傷痛美人兒 发表于 2016-1-9 07:14:47

openstack安装笔记 Neutron(未完成)(六)

验证

keystone role-list
keystone user-list
keystone tenant-list
keystone service-list
keystone endpoint-list
glance image-list
cinder list

在网络节点
防火墙配置
·编辑 /etc/sysconfig/iptables 文件,将filter 中添加防火墙规则全部删掉.
·重新启动防火墙    /etc/init.d/iptables restart
配置yum源
将epel-depends.repo icehouse.repo rabbitmq.repo rhel65.repo文件,拷贝到/etc/yum.repos.d/目录
导入KEY

rpm --import http://172.16.21.233/epel-depends/RPM-GPG-KEY-EPEL-6
rpm --importhttp://172.16.21.233/rhel65/RPM-GPG-KEY-redhat-release
rpm --import http://172.16.21.233/rabbitmq/rabbitmq-signing-key-public.asc
rpm --import http://172.16.21.233/rdo-icehouse-b3/RPM-GPG-KEY-RDO-Icehouse

·添加eth1网卡,配置如下
cat   /etc/sysconfig/network-scripts/ifcfg-eth1

DEVICE=eth1
TYPE=Ethernet
ONBOOT=yes
NM_CONTROLLED=no
BOOTPROTO=static

------------------------
升级iproute和dnsmasq软件包
yum install-y iproute dnsmasq dnsmasq-utils
yum install openstack-neutronpython-kombu python-amqplibpython-pyudev python-stevedore openstack-utils openstack-neutron-openvswitch openvswitch-y

配置Open vSwitch
chkconfig openvswitch on
service openvswitch start

(新建一个默认的桥接设备)
ovs-vsctl add-brbr-int   

切换到Controller节点,创建Neutron数据库,数据库名称为neutron
mysql-u root-popenstack
CREATE DATABASE neutron;
GRANT ALL ON neutron.* TO neutron @'%' IDENTIFIED BY 'neutron';
GRANT ALL ON neutron.* TO neutron @'localhost'IDENTIFIED BY 'neutron';
FLUSH PRIVILEGES;



keystone service-create --name neutron--type network --description "Neutron Networking Service"
WARNING: Bypassing authentication using a token & endpoint (authentication credentials are being ignored).
+-------------+----------------------------------+
|   Property|            Value               |
+-------------+----------------------------------+
| description |    Neutron Networking Service    |
|      id   | 97697ea9d10440d6bf8ebd0dc514fd86 |
|   name    |             neutron            |
|   type    |             network            |
+-------------+----------------------------------+
#

在keystone库 的service加了一条数据

keystone endpoint-create --service neutron --publicurl "http://192.168.1.231:9696" --adminurl "http://192.168.1.231:9696"--internalurl "http://192.168.1.231:9696" --region beijing
WARNING: Bypassing authentication using a token & endpoint (authentication credentials are being ignored).
+-------------+----------------------------------+
|   Property|            Value               |
+-------------+----------------------------------+
|   adminurl|    http://192.168.1.231:9696   |
|      id   | 477abe3dc54445869e9a9783a47d40b2 |
| internalurl |    http://192.168.1.231:9696   |
|publicurl|    http://192.168.1.231:9696   |
|    region   |             beijing            |
|service_id | 97697ea9d10440d6bf8ebd0dc514fd86 |
+-------------+----------------------------------+
#

endpoint表加了3条数据

openstack-config --set /etc/neutron/neutron.conf DEFAULT auth_strategy keystone
openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_host 172.16.21.233
openstack-config --set /etc/neutron/neutron.conf keystone_authtoken admin_tenant_name admin
openstack-config --set /etc/neutron/neutron.conf keystone_authtoken admin_user admin
openstack-config --set /etc/neutron/neutron.conf keystone_authtoken admin_password openstack
openstack-config --set /etc/neutron/neutron.conf DEFAULT rpc_backend neutron.openstack.common.rpc.impl_kombu
openstack-config --set /etc/neutron/neutron.conf DEFAULT rabbit_host 172.16.21.233
openstack-config --set/etc/neutron/neutron.confDEFAULT   core_plugin neutron.plugins.openvswitch.ovs_neutron_plugin.OVSNeutronPluginV2
openstack-config --set/etc/neutron/neutron.confDEFAULT   control_exchange neutron
openstack-config --set/etc/neutron/neutron.confdatabase   connectionmysql://neutron:neutron@172.16.21.233/neutron
openstack-config --set/etc/neutron/neutron.confDEFAULTallow_overlapping_ips True


配置neutronopenvswitch agent
·本次实验采用OpenVswitch做为plugin来提供网络服务,需要对plugin.ini文件进行关联和修改
ln -s /etc/neutron/plugins/openvswitch/ovs_neutron_plugin.ini /etc/neutron/plugin.ini -f

 openstack-config --set  /etc/neutron/plugin.ini  OVS  tenant_network_type gre
openstack-config --set  /etc/neutron/plugin.ini  OVS  tunnel_id_ranges 1:1000
openstack-config --set  /etc/neutron/plugin.ini  OVS  enable_tunneling True
openstack-config --set  /etc/neutron/plugin.ini  OVS  local_ip 172.16.21.231
openstack-config --set  /etc/neutron/plugin.ini  OVS  integration_bridge br-int
openstack-config --set  /etc/neutron/plugin.ini  OVS  tunnel_bridge br-tun
openstack-config --set  /etc/neutron/plugin.ini  SECURITYGROUP  firewall_driver neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
页: [1]
查看完整版本: openstack安装笔记 Neutron(未完成)(六)