Resolved MRN-1234:

Documented allow_overlapping_ips configuration change Change-Id: I9228c130c50bbda0a96bb2b5cfb07f113d6b485d
2013-10-24 17:27:28 +04:00
parent f6c38cda6e
commit 6e68acbc07
1 changed files with 61 additions and 30 deletions
--- a/src/administrators-guide/src/docbkx/content/general.xml
+++ b/src/administrators-guide/src/docbkx/content/general.xml
@@ -451,7 +451,7 @@ RETVAL=0
 service rabbitmq-server-murano start
 service rabbitmq-server-murano status
 service rabbitmq-server-murano stop
-                </screen>                
+                </screen>
            </listitem>
            <listitem>
                <para>
@@ -467,39 +467,69 @@ update-rc.d rabbitmq-server-murano defaults
        </warning>
    </section>
    <section>
-        <title>Configuring Quantum SecurityGroups quotas</title>
+        <title>Configure Quantum</title>
-        <para>
+        <section>
-            Default quotas driver used by quantum is - <filename>quantum.quota.ConfDriver</filename>, all limits set in <filename>/etc/quantum/
+            <title>Allow subnet ip-range overlapping</title>
-            quantum.conf</filename> - non flexible. To extend functionality and flexibility, default quota driver should be
+            <para>
-            changed to - <filename>quantum.db.quota_db.DbQuotaDrive</filename>.
+                When deploying environments, Murano will create dedicated network for each of them, and every such network will have a subnet created.
-        </para>
+                All these subnets will have identical ip-ranges. Theoretically this is perfectly fine, as these subnets belong to different isolated Networks
-        <itemizedlist>
+                (L2 segments) and are connected to different routers.
-            <listitem>
+            </para>
-                <para>
+            <para>
-                    Change <filename>/etc/quantum/quantum.conf</filename> with next values:
+                However, by default Quantum does not allow overlapping IPs for different subnets - even in different Networks.
-                </para>
+                To override this restriction, change <filename>/etc/quantum/quantum.conf</filename>: uncomment <filename>allow_overlapping_ips</filename> parameter
-                <screen>
+                and change its value to <filename>True</filename>:
            </para>
            <screen>
 [DEFAULT]
 ...
 # Enable or disable overlapping IPs for subnets
 # Attention: the following parameter MUST be set to False if Neutron is
 # being used in conjunction with nova security groups
 allow_overlapping_ips = True
            </screen>
            <para>
                Then, restart all quantum services:
            </para>
            <screen>
 cd /etc/init.d/
 for q in quantum-*; do restart $q; done
            </screen>
        </section>
        <section>
            <title>Specify SecurityGroups quotas</title>
            <para>
                Default quotas driver used by quantum is - <filename>quantum.quota.ConfDriver</filename>, all limits set in <filename>/etc/quantum/
                quantum.conf</filename> - non flexible. To extend functionality and flexibility, default quota driver should be
                changed to - <filename>quantum.db.quota_db.DbQuotaDrive</filename>.
            </para>
            <itemizedlist>
                <listitem>
                    <para>
                        Change <filename>/etc/quantum/quantum.conf</filename> with next values:
                    </para>
                    <screen>
 [QUOTAS]
 ...
 #quota_driver = quantum.quota.ConfDriver
 quota_driver = quantum.db.quota_db.DbQuotaDriver
 ...
-                </screen>
+                    </screen>
-            </listitem>
+                </listitem>
-            <listitem>
+                <listitem>
-                <para>
+                    <para>
-                    Restart all quantum services:
+                        Restart all quantum services:
-                </para>
+                    </para>
-                <screen>
+                    <screen>
 cd /etc/init.d/
 for q in quantum-*; do restart $q; done
-                </screen>
+                    </screen>
-            </listitem>
+                </listitem>
-            <listitem>
+                <listitem>
-                <para>
+                    <para>
-                    Update required quota with quantum CLI:
+                        Update required quota with quantum CLI:
-                </para>
+                    </para>
-                <screen>
+                    <screen>
 quantum quota-update --security_group 100 --tenant-id &lt;tenant_id&gt;
 +---------------------+-------+
 | Field               | Value |
@@ -512,9 +542,10 @@ quantum quota-update --security_group 100 --tenant-id &lt;tenant_id&gt;
 | security_group_rule |   100 |
 | subnet              |    10 |
 +---------------------+-------+
-                </screen>
+                    </screen>
-            </listitem>
+                </listitem>
-        </itemizedlist>
+            </itemizedlist>
        </section>
    </section>
    <section>
        <title>Reconfigure rate-limits for Nova</title>