2

我已经使用 devstack 脚本安装了多节点 openstak。可以运行虚拟机,但网络存在问题,无法从一个虚拟机 ssh/ping 到另一个虚拟机。我只能从它运行的主机(control1,computeX)SSH到VM,而其他主机不能。有什么建议么?

nova-compute     control1                             nova             enabled    :-)   
nova-cert        control1                             nova             enabled    :-)   
nova-network     control1                             nova             enabled    :-)   
nova-scheduler   control1                             nova             enabled    :-)   
nova-consoleauth control1                             nova             enabled    :-)   
nova-compute     compute1                             nova             enabled    :-)   
nova-volume      compute1                             nova             enabled    :-)   
nova-network     compute1                             nova             enabled    :-)   
nova-compute     compute2                             nova             enabled    :-)   
nova-volume      compute2                             nova             enabled    :-)   
nova-network     compute2                             nova             enabled    :-)

控制1 /etc/network/interfaces

# The loopback network interface
auto lo
iface lo inet loopback

# The primary network interface
auto eth0
iface eth0 inet static
address 172.16.0.1
#address 172.16.0.101
netmask 255.255.255.0
network 172.16.0.0
broadcast 172.16.0.255
gateway 172.16.0.254
dns-nameservers 8.8.8.8


auto eth1
iface eth1 inet static
address 11.0.0.4
netmask 255.255.255.0
network 11.0.0.0
broadcast 11.0.0.255

计算1 /etc/network/interfaces

# The loopback network interface
auto lo
iface lo inet loopback

# The primary network interface
auto eth0
iface eth0 inet static
address 172.16.0.2
netmask 255.255.255.0
network 172.16.0.0
broadcast 172.16.0.255
gateway 172.16.0.254
dns-nameservers 8.8.8.8


auto eth1
iface eth1 inet static
address 11.0.0.5
netmask 255.255.255.0
network 11.0.0.0
broadcast 11.0.0.255

控制1 /etc/nova/nova.conf

[DEFAULT]
verbose=True
auth_strategy=keystone
allow_resize_to_same_host=True
root_helper=sudo /usr/local/bin/nova-rootwrap /etc/nova/rootwrap.conf
compute_scheduler_driver=nova.scheduler.filter_scheduler.FilterScheduler
dhcpbridge_flagfile=/etc/nova/nova.conf
fixed_range=10.1.0.0/16
s3_host=172.16.0.1
s3_port=3333
network_manager=nova.network.manager.FlatDHCPManager
osapi_compute_extension=nova.api.openstack.compute.contrib.standard_extensions
my_ip=172.16.0.1
public_interface=eth0
vlan_interface=eth0
flat_network_bridge=br100
flat_interface=eth1
sql_connection=mysql://root:supersecret@172.16.0.1/nova?charset=utf8
libvirt_type=qemu
libvirt_cpu_mode=none
instance_name_template=instance-%08x
novncproxy_base_url=http://172.16.0.1:6080/vnc_auto.html
xvpvncproxy_base_url=http://172.16.0.1:6081/console
vncserver_listen=127.0.0.1
vncserver_proxyclient_address=127.0.0.1
api_paste_config=/etc/nova/api-paste.ini
image_service=nova.image.glance.GlanceImageService
ec2_dmz_host=172.16.0.1
rabbit_host=172.16.0.1
rabbit_password=supersecret
glance_api_servers=172.16.0.1:9292
force_dhcp_release=True
multi_host=True
send_arp_for_ha=True
use_syslog=True
logging_context_format_string=%(asctime)s %(levelname)s %(name)s [%(request_id)s %(user_name)s %(project_name)s] %(instance)s%(message)s
volume_api_class=nova.volume.cinder.API
compute_driver=libvirt.LibvirtDriver
firewall_driver=nova.virt.libvirt.firewall.IptablesFirewallDriver
enabled_apis=ec2,osapi_compute,metadata
4

3 回答 3

1

您可能需要向默认 OpenStack 安全组添加规​​则以启用 ping 和 SSH:

nova secgroup-add-rule default icmp -1 -1 0.0.0.0/0
nova secgroup-add-rule default tcp 22 22 0.0.0.0/0

第一条规则为 VM 实例启用 Internet 控制消息协议 (ICMP)(ping 命令)。第二条规则通过 SSH 使用的 22 端口启用 TCP 连接。

于 2012-08-17T11:27:43.660 回答
0

尝试将 network_manager=nova.network.manager.FlatDHCPManager 更改为 network_manager=nova.network.manager.FlatManager 并尝试为您的 network_manager 设置进行其他配置。它说 FLatManager 应该在这里工作:http://docs.openstack.org/trunk/openstack-compute/admin/content/configuring-flat-networking.html与 FLatDHCPManager 类似,所以不太确定问题是什么看来您已绑定到物理以太网卡。

于 2012-08-03T12:10:55.770 回答
0

尝试将以下选项添加到 nova.conf,它控制防火墙(iptables)是否允许实例之间的流量:

allow_same_net_traffic=true

它应该默认打开,所以这可能不是你的问题,但这是我会尝试的第一件事。

这是来自 OpenStack Compute Admin guide 中名为网络选项的 nova.conf 文件配置选项的描述表。

于 2012-08-03T18:13:03.210 回答