yatinkarel
8989684719
In neutron-multinode jobs where we use ovs/ovn from source, we want to use multi-node-bridge role only for bridge configuration but not for ovs installation. In the job we install ovn and openvswitch before calling this role to configure the bridges. Adding a role var 'install_ovs' to allow skipping ovs installation and service start, it's default to true so no change in current behavior of the role. It's an alternative approach to [1]. [1] https://review.opendev.org/c/zuul/zuul-jobs/+/762650 Related-Bug: #1904117 Change-Id: I64942679520681bdf7f953c0a3c7fc0d13e77856
83 lines
2.3 KiB
ReStructuredText
83 lines
2.3 KiB
ReStructuredText
Configures a VXLAN virtual network overlay through an openvswitch network
|
|
bridge between a 'switch' node and 'peer' nodes.
|
|
|
|
This allows members of the bridge to communicate with each other through the
|
|
virtual network.
|
|
|
|
By default, this role will:
|
|
|
|
- Install and start ``openvswitch``
|
|
- Set up a ``br-infra`` bridge on all nodes
|
|
- Set up the connectivity between the switch and the peer with a virtual port
|
|
- Set up an ip address on the bridge interface:
|
|
|
|
::
|
|
|
|
172.24.4.1/23 # switch node
|
|
172.41.4.2/23 # first peer
|
|
172.41.4.3/23 # second peer
|
|
...
|
|
|
|
**Role requirements**
|
|
|
|
This role requires and expects two groups to be set up in the Ansible host
|
|
inventory in order to work:
|
|
|
|
- ``switch`` (the node acting as the switch)
|
|
- ``peers`` (nodes connected to the virtual switch ports)
|
|
|
|
**Role variables**
|
|
|
|
.. zuul:rolevar:: bridge_vni_offset
|
|
:default: 1000000
|
|
|
|
VXLAN Network Identifier offset (openvswitch key).
|
|
|
|
.. zuul:rolevar:: bridge_mtu
|
|
:default: Smallest mtu less 50 bytes for vxlan overhead
|
|
|
|
Bridge interface MTU. By default we determine this value by checking
|
|
all interfaces on host, taking the smallest MTU and subtracting by
|
|
50 for vxlan overhead. Can be overridden explicitly if this does not
|
|
work.
|
|
|
|
.. zuul:rolevar:: bridge_name
|
|
:default: br-infra
|
|
|
|
Name of the bridge interface.
|
|
|
|
.. zuul:rolevar:: bridge_configure_address
|
|
:default: true
|
|
|
|
Whether or not to configure an IP address on the bridge interface.
|
|
|
|
.. zuul:rolevar:: bridge_authorize_internal_traffic
|
|
:default: false
|
|
|
|
When ``bridge_configure_address`` is ``true``, whether or not to set up
|
|
firewall rules to allow traffic freely within the bridge
|
|
subnet (``bridge_address_prefix``.0/``bridge_address_subnet``).
|
|
|
|
.. zuul:rolevar:: bridge_address_prefix
|
|
:default: 172.24.4
|
|
|
|
The IP address range prefix.
|
|
|
|
.. zuul:rolevar:: bridge_address_offset
|
|
:default: 1
|
|
|
|
The IP address offset, used with ``bridge_address_prefix`` to provide the
|
|
full IP address. The initial offset defines the IP address of the switch
|
|
node in the virtual network.
|
|
|
|
.. zuul:rolevar:: bridge_address_subnet
|
|
:default: 23
|
|
|
|
The IP address range CIDR/subnet.
|
|
|
|
.. zuul:rolevar:: install_ovs
|
|
:default: true
|
|
|
|
Whether or not to install openvswitch. It can be set to false
|
|
when ovs installation is taken care outside of the role.
|