openstack pike linuxbridge换成openvswitch
发表于:2025-12-03 作者:千家信息网编辑
千家信息网最后更新 2025年12月03日,现有网络节点的网络方案为:neutron ml2 type driver: vxlanneutron ml2 mechanism driver : linuxbridgeneutron l2 agen
千家信息网最后更新 2025年12月03日openstack pike linuxbridge换成openvswitch现有网络节点的网络方案为:
neutron ml2 type driver: vxlan
neutron ml2 mechanism driver : linuxbridge
neutron l2 agent: linuxbridge
改后的方案:
neutron ml2 type driver: vxlan
neutron ml2 mechanism driver : openvswitch
neutron l2 agent: openvswitch
在网络节点和计算节点停止并删除neutron-linuxbridge-agent
systemcat stop neutron-linuxbridge-agent
systemcat disable neutron-linuxbridge-agent
yum remove neutron-linuxbridge-agent
删除linuxbridge agent
openstack work agent list 查看linuxbridgent agent对应的id
openstack work agent delete $id 删除对应的id
在网络节点和计算节点安装neutron-openvswitch-agent
yum install -y openstack-neutron-openvswitch
在网络节点添加br-ex网桥
ovs-vsctl add-br br-ex
br-ex 网桥绑定网卡
ifconfig eth0 0 && ovs-vsctl add-port br-ex eth0
为了开启生效在/etc/rc.local加上如下配置
ovs-vsctl add-port br-ex eth0
ifconfig br-ex 192.168.100.114/24 (ip根据时间情况改)
网上有说改/etc/sysconfig/network-scripts下的文件,亲测了下在centos7.4环境下,network重启失败
所以建议在/etc/rc.local里添加配置。并改/etc/rc.local为可执行权限
chmod +x /etc/rc.d/rc.local
修改配置
Neutron
/etc/neutron/plugins/ml2/ml2_conf.ini
[ml2]
type_drivers = flat,vlan,vxlan
mechanism_drivers = openvswitch,l2population
extension_drivers = port_security
tenant_network_types = vxlan
[ml2_type_flat]
flat_networks = provider
[ml2_type_vxlan]
vni_ranges = 1:1000
[securitygroup]
enable_ipset = True
/etc/neutron/l3_agent.ini
[DEFAULT]
interface_driver = neutron.agent.linux.interface.OVSInterfaceDriver
debug = false
/etc/neutron/dhcp_agent.ini
[DEFAULT]
interface_driver = neutron.agent.linux.interface.OVSInterfaceDriver
dhcp_driver = neutron.agent.linux.dhcp.Dnsmasq
enable_isolated_metadata = True
/etc/neutron/plugins/ml2/openvswitch_agent.ini
[ovs]
tunnel_bridge = br-tun
local_ip = 10.2.2.4
integration_bridge = br-int
enable_tunneling = True
[agent]
tunnel_types = vxlan
l2_population = True
[securitygroup]
firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
enable_security_group = True
重启服务
systemctl restart neutron-server.service neutron-openvswitch-agent.service neutron-dhcp-agent.service neutron-metadata-agent.service neutron-l3-agent.service
将neutron-openvswitch-agent设置开机自启动
systemctl enable neutron-openvswitch-agent.service
计算节点配置
/etc/neutron/plugins/ml2/openvswitch_agent.ini
[ovs]
tunnel_bridge = br-tun
local_ip = 10.2.2.2
integration_bridge = br-int
enable_tunneling = True
[agent]
tunnel_types = vxlan
l2_population = True
[securitygroup]
firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
enable_security_group = True
重启服务并设置开机自启动
systemctl restart openstack-nova-compute.service neutron-openvswitch-agent.service
systemctl enable neutron-openvswitch-agent.service
neutron ml2 type driver: vxlan
neutron ml2 mechanism driver : linuxbridge
neutron l2 agent: linuxbridge
改后的方案:
neutron ml2 type driver: vxlan
neutron ml2 mechanism driver : openvswitch
neutron l2 agent: openvswitch
在网络节点和计算节点停止并删除neutron-linuxbridge-agent
systemcat stop neutron-linuxbridge-agent
systemcat disable neutron-linuxbridge-agent
yum remove neutron-linuxbridge-agent
删除linuxbridge agent
openstack work agent list 查看linuxbridgent agent对应的id
openstack work agent delete $id 删除对应的id
在网络节点和计算节点安装neutron-openvswitch-agent
yum install -y openstack-neutron-openvswitch
在网络节点添加br-ex网桥
ovs-vsctl add-br br-ex
br-ex 网桥绑定网卡
ifconfig eth0 0 && ovs-vsctl add-port br-ex eth0
为了开启生效在/etc/rc.local加上如下配置
ovs-vsctl add-port br-ex eth0
ifconfig br-ex 192.168.100.114/24 (ip根据时间情况改)
网上有说改/etc/sysconfig/network-scripts下的文件,亲测了下在centos7.4环境下,network重启失败
所以建议在/etc/rc.local里添加配置。并改/etc/rc.local为可执行权限
chmod +x /etc/rc.d/rc.local
修改配置
Neutron
/etc/neutron/plugins/ml2/ml2_conf.ini
[ml2]
type_drivers = flat,vlan,vxlan
mechanism_drivers = openvswitch,l2population
extension_drivers = port_security
tenant_network_types = vxlan
[ml2_type_flat]
flat_networks = provider
[ml2_type_vxlan]
vni_ranges = 1:1000
[securitygroup]
enable_ipset = True
/etc/neutron/l3_agent.ini
[DEFAULT]
interface_driver = neutron.agent.linux.interface.OVSInterfaceDriver
debug = false
/etc/neutron/dhcp_agent.ini
[DEFAULT]
interface_driver = neutron.agent.linux.interface.OVSInterfaceDriver
dhcp_driver = neutron.agent.linux.dhcp.Dnsmasq
enable_isolated_metadata = True
/etc/neutron/plugins/ml2/openvswitch_agent.ini
[ovs]
tunnel_bridge = br-tun
local_ip = 10.2.2.4
integration_bridge = br-int
enable_tunneling = True
[agent]
tunnel_types = vxlan
l2_population = True
[securitygroup]
firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
enable_security_group = True
重启服务
systemctl restart neutron-server.service neutron-openvswitch-agent.service neutron-dhcp-agent.service neutron-metadata-agent.service neutron-l3-agent.service
将neutron-openvswitch-agent设置开机自启动
systemctl enable neutron-openvswitch-agent.service
计算节点配置
/etc/neutron/plugins/ml2/openvswitch_agent.ini
[ovs]
tunnel_bridge = br-tun
local_ip = 10.2.2.2
integration_bridge = br-int
enable_tunneling = True
[agent]
tunnel_types = vxlan
l2_population = True
[securitygroup]
firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
enable_security_group = True
重启服务并设置开机自启动
systemctl restart openstack-nova-compute.service neutron-openvswitch-agent.service
systemctl enable neutron-openvswitch-agent.service
节点
网络
配置
方案
网桥
服务
建议
情况
文件
时间
权限
环境
网卡
数据库的安全要保护哪些东西
数据库安全各自的含义是什么
生产安全数据库录入
数据库的安全性及管理
数据库安全策略包含哪些
海淀数据库安全审计系统
建立农村房屋安全信息数据库
易用的数据库客户端支持安全管理
连接数据库失败ssl安全错误
数据库的锁怎样保障安全
数据库文件插入路径
计算机网络技术相关的公司
网络安全大门图片大全
软件开发里的qc
基于授权数据库的安全机制
云服务器回收站在那里
计算机网络技术改行能做什么
科研常用英文文献数据库
网络安全设计方案论文
北京工行软件开发
检查db2数据库
学思科网络技术难吗
安全教育里面的什么是网络安全
安徽视频服务器厂家
软件开发项目经理年龄
上海高科技软件开发
extjs 新增数据库
服务器运维培训
锦艺集团旗下互联网科技公司
科密考勤机怎样连接数据库
网络安全攻防竞赛报道
西继迅达服务器怎么进入调试模式
数据库碎片恢复
宇宙数据库载体
文登软件开发公司
滁州物业管理软件开发定制公司
服务器哪个系统更安全
数据库优化教程
一段话介绍数据库
网络安全政策宣传资料
