diff --git a/doc/admin-guide-cloud/networking/section_networking_config-plugins.xml b/doc/admin-guide-cloud/networking/section_networking_config-plugins.xml
index e6f7871247..d347216241 100644
--- a/doc/admin-guide-cloud/networking/section_networking_config-plugins.xml
+++ b/doc/admin-guide-cloud/networking/section_networking_config-plugins.xml
@@ -80,11 +80,10 @@ ostype = NOS
- Configure NSX plug-in
+ Configure NSX-mh plug-in
- To configure OpenStack Networking to use the NSX plug-in
- While the instructions in this section refer to the VMware NSX platform, this is
- formerly known as Nicira NVP.
+ Configuring OpenStack Networking to use the NSX multi hypervisor plug-in
+ The instructions in this section refer to the VMware NSX-mh platform, formerly known as Nicira NVP.
Install the NSX plug-in:
# apt-get install neutron-plugin-vmware
@@ -93,22 +92,22 @@ ostype = NOS
Edit the /etc/neutron/neutron.conf file and set this
line:
core_plugin = vmware
- Example neutron.conf file for NSX:
+ Example neutron.conf file for NSX-mh integration:
core_plugin = vmware
rabbit_host = 192.168.203.10
allow_overlapping_ips = True
- To configure the NSX controller cluster for OpenStack Networking, locate the
+ To configure the NSX-mh controller cluster for OpenStack Networking, locate the
[default] section in the
/etc/neutron/plugins/vmware/nsx.ini file and add the
following entries:
To establish and configure the connection with the controller cluster
- you must set some parameters, including NSX API endpoints, access
- credentials, and settings for HTTP redirects and retries in case of
- connection failures:
+ you must set some parameters, including NSX-mh API endpoints, access
+ credentials, and optionally specify settings for HTTP timeouts, redirects
+ and retries in case of connection failures:
nsx_user = ADMIN_USER_NAME
nsx_password = NSX_USER_PASSWORD
http_timeout = HTTP_REQUEST_TIMEOUT # (seconds) default 75 seconds
@@ -116,28 +115,29 @@ retries = HTTP_REQUEST_RETRIES # default 2
redirects = HTTP_REQUEST_MAX_REDIRECTS # default 2
nsx_controllers = API_ENDPOINT_LIST # comma-separated list
To ensure correct operations, the nsx_user user
- must have administrator credentials on the NSX platform.
+ must have administrator credentials on the NSX-mh platform.
A controller API endpoint consists of the IP address and port for the
controller; if you omit the port, port 443 is used. If multiple API
endpoints are specified, it is up to the user to ensure that all these
endpoints belong to the same controller cluster. The OpenStack
- Networking VMware NSX plug-in does not perform this check, and results
+ Networking VMware NSX-mh plug-in does not perform this check, and results
might be unpredictable.
- When you specify multiple API endpoints, the plug-in load-balances
+ When you specify multiple API endpoints, the plug-in takes care of load balancing
requests on the various API endpoints.
- The UUID of the NSX transport zone that should be used by default when
+ The UUID of the NSX-mh transport zone that should be used by default when
a tenant creates a network. You can get this value from the
- Transport Zones page for the NSX
- Manager:
+ Transport Zones page for the NSX-mh manager:
+ Alternatively the transport zone identfier can be retrieved by query the NSX-mh
+ API: /ws.v1/transport-zone
default_tz_uuid = TRANSPORT_ZONE_UUID
default_l3_gw_service_uuid = GATEWAY_SERVICE_UUID
- Ubuntu packaging currently does not update the Neutron init script
- to point to the NSX configuration file. Instead, you must manually
+ Ubuntu packaging currently does not update the neutron init script
+ to point to the NSX-mh configuration file. Instead, you must manually
update /etc/default/neutron-server to add this
line:
NEUTRON_PLUGIN_CONFIG = /etc/neutron/plugins/vmware/nsx.ini
@@ -153,6 +153,11 @@ nsx_controllers = API_ENDPOINT_LIST # comma-separated
Restart neutron-server to apply
settings:
# service neutron-server restart
+
+ The neutron NSX-mh plug-in does not implement initial re-synchronization of Neutron resources.
+ Therefore resources that might already exist in the database when Neutron is switched to the
+ NSX-mh plug-in will not be created on the NSX-mh backend upon restart.
+
Example nsx.ini file:
@@ -167,84 +172,9 @@ nsx_controllers=10.127.0.100,10.127.0.200:8888
the host that runs neutron-server:
# neutron-check-nsx-config PATH_TO_NSX.INI
This command tests whether neutron-server
- can log into all of the NSX Controllers and the SQL server, and whether all UUID
+ can log into all of the NSX-mh controllers and the SQL server, and whether all UUID
values are correct.
-
- Load-Balancer-as-a-Service and Firewall-as-a-Service
- The NSX LBaaS and FWaaS services use the standard OpenStack API with the exception
- of requiring routed-insertion extension support.
- The NSX implementation and the community reference implementation of these
- services differ, as follows:
-
-
- The NSX LBaaS and FWaaS plug-ins require the routed-insertion extension,
- which adds the router_id attribute to the VIP (Virtual IP
- address) and firewall resources and binds these services to a logical
- router.
-
-
- The community reference implementation of LBaaS only supports a one-arm
- model, which restricts the VIP to be on the same subnet as the back-end
- servers. The NSX LBaaS plug-in only supports a two-arm model between
- north-south traffic, which means that you can create the VIP on only the
- external (physical) network.
-
-
- The community reference implementation of FWaaS applies firewall rules to
- all logical routers in a tenant, while the NSX FWaaS plug-in applies
- firewall rules only to one logical router according to the
- router_id of the firewall entity.
-
-
-
- To configure Load-Balancer-as-a-Service and Firewall-as-a-Service with
- NSX
-
- Edit the /etc/neutron/neutron.conf file:
- core_plugin = neutron.plugins.vmware.plugin.NsxServicePlugin
-# Note: comment out service_plug-ins. LBaaS & FWaaS is supported by core_plugin NsxServicePlugin
-# service_plugins =
-
-
- Edit the /etc/neutron/plugins/vmware/nsx.ini
- file:
- In addition to the original NSX configuration, the
- default_l3_gw_service_uuid is required for the NSX Advanced
- plug-in and you must add a vcns section:
- [DEFAULT]
-nsx_password = ADMIN
-nsx_user = ADMIN
-nsx_controllers = 10.37.1.137:443
-default_l3_gw_service_uuid = aae63e9b-2e4e-4efe-81a1-92cf32e308bf
-default_tz_uuid = 2702f27a-869a-49d1-8781-09331a0f6b9e
-
-[vcns]
-# VSM management URL
-manager_uri = https://10.24.106.219
-
-# VSM admin user name
-user = ADMIN
-
-# VSM admin password
-password = DEFAULT
-
-# UUID of a logical switch on NSX which has physical network connectivity (currently using bridge transport type)
-external_network = f2c023cf-76e2-4625-869b-d0dabcfcc638
-
-# ID of deployment_container on VSM. Optional, if not specified, a default global deployment container is used
-# deployment_container_id =
-
-# task_status_check_interval configures status check interval for vCNS asynchronous API. Default is 2000 msec.
-# task_status_check_interval =
-
-
- Restart the neutron-server
- service to apply the settings:
- # service neutron-server restart
-
-
-
Configure PLUMgrid plug-in