Skip to content

ComputeNodeNeutronNecPlugin

Jump to bottom Edit New page
Akihiro MOTOKI edited this page Dec 7, 2013 · 2 revisions

ComputeNode

Install Neutron agents

sudo aptitude install neutron-plugin-nec-agent

Configure options

/etc/neutron/neutron.conf

[DEFAULT]
core_plugin = neutron.plugins.nec.nec_plugin.NECPluginV2
rabbit_host = controller
rabbit_userid = guest
rabbit_password = RABBIT_PASS

plugin agent (/etc/neutron/plugins/nec/nec.ini)

  • Set firewall_driver to OVSHybridIptablesFirewallDriver.
[securitygroup]
# Firewall driver for realizing neutron security group function
firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
  • There is no need to configure parameters in [ofc] section.
  • Remove the following entry in /etc/neutron/plugins/nec/nec.ini. neutron.conf already has the same entry.
root_helper = sudo /usr/bin/neutron-rootwrap /etc/neutron/rootwrap.conf

Setup datapath bridge

Install Open vSwitch

aptitude install make fakeroot dkms ¥
  openvswitch-switch openvswitch-datapath-dkms linux-headers-`uname -r`
sudo service openvswitch-switch restart

Note: In theory, we need to install only openvswitch-switch, but in my experience when I ran ovs-vsctl add-br-br-int the command does not return immediately. An operation itself works and it seems better to specify --no-wait option. On the other hand, if I install Open vSwitch kernel module, the command returns immediately even when --no-wait option is specified. I am not sure why. This is the reason we install openvswitch-datapath-dkms here.

integration bridge

Create an integration bridge.

sudo ovs-vsctl --no-wait add-br br-int

Run the integration bridge as an OpenFlow switch. The default port number of OpenFlow controller channel (aka secure channel) is recently changed to 6653/tcp. IANA reserves 6653 for OpenFlow controller channel.

ovs-vsctl --no-wait set-fail-mode br-int secure
ovs-vsctl --no-wait set-controller br-int tcp:10.56.45.210:6653

Connect a physical interface. In the reference setup, eth1 of the network node is used for internal data network.

ovs-vsctl --no-wait add-port br-int eth1

Or you can connect network and compute nodes each other using GRE tunnels.

ovs-vsctl --no-wait add-port br-int gre0 -- set Interface gre0 type=gre options:remote_ip=10.56.45.216

Restart services

service neutron-plugin-nec-agent restart
Add a custom footer
Add a custom sidebar
Clone this wiki locally