From 3c57affb23faedbaf60e5b2cd6700742ac74a262 Mon Sep 17 00:00:00 2001 From: mattray Date: Thu, 4 Oct 2012 21:58:33 -0500 Subject: [PATCH] single nic network --- Cheffile | 2 +- TODO.org | 30 ++++++++++++++++++++++++++++++ environments/production.rb | 15 ++++++++++++--- infrastructure.yml | 2 +- roles/glance-images.rb | 12 ------------ 5 files changed, 44 insertions(+), 17 deletions(-) delete mode 100644 roles/glance-images.rb diff --git a/Cheffile b/Cheffile index b81ab20..5e95854 100644 --- a/Cheffile +++ b/Cheffile @@ -6,7 +6,7 @@ site 'http://community.opscode.com/api/v1' cookbook 'ntp', '1.2.0' cookbook 'openssh', '1.0.0' cookbook 'apt', '1.4.8' -cookbook 'yum', '0.8.2' +cookbook 'yum', '1.0.0' cookbook 'build-essential', '1.1.2' cookbook 'erlang', '1.0.0' cookbook 'openssl', '1.0.0' diff --git a/TODO.org b/TODO.org index 8d2deac..fd370f7 100644 --- a/TODO.org +++ b/TODO.org @@ -81,6 +81,10 @@ ** base role remove validator.pem? chef-client? +** default security group + enable SSH and ICMP ping + euca-authorize -P tcp -s 192.168.1.1 -p 22 myservers + euca-authorize -P icmp -s 192.168.1.1 -t -1:-1 myservers ** platform-family start using the node.platform_family for attribute gating ** OpenStack-Syslog/Monitoring @@ -176,3 +180,29 @@ The following cookbooks need to be updated and tested with the latest: RabbitMQ refactored to work with the distro release. + +nova-manage floating create --ip_range=10.0.111.128/25 + +# modprobe kvm +# modprobe kvm-amd + +virsh -c qemu:///system list +apt-get install build-essential -y; /opt/chef/embedded/bin/gem update --no-ri --no-rdoc; chef-client + +dbus service is OK + + + +#disable virbr0 +virsh net-autostart default --disable 1>/dev/null +virsh net-destroy default 1>/dev/null +#setup_iptables +sed -i '/net.ipv4.ip_forward/ s/^#//' /etc/sysctl.conf +iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE +echo iptables-persistent iptables-persistent/autosave_v4 select true | debconf-set-selections +echo iptables-persistent iptables-persistent/autosave_v6 select true | debconf-set-selections +apt-get -y install iptables-persistent 1>/dev/null + +configure br100 + +dmz_routes??? diff --git a/environments/production.rb b/environments/production.rb index 80585b2..95207b6 100644 --- a/environments/production.rb +++ b/environments/production.rb @@ -2,18 +2,27 @@ name "production" description "Defines the network and database settings you're going to use with OpenStack. The networks will be used in the libraries provided by the osops-utils cookbook. This example is for FlatDHCP with 2 physical networks." override_attributes( + "glance" => { + "image_upload" => true, + "images" => ["precise","cirros"], + "image" => { + "cirros" => "http://hypnotoad/cirros-0.3.0-x86_64-uec.tar.gz", + "precise" => "http://hypnotoad/precise-server-cloudimg-amd64.tar.gz" + } + }, "mysql" => { "allow_remote_root" => true, "root_network_acl" => "%" }, "osops_networks" => { "public" => "10.0.111.0/24", - "management" => "10.0.200.0/24", - "nova" => "10.0.200.0/24" + "management" => "10.0.111.0/24", + "nova" => "10.0.111.0/24" }, "nova" => { "network" => { - "fixed_range" => "192.168.100.0/24" + "fixed_range" => "192.168.100.0/24", + "public_interface" => "eth0" }, "networks" => [ { diff --git a/infrastructure.yml b/infrastructure.yml index 4a02920..e19eb6c 100644 --- a/infrastructure.yml +++ b/infrastructure.yml @@ -6,7 +6,7 @@ cookbooks: - apt: #used by erlang - 1.4.8 - yum: #used by erlang - - 0.8.2 + - 1.0.0 - build-essential: # used by mysql - 1.1.2 - erlang: #used by rabbitmq-server role diff --git a/roles/glance-images.rb b/roles/glance-images.rb deleted file mode 100644 index 7d86876..0000000 --- a/roles/glance-images.rb +++ /dev/null @@ -1,12 +0,0 @@ -name "glance-images" -description "Define the images you're going to use with OpenStack." - -override_attributes( - "glance" => { - "image_upload" => true, - "images" => ["precise"], - "image" => { - "precise" => "http://hypnotoad/precise-server-cloudimg-amd64.tar.gz" - } - } - )