Installation of Three node OpenStack Queens Cluster – Part Eight

By Posted on 295 views

Configuring Neutron on Compute Node

Neutron usually needs a plugin software such as OpenVswitch. On the Compute node, we have so far installed Libvirt and Nova Compute. We are going to add Openvswitch and L2 Agent.

“Be certain that in the religion of Love there are no believers and unbelievers. LOVE embraces all.” ― Rumi

Step One: Install Neutron services on your Compute Node

[[email protected] ~]# yum --enablerepo=centos-openstack-queens,epel -y install openstack-neutron openstack-neutron-ml2 openstack-neutron-openvswitch
 Loaded plugins: fastestmirror
 Determining fastest mirrors
 epel/x86_64/metalink                                                                      |  54 kB  00:00:01     
 base: mirror.ufs.ac.za
 centos-qemu-ev: mirror.pcsp.co.za
 epel: ftp.lysator.liu.se
 extras: mirror.pcsp.co.za
 updates: mirror.pcsp.co.za
 base                                                                                      | 3.6 kB  00:00:00     
 centos-ceph-luminous                                                                      | 2.9 kB  00:00:00     
 centos-openstack-queens                                                                   | 2.9 kB  00:00:00     
 centos-qemu-ev                                                                            | 2.9 kB  00:00:00     
 epel                                                                                      | 4.7 kB  00:00:00     
 extras                                                                                    | 3.4 kB  00:00:00     
 updates                                                                                   | 3.4 kB  00:00:00     
 (1/2): epel/x86_64/updateinfo                                                             | 1.0 MB  00:00:18     
 (2/2): epel/x86_64/primary_db                                                             | 6.6 MB  00:01:54     
 Resolving Dependencies

Step Two: Back up original neutron config file and configure a new one

[[email protected] ~]# mv /etc/neutron/neutron.conf /etc/neutron/neutron.conf.bak
[[email protected] ~]# vim /etc/neutron/neutron.conf

#New File
 [DEFAULT]
 core_plugin = ml2
 service_plugins = router
 auth_strategy = keystone
 state_path = /var/lib/neutron
 allow_overlapping_ips = True
# RabbitMQ connection info
 transport_url = rabbit://openstack:[email protected]
# Keystone auth info
 [keystone_authtoken]
 www_authenticate_uri = http://192.168.122.130:5000
 auth_url = http://192.168.122.130:5000
 memcached_servers = 192.168.122.130:11211
 auth_type = password
 project_domain_name = default
 user_domain_name = default
 project_name = service
 username = neutron
 password = neutron123
 [oslo_concurrency]
 lock_path = $state_path/lock

Step Three: Change permissions and groups information on the neutron file

[[email protected] ~]# chmod 640 /etc/neutron/neutron.conf 
[[email protected] ~]# chgrp neutron /etc/neutron/neutron.conf

Step Four: Edit the following files as shown below one by one.

[[email protected] ~]# vim /etc/neutron/plugins/ml2/ml2_conf.ini
# on line 129 under ml2: add
 [ml2]
 type_drivers = flat,vlan,gre,vxlan
 tenant_network_types =
 mechanism_drivers = openvswitch,l2population
 extension_drivers = port_security
[[email protected] ~]# vim /etc/neutron/plugins/ml2/openvswitch_agent.ini
# on line 308 or under [securitygroup]: add the following
 [securitygroup]
 firewall_driver = openvswitch
 enable_security_group = true
 enable_ipset = true
[[email protected] ~]# vim /etc/nova/nova.conf
# add the following lines below the [DEFAULT] section
 use_neutron = True
 linuxnet_interface_driver = nova.network.linux_net.LinuxOVSInterfaceDriver
 firewall_driver = nova.virt.firewall.NoopFirewallDriver
 vif_plugging_is_fatal = True
 vif_plugging_timeout = 300
# add the following section to the end: Neutron auth information
# make sure that metadata_proxy_shared_secret is the same with the one in metadata_agent.ini we had set before.
 [neutron]
 auth_url = http://192.168.122.130:5000
 auth_type = password
 project_domain_name = default
 user_domain_name = default
 region_name = RegionOne
 project_name = service
 username = neutron
 password = neutron123
 service_metadata_proxy = True
 metadata_proxy_shared_secret = pepe123

Once that is done, we can proceed to start neutron services. Phew..

[[email protected] ~]# ln -s /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugin.ini 
[[email protected] ~]# systemctl start openvswitch 
[[email protected] ~]# systemctl enable openvswitch
 Created symlink from /etc/systemd/system/multi-user.target.wants/openvswitch.service to /usr/lib/systemd/system/openvswitch.service. 
[[email protected] ~]# ovs-vsctl add-br br-int 
[[email protected] ~]# systemctl restart openstack-nova-compute 
[[email protected] ~]# systemctl start neutron-openvswitch-agent 
[[email protected] ~]# systemctl enable neutron-openvswitch-agent
 Created symlink from /etc/systemd/system/multi-user.target.wants/neutron-openvswitch-agent.service to /usr/lib/systemd/system/neutron-openvswitch-agent.service.

Thanks guys for following through to this point, it has been a long journey and a few details and we shall be having our small openstack cluster purring. In case you missed previous sequels, please follow the following links below:

Installation of Openstack three Node Cluster on CentOS 7 Part One

Installation of Three node OpenStack Queens Cluster – Part Two

Installation of Three node OpenStack Queens Cluster – Part Three

Installation of Three node OpenStack Queens Cluster – Part Four

Installation of Three node OpenStack Queens Cluster – Part Five

Installation of Three node OpenStack Queens Cluster – Part Six

Installation of Three node OpenStack Queens Cluster – Part Seven

Next guide link, part nine, is below

Installation of Three node OpenStack Queens Cluster – Part Nine

coffee

Related posts:

Gravatar Image
Ben Bennett - https://www.thetodaypost.net
A systems engineer with excellent skills in systems administration, cloud computing, systems deployment, virtualization, containers, and a certified ethical hacker.