openstack/openstack-ansible
Code Issues Proposed changes
5ae985bbf4
openstack-ansible/playbooks/common-playbooks/neutron.yml
Dmitriy Rabotyagov 1a57af20e8 Fix neutron-server default serial 
By default we should prevent all neutron server going down at the same time
Instead we should apply approach where we upgrade single neutron server
and the rest of hosts next time
to decrease API downtime

Additionally changed default for neutron_other_serial, to safe 1
 as in case of big amount of network nodes, several l3 agents may
went down at the same time, and make ha router unavaliable.

Change-Id: I618ea5083da29e7188c093c96f40ca3db6f9e5cc
2020-08-18 14:03:24 +00:00

122 lines
4.0 KiB
YAML
Raw Blame History

---
# Copyright 2014, Rackspace US, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
- name: Gather neutron facts
hosts: "{{ neutron_hosts }}"
gather_facts: "{{ osa_gather_facts | default(True) }}"
tags:
- always
- name: Install neutron services
hosts: "{{ neutron_hosts }}"
serial: "{{ neutron_serial }}"
gather_facts: false
user: root
environment: "{{ deployment_environment_variables | default({}) }}"
vars_files:
- "../defaults/repo_packages/openstack_services.yml"
- "../defaults/{{ install_method }}_install.yml"
tags:
- neutron
pre_tasks:
# In order to ensure that any container, software or
# config file changes which causes a container/service
# restart do not cause an unexpected outage, we drain
# the load balancer back end for this container.
- include_tasks: ../common-tasks/haproxy-endpoint-manage.yml
vars:
haproxy_backend: neutron_server-back
haproxy_state: disabled
when:
- "'neutron_server' in group_names"
- "groups['neutron_server'] | length > 1"
- name: Determine tunnel bridge IP address
include_tasks: ../common-tasks/dynamic-address-fact.yml
vars:
network_address: "tunnel_address"
tags:
- always
- name: Configure container (neutron-agent)
include_tasks: "../common-tasks/os-{{ container_tech | default('lxc') }}-container-setup.yml"
vars:
list_of_bind_mounts:
- bind_dir_path: "{{ (ansible_pkg_mgr == 'apt') | ternary('/lib/modules', '/usr/lib/modules') }}"
mount_path: "{{ (ansible_pkg_mgr == 'apt') | ternary('/lib/modules', '/usr/lib/modules') }}"
extra_container_config:
- "lxc.cgroup.devices.allow=a *:* rmw"
extra_container_config_no_restart:
- "lxc.start.order=29"
when:
- "not is_metal"
- "'neutron_agent' in group_names"
- name: Configure container (other services)
include_tasks: "../common-tasks/os-{{ container_tech | default('lxc') }}-container-setup.yml"
when:
- "not is_metal"
- "'neutron_agent' not in group_names"
- include_tasks: ../common-tasks/unbound-clients.yml
when:
- hostvars['localhost']['resolvconf_enabled'] | bool
- name: Create the neutron provider networks facts
provider_networks:
provider_networks: "{{ provider_networks }}"
bind_prefix: "{{ provider_network_bind_prefix | default('') }}"
is_metal: "{{ is_metal }}"
group_names: "{{ group_names }}"
register: pndata
when: neutron_provider_networks is not defined
tags:
- always
- name: Set provider network fact(s)
set_fact:
_provider_networks: "{{ neutron_provider_networks | default(pndata) }}"
tags:
- always
roles:
- role: "os_neutron"
neutron_overlay_network: "{{ _overlay_network }}"
neutron_provider_networks: "{{ _provider_networks }}"
neutron_local_ip: "{{ tunnel_address }}"
- role: "bird"
when:
- "'neutron_calico_dhcp_agent' in group_names"
tags:
- bird
- role: "system_crontab_coordination"
tags:
- crontab
post_tasks:
# Now that container changes are done, we can set
# the load balancer back end for this container
# to available again.
- include_tasks: ../common-tasks/haproxy-endpoint-manage.yml
vars:
haproxy_backend: neutron_server-back
haproxy_state: enabled
when:
- "'neutron_server' in group_names"
- "groups['neutron_server'] | length > 1"
View Git Blame Copy Permalink