IP地址 主机名 操做系统 192.168.56.11 linux-node1 CentOS7 192.168.56.12 linux-node2 CentOS7
其中,linux-node1看成控制节点node
linux-node2看成计算节点mysql
OpenStack网络(neutron)管理OpenStack环境中全部虚拟网络基础设施(VNI),物理网络基础设施(PNI)的接入层。linux
[root@linux-node1 ~]# yum install -y openstack-neutron openstack-neutron-ml2 \ openstack-neutron-linuxbridge ebtables
先决条件sql
建立用户数据库
咱们选择配置公共网络vim
connection = mysql+pymysql://neutron:neutron@192.168.56.11/neutronapi
vim /etc/neutron/neutron.conf auth_strategy = keystone [keystone_authtoken] auth_uri = http://192.168.56.11:5000 auth_url = http://192.168.56.11:35357 memcached_servers = 192.168.56.11:11211 auth_type = password project_domain_name = default user_domain_name = default project_name = service username = neutron password = neutron
vim /etc/neutron/neutron.conf rpc_backend = rabbit rabbit_host = 192.168.56.11 rabbit_userid = openstack rabbit_password = openstack
vim /etc/neutron/neutron.conf core_plugin = ml2 service_plugins = #在[DEFAULT]和[nova]部分,配置网络服务来通知计算节点的网络拓扑变化 notify_nova_on_port_status_changes = true notify_nova_on_port_data_changes = true [nova] auth_url = http://192.168.56.11:35357 auth_type = password project_domain_name = default user_domain_name = default region_name = RegionOne project_name = service username = nova password = nova #配置锁路径 lock_path = /var/lib/neutron/tmp
ML2插件使用Linuxbridge机制来为实例建立layer-2虚拟网络基础设施网络
type_drivers = flat,vlan,gre,vxlan,geneve tenant_network_types = mechanism_drivers = linuxbridge,openvswitch extension_drivers = port_security flat_networks = public enable_ipset = true
[root@linux-node1 ~]# vi /etc/neutron/plugins/ml2/linuxbridge_agent.ini physical_interface_mappings = public:eth0 firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver enable_security_group = true enable_vxlan = false
vim /etc/neutron/dhcp_agent.ini interface_driver = neutron.agent.linux.interface.BridgeInterfaceDriver dhcp_driver = neutron.agent.linux.dhcp.Dnsmasq enable_isolated_metadata = true
vim /etc/neutron/metadata_agent.ini nova_metadata_ip = 192.168.56.11 metadata_proxy_shared_secret = oldboy
vim /etc/nova/nova.conf url = http://192.168.56.11:9696 auth_url = http://192.168.56.11:35357 auth_type = password project_domain_name = default user_domain_name = default region_name = RegionOne project_name = service username = neutron password = neutron
网络服务初始化脚本须要一个超连接 /etc/neutron/plugin.ini指向ML2插件配置文件/etc/neutron/plugins/ml2/ml2_conf.ini。若是超连接不存在,使用下面的命令建立它app
ln -s /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugin.ini
su -s /bin/sh -c "neutron-db-manage --config-file /etc/neutron/neutron.conf \ --config-file /etc/neutron/plugins/ml2/ml2_conf.ini upgrade head" neutron
systemctl restart openstack-nova-api.service
[root@linux-node1 ~]# systemctl enable neutron-server.service \ > neutron-linuxbridge-agent.service neutron-dhcp-agent.service \ > neutron-metadata-agent.service [root@linux-node1 ~]# systemctl start neutron-server.service \ > neutron-linuxbridge-agent.service neutron-dhcp-agent.service \ > neutron-metadata-agent.service
在建立以前,要先执行环境变量脚本dom
[root@linux-node1 ~]# source admin-openstack.sh
再建立网络
[root@linux-node1 ~]# openstack service create --name neutron --description "OpenStack Networking" network +-------------+----------------------------------+ | Field | Value | +-------------+----------------------------------+ | description | OpenStack Networking | | enabled | True | | id | 8e34c26e3fec40f4bd0bd3f86e20df76 | | name | neutron | | type | network | +-------------+----------------------------------+
建立服务的API endpoint
[root@linux-node1 ~]# openstack endpoint create --region RegionOne network public http://192.168.56.11:9696 +--------------+----------------------------------+ | Field | Value | +--------------+----------------------------------+ | enabled | True | | id | 7bddf204d5264c678049eef6cc6ab88d | | interface | public | | region | RegionOne | | region_id | RegionOne | | service_id | 8e34c26e3fec40f4bd0bd3f86e20df76 | | service_name | neutron | | service_type | network | | url | http://192.168.56.11:9696 | +--------------+----------------------------------+
[root@linux-node1 ~]# openstack endpoint create --region RegionOne network admin http://192.168.56.11:9696 +--------------+----------------------------------+ | Field | Value | +--------------+----------------------------------+ | enabled | True | | id | df3c6758c4414671b0978140ee3c6bb2 | | interface | admin | | region | RegionOne | | region_id | RegionOne | | service_id | 8e34c26e3fec40f4bd0bd3f86e20df76 | | service_name | neutron | | service_type | network | | url | http://192.168.56.11:9696 | +--------------+----------------------------------+
[root@linux-node1 ~]# openstack endpoint create --region RegionOne network internal http://192.168.56.11:9696 +--------------+----------------------------------+ | Field | Value | +--------------+----------------------------------+ | enabled | True | | id | 415f75265c074ac1bdb10b140c1fec8e | | interface | internal | | region | RegionOne | | region_id | RegionOne | | service_id | 8e34c26e3fec40f4bd0bd3f86e20df76 | | service_name | neutron | | service_type | network | | url | http://192.168.56.11:9696 | +--------------+----------------------------------+
验证是否建立成功
[root@linux-node1 ~]# neutron agent-list +--------------------------------------+--------------------+-------------+-------------------+-------+----------------+---------------------------+ | id | agent_type | host | availability_zone | alive | admin_state_up | binary | +--------------------------------------+--------------------+-------------+-------------------+-------+----------------+---------------------------+ | 0324ab11-18a1-4615-83c0-9359d9696655 | Linux bridge agent | linux-node1 | | :-) | True | neutron-linuxbridge-agent | | 3c1c33f7-a236-4799-a4cb-00c486bced17 | DHCP agent | linux-node1 | nova | :-) | True | neutron-dhcp-agent | | b23e4246-d1e9-45af-8d20-036d8585ed77 | Metadata agent | linux-node1 | | :-) | True | neutron-metadata-agent | +--------------------------------------+--------------------+-------------+-------------------+-------+----------------+---------------------------+