Openstack deployment: instances not reachable on provider network

, , ,
1

I deployed openstack with juju and maas following the instructions here (charm-deployment-guide 0.0.1.dev519).

I can succesfully deploy instances and access them as indicated in the guide with:

ssh -i ~/cloud-keys/user1-key ubuntu@$FLOATING_IP

I tried then to create an instance that is directly attached to the external network ext_net, but this instance is not reachable and I try now to understand why. It seems that with the proposed setup in the guide we can access instances only with floating IPs.

I saw that there is two scenarios when deploying openstack with openvswitch:

  • Scenario: Classic with Open vSwitch
  • Scenario: Provider networks with Open vSwitch

If I guess well, the scenario used in the guide is the classic one?

What should we do, concerning notably ovs-chassis and neutron-api config below, to create a setup where we allow instances to be access directly on the provider network (physnet1)?

ovn-chassis:
  bridge-interface-mappings: br-ex:enp1s0
  ovn-bridge-mappings: physnet1:br-ex
neutron-api:
  neutron-security-groups: true
  flat-network-providers: physnet1

For example in my case, I can ping my-instance-1 with the floating IP 10.0.100.61 but not my-instance-2 with the IP 10.0.100.183:

image
image2210×280 54.3 KB

Setup

Model      Controller       Cloud/Region            Version  SLA          Timestamp
openstack  maas-controller  hei-maas-cloud/default  3.5.1    unsupported  06:07:38+02:00

App                       Version  Status   Scale  Charm                   Channel        Rev  Exposed  Message
cinder                    23.0.0   active       1  cinder                  2023.2/stable  674  no       Unit is ready
cinder-mysql-router       8.0.37   active       1  mysql-router            8.0/stable     200  no       Unit is ready
cinder-nfs                         waiting      1  cinder-nfs                               0  no       Charm configuration in progress
dashboard-mysql-router    8.0.37   active       1  mysql-router            8.0/stable     200  no       Unit is ready
glance                    27.0.0   active       1  glance                  2023.2/stable  603  no       Unit is ready
glance-mysql-router       8.0.37   active       1  mysql-router            8.0/stable     200  no       Unit is ready
keystone                  24.0.0   active       1  keystone                2023.2/stable  682  no       Application Ready
keystone-mysql-router     8.0.37   active       1  mysql-router            8.0/stable     200  no       Unit is ready
mysql-innodb-cluster      8.0.37   active       3  mysql-innodb-cluster    8.0/stable     133  no       Unit is ready: Mode: R/O, Cluster is ONLINE and can tolerate up to ONE failure.
ncc-mysql-router          8.0.37   active       1  mysql-router            8.0/stable     200  no       Unit is ready
neutron-api               23.1.0   active       1  neutron-api             2023.2/stable  583  no       Unit is ready
neutron-api-mysql-router  8.0.37   active       1  mysql-router            8.0/stable     200  no       Unit is ready
neutron-api-plugin-ovn    23.1.0   active       1  neutron-api-plugin-ovn  2023.2/stable  113  no       Unit is ready
nova-cloud-controller     28.0.1   active       1  nova-cloud-controller   2023.2/stable  743  no       Unit is ready
nova-compute              28.0.1   active       3  nova-compute            2023.2/stable  734  no       Unit is ready
openstack-dashboard       23.3.0   active       1  openstack-dashboard     2023.2/stable  655  no       Unit is ready
ovn-central               22.09.1  active       3  ovn-central             23.09/stable   234  no       Unit is ready
ovn-chassis               23.09.0  active       3  ovn-chassis             23.09/stable   296  no       Unit is ready
placement                 10.0.0   active       1  placement               2023.2/stable  100  no       Unit is ready
placement-mysql-router    8.0.37   active       1  mysql-router            8.0/stable     200  no       Unit is ready
rabbitmq-server           3.9.13   active       1  rabbitmq-server         3.9/stable     188  no       Unit is ready
vault                     1.8.8    active       1  vault                   1.8/stable     347  no       Unit is ready (active: true, mlock: disabled)
vault-mysql-router        8.0.37   active       1  mysql-router            8.0/stable     200  no       Unit is ready

Unit                           Workload  Agent  Machine  Public address  Ports           Message
cinder/0*                      active    idle   0        10.0.1.4        8776/tcp        Unit is ready
  cinder-mysql-router/0*       active    idle            10.0.1.4                        Unit is ready
  cinder-nfs/0*                waiting   idle            10.0.1.4                        Charm configuration in progress
glance/0*                      active    idle   0/lxd/2  10.0.2.12       9292/tcp        Unit is ready
  glance-mysql-router/0*       active    idle            10.0.2.12                       Unit is ready
keystone/0*                    active    idle   2/lxd/3  10.0.2.8        5000/tcp        Unit is ready
  keystone-mysql-router/0*     active    idle            10.0.2.8                        Unit is ready
mysql-innodb-cluster/0         active    idle   0/lxd/0  10.0.2.3                        Unit is ready: Mode: R/O, Cluster is ONLINE and can tolerate up to ONE failure.
mysql-innodb-cluster/1*        active    idle   1/lxd/0  10.0.2.1                        Unit is ready: Mode: R/W, Cluster is ONLINE and can tolerate up to ONE failure.
mysql-innodb-cluster/2         active    idle   2/lxd/0  10.0.2.0                        Unit is ready: Mode: R/O, Cluster is ONLINE and can tolerate up to ONE failure.
neutron-api/0*                 active    idle   1/lxd/2  10.0.2.7        9696/tcp        Unit is ready
  neutron-api-mysql-router/0*  active    idle            10.0.2.7                        Unit is ready
  neutron-api-plugin-ovn/0*    active    idle            10.0.2.7                        Unit is ready
nova-cloud-controller/0*       active    idle   1/lxd/3  10.0.2.10       8774-8775/tcp   Unit is ready
  ncc-mysql-router/0*          active    idle            10.0.2.10                       Unit is ready
nova-compute/0                 active    idle   0        10.0.1.4                        Unit is ready
  ovn-chassis/2                active    idle            10.0.1.4                        Unit is ready
nova-compute/1*                active    idle   1        10.0.1.8                        Unit is ready
  ovn-chassis/0                active    idle            10.0.1.8                        Unit is ready
nova-compute/2                 active    idle   2        10.0.1.9                        Unit is ready
  ovn-chassis/1*               active    idle            10.0.1.9                        Unit is ready
openstack-dashboard/0*         active    idle   2/lxd/5  10.0.2.13       80,443/tcp      Unit is ready
  dashboard-mysql-router/0*    active    idle            10.0.2.13                       Unit is ready
ovn-central/0                  active    idle   0/lxd/1  10.0.2.4        6641-6642/tcp   Unit is ready
ovn-central/1*                 active    idle   1/lxd/1  10.0.2.5        6641-6642/tcp   Unit is ready (leader: ovnnb_db, ovnsb_db)
ovn-central/2                  active    idle   2/lxd/2  10.0.2.6        6641-6642/tcp   Unit is ready (northd: active)
placement/0*                   active    idle   1/lxd/4  10.0.2.11       8778/tcp        Unit is ready
  placement-mysql-router/0*    active    idle            10.0.2.11                       Unit is ready
rabbitmq-server/0*             active    idle   2/lxd/4  10.0.2.9        5672,15672/tcp  Unit is ready
vault/0*                       active    idle   2/lxd/1  10.0.2.2        8200/tcp        Unit is ready (active: true, mlock: disabled)
  vault-mysql-router/0*        active    idle            10.0.2.2                        Unit is ready

Machine  State    Address    Inst id              Base          AZ       Message
0        started  10.0.1.4   os-compute04         ubuntu@22.04  default  Deployed
0/lxd/0  started  10.0.2.3   juju-371234-0-lxd-0  ubuntu@22.04  default  Container started
0/lxd/1  started  10.0.2.4   juju-371234-0-lxd-1  ubuntu@22.04  default  Container started
0/lxd/2  started  10.0.2.12  juju-371234-0-lxd-2  ubuntu@22.04  default  Container started
1        started  10.0.1.8   os-compute08         ubuntu@22.04  default  Deployed
1/lxd/0  started  10.0.2.1   juju-371234-1-lxd-0  ubuntu@22.04  default  Container started
1/lxd/1  started  10.0.2.5   juju-371234-1-lxd-1  ubuntu@22.04  default  Container started
1/lxd/2  started  10.0.2.7   juju-371234-1-lxd-2  ubuntu@22.04  default  Container started
1/lxd/3  started  10.0.2.10  juju-371234-1-lxd-3  ubuntu@22.04  default  Container started
1/lxd/4  started  10.0.2.11  juju-371234-1-lxd-4  ubuntu@22.04  default  Container started
2        started  10.0.1.9   os-compute09         ubuntu@22.04  default  Deployed
2/lxd/0  started  10.0.2.0   juju-371234-2-lxd-0  ubuntu@22.04  default  Container started
2/lxd/1  started  10.0.2.2   juju-371234-2-lxd-1  ubuntu@22.04  default  Container started
2/lxd/2  started  10.0.2.6   juju-371234-2-lxd-2  ubuntu@22.04  default  Container started
2/lxd/3  started  10.0.2.8   juju-371234-2-lxd-3  ubuntu@22.04  default  Container started
2/lxd/4  started  10.0.2.9   juju-371234-2-lxd-4  ubuntu@22.04  default  Container started
2/lxd/5  started  10.0.2.13  juju-371234-2-lxd-5  ubuntu@22.04  default  Container started
2

image
image2211×452 57.8 KB

3

image
image2208×550 66.1 KB

4

image
image2209×708 113 KB