OpenStack Neutron Puppet Module
Go to file
Takashi Kajinami 0d92d0a9d6 Accept system scope credential for Nova API request
Currently Neutron uses the user credential in [nova] section to use
External Event API in Nova but this API is available only for system
admin when SRBAC is enforced.

This change allows usage of system-scoped credential instead of
project-scoped one.

Change-Id: I3f90e59f1daa06e41b1f29434feb0b8d85ac6753
2021-12-17 01:12:59 +09:00
doc Update openstackdocstheme to the latest version 2021-09-29 16:06:50 +08:00
examples Change to relative include 2020-07-14 00:06:52 +02:00
lib/puppet Merge "ovn: Do not expect the separate plugin package" 2021-10-17 22:57:59 +00:00
manifests Accept system scope credential for Nova API request 2021-12-17 01:12:59 +09:00
releasenotes Accept system scope credential for Nova API request 2021-12-17 01:12:59 +09:00
spec Accept system scope credential for Nova API request 2021-12-17 01:12:59 +09:00
templates Deprecate support of Nexus 1000v driver 2021-01-02 11:52:26 +09:00
.gitignore Dissuade .gitignore references to personal tools 2018-10-08 11:39:24 +08:00
.gitreview OpenDev Migration Patch 2019-04-19 19:32:33 +00:00
.zuul.yaml Add tripleo-undercloud job 2021-07-23 15:29:22 +09:00
bindep.txt Add Puppet package to bindep, for module build 2017-10-27 13:14:24 -07:00
CHANGELOG.md Update outdated links in document and spelling error 2017-09-19 20:37:51 -07:00
CONTRIBUTING.rst [ussuri][goal] Add CONTRIBUTING.rst 2020-05-10 22:43:27 +02:00
Gemfile Use openstack_spec_helper from zuul checkout 2020-08-30 23:00:30 +02:00
LICENSE Licensed under Apache\! 2013-04-12 10:28:17 -07:00
metadata.json Bump puppetlabs-inifile 2021-11-02 13:06:27 +09:00
Rakefile Use puppet-openstack_spec_helper for Rakefile & spec_helper_acceptance 2016-01-18 09:11:27 -05:00
README.md Add Puppet Litmus 2020-08-31 21:43:20 +02:00
setup.cfg Add information technology in the setup.cfg 2021-10-01 06:54:49 +08:00
setup.py Delete useless code for setup.py 2021-09-30 13:38:33 +08:00
tox.ini Stop configuring install_command in tox. 2021-09-29 18:12:37 +09:00

Team and repository tags

Team and repository tags

neutron

Table of Contents

  1. Overview - What is the neutron module?
  2. Module Description - What does the module do?
  3. Setup - Tha basics of getting started with neutron.
  4. Implementation - An under-the-hood peek at what the module is doing.
  5. Limitations - OS compatibility, etc.
  6. Development - Guide for contributing to the module
  7. Contributors - Those with commits
  8. Release Notes - Release notes for the project
  9. Repository - The project source code repository

Overview

The neutron module is a part of OpenStack, an effort by the OpenStack infrastructure team to provide continuous integration testing and code review for OpenStack and OpenStack community projects as part of the core software. The module itself is used to flexibly configure and manage the network service for OpenStack.

Module Description

The neutron module is an attempt to make Puppet capable of managing the entirety of neutron. This includes manifests to provision such things as keystone endpoints, RPC configurations specific to neutron, database connections, and network driver plugins. Types are shipped as part of the neutron module to assist in manipulation of the OpenStack configuration files.

This module is tested in combination with other modules needed to build and leverage an entire OpenStack installation.

Setup

What the neutron module affects:

  • Neutron, the network service for OpenStack.

Installing neutron

puppet module install openstack/neutron

Beginning with neutron

To utilize the neutron module's functionality you will need to declare multiple resources. The following example displays the setting up of an Open vSwitch neutron installation. This is not an exhaustive list of all the components needed. We recommend that you consult and understand the core openstack documentation to assist you in understanding the available deployment options.

# enable the neutron service
class { '::neutron':
  enabled               => true,
  bind_host             => '127.0.0.1',
  default_transport_url => 'rabbit://neutron:passw0rd@localhost:5672/neutron',
  debug                 => false,
}

class { 'neutron::server':
  database_connection => 'mysql+pymysql://neutron:neutron_sql_secret@127.0.0.1/neutron?charset=utf8',
}

class { 'neutron::keystone::authtoken':
  password => 'keystone_neutron_secret',
}

# ml2 plugin with vxlan as ml2 driver and ovs as mechanism driver
class { 'neutron::plugins::ml2':
  type_drivers         => ['vxlan'],
  tenant_network_types => ['vxlan'],
  vxlan_group          => '239.1.1.1',
  mechanism_drivers    => ['openvswitch'],
  vni_ranges           => ['1:300']
}

Other neutron network drivers include:

  • dhcp,
  • metadata,
  • and l3.

Nova will also need to be configured to connect to the neutron service. Setting up the nova::network::neutron class sets the network_api_class parameter in nova to use neutron instead of nova-network.

class { 'nova::network::neutron':
  neutron_password  => 'neutron_admin_secret',
}

The examples directory also provides a quick tutorial on how to use this module.

Implementation

neutron

neutron is a combination of Puppet manifest and ruby code to deliver configuration and extra functionality through types and providers.

Types

neutron_config

The neutron_config provider is a children of the ini_setting provider. It allows one to write an entry in the /etc/neutron/neutron.conf file.

neutron_config { 'DEFAULT/core_plugin' :
  value => ml2,
}

This will write core_plugin=ml2 in the [DEFAULT] section.

name

Section/setting name to manage from neutron.conf

value

The value of the setting to be defined.

secret

Whether to hide the value from Puppet logs. Defaults to false.

ensure_absent_val

If value is equal to ensure_absent_val then the resource will behave as if ensure => absent was specified. Defaults to <SERVICE DEFAULT>

Limitations

This module supports the following neutron plugins:

  • Open vSwitch with ML2
  • linuxbridge with ML2
  • Arista with ML2
  • cisco-neutron with and without ML2
  • NVP
  • PLUMgrid

The following platforms are supported:

  • Ubuntu 12.04 (Precise)
  • Debian (Wheezy)
  • RHEL 6
  • Fedora 18

Development

The puppet-openstack modules follow the OpenStack development model. Developer documentation for the entire puppet-openstack project is at:

Contributors

The github contributor graph.

Release Notes

Repository