| *** zbr_ has joined #openstack-kolla | 00:13 | |
| *** zbr has quit IRC | 00:14 | |
| *** itlinux has joined #openstack-kolla | 00:14 | |
| *** itlinux has quit IRC | 00:22 | |
| *** itlinux has joined #openstack-kolla | 00:23 | |
| *** itlinux has quit IRC | 00:25 | |
| *** itlinux has joined #openstack-kolla | 00:26 | |
| *** itlinux has quit IRC | 00:41 | |
| *** itlinux has joined #openstack-kolla | 00:44 | |
| *** itlinux has quit IRC | 00:47 | |
| *** guozijn has joined #openstack-kolla | 01:24 | |
| *** guozijn has quit IRC | 01:39 | |
| *** guozijn has joined #openstack-kolla | 01:40 | |
| *** hongbin has joined #openstack-kolla | 01:49 | |
| *** Sravan has joined #openstack-kolla | 02:09 | |
| *** unicell has joined #openstack-kolla | 02:12 | |
| *** unicell has quit IRC | 02:13 | |
| *** zhangfei has joined #openstack-kolla | 02:14 | |
| *** Sravan has quit IRC | 02:22 | |
| *** Sravan has joined #openstack-kolla | 02:26 | |
| *** Sravan has quit IRC | 02:27 | |
| *** whoami-rajat has joined #openstack-kolla | 02:59 | |
| *** sean-k-mooney has quit IRC | 03:09 | |
| *** sean-k-mooney has joined #openstack-kolla | 03:11 | |
| *** gkadam has joined #openstack-kolla | 03:28 | |
| *** unicell has joined #openstack-kolla | 03:44 | |
| *** igordc has quit IRC | 03:44 | |
| *** Sravan has joined #openstack-kolla | 04:00 | |
| *** Sravan_ has joined #openstack-kolla | 04:02 | |
| *** Sravan has quit IRC | 04:05 | |
| *** Sravan_ has quit IRC | 04:07 | |
| *** ivve has quit IRC | 04:10 | |
| *** pcaruana|afk| has joined #openstack-kolla | 04:25 | |
| *** unicell has quit IRC | 04:28 | |
| *** hongbin has quit IRC | 04:29 | |
| *** pcaruana|afk| has quit IRC | 04:35 | |
| *** janki has joined #openstack-kolla | 05:01 | |
| *** ivve has joined #openstack-kolla | 05:13 | |
| *** radeks_ has joined #openstack-kolla | 05:19 | |
| *** rwadolowski has joined #openstack-kolla | 05:19 | |
| *** shyamb has joined #openstack-kolla | 05:20 | |
| *** VickyG has joined #openstack-kolla | 05:20 | |
| *** tolisbar has quit IRC | 05:23 | |
| *** tolisbar has joined #openstack-kolla | 05:24 | |
| *** dpawlik has joined #openstack-kolla | 05:29 | |
| *** guozijn has quit IRC | 05:38 | |
| *** VickyG has quit IRC | 06:01 | |
| *** Luzi has joined #openstack-kolla | 06:02 | |
| *** shyamb has quit IRC | 06:14 | |
| *** shyamb has joined #openstack-kolla | 06:17 | |
| *** shyamb has quit IRC | 06:45 | |
| *** skramaja has joined #openstack-kolla | 06:47 | |
| *** shyamb has joined #openstack-kolla | 06:56 | |
| *** dpawlik has quit IRC | 06:57 | |
| *** pcaruana has joined #openstack-kolla | 07:12 | |
| *** tolisbar1 has joined #openstack-kolla | 07:13 | |
| *** tolisbar has quit IRC | 07:13 | |
| *** tolisbar1 is now known as tolisbar | 07:13 | |
| *** dpawlik has joined #openstack-kolla | 07:28 | |
| *** tolisbar has quit IRC | 07:37 | |
| *** shyamb has quit IRC | 07:54 | |
| openstackgerrit | Merged openstack/kolla-ansible master: Ansible flush_handlers ignores conditional clauses https://review.opendev.org/657851 | 08:04 |
|---|---|---|
| *** dougsz has joined #openstack-kolla | 08:07 | |
| *** k_mouza has joined #openstack-kolla | 08:16 | |
| mgoddard | hrw: we require python docker >= 2.0.0 | 08:19 |
| mgoddard | hrw: running 'kolla-ansible bootstrap-servers' will install it for you | 08:19 |
| *** luksky has joined #openstack-kolla | 08:24 | |
| *** hamzaachi has joined #openstack-kolla | 08:28 | |
| *** happyhemant has joined #openstack-kolla | 08:31 | |
| *** shyamb has joined #openstack-kolla | 08:34 | |
| *** priteau has joined #openstack-kolla | 08:41 | |
| *** zhangfei has quit IRC | 08:57 | |
| *** skramaja has quit IRC | 09:18 | |
| *** skramaja has joined #openstack-kolla | 09:19 | |
| openstackgerrit | Chason Chan proposed openstack/kolla-ansible master: Tiny fix of quickstart guide https://review.opendev.org/658998 | 09:26 |
| *** VickyG has joined #openstack-kolla | 09:45 | |
| *** VickyG has quit IRC | 09:47 | |
| *** dougsz has quit IRC | 10:01 | |
| *** dougsz has joined #openstack-kolla | 10:08 | |
| *** shyamb has quit IRC | 10:22 | |
| *** jbadiapa has joined #openstack-kolla | 10:28 | |
| *** shyamb has joined #openstack-kolla | 10:46 | |
| *** gfidente has joined #openstack-kolla | 10:58 | |
| *** lemko has joined #openstack-kolla | 11:07 | |
| openstackgerrit | Rafael Weingärtner proposed openstack/kolla-ansible master: Enable kolla-ansible to use a custom metrics files with Cloudkitty https://review.opendev.org/658422 | 11:25 |
| openstackgerrit | Mark Goddard proposed openstack/kolla-ansible stable/rocky: Fix kolla-docker possible undefined variable https://review.opendev.org/659040 | 11:27 |
| openstackgerrit | Mark Goddard proposed openstack/kolla-ansible stable/queens: Fix kolla-docker possible undefined variable https://review.opendev.org/659041 | 11:27 |
| *** shyamb has quit IRC | 11:42 | |
| kklimonda | I'm trying to get kolla deployment working with self-signed certificates, and some service seem to behave strangely - for example neutron->designate integration is partially because neutron is trying to use public endpoint to communicate with designate and the CA I've signed by certificate with is not in the bundle it uses. | 11:44 |
| kklimonda | I've noticed that python's requests library is used, and by default it does not utilize system CA bundle, using its own for some reason instead. | 11:45 |
| kklimonda | you can override that by setting `REQUESTS_CA_BUNDLE` environment variable though | 11:45 |
| kklimonda | what would be the best way to approach that in a more "systemic" matter, so that all services are using correct bundle? I was thinking modifying `kolla_docker` and its _inject_env_var to add `REQUESTS_CA_BUNDLE` variable for all containers. | 11:46 |
| openstackgerrit | Mark Goddard proposed openstack/kolla-ansible master: Simplify handler conditionals https://review.opendev.org/647699 | 11:46 |
| openstackgerrit | Surya Prakash (spsurya) proposed openstack/kolla master: Blacklist bandit 1.6.0 https://review.opendev.org/659045 | 11:46 |
| *** shyamb has joined #openstack-kolla | 11:49 | |
| openstackgerrit | Surya Prakash (spsurya) proposed openstack/kolla-ansible master: Blacklist bandit 1.6.0 https://review.opendev.org/659047 | 11:53 |
| *** luksky has quit IRC | 12:10 | |
| *** priteau has quit IRC | 12:22 | |
| *** shyamb has quit IRC | 12:25 | |
| *** shyamb has joined #openstack-kolla | 12:25 | |
| *** janki has quit IRC | 12:30 | |
| *** rgogunskiy has joined #openstack-kolla | 12:34 | |
| *** shyamb has quit IRC | 12:34 | |
| *** gkadam has quit IRC | 12:40 | |
| *** mchlumsky has joined #openstack-kolla | 12:41 | |
| *** mchlumsky has quit IRC | 12:46 | |
| *** mchlumsky has joined #openstack-kolla | 12:50 | |
| *** priteau has joined #openstack-kolla | 12:51 | |
| *** priteau has quit IRC | 12:51 | |
| *** luksky has joined #openstack-kolla | 12:52 | |
| *** tolisbar has joined #openstack-kolla | 12:52 | |
| *** jistr is now known as jistr|call | 12:59 | |
| openstackgerrit | Erol Guzoglu proposed openstack/kolla-ansible master: Add storage section to Cloudkitty config https://review.opendev.org/659059 | 13:03 |
| openstackgerrit | Mark Goddard proposed openstack/kolla-ansible master: Test Ceph upgrade in CI https://review.opendev.org/658132 | 13:05 |
| openstackgerrit | Mark Goddard proposed openstack/kolla-ansible master: Test Ceph upgrade in CI https://review.opendev.org/658132 | 13:10 |
| *** tolisbar has quit IRC | 13:10 | |
| mgoddard | kklimonda: all service to service comms should be via the internal API. If that is not the case, it is a bug in kolla-ansible | 13:20 |
| mgoddard | kklimonda: there should be a config option in neutron we can set | 13:21 |
| kklimonda | mgoddard: yeah, I tried looking for it but nothing pops out - I think that should be designate.endpoint_type but that didn't seem to work (or I messed it up somehow) | 13:22 |
| mgoddard | kklimonda: the new name is 'interface' | 13:24 |
| *** dmellado has quit IRC | 13:24 | |
| *** dmellado has joined #openstack-kolla | 13:24 | |
| *** jistr|call is now known as jistr | 13:30 | |
| openstackgerrit | Erol Guzoglu proposed openstack/kolla-ansible master: Configure region_name in cloudkitty.conf https://review.opendev.org/659066 | 13:43 |
| *** kplant has joined #openstack-kolla | 13:53 | |
| *** iclon_ has joined #openstack-kolla | 13:56 | |
| *** iclon__ has quit IRC | 13:59 | |
| *** sshnaidm has joined #openstack-kolla | 14:07 | |
| *** sshnaidm is now known as sshnaidm|afk | 14:08 | |
| *** lemko has quit IRC | 14:08 | |
| *** dpawlik has quit IRC | 14:17 | |
| *** Luzi has quit IRC | 14:18 | |
| *** hamzaachi has quit IRC | 15:01 | |
| *** skramaja has quit IRC | 15:03 | |
| *** hamzaachi has joined #openstack-kolla | 15:10 | |
| *** mchlumsky has quit IRC | 15:13 | |
| *** mchlumsky has joined #openstack-kolla | 15:15 | |
| *** sshnaidm|afk has quit IRC | 15:25 | |
| *** sshnaidm has joined #openstack-kolla | 15:27 | |
| *** mchlumsky has quit IRC | 15:28 | |
| *** sshnaidm is now known as sshnaidm|afk | 15:29 | |
| *** mchlumsky has joined #openstack-kolla | 15:30 | |
| openstackgerrit | Taeha Kim proposed openstack/kolla master: Add RHEL subscription registration https://review.opendev.org/495148 | 15:30 |
| openstackgerrit | Taeha Kim proposed openstack/kolla master: Add RHEL subscription registration https://review.opendev.org/495148 | 15:33 |
| *** jhinman has joined #openstack-kolla | 15:51 | |
| *** hamzy has quit IRC | 15:52 | |
| *** openstackgerrit has quit IRC | 15:54 | |
| *** igordc has joined #openstack-kolla | 15:59 | |
| *** igordc has quit IRC | 16:03 | |
| *** jonaspaulo has joined #openstack-kolla | 16:05 | |
| *** hamzaachi has quit IRC | 16:17 | |
| *** mgoddard has quit IRC | 16:20 | |
| *** mgoddard has joined #openstack-kolla | 16:21 | |
| *** rwadolowski has quit IRC | 16:25 | |
| *** Talion has joined #openstack-kolla | 16:29 | |
| *** mgoddard has quit IRC | 16:30 | |
| *** openstackgerrit has joined #openstack-kolla | 16:31 | |
| openstackgerrit | Mark Goddard proposed openstack/kolla-ansible master: Make kolla-ansible support extra volumes https://review.opendev.org/651143 | 16:31 |
| *** mgoddard has joined #openstack-kolla | 16:32 | |
| openstackgerrit | Mark Goddard proposed openstack/kolla-ansible master: Test Ceph upgrade in CI https://review.opendev.org/658132 | 16:40 |
| openstackgerrit | Rafael Weingärtner proposed openstack/kolla-ansible master: Cloudkitty InfluxDB Storage backend via Kolla-ansible https://review.opendev.org/658418 | 16:45 |
| *** mgoddard has quit IRC | 16:48 | |
| *** mgoddard has joined #openstack-kolla | 16:48 | |
| *** Sravan has joined #openstack-kolla | 16:49 | |
| *** k_mouza has quit IRC | 16:49 | |
| *** luksky has quit IRC | 16:54 | |
| *** dougsz has quit IRC | 17:02 | |
| *** mgoddard has quit IRC | 17:02 | |
| *** mgoddard has joined #openstack-kolla | 17:03 | |
| *** Sravan has quit IRC | 17:04 | |
| *** Sravan has joined #openstack-kolla | 17:06 | |
| *** mgoddard has quit IRC | 17:20 | |
| *** mgoddard has joined #openstack-kolla | 17:22 | |
| *** k_mouza has joined #openstack-kolla | 17:25 | |
| osmanlicilegi | greetings. i'm having some networking issues with my openstack deployed with kolla. i'm using 3 bonded interfaces for openstack. 1 for internal, 1 for storage and 1 for provider networks. internal and storage are vlan access and provider is vlan trunk. i create the vlan tagged provider networks and they run without any problem if ise use floating ips. but if i try to assign a ip directly to the vm it | 17:29 |
| osmanlicilegi | does not work. does enabling enable_neutron_provider_networks not enough? | 17:29 |
| *** k_mouza has quit IRC | 17:30 | |
| mgoddard | hi osmanlicilegi it should be sufficient to enable enable_neutron_provider_networks | 17:36 |
| emccormick | osmanlicilegi Are you trying to do that with the default "physnet1:br-ex" setup, or made another bridge / port? | 17:36 |
| emccormick | You gotta go through and add that to the OVS config all over and create the bridges on the computes | 17:37 |
| emccormick | also enable_neutron_provider_networks doesn't actually do anything helpful for that. It's really only needed if you're running DVR | 17:39 |
| emccormick | and that adds br-ex to your computes. Maybe that's what you want though? | 17:40 |
| emccormick | (unless that changed) | 17:42 |
| *** itlinux has joined #openstack-kolla | 17:42 | |
| mgoddard | emccormick: enable_neutron_provider_networks is necessary for provider VLAN networks, otherwise OVS doesn't get L2 access to VLAN tenant nets | 17:44 |
| mgoddard | osmanlicilegi: perhaps you could say more about how it does not work - error message, api failure, etc? | 17:45 |
| *** hamzy has joined #openstack-kolla | 17:48 | |
| *** itlinux has quit IRC | 17:48 | |
| osmanlicilegi | emccormick: you're right, i'm using it with the default physnet1:br-ex | 17:49 |
| emccormick | mgoddard: As far as I can tell, the only thing setting that does is enable computes_need_external_bridge which in turn tries to add everything in neutron_bridge_name everywhere. In my case that broke everything because I don't have the interface for br-ex on my computes | 17:49 |
| osmanlicilegi | mgoddard: i'm not having any api failure or something other | 17:50 |
| emccormick | so have to manually make the custom bridge for my tenant provider network and then make the bridge mappings under custom configs | 17:50 |
| mgoddard | emccormick: yeah, but if you want to connect instances to provider VLANs you need that interface on your computes | 17:51 |
| mgoddard | osmanlicilegi: so it's just a lack of connectivity? | 17:51 |
| emccormick | only if I want br-ex | 17:51 |
| emccormick | I have br-ex on routers | 17:51 |
| emccormick | in neutron it has provider-external-network = true so I can issue floating IPs | 17:52 |
| osmanlicilegi | mgoddard: i think so. i wanna use the same subnet for floating and provider ips | 17:52 |
| mgoddard | emccormick: yeah, that works for tunnel networks but for provider networks you need access to the underlying L2 | 17:53 |
| mgoddard | osmanlicilegi: why use floating IPs if you can use direct attach? | 17:54 |
| *** itlinux has joined #openstack-kolla | 17:54 | |
| emccormick | osmanlicilegi it's not really intended to work that way | 17:54 |
| emccormick | either use floating IP's and specify --external when you create the network, or specify --internal if you want it to be for tenant traffic | 17:54 |
| emccormick | I think having it be --external will keep you from getting an address via dhcp for it | 17:55 |
| emccormick | Though perhaps if you set up an external dhcp server it could work. I just don't think neutron dhcp agent will make a configuration for the subnet when it's type is external | 17:56 |
| emccormick | I dunno mgoddard. I have a Queens and a Rocky doing just that so... :D. Maybe I did a bad thing | 17:57 |
| mgoddard | emccormick: so what OVS bridges do you have on your computes? | 17:58 |
| emccormick | I made a new bridge on the computes, added it to bridge mappings with a new interface, and off I go. That's how I gave Octavia access to my controllers | 17:58 |
| emccormick | new bridges | 17:58 |
| mgoddard | ah | 17:58 |
| mgoddard | I see | 17:58 |
| emccormick | can't use br-ex for that. I need that for floating IPs | 17:58 |
| mgoddard | you use DVR? | 17:59 |
| emccormick | then tenant networks are vxlan internal to OVS, and that one provider network for Octavia to use and a few other random tings | 17:59 |
| emccormick | no DVR | 17:59 |
| mgoddard | so br-ex only on the network node? | 17:59 |
| emccormick | correct | 18:00 |
| mgoddard | I think you can do what you want using ansible group_vars with different values for neutron_bridge_name and neutron_external_interface | 18:00 |
| emccormick | and computes have bridge_mappings = svc-net:br-svc | 18:00 |
| mgoddard | but if it works then don't touch :) | 18:00 |
| emccormick | well actually I"ve looked for a better way. I may try that | 18:01 |
| mgoddard | anyway, we were helping osmanlicilegi :) | 18:01 |
| emccormick | right now it's annoying because each host has its own neutron config directory. That 'doesn't scale well | 18:01 |
| emccormick | oops sorry! | 18:02 |
| mgoddard | ah, yeah that's painful. Group/host vars are your friends :) | 18:02 |
| mgoddard | osmanlicilegi: I think emccormick has a good suggestion - make the network internal or external, not both. | 18:02 |
| osmanlicilegi | well i'm happy with floating ips but users always try to attach ips to vms because they see the vlan tagged networks at network list :) i'm not sure if its possible to hide it. | 18:03 |
| mgoddard | osmanlicilegi: try making it an internal network and see if provider networks work? | 18:03 |
| osmanlicilegi | i've tried both internal and external, didn't work | 18:03 |
| osmanlicilegi | also tried with/without dhcp | 18:03 |
| mgoddard | osmanlicilegi: how are your tcpdump skills? | 18:04 |
| osmanlicilegi | so so. i've monitored the traffic and seems like a packet drop at br-ex | 18:05 |
| mgoddard | you could attach a floating IP for SSH access and a provider net for testing, then try pings etc and follow the packets | 18:05 |
| mgoddard | tcpdump doesn't work with OVS :( | 18:05 |
| osmanlicilegi | i used the guide at https://docs.openstack.org/operations-guide/ops-network-troubleshooting.html | 18:06 |
| osmanlicilegi | with port mirroring | 18:06 |
| emccormick | Yeah you can tcpdump the tap* ports | 18:07 |
| emccormick | try disabling port security maybe? | 18:08 |
| emccormick | could be iptables killing it for various reasons | 18:08 |
| osmanlicilegi | tried too but didn't worked :( | 18:08 |
| mgoddard | try booting two VMs on the same compute node and see if they can reach eachother | 18:09 |
| osmanlicilegi | tried too, they cant | 18:09 |
| osmanlicilegi | that's why i'm so confused | 18:09 |
| osmanlicilegi | now i'm checking redhat documentation at https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/14/html/networking_guide/sec-connect-instance#Using-VLAN-Provider-Networks | 18:11 |
| osmanlicilegi | if you see 7.4 it corrects my configuration | 18:12 |
| osmanlicilegi | you can have a vlan network and you can use it for floating ips too | 18:12 |
| emccormick | can you pastebin an openstack network show <network name> somewhere? | 18:12 |
| openstackgerrit | Mark Goddard proposed openstack/kolla-ansible master: Cloudkitty InfluxDB Storage backend via Kolla-ansible https://review.opendev.org/658418 | 18:12 |
| osmanlicilegi | sure | 18:12 |
| *** gfidente is now known as gfidente|afk | 18:13 | |
| *** luksky has joined #openstack-kolla | 18:15 | |
| osmanlicilegi | emccormick: https://paste.ee/p/88XkM | 18:17 |
| emccormick | what's the physical interface config on the servers? | 18:18 |
| emccormick | tagged or just regular access port? | 18:19 |
| osmanlicilegi | it's vlan trunk | 18:19 |
| emccormick | ok, then set that external network to type "flat" instead and try it | 18:19 |
| emccormick | since you're already tagging at the physical interface | 18:19 |
| emccormick | you don't want to tag it at the OVS bridge and then tag it again on the interface. | 18:20 |
| emccormick | so like if you have interface bond0.28 as your interface assigned to your bridge that'll take care of it | 18:21 |
| osmanlicilegi | i'm not creating vlan sub interfaces | 18:22 |
| osmanlicilegi | i want ovs manage the tags | 18:22 |
| emccormick | can you pastebin the output of 'docker exec openvswitch_db ovs-vsctl show' ? | 18:23 |
| osmanlicilegi | sure | 18:23 |
| osmanlicilegi | https://paste.ee/p/XPM2X | 18:25 |
| emccormick | hmm if that has a running instance on the external network, it's not attached to the bridge | 18:27 |
| osmanlicilegi | and https://paste.ee/p/xUVgJ is the output of ip link for you understand my network config | 18:29 |
| *** ivve has quit IRC | 18:29 | |
| osmanlicilegi | the are bond interfaces and i bridge them to ost_int/stg/pub and let kolla use them | 18:29 |
| emccormick | right but which port is the instance? | 18:34 |
| emccormick | maybe I misunderstand OVS's implementation of vlan tagging, but shouldn't there be a port somewhere with tag: 28 on it? | 18:34 |
| osmanlicilegi | let me show you something more | 18:35 |
| emccormick | this is why I just do subinterfaces on the servers and flat in OVS. OVS makes my brain hurt :D | 18:35 |
| mgoddard | neutron does translation of provider VLAN IDs to a per-host set of internal VLAN IDs, just to confuse you. So the tag might not be 28 | 18:36 |
| osmanlicilegi | https://paste.ee/p/ypan2 | 18:37 |
| emccormick | and that port is nowhere on any bridge that I can see... | 18:38 |
| *** Talion has quit IRC | 18:38 | |
| osmanlicilegi | emccormick: you are right :) | 18:39 |
| osmanlicilegi | i'm don't know how can i debug this issue. central logging is enabled but i don't see any error at api level | 18:39 |
| emccormick | can you ip link show those interfaces on the server? | 18:39 |
| osmanlicilegi | deployed openstack several times but nothing changed | 18:40 |
| emccormick | on the hypervisor that is | 18:40 |
| osmanlicilegi | https://paste.ee/p/foAdh | 18:41 |
| mgoddard | osmanlicilegi: what is ost_pub? | 18:41 |
| osmanlicilegi | mgoddard: it's the vlan trunk interface | 18:41 |
| osmanlicilegi | it's a bridge mapped to bond2 | 18:42 |
| mgoddard | ah, it's a bridge | 18:42 |
| mgoddard | I'm not sure you can plug a bridge into an OVS bridge | 18:42 |
| mgoddard | why not plug bond2 into OVS? | 18:43 |
| mgoddard | or a veth pair, one end in ost_pub, the other in br-ex (that is what we do in kayobe) | 18:43 |
| *** fvollero has joined #openstack-kolla | 18:43 | |
| fvollero | Hi team :) | 18:43 |
| mgoddard | osmanlicilegi: ^ | 18:44 |
| fvollero | I'm playing a bit with Kolla and i've a question to know what is the right way to do this. I have two interfaces, one just in access mode eth0 and eth1 in trunk with _all_ the vlans even the external ones, to make sure br-ex is able to work properly, how i should create the various networks ? | 18:45 |
| openstackgerrit | Mark Goddard proposed openstack/kolla-ansible master: Test Ceph upgrade in CI https://review.opendev.org/658132 | 18:45 |
| mgoddard | fvollero: have to go now. Ask me again tomorrow if no one else responds | 18:46 |
| fvollero | mgoddard: sure, which TZ are you ? :) | 18:46 |
| mgoddard | fvollero: UTC+1 | 18:46 |
| osmanlicilegi | mgoddard: excuse me for not being a network guru. i think you got the point. i'll re-deploy openstack tonight without bridge-on-bridge and will let you the result. | 18:47 |
| kplant | fvollero: that depends | 18:47 |
| fvollero | mgoddard: ack :) | 18:47 |
| fvollero | kplant: well, in had no doubts about it. | 18:48 |
| kplant | do you want a flat provider network or do you want to be able to have many | 18:48 |
| fvollero | kplant: i want the flexibility, therefore vlans and flat, but mostly vlan | 18:48 |
| kplant | so i can give you my example that allows me to do both tagged and untagged provider nets... | 18:49 |
| fvollero | kplant: ack | 18:49 |
| kplant | i have one bonded interface "bond0" and it's trunked on my switches | 18:49 |
| kplant | the native vlan would be what i want to use for the flat provider net | 18:49 |
| kplant | and then i have vlans off the same lag interface for 'everything else' | 18:50 |
| fvollero | yeah | 18:50 |
| kplant | storage, api, etc. | 18:50 |
| kplant | but i can also tag provider nets on the same trunk, make sense? | 18:50 |
| fvollero | kplant: totally | 18:50 |
| fvollero | kplant: you can go in details, i have deep knowledge of the sick world of openstack :) | 18:50 |
| kplant | so what network is eth0 an access port for? | 18:52 |
| kplant | or more correctly, which vlan? | 18:52 |
| fvollero | kplant: no wlan, is access mode used by ironic to deploy the baremetal node :) | 18:52 |
| fvollero | s/wlan/vlan/ | 18:52 |
| kplant | oh ok, so that's your pxe network | 18:52 |
| fvollero | yep | 18:52 |
| kplant | did you want to also use that for api/mgmt or separate further? | 18:53 |
| fvollero | kplant: yeah, at the moment i deployed in this way: neutron_external_interface=eno2 api_interface=vlan313 storage_interface=vlan315 tunnel_interface=vlan314 | 18:54 |
| *** Chaserjim has joined #openstack-kolla | 18:54 | |
| *** Chaserjim has quit IRC | 18:54 | |
| fvollero | kplant: that's an old one tho | 18:54 |
| kplant | eno2 being the interface the vlans are hanging off of? | 18:55 |
| fvollero | exactly | 18:55 |
| kplant | that makes sense to me | 18:55 |
| kplant | if you have a native vlan defined you'll be able to do exactly what you're asking | 18:55 |
| kplant | both tagged and untagged provider networks | 18:55 |
| fvollero | kplant: my focal point is, if i want to have the dashboard on vlan400, the vlan400 cannot be created from eno2 (or eth1) | 18:55 |
| fvollero | my question is: why ? and how i can fix it ? | 18:56 |
| kplant | got it, you're looking for a place for kolla_external_vip_interface | 18:56 |
| fvollero | my workaround was to create the vlan400 as port of the br-ex and tagging it :) | 18:56 |
| kplant | that actually works | 18:56 |
| fvollero | kplant: yeah :) | 18:56 |
| *** Chaserjim has joined #openstack-kolla | 18:56 | |
| kplant | got it | 18:56 |
| kplant | so what i did, is by default all of my nodes sit on my api network and use that for a default gateway (it uses NAT) | 18:57 |
| kplant | on my controller nodes however... | 18:57 |
| kplant | i popped an interface on there, bond0.220 for me, and put a real public IP on there and made that the default route | 18:57 |
| kplant | that sounds a lot like a oooq heat nic template btw, one untagged for br-ctlplane and one trunk for everything else. is my wild stab in the dark correct? | 19:00 |
| fvollero | kplant: kinda :) i'm used to work with tripleo :) | 19:01 |
| fvollero | kplant: how you created the bond0.220 ? | 19:09 |
| fvollero | i had troubles with that | 19:09 |
| *** jhinman has quit IRC | 19:11 | |
| *** itlinux has quit IRC | 19:16 | |
| *** pcaruana has quit IRC | 19:19 | |
| *** radeks_ has quit IRC | 19:26 | |
| kplant | fvollero: i have a networking bootstrap playbook that i call before kolla | 19:41 |
| kplant | so i create the interface myself | 19:41 |
| *** Sravan has quit IRC | 19:55 | |
| *** itlinux has joined #openstack-kolla | 20:27 | |
| *** Sravan has joined #openstack-kolla | 20:30 | |
| *** Sravan has quit IRC | 20:35 | |
| *** ivve has joined #openstack-kolla | 20:36 | |
| Chaserjim | Hi k-a , i have a question. Is anyone actively working this? https://bugs.launchpad.net/kolla-ansible/+bug/1712087 This is a real issue for my team. In the event that we lose a controller, we need ot be able to remove it from the node, bootstrap new hardware and have it back in the cluster. Has anyone been able to actually complete a controller replacement ?? | 20:38 |
| openstack | Launchpad bug 1712087 in kolla-ansible "MariaDB in HA does not come up after kolla-ansible stop" [Undecided,Opinion] | 20:38 |
| *** JamesBenson has joined #openstack-kolla | 20:40 | |
| *** hamzy has quit IRC | 20:41 | |
| fvollero | kplant: are you willing to share it ? :) | 20:53 |
| *** JamesBenson has quit IRC | 20:54 | |
| kplant | http://paste.openstack.org/show/751362/ | 20:55 |
| kplant | i hand keyed the prefix because i was lazyh | 20:55 |
| fvollero | kplant:for some reason i get address unreacheable | 20:56 |
| fvollero | kplant: that's kinda awkward | 20:56 |
| kplant | you're picking a vip that's not currently in use right? | 20:57 |
| kplant | keepalived should plop a /32 that's not in use on there | 20:57 |
| *** gfidente|afk has quit IRC | 20:58 | |
| *** JamesBenson has joined #openstack-kolla | 20:59 | |
| *** JamesBenson has quit IRC | 20:59 | |
| fvollero | kplant: i am talking about paste.openstack.org | 20:59 |
| fvollero | kplant: :) | 20:59 |
| kplant | hahaha | 20:59 |
| kplant | https://pastebin.com/WFZwVT1r | 21:00 |
| kplant | better? | 21:00 |
| fvollero | kplant: oh yeah, that's way better | 21:02 |
| kplant | so bond0.230 is my api interface that's normally the defroute | 21:03 |
| kplant | so i strip that out and make the external subif the default | 21:03 |
| fvollero | gotcha | 21:05 |
| kplant | i'm heading out, best of luck! | 21:06 |
| fvollero | kplant: thanks a bunch :) | 21:06 |
| kplant | yw | 21:06 |
| *** kplant has quit IRC | 21:06 | |
| *** itlinux has quit IRC | 21:07 | |
| *** tolisbar has joined #openstack-kolla | 21:24 | |
| *** tolisbar has quit IRC | 21:30 | |
| *** jonaspaulo has quit IRC | 21:42 | |
| *** Sravan has joined #openstack-kolla | 21:43 | |
| *** mchlumsky has quit IRC | 21:47 | |
| *** ivve has quit IRC | 21:50 | |
| *** kplant has joined #openstack-kolla | 21:51 | |
| kplant | fvollero: how'd you make out? | 21:55 |
| *** iclon__ has joined #openstack-kolla | 21:56 | |
| *** iclon_ has quit IRC | 21:59 | |
| *** luksky has quit IRC | 22:01 | |
| *** hamzaachi has joined #openstack-kolla | 22:13 | |
| *** whoami-rajat has quit IRC | 22:18 | |
| *** hamzaachi has quit IRC | 22:32 | |
| *** Sravan has quit IRC | 22:42 | |
| *** Sravan has joined #openstack-kolla | 22:44 | |
| *** happyhemant has quit IRC | 23:01 | |
| *** Sravan has quit IRC | 23:02 | |
| *** Sravan has joined #openstack-kolla | 23:17 | |
| *** bline has joined #openstack-kolla | 23:29 | |
| *** irclogbot_3 has quit IRC | 23:45 | |
| *** irclogbot_0 has joined #openstack-kolla | 23:48 | |
| *** Sravan has quit IRC | 23:48 | |
| *** itlinux has joined #openstack-kolla | 23:50 | |
Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!