It is strange.
The node is only for Quantum-{linuxbridge, dhcp, l3}-agent.
As far as I know, the quantum private network that is not associated with a
quantum router
has only ns-xxx interface.
The quantum private network otherwise have both ns-xxx and qr-xxx interfaces.
Thanks,
David
- O
Just some more notes.
It looks like you're running this system as both a network node and compute
node, I think the pdf you found from Redhat assumed the system was a dedicated
network node, i.e. it only had qr- and qg- interfaces, and not ns- as created by
plug() when an instance is booted.
Mult
Thanks, Brian.
My answers are put in your email with "-->".
David
- Original Message -
> On 07/24/2013 10:42 AM, David Kang wrote:
> >
> > If I remove the following REJECT rules, it works perfectly.
> > -A INPUT -j REJECT --reject-with icmp-host-prohibited
> > -A FORWARD -j REJECT --
On 07/24/2013 10:42 AM, David Kang wrote:
>
> If I remove the following REJECT rules, it works perfectly.
> -A INPUT -j REJECT --reject-with icmp-host-prohibited
> -A FORWARD -j REJECT --reject-with icmp-host-prohibited
>
> With them, it looks like that the packets are dropped at the bridge be
If I remove the following REJECT rules, it works perfectly.
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
With them, it looks like that the packets are dropped at the bridge before
they can be forwarded.
I ran the iptables comma
On 07/23/2013 11:41 PM, David Kang wrote:
>
> A Redhat manual suggests the following rule to enable forwarding packets
> among VMs and external network.
> https://access.redhat.com/site/documentation/en-US/Red_Hat_OpenStack/2/pdf/Release_Notes/Red_Hat_OpenStack-2-Release_Notes-en-US.pdf
>
> ipta
A Redhat manual suggests the following rule to enable forwarding packets
among VMs and external network.
https://access.redhat.com/site/documentation/en-US/Red_Hat_OpenStack/2/pdf/Release_Notes/Red_Hat_OpenStack-2-Release_Notes-en-US.pdf
iptables -t filter -I FORWARD -i qr-+ -o qg-+ -j ACCEPT
ip
Thank you, Brian.
David
- Original Message -
> On 07/23/2013 12:22 PM, David Kang wrote:
> >
> > Hi,
> >
> > We are running OpenStack Folsom on CentOS 6.4.
> > Quantum-linuxbridge-agent is used.
> > By default, the Quantum node has the following entries in its
> > /etc/sysconfig/ipt
On 07/23/2013 12:22 PM, David Kang wrote:
>
> Hi,
>
> We are running OpenStack Folsom on CentOS 6.4.
> Quantum-linuxbridge-agent is used.
> By default, the Quantum node has the following entries in its
> /etc/sysconfig/iptables file.
>
> -A INPUT -j REJECT --reject-with icmp-host-prohibited
fallback
> > -A nova-compute-local -d 172.24.17.1/32 -j nova-compute-inst-35
> > -A nova-compute-sg-fallback -j DROP
> > -A nova-filter-top -j nova-compute-local
> > -A nova-filter-top -j nova-api-local
> > COMMIT
> > # Completed on Tue Jul 23 20:24:42 2013
>
ich
> > has a rule to accept dhcp packets.
> > On my setup is something like:
> > -A INPUT -j nova-network-INPUT
> >
> > .
> > .
> > .
> > -A nova-network-INPUT -i br100 -p udp -m udp --dport 67 -j ACCEPT
> >
> >
> > So I think you have
23, 2013 7:59 PM
Subject: Re: [Openstack] [Quantum/Neutron] VM cannot get IP address from DHCP
server
Thank you for your suggestion.
We are using Quantum/Neutron not nova-network.
So, we don't use br100.
(I believe you are using nova-network.)
And the firewall rules that cause proble
gt; >>
> >>
> >> So I think you have to look somewhere else for your issue.
> >>
> >>
> >> Regards,
> >> Gabriel
> >>
> >>
> >>
> >>
> >>
> >>
> >> From: David Kang
> >&g
you have to look somewhere else for your issue.
>>
>>
>> Regards,
>> Gabriel
>>
>>
>>
>>
>>
>>
>> From: David Kang
>> To: "openstack@lists.launchpad.net (openstack@lists.launchpad.net)"
>>
>> Sent: Tuesday, Jul
o I think you have to look somewhere else for your issue.
>
>
> Regards,
> Gabriel
>
>
>
>
>
>
> From: David Kang
> To: "openstack@lists.launchpad.net (openstack@lists.launchpad.net)"
>
> Sent: Tuesday, July 23, 2013 7:22 PM
> Subject: [Openst
2013 7:22 PM
Subject: [Openstack] [Quantum/Neutron] VM cannot get IP address from DHCP server
Hi,
We are running OpenStack Folsom on CentOS 6.4.
Quantum-linuxbridge-agent is used.
By default, the Quantum node has the following entries in its
/etc/sysconfig/iptables file.
-A INPUT -j REJEC
Hi,
We are running OpenStack Folsom on CentOS 6.4.
Quantum-linuxbridge-agent is used.
By default, the Quantum node has the following entries in its
/etc/sysconfig/iptables file.
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
Wi
17 matches
Mail list logo
