FWaaS is implemented through iptables on qr-{xxx} device , one inbound
chain named like neutron-l3-agent-iv{xxx} and one outbound chain named
like neutron-l3-agent-ov{xxx} .
You can check the qr-{xxx} device's iptables rules.
2013/12/11 trinath.soman...@freescale.com
> Hi stackers-
1) Add delete_on_temination option for attaching volume to an existing
server (review BP
https://blueprints.launchpad.net/nova/+spec/add-delete-on-termination-option
).
2) There is the delete_on_termination option for attaching volume when
creating a server.
Best regards
I thought I must have been asked before, but couldn't find any
reference to it. So here it goes:
I have cloned the git repository for Swift locally (on MacOS). I
wanted to play with some code and see if it breaks any unit tests.
When I run tox -e py27, the entire test suite is executed. What's the
hello,
I had installed swift using link
http://docs.openstack.org/developer/swift/development_saio.html
I am facing problem in creating container.
curl -v -H 'X-Auth-Token: AUTH_tk850294e7f80b4ca09d9acda278466391' -X PUT
http://127.0.0.1:8080/v1/AUTH_prag2648/photos
http://paste.openstack.org
all-in-one deploy ? qr-{xxx} device is created on the network node .
2013/12/11 trinath.soman...@freescale.com
> Hi-
>
>
>
> I have the following chains in the iptables.
>
>
>
> root@havana:~# iptables -L -n -v
>
> Chain INPUT (policy ACCEPT 6021 packets, 474K bytes)
>
> pkts bytes target
Hi-
I have the following chains in the iptables.
root@havana:~# iptables -L -n -v
Chain INPUT (policy ACCEPT 6021 packets, 474K bytes)
pkts bytes target prot opt in out source destination
5921 465K nova-api-INPUT all -- * * 0.0.0.0/0
0.0.0.0/0
well , maybe you can show me your tenant network topology.
2013/12/11 trinath.soman...@freescale.com
> Yes..
>
> I have controller + network + compute node in a single machine.
>
>
>
> --
>
> Trinath Somanchi - B39208
>
> trinath.soman...@freescale.com | extn: 4048
>
>
>
> *From:* 郭龙仓 [mailto:
Yes..
I have controller + network + compute node in a single machine.
--
Trinath Somanchi - B39208
trinath.soman...@freescale.com | extn: 4048
From: 郭龙仓 [mailto:guolongcang.w...@gmail.com]
Sent: Wednesday, December 11, 2013 2:08 PM
To: Somanchi Trinath-B39208
Cc: openstack@lists.openstack.org
Sub
Great Matt!!!
I missed this one. I will read it now.
Thank you everyone!
El 10/12/13 20:50, Matt Kassawara escribió:
This document was helpful for me...
http://openstack.redhat.com/Networking_in_too_much_detail
On Tue, Dec 10, 2013 at 12:36 PM, Gonzalo Aguilar Delgado
mailto:gagui...@aguil
On Wed, Dec 11 2013, Mark Vlcek (mavlcek) wrote:
> How do I get CPU/disk/network utilization data? Do I need to update my
> ceilometer.conf file or is something else not setup/running correctly?
You need to run the ceilometer compute agent on each of your compute
node.
--
Julien Danjou
/* Free
The Heat API reference doc (
http://api.openstack.org/api-ref-orchestration.html ) does not define
response body for all APIs.
All apis say "does not return a response body".
For example:
GET
v1/{tenant_id}/stacks
Normal Response Codes — 200
Request parameters
Parameter
Style
Type
D
Hi,
At Red Hat, we are planning to characterize performance of Keystone.
I have listed down some of the work-items here :-
https://wiki.openstack.org/wiki/KeystonePerformance
Community had some discussion earlier about Keystone performance
https://etherpad.openstack.org/p/havana-keystone-perfor
This feature will be available in neutron for the Icehouse release, and
will cause a floating IP to be created everytime a VM is booted.
However, it is unlikely that feature will be backported.
For Havana users, the best workaround so far, in my opinion, is:
1) create a port on a subnet connected
Here's what I do:
nosetests --nocapture --nologcapture test/unit/obj/test_diskfile.py
thx
Paul
-Original Message-
From: Shrinand Javadekar [mailto:shrin...@maginatics.com]
Sent: Wednesday, December 11, 2013 1:17 AM
To: openstack@lists.openstack.org
Subject: [Openstack] [Swift] Running i
This is my cinder.conf
[DEFAULT]
api_paste_config=/etc/cinder/api-paste.ini
state_path = /var/lib/cinder
glance_host=localhost
glance_api_version=2
rootwrap_config=/etc/cinder/rootwrap.conf
auth_strategy=keystone
lock_path=/var/lock/cinder
qpid_hostname=localhost
qpid_port=5672
qpid_heartbeat
On Tue, Dec 10, 2013 at 1:03 PM, Thomas Goirand wrote:
> On Tue Dec 10 2013 12:03:16 PM HKT, Haomai Wang wrote:
>
>> Could you give out your cinder.conf?
>>
>> On Tue, Dec 10, 2013 at 4:10 AM, Edward Lezondra
>> wrote:
>> > Hello,
>> >
>> > I’m having trouble getting a bootable cinder volume to
Hey :)
I think you can just use the following decorator “@csrf_exempt”
and you should be able to disable it from the view.
Razique
On 10 Dec 2013, at 11:30, Abhishek Aggarwal wrote:
> Hi Stackers,
>
> I am trying to login into Openstack Dashboard through remote server and I am
> getting the e
OpenStack Security Advisory: 2013-034
CVE: CVE-2013-6426
Date: December 11, 2013
Title: Heat CFN policy rules not all enforced
Reporter: Steven Hardy (Red Hat)
Products: Heat
Affects: All supported releases
Description:
Steven Hardy from Red Hat reported a vulnerability in Heat's default
API polic
OpenStack Security Advisory: 2013-034
CVE: CVE-2013-6426
Date: December 11, 2013
Title: Heat CFN policy rules not all enforced
Reporter: Steven Hardy (Red Hat)
Products: Heat
Affects: All supported releases
Description:
Steven Hardy from Red Hat reported a vulnerability in Heat's default
API polic
OpenStack Security Advisory: 2013-035
CVE: CVE-2013-6428
Date: December 11, 2013
Title: Heat ReST API doesn't respect tenant scoping
Reporter: Steven Hardy (Red Hat)
Products: Heat
Affects: All supported releases
Description:
Steven Hardy from Red Hat reported a vulnerability in the Heat ReST
API.
OpenStack Security Advisory: 2013-033
CVE: CVE-2013-6419
Date: December 11, 2013
Title: Metadata queries from Neutron to Nova are not restricted by tenant
Reporter: Aaron Rosen (VMware)
Products: Neutron, Nova
Affects: All supported releases
Description:
Aaron Rosen from VMware reported a vulnerab
OpenStack Security Advisory: 2013-032
CVE: CVE-2013-6391
Date: December 11, 2013
Title: Keystone trust circumvention through EC2-style tokens
Reporter: Steven Hardy (Red Hat)
Products: Keystone
Affects: Havana and later
Description:
Steven Hardy from Red Hat reported a vulnerability in Keystone
tr
OpenStack Security Advisory: 2013-036
CVE: CVE-2013-6858
Date: December 11, 2013
Title: Insufficient sanitization of Instance Name in Horizon
Reporter: Cisco PSIRT
Products: Horizon
Affects: All supported releases
Description:
Cisco PSIRT reported a vulnerability in the OpenStack Horizon
dashboard
Hello, I was wondering if anyone had Cinder talking directly to LH and how well
it was working for you? Any headaches in the setup or pitfalls with performance?
Thanks,
Richard Cunningham
This e-mail message, including any attachments, is intended solely for the use
of the addressee and may c
Hi,
You can even append the Test class and the method you want to test
like that :
nosetests test/unit/proxy/test_server.py:TestAccountController.test_HEAD
Useful to only focus on one test that fail.
Cheers,
Fabien Boucher
OpenStack Engineer
eNovance SaS - 10 rue de la Victoire 75009 Paris - Fr
On 12/10/2013 06:24 PM, Kotwani, Mukul wrote:
> 2.6.18, not sure about the IO schedulers. The default scheduler
> could be different. Is the expected performance between the
> schedulers supposed to be that dramatically different?
I expect redhat didn't backport CFS to 2.6.18 -- that's the process
I have noticed a similar problem.
I have 2 different pools:
images and volumes and both use the same ceph.user keyring.
I can create a volume from an image but if I try to cause the image to
copy as part of an instance start up things. fail.
I wonder if the problem is using 2 different pools
Thanks a lot Paul, Fabien. This is useful.
On Wed, Dec 11, 2013 at 9:49 AM, Fabien Boucher
wrote:
> Hi,
>
> You can even append the Test class and the method you want to test
> like that :
> nosetests test/unit/proxy/test_server.py:TestAccountController.test_HEAD
> Useful to only focus on one tes
Hi all,
I'm having an odd issue where I can't spin up new VMs; the error is
below. I've confirmed that the tenant starting the instance has
sufficient capacity.
I have another tenant who is running a similar number of VMs and it's
not having the problem.
This is ubuntu 12.04 running grizzly.
Any
Hi,
Yes, I didn't reviewed all the features of cinder since it's just
recently installed. I'm using it for serving LVM volumes from different
machines. Works great.
But I cannot install anything on this NAS, and therefore it has not
cinder support. Just plain iscsi support. Even the tgt mana
I've seen issues where the quota_use table in the nova database gets
out of sync with the resources actually used.
try this query and see if the fixed_ips matches what is in use:
mysql nova -e 'select * from quota_usages where
project_id="60d776fe573f44a4810cb294b95e09d6" and
resource="fixed_ips"
Sounds good for a start.
There is a lot in Devstack that should help as far as documenting how to
set up LDAP etc.
Can you indicate which is going to be your first effort? We (Keystone
team) can provide some guidance on how to best hammer on it.
On 12/11/2013 05:48 AM, Neependra Khare w
Jon,
The value in quota_usages was wrong. Fixed. Thanks for the help.
JR
On 12/11/2013 2:36 PM, Jonathan Proulx wrote:
> I've seen issues where the quota_use table in the nova database gets
> out of sync with the resources actually used.
>
> try this query and see if the fixed_ips matches wha
To those who might be interested, some of us are working on a framework
called
Entropy that would enable openstack users to plugin audit scripts that
detect such issues,
and repair scripts that would provide a fix if a known issue is seen. For
example, everytime
your audit script sees an inconsist
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Glance allows sharing of images between projects without consumer
project approval
- ---
### Summary ###
Glance allows images to be shared between projects. In certain API
versions, images can be shared without the consumer project's
approval. This al
On Thu, Dec 12, 2013 at 2:29 AM, Alvin Starr wrote:
> I have noticed a similar problem.
>
> I have 2 different pools:
> images and volumes and both use the same ceph.user keyring.
>
> I can create a volume from an image but if I try to cause the image to copy
> as part of an instance start up thin
On 12/12/2013 01:11 AM, Adam Young wrote:
Can you indicate which is going to be your first effort? We (Keystone
team) can provide some guidance on how to best hammer on it.
Thanks. I am starting by identifying any CPU, Disk, Memory or Database
bottlenecks.
We'll look forward for inputs from t
G'day OpenStackLand,
I have an idea for the next summit to put forward...
Like we have the various project design summit session days at the summits,
I think it'd be really useful to have an Operators and Users day at the
very start of the next summit (and hopefully all of them in future if i
Thanks a lot Salvatore.
I will do something like you suggested.
Regards
*Jitendra Bhaskar*
On Wed, Dec 11, 2013 at 4:26 PM, Salvatore Orlando wrote:
> This feature will be available in neutron for the Icehouse release, and
> will cause a floating IP to be created everytime a VM is booted
Hi-
With respect to the following Openstack Wiki,
https://wiki.openstack.org/wiki/Quantum/FWaaS/HowToInstall
I have installed and configured FWaaS, but then I haven't got the Horizon
screens shown in the Wiki link above.
Is there any other installation required for the FWaaS Screens ??
Please
40 matches
Mail list logo
