openstack M版安装 network(neutron)服务篇

安装配置network(neutron) 服务

Mitaka版本网络有两个选择,Provider network 和Self-service network,这里我们选择第二种。

controller 节点

一、创建数据库

[[email protected] ~]# mysql -u root -p
>>CREATE DATABASE neutron;
>>GRANT ALL PRIVILEGES ON neutron.* TO ‘neutron‘@‘localhost‘   IDENTIFIED BY ‘NEUTRON_DBPASS‘;
>>GRANT ALL PRIVILEGES ON neutron.* TO ‘neutron‘@‘%‘   IDENTIFIED BY ‘NEUTRON_DBPASS‘;

NEUTRON_DBPASS改为自己想要设置的密码

二、创建服务实体和api接口

[[email protected] ~]# source /root/admin-openrc.sh
[[email protected] ~]# openstack user create --domain default --password-prompt neutron
[[email protected] ~]# openstack role add --project service --user neutron admin
[[email protected] ~]# openstack service create --name neutron   --description "OpenStack Networking" network
[[email protected] ~]# openstack endpoint create --region RegionOne   network public http://controller:9696
[[email protected] ~]# openstack endpoint create --region RegionOne   network internal http://controller:9696 
[[email protected] ~]# openstack endpoint create --region RegionOne   network admin   http://controller:9696

三、安装nuetron服务

[[email protected] ~]# yum install openstack-neutron openstack-neutron-ml2  openstack-neutron-linuxbridge ebtables

编辑neutron服务配置文件

[[email protected] ~]# mv /etc/neutron/neutron.conf /etc/neutron/neutron.conf_bak
[[email protected] ~]# vim /etc/neutron/neutron.conf
[DEFAULT]
core_plugin = ml2
service_plugins = router
allow_overlapping_ips = True
rpc_backend = rabbit
auth_strategy = keystone
notify_nova_on_port_status_changes = True
notify_nova_on_port_data_changes = True
[database]
connection = mysql+pymysql://neutron:[email protected]/neutron  #改为自己数据库密码
[oslo_messaging_rabbit]
rabbit_host = controller
rabbit_userid = openstack
rabbit_password = RABBIT_PASS   #改为rabbitmq的密码

[keystone_authtoken]
auth_uri = http://controller:5000
auth_url = http://controller:35357
memcached_servers = controller:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = neutron
password = NEUTRON_PASS   #改为自己neutron服务的密码

[nova]
auth_url = http://controller:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = nova
password = NOVA_PASS  #改为自己nova服务的密码

[oslo_concurrency]
lock_path = /var/lib/neutron/tmp

编辑ML2插件的配置

[[email protected] ~]#mv /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugins/ml2/ml2_conf.ini_bak
[[email protected] ~]#vim /etc/neutron/plugins/ml2/ml2_conf.ini
[ml2]
type_drivers = flat,vlan,vxlan
tenant_network_types = vxlan
mechanism_drivers = linuxbridge,l2population
extension_drivers = port_security

[ml2_type_flat]
flat_networks = provider

[ml2_type_vxlan]
vni_ranges = 1:1000

[securitygroup]
enable_ipset = True

编辑linuxbridge agent 配置文件

[[email protected] ~]#mv /etc/neutron/plugins/ml2/linuxbridge_agent.ini /etc/neutron/plugins/ml2/linuxbridge_agent.ini_bak
[[email protected] ~]#vim /etc/neutron/plugins/ml2/linuxbridge_agent.ini
[linux_bridge]
physical_interface_mappings = provider:PROVIDER_INTERFACE_NAME   #这里设置为provider网络的网卡名称,我这里eth1

[vxlan]
enable_vxlan = True
local_ip = OVERLAY_INTERFACE_IP_ADDRESS  #这个ip地址我们使用的是管理网段的ip (10.0.0.11)
l2_population = True

[securitygroup]
enable_security_group = True
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver

编辑L3 agent 配置文件

[[email protected] ~]#mv /etc/neutron/l3_agent.ini /etc/neutron/l3_agent.ini_bak
[[email protected] ~]#vim /etc/neutron/l3_agent.ini
[DEFAULT]
interface_driver = neutron.agent.linux.interface.BridgeInterfaceDriver
external_network_bridge =                 #留空

编辑dhcp agent配置

[[email protected] ~]#mv /etc/neutron/dhcp_agent.ini /etc/neutron/dhcp_agent.ini_bak
[[email protected] ~]#vim /etc/neutron/dhcp_agent.ini
[DEFAULT]
interface_driver = neutron.agent.linux.interface.BridgeInterfaceDriver
dhcp_driver = neutron.agent.linux.dhcp.Dnsmasq
enable_isolated_metadata = True

配置metadata agent

[[email protected] ~]#mv /etc/neutron/metadata_agent.ini /etc/neutron/metadata_agent.ini_bak
[[email protected] ~]#vim /etc/neutron/metadata_agent.ini
[DEFAULT]
nova_metadata_ip = controller
metadata_proxy_shared_secret = METADATA_SECRET    #修改为自己的METADATA_SECRET,也可以不修改,要和nova服务配置一样

配置nova服务使用network

[[email protected] ~]#vim /etc/nova/nova.conf    #增加以下内容
[neutron]
url = http://controller:9696
auth_url = http://controller:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = NEUTRON_PASS    #改为自己neutron服务密码
 
service_metadata_proxy = True
metadata_proxy_shared_secret = METADATA_SECRET   #和上面的METADATA对应

给ML2插件做个软连接

[[email protected] ~]# ln -s /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugin.ini

同步数据库

[[email protected] ~]# su -s /bin/sh -c "neutron-db-manage --config-file /etc/neutron/neutron.conf  --config-file /etc/neutron/plugins/ml2/ml2_conf.ini upgrade head" neutron

重启nova-api

[[email protected] ~]# systemctl restart openstack-nova-api.service

启动neutron相关服务,并设置开机启动

[[email protected] ~]# systemctl enable neutron-server.service   neutron-linuxbridge-agent.service neutron-dhcp-agent.service   neutron-metadata-agent.service
[[email protected] ~]# systemctl start neutron-server.service   neutron-linuxbridge-agent.service neutron-dhcp-agent.service   neutron-metadata-agent.service

启动L3 agent

[[email protected] ~]# systemctl enable neutron-l3-agent.service
[[email protected] ~]# systemctl start neutron-l3-agent.service

compute 节点配置

一、安装neutron服务

[[email protected] ~]# yum install openstack-neutron-linuxbridge ebtables ipset

编辑neutron服务配置

[[email protected] ~]#mv /etc/neutron/neutron.conf /etc/neutron/neutron.conf_bak
[[email protected] ~]#vim /etc/neutron/neutron.conf
[DEFAULT]
rpc_backend = rabbit
auth_strategy = keystone

[oslo_messaging_rabbit]
rabbit_host = controller
rabbit_userid = openstack
rabbit_password = RABBIT_PASS   #改为rabbit密码

[keystone_authtoken]
auth_uri = http://controller:5000
auth_url = http://controller:35357
memcached_servers = controller:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = neutron
password = NEUTRON_PASS         #改为自己neutron服务密码

[oslo_concurrency]
lock_path = /var/lib/neutron/tmp

编辑linuxbridge agent 配置

[[email protected] ~]#mv /etc/neutron/plugins/ml2/linuxbridge_agent.ini /etc/neutron/plugins/ml2/linuxbridge_agent.ini_bak
[[email protected] ~]#vim /etc/neutron/plugins/ml2/linuxbridge_agent.ini
[linux_bridge]
physical_interface_mappings = provider:PROVIDER_INTERFACE_NAME  #改为provider网络的网卡,这里是eth1

[vxlan]
enable_vxlan = True
local_ip = OVERLAY_INTERFACE_IP_ADDRESS #改为本机managent网络的ip地址 10.0.0.31
l2_population = True

[securitygroup]
enable_security_group = True
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver

配置nova服务使用network

[[email protected] ~]#vim  /etc/nova/nova.conf  #增加以下内容
[neutron]
url = http://controller:9696
auth_url = http://controller:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = NEUTRON_PASS    #改为自己的neutron服务密码

重启nova服务

[[email protected] ~]# systemctl restart openstack-nova-compute.service

启动neutron服务,并加入开机启动

[[email protected] ~]# systemctl enable neutron-linuxbridge-agent.service
[[email protected] ~]# systemctl start neutron-linuxbridge-agent.service

验证

在controller节点执行

[[email protected] ~]#source /root/admin-openrc.sh
[[email protected] ~]# neutron ext-list
+---------------------------+-----------------------------------------------+
| alias                     | name                                          |
+---------------------------+-----------------------------------------------+
| default-subnetpools       | Default Subnetpools                           |
| network-ip-availability   | Network IP Availability                       |
| network_availability_zone | Network Availability Zone                     |
| auto-allocated-topology   | Auto Allocated Topology Services              |
| ext-gw-mode               | Neutron L3 Configurable external gateway mode |
| binding                   | Port Binding                                  |
| agent                     | agent                                         |
| subnet_allocation         | Subnet Allocation                             |
| l3_agent_scheduler        | L3 Agent Scheduler                            |
| tag                       | Tag support                                   |
| external-net              | Neutron external network                      |
| net-mtu                   | Network MTU                                   |
| availability_zone         | Availability Zone                             |
| quotas                    | Quota management support                      |
| l3-ha                     | HA Router extension                           |
| provider                  | Provider Network                              |
| multi-provider            | Multi Provider Network                        |
| address-scope             | Address scope                                 |
| extraroute                | Neutron Extra Route                           |
| timestamp_core            | Time Stamp Fields addition for core resources |
| router                    | Neutron L3 Router                             |
| extra_dhcp_opt            | Neutron Extra DHCP opts                       |
| dns-integration           | DNS Integration                               |
| security-group            | security-group                                |
| dhcp_agent_scheduler      | DHCP Agent Scheduler                          |
| router_availability_zone  | Router Availability Zone                      |
| rbac-policies             | RBAC Policies                                 |
| standard-attr-description | standard-attr-description                     |
| port-security             | Port Security                                 |
| allowed-address-pairs     | Allowed Address Pairs                         |
| dvr                       | Distributed Virtual Router                    |
+---------------------------+-----------------------------------------------+

[[email protected] ~]# neutron agent-list
+--------------------------------------+--------------------+------------+-------------------+-------+----------------+---------------------------+
| id                                   | agent_type         | host       | availability_zone | alive | admin_state_up | binary                    |
+--------------------------------------+--------------------+------------+-------------------+-------+----------------+---------------------------+
| 45320f3f-bea4-44aa-a79a-f7cf582146d1 | L3 agent           | controller | nova              | :-)   | True           | neutron-l3-agent          |
| 780c205c-867f-4997-90b4-a2f2b2c739bf | Metadata agent     | controller |                   | :-)   | True           | neutron-metadata-agent    |
| 7ba54a28-2a26-41b3-a02b-b69c9e5f83d7 | DHCP agent         | controller | nova              | :-)   | True           | neutron-dhcp-agent        |
| 9b37f144-f697-4ee9-b761-6ae6ae1d2782 | Linux bridge agent | compute2   |                   | xxx   | True           | neutron-linuxbridge-agent |
| c4f84424-9e37-417f-b587-d474d7b8c6fd | Linux bridge agent | compute1   |                   | :-)   | True           | neutron-linuxbridge-agent |
| ca7f5ce5-ef15-4777-8c53-70bb32939d9e | Linux bridge agent | controller |                   | :-)   | True           | neutron-linuxbridge-agent |
+--------------------------------------+--------------------+------------+-------------------+-------+----------------+---------------------------+

我这里compute2没有启动所以 alive状态是xxx

出现以上信息,表示安装成功。

dashboard安装请参考:

时间: 2024-12-19 07:43:23

openstack M版安装 network(neutron)服务篇的相关文章

openstack M版安装 compute(nova)服务篇

配置安装nova compute服务 安装controller节点 一.创建nova数据库 [[email protected] ~]# mysql -u root -p >>CREATE DATABASE nova_api; >>CREATE DATABASE nova; >>GRANT ALL PRIVILEGES ON nova_api.* TO 'nova'@'localhost'   IDENTIFIED BY 'NOVA_DBPASS'; >>G

openstack M版安装 storage(cinder)服务篇

安装配置cinder服务 controller节点 一.创建数据库 [[email protected] ~]#  mysql -u root -p >>CREATE DATABASE cinder; >>GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'localhost'   IDENTIFIED BY 'CINDER_DBPASS'; >>GRANT ALL PRIVILEGES ON cinder.* TO 'cinde

OpenStack pike版 安装openstack服务(4) 续安装openstack服务(3)    

Compute service overview 计算服务概述 OpenStack用于对主机的计算和管理云计算系统.OpenStack的计算是一个基础设施即服务(IaaS)系统的一个重要组成部分.主要模块是用python实现的. OpenStack计算与OpenStack身份验证交互用来完成认证:OpenStack镜像服务用于磁盘和服务器镜像:用户和管理接口为OpenStack Dashboard.镜像访问受到项目和用户的限制,每个项目的配额是有限的(例如,实例的数量).OpenStack计算可

OpenStack pike版 安装openstack服务(5) 续安装openstack服务(4)

网络服务简介 OpenStack网络(neutron)允许您创建和将其他OpenStack服务管理的接口设备附加到网络中.插件可以适应不同的网络设备和软件,为OpenStack的架构和部署提供灵活性. 它包括以下组件: neutron-server:接受并将API请求路由到相应的OpenStack网络插件以进行操作. OpenStack Networking plug-ins and agent:即插即用端口,创建网络或者子网,提供IP地址.这些插件和代理根据特定云使用的供应商和技术而有所不同.

OpenStack pike版 安装openstack服务(3) 续基本环境部署(2)

安装openstack服务 所有openstack服务的安装指南链接:https://docs.openstack.org/pike/install/ 最小化部署,需要按照下面指定的顺序安装以下服务: Identity service – keystone installation for Pike Image service – glance installation for Pike Compute service – nova installation for Pike Networkin

openstack O版 安装keystone、memcached 、httpd服务

安装keystone.memcached .httpd服务[[email protected] ~]# yum -y install openstack-keystone httpd mod_wsgi python-openstackclient memcached python-memcached openstack-utils[[email protected] ~]# systemctl enable memcached.service[[email protected] ~]# syst

openstack M版安装 Dashboard (horizon)篇

安装配置Dashboard (horizon) web管理 一.安装Dashboard [[email protected] ~]# yum install openstack-dashboard 二.编辑配置Dashboard [[email protected] ~]#vim   /etc/openstack-dashboard/local_settings OPENSTACK_HOST = "controller" ALLOWED_HOSTS = ['*', ] SESSION_

openstack O版 配置nova计算服务

1.创建数据库,并且授权数据库,库名为:nova_api 用户名:nova 密码:devops[[email protected] ~]# mysql -uroot -pdevopsMariaDB [(none)]> CREATE DATABASE nova_api;MariaDB [(none)]> CREATE DATABASE nova;MariaDB [(none)]> CREATE DATABASE nova_cell0;MariaDB [(none)]> GRANT A

openstack O版 配置glance镜像服务

1.创建glance数据库[[email protected] ~]# mysql -uroot -pdevopsMariaDB [(none)]> CREATE DATABASE glance;MariaDB [(none)]> GRANT ALL PRIVILEGES ON glance. TO 'glance'@'localhost' IDENTIFIED BY 'devops';MariaDB [(none)]> GRANT ALL PRIVILEGES ON glance. T