <pre class="example"> | |
| ovs-vsctl list-ports br-int | |
| </pre> | |
| <p> | |
| int-br-eth1 | |
| patch-tun | |
| qvoe65e469e-3f | |
| qvof3a89960-a7 | |
| </p> | |
| <pre class="example"> | |
| ovs-vsctl show | |
| </pre> | |
| <pre class="example"> | |
| 179e3940-917e-451c-86e3-86f98d9a857b | |
| Bridge br-int | |
| fail_mode: secure | |
| Port "qvoe65e469e-3f" | |
| tag: 7 | |
| Interface "qvoe65e469e-3f" | |
| Port br-int | |
| Interface br-int | |
| type: internal | |
| Port patch-tun | |
| Interface patch-tun | |
| type: patch | |
| options: {peer=patch-int} | |
| Port "qvof3a89960-a7" | |
| tag: 6 | |
| Interface "qvof3a89960-a7" | |
| Port "int-br-eth1" | |
| Interface "int-br-eth1" | |
| type: patch | |
| options: {peer="phy-br-eth1"} | |
| Bridge "br-eth1" | |
| Port "eth1" | |
| Interface "eth1" | |
| Port "phy-br-eth1" | |
| Interface "phy-br-eth1" | |
| type: patch | |
| options: {peer="int-br-eth1"} | |
| Port "br-eth1" | |
| Interface "br-eth1" | |
| type: internal | |
| Bridge br-tun | |
| fail_mode: secure | |
| Port "vxlan-0a141435" | |
| Interface "vxlan-0a141435" | |
| type: vxlan | |
| options: {df_default="true", in_key=flow, local_ip="10.20.20.54", out_key=flow, remote_ip="10.20.20.53"} | |
| Port "gre-0a14143e" | |
| Interface "gre-0a14143e" | |
| type: gre | |
| options: {df_default="true", in_key=flow, local_ip="10.20.20.54", out_key=flow, remote_ip="10.20.20.62"} | |
| Port patch-int | |
| Interface patch-int | |
| type: patch | |
| options: {peer=patch-tun} | |
| Port "gre-0a141435" | |
| Interface "gre-0a141435" | |
| type: gre | |
| options: {df_default="true", in_key=flow, local_ip="10.20.20.54", out_key=flow, remote_ip="10.20.20.53"} | |
| Port "vxlan-0a141434" | |
| Interface "vxlan-0a141434" | |
| type: vxlan | |
| options: {df_default="true", in_key=flow, local_ip="10.20.20.54", out_key=flow, remote_ip="10.20.20.52"} | |
| Port br-tun | |
| Interface br-tun | |
| type: internal | |
| Port "vxlan-0a14143e" | |
| Interface "vxlan-0a14143e" | |
| type: vxlan | |
| options: {df_default="true", in_key=flow, local_ip="10.20.20.54", out_key=flow, remote_ip="10.20.20.62"} | |
| Port "gre-0a141434" | |
| Interface "gre-0a141434" | |
| type: gre | |
| options: {df_default="true", in_key=flow, local_ip="10.20.20.54", out_key=flow, remote_ip="10.20.20.52"} | |
| ovs_version: "2.3.1" | |
| </pre> | |
| <hr /> | |
| </div> | |
| </div> | |
| <div id="outline-container-sec-2-4" class="outline-3"> | |
| <h3 id="sec-2-4"><span class="section-number-3">2.4</span> Can't make this work, come back to it later</h3> | |
| <div class="outline-text-3" id="text-2-4"> | |
| <hr /> | |
| </div> | |
| </div> | |
| <div id="outline-container-sec-2-5" class="outline-3"> | |
| <h3 id="sec-2-5"><span class="section-number-3">2.5</span> Create Neutron load-balancer</h3> | |
| <div class="outline-text-3" id="text-2-5"> | |
| <pre class="example"> | |
| neutron net-list | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| id | |
| </td> | |
| <td align="left" valign="top"> | |
| name | |
| </td> | |
| <td align="left" valign="top"> | |
| subnets | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| a5c376c8-0a3d-492f-aa96-4ff53a73540d <br /> | |
| e0714ea6-b48c-41fe-bce5-14098ce62bb0 <br /> | |
| 1ff3cdeb-f45b-4883-a687-cd306b02b273 | |
| </td> | |
| <td align="left" valign="top"> | |
| int_vlan1 <br /> | |
| ext <br /> | |
| int_gre1 | |
| </td> | |
| <td align="left" valign="top"> | |
| 351625e2-b3ee-48d1-b001-2e468779f54a 10.40.40.0/24 <br /> | |
| 619aa40b-3cae-4fb9-ac0e-081edf4286da 192.168.100.0/24 <br /> | |
| a4ad7867-f36d-4d25-b1b2-d0e6eec47615 10.30.30.0/24 | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| heat stack-create -f /labfiles/lab4/webservers.yml -P public_net=e0714ea6-b48c-41fe-bce5-14098ce62bb0 web | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| id | |
| </td> | |
| <td align="left" valign="top"> | |
| stack_name | |
| </td> | |
| <td align="left" valign="top"> | |
| stack_status | |
| </td> | |
| <td align="left" valign="top"> | |
| creation_time | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| 6e1700dc-9c5c-465d-ae9e-047b67e0f1b2 | |
| </td> | |
| <td align="left" valign="top"> | |
| web | |
| </td> | |
| <td align="left" valign="top"> | |
| CREATE_IN_PROGRESS | |
| </td> | |
| <td align="left" valign="top"> | |
| 2016-05-12T05:17:12Z | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| nova list | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| ID | |
| </td> | |
| <td align="left" valign="top"> | |
| Name | |
| </td> | |
| <td align="left" valign="top"> | |
| Status | |
| </td> | |
| <td align="left" valign="top"> | |
| Task State | |
| </td> | |
| <td align="left" valign="top"> | |
| Power State | |
| </td> | |
| <td align="left" valign="top"> | |
| Networks | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| b62a5924-4e70-44b1-96cd-961fb9de66ac <br /> | |
| 95bccdbc-b568-4690-87a7-b85c2e8b0b68 <br /> | |
| 1147df4e-5fa1-4033-af27-69063e844df7 | |
| </td> | |
| <td align="left" valign="top"> | |
| vm1 <br /> | |
| web1 <br /> | |
| web2 | |
| </td> | |
| <td align="left" valign="top"> | |
| ACTIVE <br /> | |
| ACTIVE <br /> | |
| ACTIVE | |
| </td> | |
| <td align="left" valign="top"> | |
| - <br /> | |
| - <br /> | |
| - | |
| </td> | |
| <td align="left" valign="top"> | |
| Running <br /> | |
| Running <br /> | |
| Running | |
| </td> | |
| <td align="left" valign="top"> | |
| int_vlan1=10.40.40.101; int_gre1=10.30.30.101, 192.168.100.102 <br /> | |
| web_net=10.66.77.2, 192.168.100.104 <br /> | |
| web_net=10.66.77.4, 192.168.100.105 | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| heat resources-list web | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| resource_name | |
| </td> | |
| <td align="left" valign="top"> | |
| physical_resource_id | |
| </td> | |
| <td align="left" valign="top"> | |
| resource_type | |
| </td> | |
| <td align="left" valign="top"> | |
| resource_status | |
| </td> | |
| <td align="left" valign="top"> | |
| updated_time | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| net <br /> | |
| subnet <br /> | |
| web1 <br /> | |
| web1_floating_ip <br /> | |
| web1_port <br /> | |
| web2 <br /> | |
| web2_floating_ip <br /> | |
| web2_port <br /> | |
| web_router <br /> | |
| web_router_interface | |
| </td> | |
| <td align="left" valign="top"> | |
| e0609740-0b0a-48fd-8a9d-424bc3445fcf <br /> | |
| ea8ea7fd-aaa9-4445-8da7-b691b851039d <br /> | |
| 95bccdbc-b568-4690-87a7-b85c2e8b0b68 <br /> | |
| 16ab4277-0a5a-456b-ba34-65df67dfc226 <br /> | |
| 939588b8-f9f6-4b52-a5c3-a6e8fbe76727 <br /> | |
| 1147df4e-5fa1-4033-af27-69063e844df7 <br /> | |
| 1985593d-a18d-485c-b292-973ea52690f8 <br /> | |
| a1b22c64-755d-4aa2-bbe2-207a59bf70ef <br /> | |
| 97217e87-2576-4a78-818d-1e83124f46b3 <br /> | |
| 97217e87-2576-4a78-818d-1e83124f46b3:subnet_id=ea8ea7fd-aaa9-4445-8da7-b691b851039d | |
| </td> | |
| <td align="left" valign="top"> | |
| OS::Neutron::Net <br /> | |
| OS::Neutron::Subnet <br /> | |
| OS::Nova::Server <br /> | |
| OS::Neutron::FloatingIP <br /> | |
| OS::Neutron::Port <br /> | |
| OS::Nova::Server <br /> | |
| OS::Neutron::FloatingIP <br /> | |
| OS::Neutron::Port <br /> | |
| OS::Neutron::Router <br /> | |
| OS::Neutron::RouterInterface | |
| </td> | |
| <td align="left" valign="top"> | |
| CREATE_COMPLETE <br /> | |
| CREATE_COMPLETE <br /> | |
| CREATE_COMPLETE <br /> | |
| CREATE_COMPLETE <br /> | |
| CREATE_COMPLETE <br /> | |
| CREATE_COMPLETE <br /> | |
| CREATE_COMPLETE <br /> | |
| CREATE_COMPLETE <br /> | |
| CREATE_COMPLETE <br /> | |
| CREATE_COMPLETE | |
| </td> | |
| <td align="left" valign="top"> | |
| 2016-05-12T05:17:13Z <br /> | |
| 2016-05-12T05:17:13Z <br /> | |
| 2016-05-12T05:17:13Z <br /> | |
| 2016-05-12T05:17:13Z <br /> | |
| 2016-05-12T05:17:13Z <br /> | |
| 2016-05-12T05:17:13Z <br /> | |
| 2016-05-12T05:17:13Z <br /> | |
| 2016-05-12T05:17:13Z <br /> | |
| 2016-05-12T05:17:13Z <br /> | |
| 2016-05-12T05:17:13Z | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| SUBNET=$(heat output-show web subnet|sed -e 's/"//g') | |
| echo $SUBNET | |
| </pre> | |
| <p> | |
| ea8ea7fd-aaa9-4445-8da7-b691b851039d | |
| </p> | |
| <pre class="example"> | |
| neutron lb-pool-create --name web-pool --lb-method ROUND_ROBIN --protocol HTTP --subnet-id $SUBNET | |
| </pre> | |
| <p> | |
| Created a new pool: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| admin_state_up <br /> | |
| description <br /> | |
| health_monitors <br /> | |
| health_monitors_status <br /> | |
| id <br /> | |
| lb_method <br /> | |
| members <br /> | |
| name <br /> | |
| protocol <br /> | |
| provider <br /> | |
| status <br /> | |
| status_description <br /> | |
| subnet_id <br /> | |
| tenant_id <br /> | |
| vip_id | |
| </td> | |
| <td align="left" valign="top"> | |
| True <br /> | |
| <br /> | |
| <br /> | |
| <br /> | |
| 6377d4cd-34c8-423f-8ed0-6d53bedc2c2e <br /> | |
| ROUND_ROBIN <br /> | |
| <br /> | |
| web-pool <br /> | |
| HTTP <br /> | |
| haproxy <br /> | |
| PENDING_CREATE <br /> | |
| <br /> | |
| ea8ea7fd-aaa9-4445-8da7-b691b851039d <br /> | |
| eb77b585a9184304a0248537431c723f <br /> | |
| | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| neutron lb-pool-list | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| id | |
| </td> | |
| <td align="left" valign="top"> | |
| name | |
| </td> | |
| <td align="left" valign="top"> | |
| provider | |
| </td> | |
| <td align="left" valign="top"> | |
| lb_method | |
| </td> | |
| <td align="left" valign="top"> | |
| protocol | |
| </td> | |
| <td align="left" valign="top"> | |
| admin_state_up | |
| </td> | |
| <td align="left" valign="top"> | |
| status | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| 6377d4cd-34c8-423f-8ed0-6d53bedc2c2e | |
| </td> | |
| <td align="left" valign="top"> | |
| web-pool | |
| </td> | |
| <td align="left" valign="top"> | |
| haproxy | |
| </td> | |
| <td align="left" valign="top"> | |
| ROUND_ROBIN | |
| </td> | |
| <td align="left" valign="top"> | |
| HTTP | |
| </td> | |
| <td align="left" valign="top"> | |
| True | |
| </td> | |
| <td align="left" valign="top"> | |
| ACTIVE | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Create health monitor | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron lb-healthmonitor-create --type HTTP --delay 10 --timeout 2 --max-retries 10 | |
| </pre> | |
| <p> | |
| Created a new health<sub>monitor</sub>: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| admin_state_up <br /> | |
| delay <br /> | |
| expected_codes <br /> | |
| http_method <br /> | |
| id <br /> | |
| max_retries <br /> | |
| pools <br /> | |
| tenant_id <br /> | |
| timeout <br /> | |
| type <br /> | |
| url_path | |
| </td> | |
| <td align="left" valign="top"> | |
| True <br /> | |
| 10 <br /> | |
| 200 <br /> | |
| GET <br /> | |
| 1c5b0285-2a25-4fe6-b89a-b9030d7b0897 <br /> | |
| 10 <br /> | |
| <br /> | |
| eb77b585a9184304a0248537431c723f <br /> | |
| 2 <br /> | |
| HTTP <br /> | |
| / | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Associate the monitor with the previously created balancer pool | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron lb-healthmonitor-associate 1c5b0285-2a25-4fe6-b89a-b9030d7b0897 web-pool | |
| </pre> | |
| <p> | |
| Associated health monitor 1c5b0285-2a25-4fe6-b89a-b9030d7b0897 | |
| </p> | |
| <ul class="org-ul"> | |
| <li>Add members to the web-pool | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| nova list | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| ID | |
| </td> | |
| <td align="left" valign="top"> | |
| Name | |
| </td> | |
| <td align="left" valign="top"> | |
| Status | |
| </td> | |
| <td align="left" valign="top"> | |
| Task State | |
| </td> | |
| <td align="left" valign="top"> | |
| Power State | |
| </td> | |
| <td align="left" valign="top"> | |
| Networks | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| b62a5924-4e70-44b1-96cd-961fb9de66ac <br /> | |
| 95bccdbc-b568-4690-87a7-b85c2e8b0b68 <br /> | |
| 1147df4e-5fa1-4033-af27-69063e844df7 | |
| </td> | |
| <td align="left" valign="top"> | |
| vm1 <br /> | |
| web1 <br /> | |
| web2 | |
| </td> | |
| <td align="left" valign="top"> | |
| ACTIVE <br /> | |
| ACTIVE <br /> | |
| ACTIVE | |
| </td> | |
| <td align="left" valign="top"> | |
| - <br /> | |
| - <br /> | |
| - | |
| </td> | |
| <td align="left" valign="top"> | |
| Running <br /> | |
| Running <br /> | |
| Running | |
| </td> | |
| <td align="left" valign="top"> | |
| int_vlan1=10.40.40.101; int_gre1=10.30.30.101, 192.168.100.102 <br /> | |
| web_net=10.66.77.2, 192.168.100.104 <br /> | |
| web_net=10.66.77.4, 192.168.100.105 | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| neutron lb-member-create --address 10.66.77.2 --protocol-port 80 web-pool | |
| </pre> | |
| <p> | |
| Created a new member: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| address <br /> | |
| admin_state_up <br /> | |
| id <br /> | |
| pool_id <br /> | |
| protocol_port <br /> | |
| status <br /> | |
| status_description <br /> | |
| tenant_id <br /> | |
| weight | |
| </td> | |
| <td align="left" valign="top"> | |
| 10.66.77.2 <br /> | |
| True <br /> | |
| 225f7052-2b98-48e1-8966-0da905b1378f <br /> | |
| 6377d4cd-34c8-423f-8ed0-6d53bedc2c2e <br /> | |
| 80 <br /> | |
| PENDING_CREATE <br /> | |
| <br /> | |
| eb77b585a9184304a0248537431c723f <br /> | |
| 1 | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| neutron lb-member-create --address 10.66.77.4 --protocol-port 80 web-pool | |
| </pre> | |
| <p> | |
| Created a new member: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| address <br /> | |
| admin_state_up <br /> | |
| id <br /> | |
| pool_id <br /> | |
| protocol_port <br /> | |
| status <br /> | |
| status_description <br /> | |
| tenant_id <br /> | |
| weight | |
| </td> | |
| <td align="left" valign="top"> | |
| 10.66.77.4 <br /> | |
| True <br /> | |
| de255c43-c54a-4014-9ffc-93e24ab1a320 <br /> | |
| 6377d4cd-34c8-423f-8ed0-6d53bedc2c2e <br /> | |
| 80 <br /> | |
| PENDING_CREATE <br /> | |
| <br /> | |
| eb77b585a9184304a0248537431c723f <br /> | |
| 1 | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Check the status | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron lb-member-list | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| id | |
| </td> | |
| <td align="left" valign="top"> | |
| address | |
| </td> | |
| <td align="left" valign="top"> | |
| protocol_port | |
| </td> | |
| <td align="left" valign="top"> | |
| weight | |
| </td> | |
| <td align="left" valign="top"> | |
| admin_state_up | |
| </td> | |
| <td align="left" valign="top"> | |
| status | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| 225f7052-2b98-48e1-8966-0da905b1378f <br /> | |
| de255c43-c54a-4014-9ffc-93e24ab1a320 | |
| </td> | |
| <td align="left" valign="top"> | |
| 10.66.77.2 <br /> | |
| 10.66.77.4 | |
| </td> | |
| <td align="left" valign="top"> | |
| 80 <br /> | |
| 80 | |
| </td> | |
| <td align="left" valign="top"> | |
| 1 <br /> | |
| 1 | |
| </td> | |
| <td align="left" valign="top"> | |
| True <br /> | |
| True | |
| </td> | |
| <td align="left" valign="top"> | |
| ACTIVE <br /> | |
| ACTIVE | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Add a virtual IP to the web-pool | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron lb-vip-create --name web-vip --protocol-port 80 --protocol HTTP --subnet-id=$SUBNET web-pool | |
| </pre> | |
| <p> | |
| Created a new vip: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| address <br /> | |
| admin_state_up <br /> | |
| connection_limit <br /> | |
| description <br /> | |
| id <br /> | |
| name <br /> | |
| pool_id <br /> | |
| port_id <br /> | |
| protocol <br /> | |
| protocol_port <br /> | |
| session_persistence <br /> | |
| status <br /> | |
| status_description <br /> | |
| subnet_id <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| 10.66.77.5 <br /> | |
| True <br /> | |
| -1 <br /> | |
| <br /> | |
| 70a3098d-82d8-48cc-8213-bfc3a5d421da <br /> | |
| web-vip <br /> | |
| 6377d4cd-34c8-423f-8ed0-6d53bedc2c2e <br /> | |
| af6b67bd-6052-44c1-a4e1-0b203c7aa62a <br /> | |
| HTTP <br /> | |
| 80 <br /> | |
| <br /> | |
| PENDING_CREATE <br /> | |
| <br /> | |
| ea8ea7fd-aaa9-4445-8da7-b691b851039d <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>Create a new floatingIP | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| neutron floatingip-create ext | |
| </pre> | |
| <p> | |
| Created a new floatingip: | |
| </p> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| Field | |
| </td> | |
| <td align="left" valign="top"> | |
| Value | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| fixed_ip_address <br /> | |
| floating_ip_address <br /> | |
| floating_network_id <br /> | |
| id <br /> | |
| port_id <br /> | |
| router_id <br /> | |
| status <br /> | |
| tenant_id | |
| </td> | |
| <td align="left" valign="top"> | |
| <br /> | |
| 192.168.100.106 <br /> | |
| e0714ea6-b48c-41fe-bce5-14098ce62bb0 <br /> | |
| 562d8099-ef84-4c9a-b759-251ceadec394 <br /> | |
| <br /> | |
| <br /> | |
| DOWN <br /> | |
| eb77b585a9184304a0248537431c723f | |
| </td> | |
| </tr> | |
| </table> | |
| <pre class="example"> | |
| neutron floatingip-associate 562d8099-ef84-4c9a-b759-251ceadec394 af6b67bd-6052-44c1-a4e1-0b203c7aa62a | |
| </pre> | |
| <p> | |
| Associated floating IP 562d8099-ef84-4c9a-b759-251ceadec394 | |
| </p> | |
| <pre class="example"> | |
| for i in {1..100}; | |
| do curl --silent 192.168.100.106 ;done > /tmp/1 | |
| grep -c web1 /tmp/1 | |
| grep -c web2 /tmp/1 | |
| </pre> | |
| <p> | |
| 50 | |
| 50 | |
| </p> | |
| <pre class="example"> | |
| neutron lb-pool-list | |
| </pre> | |
| <!-- This HTML table template is generated by emacs 24.5.1 --> | |
| <table border="1"> | |
| <tr> | |
| <td align="left" valign="top"> | |
| id | |
| </td> | |
| <td align="left" valign="top"> | |
| name | |
| </td> | |
| <td align="left" valign="top"> | |
| provider | |
| </td> | |
| <td align="left" valign="top"> | |
| lb_method | |
| </td> | |
| <td align="left" valign="top"> | |
| protocol | |
| </td> | |
| <td align="left" valign="top"> | |
| admin_state_up | |
| </td> | |
| <td align="left" valign="top"> | |
| status | |
| </td> | |
| </tr> | |
| <tr> | |
| <td align="left" valign="top"> | |
| 6377d4cd-34c8-423f-8ed0-6d53bedc2c2e | |
| </td> | |
| <td align="left" valign="top"> | |
| web-pool | |
| </td> | |
| <td align="left" valign="top"> | |
| haproxy | |
| </td> | |
| <td align="left" valign="top"> | |
| ROUND_ROBIN | |
| </td> | |
| <td align="left" valign="top"> | |
| HTTP | |
| </td> | |
| <td align="left" valign="top"> | |
| True | |
| </td> | |
| <td align="left" valign="top"> | |
| ACTIVE | |
| </td> | |
| </tr> | |
| </table> | |
| <ul class="org-ul"> | |
| <li>From network1 | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| ip netns | |
| </pre> | |
| <pre class="example"> | |
| qlbaas-6377d4cd-34c8-423f-8ed0-6d53bedc2c2e | |
| qrouter-97217e87-2576-4a78-818d-1e83124f46b3 | |
| qdhcp-e0609740-0b0a-48fd-8a9d-424bc3445fcf | |
| qrouter-0ca739ed-18df-4be4-92c6-c3d43711b042 | |
| qrouter-177975e5-9a6e-4a98-a31f-3fe0fe3a10e5 | |
| qdhcp-a5c376c8-0a3d-492f-aa96-4ff53a73540d | |
| qdhcp-1ff3cdeb-f45b-4883-a687-cd306b02b273 | |
| qrouter-34a51699-70e2-4b90-a762-85a61ed9a369 | |
| qrouter-b4211260-8230-4927-bcfe-2e5ff1fe8267 | |
| qrouter-be18fe24-856a-4697-b09c-58600f933f50 | |
| </pre> | |
| <pre class="example"> | |
| ip netns exec qlbaas-6377d4cd-34c8-423f-8ed0-6d53bedc2c2e ss -antlp | |
| </pre> | |
| <p> | |
| State Recv-Q Send-Q Local Address:Port Peer Address:Port | |
| LISTEN 0 128 | |
| 10.66.77.5:80 | |
| <b>:</b> users:(("haproxy",3061,5)) | |
| </p> | |
| <pre class="example"> | |
| ps -eo args | grep hapr | |
| </pre> | |
| <p> | |
| haproxy -f /var/lib/neutron/lbaas/6377d4cd-34c8-423f-8ed0-6d53bedc2c2e/conf -p /var/lib/neutron/lbaas/6377d4cd-34c8-423f-8ed0-6d53bedc2c2e/pid | |
| grep –color=auto hapr | |
| </p> | |
| <pre class="example"> | |
| cat /var/lib/neutron/lbaas/6377d4cd-34c8-423f-8ed0-6d53bedc2c2e/conf | |
| </pre> | |
| <pre class="example"> | |
| global | |
| daemon | |
| user nobody | |
| group haproxy | |
| log /dev/log local0 | |
| log /dev/log local1 notice | |
| stats socket /var/lib/neutron/lbaas/6377d4cd-34c8-423f-8ed0-6d53bedc2c2e/sock mode 0666 level user | |
| defaults | |
| log global | |
| retries 3 | |
| option redispatch | |
| timeout connect 5000 | |
| timeout client 50000 | |
| timeout server 50000 | |
| frontend 70a3098d-82d8-48cc-8213-bfc3a5d421da | |
| option tcplog | |
| bind 10.66.77.5:80 | |
| mode http | |
| default_backend 6377d4cd-34c8-423f-8ed0-6d53bedc2c2e | |
| option forwardfor | |
| backend 6377d4cd-34c8-423f-8ed0-6d53bedc2c2e | |
| mode http | |
| balance roundrobin | |
| option forwardfor | |
| timeout check 2s | |
| option httpchk GET / | |
| http-check expect rstatus 200 | |
| server 225f7052-2b98-48e1-8966-0da905b1378f 10.66.77.2:80 weight 1 check inter 10s fall 10 | |
| server de255c43-c54a-4014-9ffc-93e24ab1a320 10.66.77.4:80 weight 1 check inter 10s fall 10 | |
| </pre> | |
| <pre class="example"> | |
| /labfiles/lab4/lb_stat.sh 6377d4cd-34c8-423f-8ed0-6d53bedc2c2e | |
| </pre> | |
| <pre class="example"> | |
| svname status check_status | |
| FRONTEND OPEN | |
| 225f7052-2b98-48e1-8966-0da905b1378f UP L7OK | |
| de255c43-c54a-4014-9ffc-93e24ab1a320 UP L7OK | |
| BACKEND UP | |
| </pre> | |
| </div> | |
| </div> | |
| <div id="outline-container-sec-2-6" class="outline-3"> | |
| <h3 id="sec-2-6"><span class="section-number-3">2.6</span> Clean up</h3> | |
| <div class="outline-text-3" id="text-2-6"> | |
| <ul class="org-ul"> | |
| <li>Delete the LB pool members for web-pool | |
| </li> | |
| </ul> | |
| <pre class="example"> | |
| for i in $(neutron lb-member-list -F id | awk '! /id/{print $2}'); do neutron lb-member-delete $i;done | |
| </pre> | |
| <pre class="example"> | |
| Deleted member: 225f7052-2b98-48e1-8966-0da905b1378f | |
| Deleted member: de255c43-c54a-4014-9ffc-93e24ab1a320 | |
| </pre> | |
| <pre class="example"> | |
| neutron lb-vip-delete $(neutron lb-vip-list|awk '! /id/{print $2}') | |
| HM=$(neutron lb-healthmonitor-list | awk '! /id/{print $2}') | |
| neutron lb-healthmonitor-disassociate ${HM} web-pool | |
| neutron lb-healthmonitor-delete ${HM} | |
| neutron lb-pool-delete web-pool | |
| heat stack-delete web | |
| heat stack-list | |
| </pre> | |
| </div> | |
| </div> | |
| </div> | |
| </div> | |
| <div id="postamble" class="status"> | |
| <p class="author">Author: Daniel Marrable</p> | |
| <p class="date">Created: 2016-05-12 Thu 14:12</p> | |
| <p class="creator"><a href="http://www.gnu.org/software/emacs/">Emacs</a> 24.5.1 (<a href="http://orgmode.org">Org</a> mode 8.2.10)</p> | |
| <p class="validation"><a href="http://validator.w3.org/check?uri=referer">Validate</a></p> | |
| </div> | |
| </body> | |
| </html> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment