openstack/puppet-openstack-integration
Code Issues Proposed changes
49025319ce
puppet-openstack-integration/manifests/neutron.pp

272 lines
9.6 KiB
ObjectPascal
Raw Normal View History

scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
# Configure the Neutron service
#
# [*driver*]
# (optional) Neutron Driver to test
# Can be: openvswitch or linuxbridge.
Remove enable_v1 and enable_v2 parameters for lbaas 1) enable_v1 and enable_v2 parameters are deprecated and will be removed in Ocata, so we can remove them. 2) Fix firewall_driver option value. 3) Fix the annotation of driver parameter. Change-Id: Icb74bac3e56aa92288b4137e0f0f77da75c23f33
2016-12-16 13:57:41 +08:00
# Defaults to 'openvswitch'.
Added changes for lbaas testing. Scenario001 has been updated to test lbaas v2. Scenario002 and Scenario003 will do lbaas v1. Change-Id: I824b3fd18bcf965875c663ce03d2a99a771f13ee Depends-On: I69b7635984fe74038db2025b89f638def5029849
2016-05-24 22:30:55 -04:00
#
Add BGPVPN API service to scenario004 This submission will enable the BGPVPN API on scenario004 and one of its tempest test. Change-Id: I9d7853bedd822a9d182f1c5dcd7db85e7cd59c07 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-11 16:33:48 +02:00
# [*bgpvpn_enabled*]
# (optional) Flag to enable BGPVPN
# API extensions.
# Defaults to false.
#
Add L2GW service to scenario004 This submission will enable L2GW on scenario004 and one of its tempest test. Change-Id: I87fb7ca3671cf93d6b47ac393e047e1810daf375 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-26 14:05:33 +02:00
# [*l2gw_enabled*]
# (optional) Flag to enable L2GW.
# Defaults to false.
#
Test bgp-dragent in scenario004 Adds testing for the bgp-dragent that is shipped by neutron-dynamic-routing in scenario004. Depends-On: https://review.openstack.org/#/c/586462/ Change-Id: I8998a1a0f0a8e944cd5f836b3cbe568aa99fcedb
2018-07-17 14:21:01 +02:00
# [*bgp_dragent_enabled*]
# (optional) Flag to enable BGP dragent
# Defaults to false.
#
vitrage: run missing db-sync and add persistor - Enable messagingv2 on cinder, aodh, heat, neutron and vitrage. - Allow to configure notification_topics - Include persistor, db-sync classes - Enable Vitrage testing on centos7 Depends-On: I2fadae52aa59e3ee0fe74ddd3973a3e0863adca1 Change-Id: I4bdeb0e000d4903a1543434718b3317e552398e2
2017-12-28 11:25:51 -08:00
# [*notification_topics*]
# (optional) AMQP topic used for OpenStack notifications
# Defaults to $::os_service_default.
#
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
class openstack_integration::neutron (
vitrage: run missing db-sync and add persistor - Enable messagingv2 on cinder, aodh, heat, neutron and vitrage. - Allow to configure notification_topics - Include persistor, db-sync classes - Enable Vitrage testing on centos7 Depends-On: I2fadae52aa59e3ee0fe74ddd3973a3e0863adca1 Change-Id: I4bdeb0e000d4903a1543434718b3317e552398e2
2017-12-28 11:25:51 -08:00
$driver = 'openvswitch',
$bgpvpn_enabled = false,
$l2gw_enabled = false,
Test bgp-dragent in scenario004 Adds testing for the bgp-dragent that is shipped by neutron-dynamic-routing in scenario004. Depends-On: https://review.openstack.org/#/c/586462/ Change-Id: I8998a1a0f0a8e944cd5f836b3cbe568aa99fcedb
2018-07-17 14:21:01 +02:00
$bgp_dragent_enabled = false,
vitrage: run missing db-sync and add persistor - Enable messagingv2 on cinder, aodh, heat, neutron and vitrage. - Allow to configure notification_topics - Include persistor, db-sync classes - Enable Vitrage testing on centos7 Depends-On: I2fadae52aa59e3ee0fe74ddd3973a3e0863adca1 Change-Id: I4bdeb0e000d4903a1543434718b3317e552398e2
2017-12-28 11:25:51 -08:00
$notification_topics = $::os_service_default,
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
) {
scenario002: deploy RabbitMQ with SSL * Manage Puppet OpenStack CI CA and create a common certificate, auto-signed. * Configure RabbitMQ to activate SSL on scenario002 * Configure OpenStack services that run on scenario002 to connect to RabbitMQ using SSL protocol. Change-Id: Ic435078472ba4e0e0eaf04a64e5bcb7aabba7b3d
2016-02-26 19:13:28 -05:00
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
include openstack_integration::config
include openstack_integration::params
deploy neutron with SSL & IPv6 Starting from Newton, VMs can be deployed with a metadata server that runs with SSL enabled. This patch aims to activate the tests for that, so we'll have a better coverage of Neutron in SSL & IPv6 environment. Note: I could not enable SSl for neutron metadata agent, I found this bug: https://bugs.launchpad.net/neutron/+bug/1514424 and I'm not sure it actually works. Change-Id: Ia5b19d22549fc0c891a46cf47a742b35eaec6276
2016-05-10 15:21:48 -04:00
if $::openstack_integration::config::ssl {
openstack_integration::ssl_key { 'neutron':
notify => Service['neutron-server'],
require => Package['neutron'],
}
Exec['update-ca-certificates'] ~> Service['neutron-server']
}
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
Refactor usage of RabbitMQ resources This patch refactors all creation of RabbitMQ resources such as users and ACLs to a define called openstack_integration::mq_user. This will make sure RabbitMQ is automatically installed as well, as there are times where dependencies to RabbitMQ are added to things like Keystone which break Beaker tests in other repos (but we don't know they're broken until the change merges). In addition, instead of setting up dependencies on the tagged services, we use the anchors provided which should hopefully test against them as well. Change-Id: Ib122ddd105529de5e12389cc9db2e4e09ec4ad54
2017-09-15 08:33:55 -04:00
openstack_integration::mq_user { 'neutron':
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
password => 'an_even_bigger_secret',
Refactor usage of RabbitMQ resources This patch refactors all creation of RabbitMQ resources such as users and ACLs to a define called openstack_integration::mq_user. This will make sure RabbitMQ is automatically installed as well, as there are times where dependencies to RabbitMQ are added to things like Keystone which break Beaker tests in other repos (but we don't know they're broken until the change merges). In addition, instead of setting up dependencies on the tagged services, we use the anchors provided which should hopefully test against them as well. Change-Id: Ib122ddd105529de5e12389cc9db2e4e09ec4ad54
2017-09-15 08:33:55 -04:00
before => Anchor['neutron::service::begin'],
Add support for dual oslo.messaging backend configuration Introduce configuration parameters to specify the oslo.messaging rpc or notification backend as one of rabbit, amqp. The default config is to use rabbit broker for both rpc and notification. Selection of amqp for rpc will use brokerless qpid-dispatch router. This patch: * Adds notification_transport_url parameter across services where needed * Adds rpc and notification parameters to config * Adds qdr for rpc amqp1 configuration * Modifies scenario001 for dual messaging backends * supports ssl config Depends-On: Id6ebc4ce8b0ffdb0be92a758dbf89c84c3274725 Change-Id: Ia2a79a2e1482f6f72426bc81c8e6d2a04cb211e3
2017-01-06 08:57:09 -05:00
}
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
case $driver {
'openvswitch': {
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
include vswitch::ovs
Add CentOS8 support and jobs - scenario001 and 004 will be running without ceph until ceph repos get available for CentOS8 - scenario003 will run not run with linuxbridge until next CentOS minor version as it has issues:- - https://bugzilla.redhat.com/show_bug.cgi?id=1720637 - Add Puppetfile_centos7 to have different puppet modules as compared to other distros. Currently only puppet-mysql needs to be kept pinned for centos7 as newere mariadb version is required to remove the pin, CentOS8 and ubuntu have required mariadb version so pin is removed. So automatic updates of puppet modules will not be applied for CentOS7 as those jobs are going to be removed in coming months. - check for rdo_dlrn url existence only for RedHat distros. Change-Id: I98fc088cd87c1412544f9590ce7a925b413297e2
2019-12-10 11:22:06 +05:30
# In CentOS8 puppet-vswitch requires network-scripts package until it's ported to NM.
if ($::operatingsystem == 'CentOS') and (versioncmp($::operatingsystemmajrelease, '8') == 0) {
package { 'network-scripts-openvswitch':
ensure => 'latest'
}
}
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
# Functional test for Open-vSwitch:
# create dummy loopback interface to exercise adding a port to a bridge
vs_bridge { 'br-ex':
ensure => present,
notify => Exec['create_loop1_port'],
}
exec { 'create_loop1_port':
path => '/usr/bin:/bin:/usr/sbin:/sbin',
provider => shell,
command => 'ip link add name loop1 type dummy && ip addr add 127.2.0.1/24 dev loop1',
refreshonly => true,
Fix lint issues to upgrade to puppet-lint 2.3 2017-07-20 14:42:54.791002 | manifests/murano.pp - WARNING: arrow should be on the right operand's line on line 80 2017-07-20 14:42:54.791214 | manifests/neutron.pp - WARNING: arrow should be on the right operand's line on line 58 2017-07-20 14:42:54.791272 | manifests/vitrage.pp - WARNING: arrow should be on the right operand's line on line 41 2017-07-20 14:42:54.791321 | manifests/vitrage.pp - WARNING: arrow should be on the right operand's line on line 49 Change-Id: If27084c1093be0c83a7b776c12a81dcbfc1a7946
2017-07-20 20:39:08 +02:00
}
-> vs_port { 'loop1':
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
ensure => present,
bridge => 'br-ex',
notify => Exec['create_br-ex_vif'],
}
# creates br-ex virtual interface to reach floating-ip network
exec { 'create_br-ex_vif':
path => '/usr/bin:/bin:/usr/sbin:/sbin',
provider => shell,
command => 'ip addr add 172.24.5.1/24 dev br-ex && ip link set br-ex up',
refreshonly => true,
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::agents::ml2::ovs':
Update manifests to reduce Puppet warnings Update some parameters deprecations: * neutron tunneling is now activated by default. * zaqar has new parameters for keystone authtoken. Change-Id: Ie18c1f5f600d014f61b6474ea7029cf86461e554
2016-08-09 15:34:52 -04:00
local_ip => '127.0.0.1',
tunnel_types => ['vxlan'],
bridge_mappings => ['external:br-ex'],
manage_vswitch => false,
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
}
Remove enable_v1 and enable_v2 parameters for lbaas 1) enable_v1 and enable_v2 parameters are deprecated and will be removed in Ocata, so we can remove them. 2) Fix firewall_driver option value. 3) Fix the annotation of driver parameter. Change-Id: Icb74bac3e56aa92288b4137e0f0f77da75c23f33
2016-12-16 13:57:41 +08:00
$firewall_driver = 'iptables_hybrid'
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
}
'linuxbridge': {
exec { 'create_dummy_iface':
path => '/usr/bin:/bin:/usr/sbin:/sbin',
provider => shell,
unless => 'ip l show loop0',
command => 'ip link add name loop0 type dummy && ip addr add 172.24.5.1/24 dev loop0 && ip link set loop0 up',
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::agents::ml2::linuxbridge':
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
local_ip => $::ipaddress,
tunnel_types => ['vxlan'],
physical_interface_mappings => ['external:loop0'],
}
Remove enable_v1 and enable_v2 parameters for lbaas 1) enable_v1 and enable_v2 parameters are deprecated and will be removed in Ocata, so we can remove them. 2) Fix firewall_driver option value. 3) Fix the annotation of driver parameter. Change-Id: Icb74bac3e56aa92288b4137e0f0f77da75c23f33
2016-12-16 13:57:41 +08:00
$firewall_driver = 'iptables'
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
}
default: {
fail("Unsupported neutron driver (${driver})")
}
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::db::mysql':
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
password => 'neutron',
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::keystone::auth':
deploy neutron with SSL & IPv6 Starting from Newton, VMs can be deployed with a metadata server that runs with SSL enabled. This patch aims to activate the tests for that, so we'll have a better coverage of Neutron in SSL & IPv6 environment. Note: I could not enable SSl for neutron metadata agent, I found this bug: https://bugs.launchpad.net/neutron/+bug/1514424 and I'm not sure it actually works. Change-Id: Ia5b19d22549fc0c891a46cf47a742b35eaec6276
2016-05-10 15:21:48 -04:00
public_url => "${::openstack_integration::config::base_url}:9696",
internal_url => "${::openstack_integration::config::base_url}:9696",
admin_url => "${::openstack_integration::config::base_url}:9696",
scenario002/centos7: switch RabbitMQ and OpenStack to IPv6 This is a first iteration of testing IPv6 deployment. This patch will deploy scenario002 on centos7 by using IPv6 network. To make it work on Ubuntu, it will require more work, that will be done in future iterations. During my testing, I found some bugs and did not investigate because I wanted a first scenario working on v6. Same for scenario001 and scenario003, they'll be tested later. Change-Id: Ib28b379645b5a3d351438e0408a9de62b9f48302
2016-03-02 19:09:05 -05:00
password => 'a_big_secret',
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
}
Add L2GW service to scenario004 This submission will enable L2GW on scenario004 and one of its tempest test. Change-Id: I87fb7ca3671cf93d6b47ac393e047e1810daf375 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-26 14:05:33 +02:00
$bgpvpn_plugin = $bgpvpn_enabled ? {
true => 'bgpvpn',
default => undef,
}
if $l2gw_enabled {
if ($::operatingsystem == 'Ubuntu') {
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class {'neutron::services::l2gw': }
Add L2GW service to scenario004 This submission will enable L2GW on scenario004 and one of its tempest test. Change-Id: I87fb7ca3671cf93d6b47ac393e047e1810daf375 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-26 14:05:33 +02:00
$l2gw_provider = 'L2GW:l2gw:networking_l2gw.services.l2gateway.service_drivers.L2gwDriver:default'
}
elsif ($::operatingsystem != 'Ubuntu') {
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class {'neutron::services::l2gw':
Add L2GW service to scenario004 This submission will enable L2GW on scenario004 and one of its tempest test. Change-Id: I87fb7ca3671cf93d6b47ac393e047e1810daf375 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-26 14:05:33 +02:00
service_providers => ['L2GW:l2gw:networking_l2gw.services.l2gateway.service_drivers.L2gwDriver:default']
}
$l2gw_provider = undef
}
Fix l2gw_provider unknown variable Puppet (warning): Unknown variable: 'l2gw_provider' Change-Id: I45a0b64e1a0b4baaf321c4bcbe85cbc683277c86
2019-06-17 17:54:03 +02:00
} else {
$l2gw_provider = undef
Add L2GW service to scenario004 This submission will enable L2GW on scenario004 and one of its tempest test. Change-Id: I87fb7ca3671cf93d6b47ac393e047e1810daf375 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-26 14:05:33 +02:00
}
$l2gw_plugin = $l2gw_enabled ? {
true => 'networking_l2gw.services.l2gateway.plugin.L2GatewayPlugin',
default => undef,
Add BGPVPN API service to scenario004 This submission will enable the BGPVPN API on scenario004 and one of its tempest test. Change-Id: I9d7853bedd822a9d182f1c5dcd7db85e7cd59c07 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-11 16:33:48 +02:00
}
Test bgp-dragent in scenario004 Adds testing for the bgp-dragent that is shipped by neutron-dynamic-routing in scenario004. Depends-On: https://review.openstack.org/#/c/586462/ Change-Id: I8998a1a0f0a8e944cd5f836b3cbe568aa99fcedb
2018-07-17 14:21:01 +02:00
$bgp_dr_plugin = $bgp_dragent_enabled ? {
true => 'neutron_dynamic_routing.services.bgp.bgp_plugin.BgpPlugin',
default => undef,
}
Remove Neutron LBaaS Removes from upstream Neutron in Train release and will be removed from puppet-neutron in this [1] commit. [1] https://review.opendev.org/#/c/658801/ Change-Id: Ica68eacc724dad6207b9f085198f921db0279ef6
2019-05-13 14:47:24 +02:00
$plugins_list = delete_undef_values(['router', 'metering', 'firewall_v2', 'qos', 'trunk', $bgpvpn_plugin, $l2gw_plugin, $bgp_dr_plugin])
Add L2GW service to scenario004 This submission will enable L2GW on scenario004 and one of its tempest test. Change-Id: I87fb7ca3671cf93d6b47ac393e047e1810daf375 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-26 14:05:33 +02:00
Set mtu for linuxbridge driver Review https://review.openstack.org/#/c/540077/ setting requires global_physnet_mtu to be set lower than the underlying network's mtu. So in some cases, For example vm on ophenstack cloud by default has 1450 as mtu, so global_physnet_mtu for neutron deployed on these vm should be set to <= 1450. Change-Id: Ib305f0ecfd8402dfe16f84eda21928fd2e615280
2018-02-20 10:27:32 +05:30
if $driver == 'linuxbridge' {
$global_physnet_mtu = '1450'
} else {
$global_physnet_mtu = undef
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::logging':
Move debug to <module>::logging class Moves all the <module>::debug parameters to be set in <module>::logging::debug instead. This is so that we can remove the deprecated logging options in the init classes of all the modules. Change-Id: I107be315a6e1a0429c32d02b9a1df8a8957bb7ab
2018-11-27 23:24:00 +01:00
debug => true,
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron':
Add support for dual oslo.messaging backend configuration Introduce configuration parameters to specify the oslo.messaging rpc or notification backend as one of rabbit, amqp. The default config is to use rabbit broker for both rpc and notification. Selection of amqp for rpc will use brokerless qpid-dispatch router. This patch: * Adds notification_transport_url parameter across services where needed * Adds rpc and notification parameters to config * Adds qdr for rpc amqp1 configuration * Modifies scenario001 for dual messaging backends * supports ssl config Depends-On: Id6ebc4ce8b0ffdb0be92a758dbf89c84c3274725 Change-Id: Ia2a79a2e1482f6f72426bc81c8e6d2a04cb211e3
2017-01-06 08:57:09 -05:00
default_transport_url => os_transport_url({
'transport' => $::openstack_integration::config::messaging_default_proto,
'host' => $::openstack_integration::config::host,
'port' => $::openstack_integration::config::messaging_default_port,
'username' => 'neutron',
'password' => 'an_even_bigger_secret',
}),
notification_transport_url => os_transport_url({
'transport' => $::openstack_integration::config::messaging_notify_proto,
Switch to default_transport_url The rabbit_host, rabbit_hosts, rabbit_userid, rabbit_password, rabbit_port and rabbit_virtual_host parameters are being deprecated. This change updates the p-o-i tests to use the default_transport_url for the rabbit connection instead. Change-Id: Icb15ad3b5d75a35afcb685f4ae03c5755031fc3d Depends-On: I43ac3079da9e52179457ca1a34f4faee60d5617b Depends-On: Ie63457370ae37ef5af5878b1a97b8bafa80a8189 Depends-On: Ia0c5b5072431bbc186c8b96b7f034e68e9248af3 Depends-On: I43500ac7be4296ea534266fa14ca37fc700b0092 Depends-On: If4dfe8b82518fc4e590731a805ee3115b11f4f47 Depends-On: I00d4782693c1f67b82673624d4d36822c9762303 Depends-On: If83c0f0e61a08061334536399a42767a305966b7
2016-11-09 09:41:17 -07:00
'host' => $::openstack_integration::config::host,
Add support for dual oslo.messaging backend configuration Introduce configuration parameters to specify the oslo.messaging rpc or notification backend as one of rabbit, amqp. The default config is to use rabbit broker for both rpc and notification. Selection of amqp for rpc will use brokerless qpid-dispatch router. This patch: * Adds notification_transport_url parameter across services where needed * Adds rpc and notification parameters to config * Adds qdr for rpc amqp1 configuration * Modifies scenario001 for dual messaging backends * supports ssl config Depends-On: Id6ebc4ce8b0ffdb0be92a758dbf89c84c3274725 Change-Id: Ia2a79a2e1482f6f72426bc81c8e6d2a04cb211e3
2017-01-06 08:57:09 -05:00
'port' => $::openstack_integration::config::messaging_notify_port,
Switch to default_transport_url The rabbit_host, rabbit_hosts, rabbit_userid, rabbit_password, rabbit_port and rabbit_virtual_host parameters are being deprecated. This change updates the p-o-i tests to use the default_transport_url for the rabbit connection instead. Change-Id: Icb15ad3b5d75a35afcb685f4ae03c5755031fc3d Depends-On: I43ac3079da9e52179457ca1a34f4faee60d5617b Depends-On: Ie63457370ae37ef5af5878b1a97b8bafa80a8189 Depends-On: Ia0c5b5072431bbc186c8b96b7f034e68e9248af3 Depends-On: I43500ac7be4296ea534266fa14ca37fc700b0092 Depends-On: If4dfe8b82518fc4e590731a805ee3115b11f4f47 Depends-On: I00d4782693c1f67b82673624d4d36822c9762303 Depends-On: If83c0f0e61a08061334536399a42767a305966b7
2016-11-09 09:41:17 -07:00
'username' => 'neutron',
'password' => 'an_even_bigger_secret',
}),
Add support for dual oslo.messaging backend configuration Introduce configuration parameters to specify the oslo.messaging rpc or notification backend as one of rabbit, amqp. The default config is to use rabbit broker for both rpc and notification. Selection of amqp for rpc will use brokerless qpid-dispatch router. This patch: * Adds notification_transport_url parameter across services where needed * Adds rpc and notification parameters to config * Adds qdr for rpc amqp1 configuration * Modifies scenario001 for dual messaging backends * supports ssl config Depends-On: Id6ebc4ce8b0ffdb0be92a758dbf89c84c3274725 Change-Id: Ia2a79a2e1482f6f72426bc81c8e6d2a04cb211e3
2017-01-06 08:57:09 -05:00
rabbit_use_ssl => $::openstack_integration::config::ssl,
amqp_sasl_mechanisms => 'PLAIN',
allow_overlapping_ips => true,
core_plugin => 'ml2',
service_plugins => $plugins_list,
bind_host => $::openstack_integration::config::host,
use_ssl => $::openstack_integration::config::ssl,
cert_file => $::openstack_integration::params::cert_path,
key_file => "/etc/neutron/ssl/private/${::fqdn}.pem",
vitrage: run missing db-sync and add persistor - Enable messagingv2 on cinder, aodh, heat, neutron and vitrage. - Allow to configure notification_topics - Include persistor, db-sync classes - Enable Vitrage testing on centos7 Depends-On: I2fadae52aa59e3ee0fe74ddd3973a3e0863adca1 Change-Id: I4bdeb0e000d4903a1543434718b3317e552398e2
2017-12-28 11:25:51 -08:00
notification_topics => $notification_topics,
notification_driver => 'messagingv2',
Set mtu for linuxbridge driver Review https://review.openstack.org/#/c/540077/ setting requires global_physnet_mtu to be set lower than the underlying network's mtu. So in some cases, For example vm on ophenstack cloud by default has 1450 as mtu, so global_physnet_mtu for neutron deployed on these vm should be set to <= 1450. Change-Id: Ib305f0ecfd8402dfe16f84eda21928fd2e615280
2018-02-20 10:27:32 +05:30
global_physnet_mtu => $global_physnet_mtu,
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::client': }
class { 'neutron::keystone::authtoken':
Switch to www_authenticate_uri for neutron puppet-neutron switched to www_authenticate_uri in [1], update puppet-openstack-integration for the same. [1] https://review.openstack.org/#/c/558983/ Change-Id: I3e929c06a7bab9204c6b4fc85b54cce8ff26da51
2018-04-24 20:36:35 +08:00
password => 'a_big_secret',
user_domain_name => 'Default',
project_domain_name => 'Default',
auth_url => $::openstack_integration::config::keystone_admin_uri,
www_authenticate_uri => $::openstack_integration::config::keystone_auth_uri,
memcached_servers => $::openstack_integration::config::memcached_servers,
Finish to configure authtoken with modern parameters Change-Id: I1c6f3fad8ea1896b409f57b0268883bb99a2decd
2016-08-30 14:56:51 -04:00
}
Remove Neutron LBaaS Removes from upstream Neutron in Train release and will be removed from puppet-neutron in this [1] commit. [1] https://review.opendev.org/#/c/658801/ Change-Id: Ica68eacc724dad6207b9f085198f921db0279ef6
2019-05-13 14:47:24 +02:00
$providers_list = delete_undef_values(['FIREWALL_V2:fwaas_db:neutron_fwaas.services.firewall.service_drivers.agents.agents.FirewallAgentDriver:default',
Add L2GW service to scenario004 This submission will enable L2GW on scenario004 and one of its tempest test. Change-Id: I87fb7ca3671cf93d6b47ac393e047e1810daf375 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-26 14:05:33 +02:00
$l2gw_provider])
Validate neutron-server service To avoid failure, in Debian and Ubuntu, we must set $validate to true. While this issue happened all the time for me on my laptop, I also saw a few Ubuntu run where the problem happened. Depends-On: I8ab8a2c7bb1d93d6fb9d16eabd3a1112b1e1237b Change-Id: I093b0de94e3f762edb9be71134078d86b0642a07
2018-05-16 16:55:22 +02:00
if $::osfamily == 'Debian' {
Service<| title == 'neutron-server'|> -> Openstacklib::Service_validation<| title == 'neutron-server' |> -> Neutron_network<||>
$validate_neutron_server_service = true
} else {
$validate_neutron_server_service = false
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::server':
Lower neutron rpc max response timeout This configuration option is used to determine the max exponential retry which can lead to beaker failures because the ovs agent starts at the same time as neutron server. We need to force a retry sooner than waiting 600 seconds for it to try again. See https://review.openstack.org/#/c/623401/ Depends-On: https://review.openstack.org/#/c/648735/ Change-Id: I7f66c811aa507e76e1b4e087a4a7df5999f4ee50
2019-03-29 11:08:46 -06:00
database_connection => 'mysql+pymysql://neutron:neutron@127.0.0.1/neutron?charset=utf8',
sync_db => true,
api_workers => 2,
rpc_workers => 2,
rpc_response_max_timeout => 300,
validate => $validate_neutron_server_service,
service_providers => $providers_list,
ensure_dr_package => $bgp_dragent_enabled,
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
}
Validate neutron-server service To avoid failure, in Debian and Ubuntu, we must set $validate to true. While this issue happened all the time for me on my laptop, I also saw a few Ubuntu run where the problem happened. Depends-On: I8ab8a2c7bb1d93d6fb9d16eabd3a1112b1e1237b Change-Id: I093b0de94e3f762edb9be71134078d86b0642a07
2018-05-16 16:55:22 +02:00
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::plugins::ml2':
make tenant_network_types support vlan Change-Id: Ib051d713ce4d4110ff315315e23779e53bef0493 Closes-Bug: #1677459
2017-03-22 15:41:02 +08:00
type_drivers => ['vxlan', 'vlan', 'flat'],
tenant_network_types => ['vxlan', 'vlan', 'flat'],
Enable qos and trunk service_plugins Review [1] added some tests which requires "qos" and "trunk" plugins to be enabled, so add it to the neutron plugins_list. Also add "qos" to extension_drivers. [1] https://review.openstack.org/#/c/479995/ Change-Id: I64fe3e1853b6e7f0b5755dad191da9a5b04e307e
2017-10-25 14:34:13 +05:30
extension_drivers => 'port_security,qos',
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
mechanism_drivers => $driver,
Set correct firewall_driver for Neutron ML2 firewall_driver should be explicitly set for both ML2 agents (ovs/lb) for security groups to work Change-Id: I7ab0672d6a819d11b2bd1df71724a8ff1e114fab Depends-on: I9819867251e3c35f252ddbbad1178bff1c585314
2016-04-01 17:55:01 +03:00
firewall_driver => $firewall_driver,
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
}
Enable nova metadata via httpd wsgi Support for nova metadata api via wsgi was added in dependency. This changes so that we test with running via wsgi. With nova metadata api running via wsgi it is ssl terminated, also neutron metadata agent does not support an ipv6 address for the metadata_host, so we need to configure the neutron metadata agent to connect via https to the nova metadata api. Related-Bug: 1781405 Depends-On: Ic65736cb0e95c400a728cd699ecf06c6aecff832 Depends-On: I3d572dda2e90b7e24f2f8912d704462b9332d807 Change-Id: I03f4dcb7f40055d802b114ee305323c95975e4df
2018-08-20 15:03:31 +02:00
if $::openstack_integration::config::ssl {
# with nova metadata api running via wsgi it is ssl terminated, also
# neutron metadata agent does not support an ipv6 address for the
# metadata_host, so we need to use the hostname
$metadata_host = 'localhost'
$metadata_protocol = 'https'
} else {
$metadata_host = $::openstack_integration::config::host
$metadata_protocol = 'http'
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::agents::metadata':
Enable nova metadata via httpd wsgi Support for nova metadata api via wsgi was added in dependency. This changes so that we test with running via wsgi. With nova metadata api running via wsgi it is ssl terminated, also neutron metadata agent does not support an ipv6 address for the metadata_host, so we need to configure the neutron metadata agent to connect via https to the nova metadata api. Related-Bug: 1781405 Depends-On: Ic65736cb0e95c400a728cd699ecf06c6aecff832 Depends-On: I3d572dda2e90b7e24f2f8912d704462b9332d807 Change-Id: I03f4dcb7f40055d802b114ee305323c95975e4df
2018-08-20 15:03:31 +02:00
debug => true,
shared_secret => 'a_big_secret',
metadata_workers => 2,
metadata_host => $metadata_host,
metadata_protocol => $metadata_protocol,
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::agents::l3':
Revert "Debian: no fwaas l3 extensions" After upstream code has been fixed to work with neutron-api and neutron-rpc-server, and after this patch has been merged into the Debian package, we can finally re-activate FWaaS in Debian. This reverts commit 85a3fa6a0a07692d2e84fea661a2467582787d7f. Change-Id: Idd94928567677cc46779a8261b436a96a35050e3
2018-06-21 21:34:44 +02:00
interface_driver => $driver,
debug => true,
Switch to supported firewall v2 driver Firewall v1 driver was deprecated long ago and is now removed in [1], let's switch to firewall v2 driver. [1] https://review.openstack.org/#/c/616410/ Change-Id: I713029a420af82ad31fff09494296715f72ef124
2019-02-05 12:22:01 +05:30
extensions => 'fwaas_v2',
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::agents::dhcp':
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
interface_driver => $driver,
debug => true,
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::agents::metering':
scenario003: deploy Neutron with ML2 linuxbridge Deploy Neutron ML2 LinuxBridge on scenario003 to increase testing coverage. Depends-On: I6bf7ede4fa78eefdc6594b8dd70435a11d0c3365 Change-Id: Ib41c302c8dd3e6d7388b06e455cf19e1f13a221c
2016-03-22 19:22:13 -04:00
interface_driver => $driver,
debug => true,
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::server::notifications':
scenario002: switch Keystone/Glance/Ironic/Nova to SSL * Deploy Self-Signed Certificates for both IPv6 & IPv4 deployments. * Disable IPv6 for RabbitMQ now, for SSL reasons, will be enabled again later in a next iteration. * Deploy Ironic API under WSGI instead of eventlet. * Switch Glance API, Ironic API and Keystone to SSL. * Configure Tempest with SSL endpoints when needed. * Reduce the Ironic tests because of [1]. [1] https://bugs.launchpad.net/ironic/+bug/1554237 Note #1: puppet-swift, and puppet-cinder will require some work to support SSL, so it's not implemented in this patch. Note #2: we don't enable SSL for Neutron because of https://bugs.launchpad.net/neutron/+bug/1514424 Change-Id: Ib2b5289b6f5e82f43cf60dee3152b2c2ddd5a014
2016-03-01 18:50:40 -05:00
auth_url => $::openstack_integration::config::keystone_admin_uri,
use new parameters to configure neutron/notifications A recent change in puppet-neutron updated parameters to configure neutron/nova notifcations. This patch uses the new parameter and avoid warning in Puppet catalog. Change-Id: Ib83c7778c111e7d038dde5a8c2f03a19864af734
2016-01-06 17:39:07 -05:00
password => 'a_big_secret',
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
}
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class { 'neutron::services::fwaas':
Parameters updates for FWaaS / Ocata 1) neutron: add FIREWALL in service_provider Add FIREWALL extension in service_provider so we can deploy Neutron FWaaS extension with Neutron Server. 2) Add neutron l3 agent extension for fwaas. 3) Add agent_version for fwaas. Depends-On: I780277b7bbf9e14099d0d574c63e31c97a6aa38d Change-Id: I9f8d09b90f83ba6b328f4fb837eb7dfa51a96778
2016-11-22 13:54:28 -05:00
enabled => true,
Switch to supported firewall v2 driver Firewall v1 driver was deprecated long ago and is now removed in [1], let's switch to firewall v2 driver. [1] https://review.openstack.org/#/c/616410/ Change-Id: I713029a420af82ad31fff09494296715f72ef124
2019-02-05 12:22:01 +05:30
agent_version => 'v2',
Fix neutron fwaas driver configuration https://review.openstack.org/#/c/634862/ switched to fwaas v2, but l3 agent is not able to load fwaas_v2 extension due to wrong Driver, this patch fixes it. Change-Id: I4bc71fb66e2760088fba2fefa34794e2e865bb74
2019-02-06 11:34:57 +05:30
driver => 'neutron_fwaas.services.firewall.service_drivers.agents.drivers.linux.iptables_fwaas_v2.IptablesFwaasDriver',
Parameters updates for FWaaS / Ocata 1) neutron: add FIREWALL in service_provider Add FIREWALL extension in service_provider so we can deploy Neutron FWaaS extension with Neutron Server. 2) Add neutron l3 agent extension for fwaas. 3) Add agent_version for fwaas. Depends-On: I780277b7bbf9e14099d0d574c63e31c97a6aa38d Change-Id: I9f8d09b90f83ba6b328f4fb837eb7dfa51a96778
2016-11-22 13:54:28 -05:00
neutron: enable fwaas enable firewall as a service extension. Change-Id: I77f32416b093c181aa1eff802589bafccc9ab270
2016-02-23 22:40:49 -05:00
}
Add BGPVPN API service to scenario004 This submission will enable the BGPVPN API on scenario004 and one of its tempest test. Change-Id: I9d7853bedd822a9d182f1c5dcd7db85e7cd59c07 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-11 16:33:48 +02:00
if $bgpvpn_enabled {
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class {'neutron::services::bgpvpn':
Add BGPVPN API service to scenario004 This submission will enable the BGPVPN API on scenario004 and one of its tempest test. Change-Id: I9d7853bedd822a9d182f1c5dcd7db85e7cd59c07 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2017-04-11 16:33:48 +02:00
service_providers => 'BGPVPN:Dummy:networking_bgpvpn.neutron.services.service_drivers.driver_api.BGPVPNDriver:default'
}
}
Test bgp-dragent in scenario004 Adds testing for the bgp-dragent that is shipped by neutron-dynamic-routing in scenario004. Depends-On: https://review.openstack.org/#/c/586462/ Change-Id: I8998a1a0f0a8e944cd5f836b3cbe568aa99fcedb
2018-07-17 14:21:01 +02:00
if $bgp_dragent_enabled {
Convert all class usage to relative names In Puppet 3 there was a need to use absolute names to prevent issues. Since Puppet 4 everything is absolute by default which makes this not needed. We need to change this everywhere so that we can revert the pin in [1] that now prevents us from using the latest version of the puppet-lint check puppet-lint-absolute_classname_check that properly checks that we dont use absolute names. [1] https://review.opendev.org/#/c/697742/ Change-Id: I78b74fbeb08be7234189e4d266412fb7fb7a73c0
2019-12-08 12:59:28 +01:00
class {'neutron::agents::bgp_dragent':
Set bgp_router_id to a fixed ip Review [1] added support for bgp-dragent. By default btp_router_id is set to fact ipaddress. This fact can change between different puppet runs as new network interfaces can be added, for exmple bg-ex, breaking idempotency. This patch sets bgp_router_id to 127.0.0.1 as it can be any ipv4 address. [1] https://review.openstack.org/583222 Change-Id: I67e8085b4f4d507c4d3040a7ee4b5e1b928afdb4
2018-08-20 09:56:28 +02:00
bgp_router_id => '127.0.0.1'
}
Test bgp-dragent in scenario004 Adds testing for the bgp-dragent that is shipped by neutron-dynamic-routing in scenario004. Depends-On: https://review.openstack.org/#/c/586462/ Change-Id: I8998a1a0f0a8e944cd5f836b3cbe568aa99fcedb
2018-07-17 14:21:01 +02:00
}
Refactor fixtures & manifests to reduce code lines Create manifests for each project and include them in the right fixtures manifests, so we can reduce the code and avoid dupplicated puppet manifests. Change-Id: I66a98691b3014998f4c2529d2e3389ef1cbcc5f4
2015-12-23 22:54:56 +01:00
}
Copy Permalink