45e005cbd1
Remove neutron workaround for Ubuntu due to patch for package and fix minor RST issue with code-block type. Change-Id: Ifdfe22a4e9ed72ceb14a5259a3fd73f50a39a582 Implements: blueprint installguide-liberty
270 lines
7.3 KiB
ReStructuredText
270 lines
7.3 KiB
ReStructuredText
Install and configure compute node
|
|
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
|
|
The compute node handles connectivity and :term:`security groups <security
|
|
group>` for instances.
|
|
|
|
Prerequisites
|
|
-------------
|
|
|
|
Before you install and configure OpenStack Networking, you must
|
|
kernel networking parameters to disable reverse-path filtering:
|
|
|
|
#. Edit the ``/etc/sysctl.conf`` file to contain the following parameters:
|
|
|
|
.. code-block:: ini
|
|
|
|
net.ipv4.conf.all.rp_filter=0
|
|
net.ipv4.conf.default.rp_filter=0
|
|
|
|
#. Implement the changes:
|
|
|
|
.. code-block:: console
|
|
|
|
# sysctl -p
|
|
|
|
.. only:: ubuntu or rdo or obs
|
|
|
|
Install the components
|
|
----------------------
|
|
|
|
.. only:: ubuntu
|
|
|
|
.. code-block:: console
|
|
|
|
# apt-get install neutron-plugin-linuxbridge-agent
|
|
|
|
.. only:: rdo
|
|
|
|
.. code-block:: console
|
|
|
|
# yum install openstack-neutron-linuxbridge
|
|
|
|
.. only:: obs
|
|
|
|
.. code-block:: console
|
|
|
|
# zypper install --no-recommends openstack-neutron-linuxbridge-agent ipset
|
|
|
|
.. only:: debian
|
|
|
|
Install and configure the Networking components
|
|
-----------------------------------------------
|
|
|
|
#. .. code-block:: console
|
|
|
|
# apt-get install neutron-plugin-linuxbridge-agent
|
|
|
|
#. Respond to prompts for ``database management``, ``Identity service
|
|
credentials``, ``service endpoint``, and ``message queue credentials``.
|
|
|
|
#. Select the ML2 plug-in:
|
|
|
|
.. image:: figures/debconf-screenshots/neutron_1_plugin_selection.png
|
|
:alt: Neutron plug-in selection dialog
|
|
|
|
.. note::
|
|
|
|
Selecting the ML2 plug-in also populates the ``service_plugins`` and
|
|
``allow_overlapping_ips`` options in the
|
|
``/etc/neutron/neutron.conf`` file with the appropriate values.
|
|
|
|
.. only:: ubuntu or rdo or obs
|
|
|
|
Configure the common component
|
|
------------------------------
|
|
|
|
The Networking common component configuration includes the
|
|
authentication mechanism, message queue, and plug-in.
|
|
|
|
.. include:: shared/note_configuration_vary_by_distribution.rst
|
|
|
|
#. Edit the ``/etc/neutron/neutron.conf`` file and complete the following
|
|
actions:
|
|
|
|
* In the ``[database]`` section, comment out any ``connection`` options
|
|
because compute nodes do not directly access the database.
|
|
|
|
* In the ``[DEFAULT]`` and ``[oslo_messaging_rabbit]`` sections, configure
|
|
RabbitMQ message queue access:
|
|
|
|
.. code-block:: ini
|
|
|
|
[DEFAULT]
|
|
...
|
|
rpc_backend = rabbit
|
|
|
|
[oslo_messaging_rabbit]
|
|
...
|
|
rabbit_host = controller
|
|
rabbit_userid = openstack
|
|
rabbit_password = RABBIT_PASS
|
|
|
|
Replace ``RABBIT_PASS`` with the password you chose for the ``openstack``
|
|
account in RabbitMQ.
|
|
|
|
* In the ``[DEFAULT]`` and ``[keystone_authtoken]`` sections, configure
|
|
Identity service access:
|
|
|
|
.. code-block:: ini
|
|
|
|
[DEFAULT]
|
|
...
|
|
auth_strategy = keystone
|
|
|
|
[keystone_authtoken]
|
|
...
|
|
auth_uri = http://controller:5000
|
|
auth_url = http://controller:35357
|
|
auth_plugin = password
|
|
project_domain_id = default
|
|
user_domain_id = default
|
|
project_name = service
|
|
username = neutron
|
|
password = NEUTRON_PASS
|
|
|
|
Replace ``NEUTRON_PASS`` with the password you chose for the ``neutron``
|
|
user in the Identity service.
|
|
|
|
.. note::
|
|
|
|
Comment out or remove any other options in the
|
|
``[keystone_authtoken]`` section.
|
|
|
|
* (Optional) To assist with troubleshooting, enable verbose logging in the
|
|
``[DEFAULT]`` section:
|
|
|
|
.. code-block:: ini
|
|
|
|
[DEFAULT]
|
|
...
|
|
verbose = True
|
|
|
|
Configure networking options
|
|
----------------------------
|
|
|
|
Choose the same networking option that you chose for the controller node to
|
|
configure services specific to it.
|
|
|
|
.. note::
|
|
|
|
Option 2 augments option 1 with the layer-3 (routing) service and
|
|
enables self-service (private) networks. If you want to use public
|
|
(provider) and private (self-service) networks, choose option 2.
|
|
|
|
.. toctree::
|
|
:maxdepth: 1
|
|
|
|
neutron-compute-install-option1.rst
|
|
neutron-compute-install-option2.rst
|
|
|
|
.. _neutron-compute-compute:
|
|
|
|
Configure Compute to use Networking
|
|
-----------------------------------
|
|
|
|
#. Edit the ``/etc/nova/nova.conf`` file and complete the following actions:
|
|
|
|
* In the ``[neutron]`` section, configure access parameters:
|
|
|
|
.. code-block:: ini
|
|
|
|
[neutron]
|
|
...
|
|
url = http://controller:9696
|
|
auth_url = http://controller:35357
|
|
auth_plugin = password
|
|
project_domain_id = default
|
|
user_domain_id = default
|
|
region_name = RegionOne
|
|
project_name = service
|
|
username = neutron
|
|
password = NEUTRON_PASS
|
|
|
|
Replace ``NEUTRON_PASS`` with the password you chose for the ``neutron``
|
|
user in the Identity service.
|
|
|
|
Finalize installation
|
|
---------------------
|
|
|
|
.. only:: rdo
|
|
|
|
#. The Networking service initialization scripts expect a symbolic link
|
|
``/etc/neutron/plugin.ini`` pointing to the ML2 plug-in configuration
|
|
file, ``/etc/neutron/plugins/ml2/ml2_conf.ini``. If this symbolic
|
|
link does not exist, create it using the following command:
|
|
|
|
.. code-block:: console
|
|
|
|
# ln -s /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugin.ini
|
|
|
|
#. Due to a packaging issue, the Linux bridge agent initialization script
|
|
explicitly looks for the Linux bridge plug-in configuration file rather
|
|
than the agent configuration file. Run the following commands to resolve
|
|
this issue:
|
|
|
|
.. code-block:: console
|
|
|
|
# cp /usr/lib/systemd/system/neutron-linuxbridge-agent.service \
|
|
/usr/lib/systemd/system/neutron-linuxbridge-agent.service.orig
|
|
# sed -i 's,openvswitch/linuxbridge_neutron_plugin.ini,ml2/linuxbridge_agent.ini,g' \
|
|
/usr/lib/systemd/system/neutron-linuxbridge-agent.service
|
|
|
|
.. note::
|
|
|
|
Future upgrades of the ``neutron-linuxbridge-agent`` package may
|
|
overwrite this modification.
|
|
|
|
#. Restart the Compute service:
|
|
|
|
.. code-block:: console
|
|
|
|
# systemctl restart openstack-nova-compute.service
|
|
|
|
#. Start the Linux bridge agent and configure it to start when the
|
|
system boots:
|
|
|
|
.. code-block:: console
|
|
|
|
# systemctl enable neutron-linuxbridge-agent.service
|
|
# systemctl start neutron-linuxbridge-agent.service
|
|
|
|
.. only:: obs
|
|
|
|
#. The Networking service initialization scripts expect the variable
|
|
``NEUTRON_PLUGIN_CONF`` in the ``/etc/sysconfig/neutron`` file to
|
|
reference the ML2 plug-in configuration file. Edit the
|
|
``/etc/sysconfig/neutron`` file and add the following:
|
|
|
|
.. code-block:: ini
|
|
|
|
NEUTRON_PLUGIN_CONF="/etc/neutron/plugins/ml2/ml2_conf.ini"
|
|
|
|
#. Restart the Compute service:
|
|
|
|
.. code-block:: console
|
|
|
|
# systemctl restart openstack-nova-compute.service
|
|
|
|
#. Start the Linux Bridge agent and configure it to start when the
|
|
system boots:
|
|
|
|
.. code-block:: console
|
|
|
|
# systemctl enable openstack-neutron-linuxbridge-agent.service
|
|
# systemctl start openstack-neutron-linuxbridge-agent.service
|
|
|
|
.. only:: ubuntu or debian
|
|
|
|
#. Restart the Compute service:
|
|
|
|
.. code-block:: console
|
|
|
|
# service nova-compute restart
|
|
|
|
#. Restart the Linux bridge agent:
|
|
|
|
.. code-block:: console
|
|
|
|
# service neutron-plugin-linuxbridge-agent restart
|