Ịgbakọ igwe ojii na-abanye n'ime ndụ anyị ma eleghị anya ọ dịghị otu onye na-ejibeghị ọrụ igwe ojii ọ dịkarịa ala otu ugboro. Otú ọ dị, ihe kpọmkwem ígwé ojii na otú o si arụ ọrụ, mmadụ ole na ole maara, ọbụna n'ogo nke echiche. 5G abụrụlarị eziokwu na akụrụngwa telecom na-amalite ịkwaga site na ngwọta ogidi gaa na ngwọta igwe ojii, dị ka ọ mere mgbe ọ si na ngwọta ngwaike kpamkpam gaa na “ogidi”.
Taa, anyị ga-ekwu maka ụwa dị n'ime nke akụrụngwa igwe ojii, karịsịa anyị ga-eleba anya na isi nke akụkụ netwọk.
Gịnị bụ igwe ojii? Otu virtualization ahụ - nlele profaịlụ?
Karịa ajụjụ ezi uche dị na ya. Mba - nke a abụghị ike ime ihe, n'agbanyeghị na enweghị ike ime ya ma ọ bụrụ na ọ bụghị ya. Ka anyị leba anya na nkọwa abụọ:
Mgbakọ igwe ojii (nke a na-akpọkwa igwe ojii) bụ ihe nlere anya maka ịnye onye ọrụ ohere ịnweta akụrụngwa mgbakọ na-ekesa nke a ga-ebunye ma malite ya na ọchịchọ ya na obere oge enwere ike na ọ ga-eri onye na-eweta ọrụ.
Ntugharị anya - nke a bụ ike kewaa otu ihe anụ ahụ (dịka ọmụmaatụ, ihe nkesa) n'ime ọtụtụ mebere, si otú ahụ na-abawanye ojiji nke akụrụngwa (dịka ọmụmaatụ, ị nwere 3 sava kwajuru na 25-30 pasent, mgbe virtualization ga-enweta 1 nkesa kwajuru. na pasent 80-90). Dị ka o kwesịrị ịdị, virtualization na-eri ụfọdụ ihe onwunwe - ịkwesịrị ịzụ hypervisor, Otú ọ dị, dị ka omume gosipụtara, egwuregwu ahụ bara uru kandụl. Otu ezigbo ihe atụ nke virtualization bụ VMWare, nke na-akwadebe igwe mebere nke ọma, ma ọ bụ dịka ọmụmaatụ KVM, nke masịrị m, mana nke a bụ ihe ụtọ.
Anyị na-eji virtualization na-aghọtaghị ya, na ọbụna ígwè routers na-ejiworị virtualization - dịka ọmụmaatụ, na ụdị JunOS kachasị ọhụrụ, arụnyere sistemụ arụmọrụ dị ka igwe mebere n'elu nkesa Linux dị adị (Wind River 9). Ma virtualization abụghị ígwé ojii, ma ígwé ojii enweghị ike ịdị na-enweghị virtualization.
Ntụle anya bụ otu n'ime ihe ụlọ nke ejiri wuo igwe ojii.
Ime igwe ojii site na ịnakọta ọtụtụ hypervisors n'ime otu ngalaba L2, na-agbakwunye akwụkwọ egwuregwu yaml ole na ole maka ịdenye vlans na-akpaghị aka site n'ụdị ọ bụla nwere ike ime ya na imechi ihe dị ka sistemụ orchestration na ya niile maka imepụta igwe mebere na-akpaghị aka agaghị arụ ọrụ. Ọ ga-abụ nke ziri ezi karị, mana Frankenstein ga-esi na ya pụta abụghị ígwé ojii anyị chọrọ, n'agbanyeghị na ọ nwere ike bụrụ nrọ kachasị maka ndị ọzọ. Ọzọkwa, ọ bụrụ na ị were otu Opentack, ọ ka bụ Frankenstein, mana ọ dị mma, ka anyị ghara ikwu maka nke ahụ ugbu a.
Ma aghọtara m na site na nkọwa a gosipụtara n'elu, ọ bụghị kpamkpam ihe a pụrụ ịkpọ ígwé ojii.
Ya mere, akwụkwọ sitere na NIST (National Institute of Standards and Technology) na-enye njirimara 5 isi nke akụrụngwa igwe ojii kwesịrị inwe:
Na-enye ọrụ mgbe arịrịọ. A ga-enyerịrị onye ọrụ ohere ịnweta akụrụngwa kọmputa nke ekenyela ya n'efu (dịka netwọkụ, diski mebere, ebe nchekwa, cores processor, wdg).
Nweta ọrụ sara mbara. Ịnweta akụrụngwa ga-enwerịrị usoro ọkọlọtọ iji kwe ka iji ma PC ọkọlọtọ yana ndị ahịa dị gịrịgịrị na ngwaọrụ mkpanaka.
Na-ejikọta akụrụngwa n'ime ọdọ mmiri. Ọdọ mmiri akụrụngwa ga-enwe ike ịnye ọtụtụ ndị ahịa ihe onwunwe n'otu oge, na-ahụ na ndị ahịa nọpụrụ iche na enweghị mmetụta mmekọrịta na asọmpi maka akụrụngwa. A na-etinyekwa netwọkụ n'ime ọdọ mmiri ndị ahụ, nke na-egosi na ọ ga-ekwe omume iji adreesị na-agafe agafe. Ọdọ mmiri ga-enwerịrị ike ịba ụba na ihe achọrọ. Ojiji nke ọdọ mmiri na-eme ka o kwe omume ịnye ọkwa dị mkpa nke nnabata mmejọ akụrụngwa na abstraction nke anụ ahụ na nke mebere - a na-enye onye nnata ọrụ ahụ naanị setịpụ akụrụngwa ọ rịọrọ (ebe akụrụngwa ndị a dị n'anụ ahụ, na ole ole. sava na switches - ọ dịghị mkpa maka onye ahịa). Agbanyeghị, anyị ga-eburu n'uche eziokwu ahụ bụ na onye na-eweta ya ga-ahụrịrị na idobe ihe ndị a n'ụzọ doro anya.
Ngbanwe ngwa ngwa na ọnọdụ dị iche iche. Ọrụ ga-agbanwerịrị - ịnye ngwa ngwa ngwa ngwa, nkesa ha, ịgbakwunye ma ọ bụ ibelata akụrụngwa na arịrịọ onye ahịa, na n'akụkụ onye ahịa kwesịrị inwe mmetụta na akụrụngwa igwe ojii enweghị njedebe. Maka ịdị mfe nghọta, dịka ọmụmaatụ, ị gaghị ahụ ịdọ aka ná ntị na akụkụ nke ohere diski gị na Apple iCloud apụọla n'ihi na draịvụ ike na ihe nkesa emebiwo, na draịva na-agbaji. Na mgbakwunye, n'akụkụ gị, ohere nke ọrụ a fọrọ nke nta ka ọ bụrụ enweghị njedebe - ị chọrọ 2 TB - enweghị nsogbu, ị kwụrụ ma nweta ya. Enwere ike ịnye ihe atụ yiri nke ahụ na Google.Drive ma ọ bụ Yandex.Disk.
Enwere ike ịlele ọrụ enyere. Sistemu igwe ojii ga-ejikwa akpaghị aka ma kwalite akụrụngwa erimeri, usoro ndị a ga-apụta ìhè nye ma onye ọrụ na onye na-eweta ọrụ. Ya bụ, ị nwere ike ịlele ego ole gị na ndị ahịa gị na-eri.
Ọ bara uru ịtụle eziokwu ahụ bụ na ihe ndị a chọrọ bụ ihe ndị a chọrọ maka igwe ojii ọha na eze, ya mere maka igwe ojii nkeonwe (ya bụ, ígwé ojii ewepụtara maka mkpa nke ụlọ ọrụ), ihe ndị a chọrọ nwere ike gbanwee ntakịrị. Otú ọ dị, a ka ga-eme ha, ma ọ bụghị na anyị agaghị enweta uru niile nke igwe ojii.
Gịnị mere anyị ji chọọ igwe ojii?
Agbanyeghị, teknụzụ ọhụụ ma ọ bụ dị adị, a na-emepụta ụkpụrụ ọhụrụ ọ bụla maka ihe (nke ọma, ewezuga RIP-ng, n'ezie). Ọ dịghị onye chọrọ protocol n'ihi a protocol (mma, ma e wezụga maka RIP-ng, n'ezie). Ọ bụ ihe ezi uche dị na ya na e mepụtara ígwé ojii iji nye onye ọrụ/onye ahịa ụfọdụ ụdị ọrụ. Anyị niile maara ma ọ dịkarịa ala abụọ ọrụ igwe ojii, dịka ọmụmaatụ Dropbox ma ọ bụ Google.Docs, ekwenyere m na ọtụtụ ndị na-eji ha eme ihe nke ọma - dịka ọmụmaatụ, edere isiokwu a site na iji Google.Docs ígwé ojii ọrụ. Ma ọrụ igwe ojii anyị maara bụ naanị akụkụ nke ike nke igwe ojii-n'ụzọ ziri ezi, ha bụ naanị ọrụ ụdị SaaS. Anyị nwere ike ịnye ọrụ igwe ojii n'ụzọ atọ: n'ụdị SaaS, PaaS ma ọ bụ IaaS. Ọrụ ị chọrọ dabere na ọchịchọ na ike gị.
Ka anyị lee nke ọ bụla n'usoro:
Software dị ka Ọrụ (SaaS) bụ ihe atụ maka ịnye onye ahịa ọrụ zuru oke, dịka ọmụmaatụ, ọrụ email dị ka Yandex.Mail ma ọ bụ Gmail. N'ụdị nnyefe ọrụ a, gị onwe gị, dịka onye ahịa, anaghị eme ihe ọ bụla ma e wezụga iji ọrụ - ya bụ, ịkwesighi iche echiche maka ịtọlite ọrụ ahụ, nnabata mmejọ ya ma ọ bụ enweghị ọrụ. Isi ihe abụghị imebi paswọọdụ gị; onye na-eweta ọrụ a ga-emere gị ihe ndị ọzọ. Site n'echiche nke onye na-ahụ maka ọrụ, ọ bụ ya na-ahụ maka ọrụ niile - site na ngwaike nkesa na sistemụ arụmọrụ ndị ọbịa na nchekwa data na ntọala ngwanrọ.
Nweta dị ka Ọrụ (PaaS) - mgbe ị na-eji ihe nlereanya a, onye na-ahụ maka ọrụ na-enye onye ahịa ya ihe eji arụ ọrụ maka ọrụ ahụ, dịka ọmụmaatụ, ka anyị were sava weebụ. Onye na-ahụ maka ọrụ ahụ nyere onye ahịa ahụ ihe nkesa mebere (n'ezie, nhazi nke ihe onwunwe, dị ka RAM / CPU / Nchekwa / Nets, wdg), na ọbụna wụnye OS na ngwanrọ dị mkpa na ihe nkesa a, Otú ọ dị, nhazi nke Ihe niile a na-eme site n'aka onye ahịa n'onwe ya na maka ịrụ ọrụ nke ọrụ onye ahịa na-aza. Onye na-ahụ maka ọrụ, dị ka ọ dị na mbụ, na-ahụ maka ịrụ ọrụ nke akụrụngwa anụ ahụ, hypervisors, igwe mebere n'onwe ya, nnweta netwọk ya, wdg, mana ọrụ ahụ n'onwe ya adịkwaghị na mpaghara ọrụ ya.
Ntinye dị ka ọrụ (IaaS) - a obibia na-ama ihe ndị ọzọ na-akpali, n'ezie, onye na-enye ọrụ na-enye ndị ahịa ihe zuru ezu virtualized akụrụngwa - ya bụ, ụfọdụ set (ọdọ mmiri) nke ihe onwunwe, dị ka CPU Cores, RAM, Networks, wdg. Ihe ọ bụla ọzọ bụ ruo. onye ahịa - ihe onye ahịa chọrọ iji ihe ndị a mee n'ime ọdọ mmiri ekenyela (oke) - ọ dịghị mkpa karịsịa maka onye na-eweta ya. Ma onye ahịa chọrọ ịmepụta vEPC nke ya ma ọ bụ ọbụna mepụta obere onye ọrụ ma nye ọrụ nkwukọrịta - enweghị ajụjụ - mee ya. N'ọnọdụ dị otú ahụ, onye na-ahụ maka ọrụ na-ahụ maka ịnye ihe onwunwe, ntachi obi ha na ịdị adị ha, yana OS nke na-enye ha ohere ijikọta ihe ndị a ma mee ka ha dịịrị onye ahịa na-enwe ike ịbawanye ma ọ bụ ibelata ihe onwunwe n'oge ọ bụla. na arịrịọ nke onye ahịa. Onye ahịa na-ahazi igwe niile mebere na tinsel ndị ọzọ n'onwe ya site na portal na console ọrụ onwe, gụnyere ịtọlite netwọọdụ (belụsọ netwọkụ mpụga).
Kedu ihe bụ OpenStack?
Na nhọrọ atọ niile, onye na-ahụ maka ọrụ chọrọ OS nke ga-eme ka ịmepụta akụrụngwa igwe ojii. N'ezie, na SaaS, ihe karịrị otu nkewa na-ahụ maka nchịkọta teknụzụ dum - enwere nkewa nke na-ahụ maka akụrụngwa - ya bụ, ọ na-enye IaaS na nkewa ọzọ, nkewa a na-enye ndị ahịa SaaS. OpenStack bụ otu n'ime sistemụ arụmọrụ igwe ojii nke na-enye gị ohere ịnakọta ụyọkọ ọkụ ọkụ, sava na sistemu nchekwa n'otu ọdọ mmiri, kewaa ọdọ mmiri a n'ime ọdụ ụgbọ mmiri (ndị nwe ụlọ) wee nye ndị ahịa ihe ndị a na netwọkụ.
OpenStack bụ igwe na-arụ ọrụ igwe ojii nke na-enye gị ohere ijikwa nnukwu ọdọ mmiri nke akụrụngwa, nchekwa data na akụrụngwa netwọkụ, enyere ma jikwaa site na API site na iji usoro nyocha ọkọlọtọ.
N'ikwu ya n'ụzọ ọzọ, nke a bụ usoro ngwanrọ software efu nke e mere iji mepụta ọrụ ígwé ojii (ma ọha na nke nzuzo) - ya bụ, otu ngwaọrụ nke na-enye gị ohere ijikọta ihe nkesa na ịgbanwe ngwá ọrụ n'ime otu ọdọ mmiri nke ihe onwunwe, jikwaa. akụrụngwa ndị a, na-enye ọkwa dị mkpa nke nnabata mmejọ.
N'oge edere ihe a, usoro OpenStack dị ka nke a:
Foto e si na ya
Akụkụ nke ọ bụla agụnyere na OpenStack na-arụ otu ọrụ. Ihe owuwu a na-ekesa na-enye gị ohere itinye n'ime ngwọta ihe nhazi nke ihe na-arụ ọrụ nke ị chọrọ. Otú ọ dị, ụfọdụ akụkụ bụ mgbọrọgwụ mgbọrọgwụ na mwepụ ha ga-eduga na zuru ezu ma ọ bụ akụkụ nke adịghị arụ ọrụ nke ngwọta n'ozuzu ya. A na-ekekarị ihe ndị a dị ka:
- Dashboard - GUI dabere na webụ maka ijikwa ọrụ OpenStack
- Nkume bụ ọrụ njirimara etiti nke na-enye ọrụ nyocha na ikike maka ọrụ ndị ọzọ, yana ijikwa nzere onye ọrụ na ọrụ ha.
- Neutron - ọrụ netwọkụ na-enye njikọta n'etiti oghere nke ọrụ OpenStack dị iche iche (gụnyere njikọta n'etiti VM na ohere ha na ụwa n'èzí)
- Cinder - na-enye ohere igbochi nchekwa maka igwe mebere
- Nova - ndụ okirikiri njikwa nke mebere igwe
- Ilekiri - ebe nchekwa ihe onyonyo igwe mebere na onyonyo
- Swift - na-enye ohere ịnweta ihe nchekwa
- Ceilometer - ọrụ na-enye ikike ịnakọta telemetry wee tụọ akụrụngwa dị na eripịa
- okpomọkụ - orchestration dabere na ndebiri maka imepụta akpaaka na inye akụrụngwa
Enwere ike ịlele ndepụta zuru oke nke ọrụ niile na ebumnuche ha .
Akụkụ OpenStack ọ bụla bụ ọrụ na-arụ otu ọrụ ma na-enye API iji jikwaa ọrụ ahụ yana soro ọrụ sistemụ igwe ojii ndị ọzọ na-arụ ọrụ iji mepụta akụrụngwa jikọtara ọnụ. Dịka ọmụmaatụ, Nova na-enye njikwa akụrụngwa mgbakọ na mwepụ API maka ịnweta ịhazi akụrụngwa ndị a, Glance na-enye njikwa onyonyo na API maka ijikwa ha, Cinder na-enye nchekwa ngọngọ na API maka ijikwa ya, wdg. Ejikọtara ọrụ niile n'ụzọ dị ezigbo nso.
Agbanyeghị, ọ bụrụ na ilele ya, ọrụ niile na-agba na OpenStack bụ n'ikpeazụ ụdị igwe mebere (ma ọ bụ akpa) ejikọrọ na netwọkụ. Ajụjụ na-ebilite - gịnị kpatara anyị ji chọọ ọtụtụ ihe?
Ka anyị gafere algọridim maka ịmepụta igwe mebere ma jikọọ ya na netwọkụ yana nchekwa na-adịgide adịgide na Openstack.
- Mgbe ị mepụtara arịrịọ ka ịmepụta igwe, ọ bụrụ arịrịọ site na Horizon (Dashboard) ma ọ bụ arịrịọ site na CLI, ihe mbụ na-eme bụ ikike nke arịrịọ gị na Keystone - ị nwere ike ịmepụta igwe, ọ nwere ikike iji netwọkụ a, na-eme oke gị, wdg.
- Keystone na-akwado arịrịọ gị wee wepụta akara ngosi na ozi nzaghachi, nke a ga-eji n'ihu. N'ịbụ onye natara nzaghachi site na Keystone, a na-eziga arịrịọ ahụ na Nova (nova api).
- Nova-api na-enyocha izi ezi nke arịrịọ gị site na ịkpọtụrụ Keystone site na iji akara ngosi ewepụtara na mbụ.
- Keystone na-arụ nyocha ma na-enye ozi gbasara ikike na mmachi dabere na akara ngosi a.
- Nova-api na-emepụta ntinye maka VM ọhụrụ na nova-database wee nyefee arịrịọ ka imepụta igwe na onye nhazi oge.
- Nova-nhazi oge na-ahọrọ onye ọbịa (ọnụ kọmputa) nke a ga-ebuga VM dabere na paramita akọwapụtara, nha na mpaghara akọwapụtara. Edere ndekọ nke a na VM ID na nova-database.
- Na-esote, nova-scheduler na-akpọtụrụ nova-compute na arịrịọ ibuga ihe atụ. Nova-compute kọntaktị nova-conductor iji nweta ozi gbasara paramita igwe (nova-conductor bụ ihe nova nke na-arụ ọrụ dị ka ihe nkesa proxy n'etiti nova-database na nova-compute, na-amachi ọnụ ọgụgụ nke arịrịọ na nova-database iji zere nsogbu na nchekwa data. mbelata ibu na-adịgide adịgide).
- Nova-conductor na-enweta ozi a rịọrọ site na nova-database wee bufee ya na nova-compute.
- Na-esote, nova-compute na-akpọ nlele iji nweta NJ onyonyo. Glace kwadoro arịrịọ ahụ na Keystone wee weghachi ozi achọrọ.
- Nova-gbakọọ neutron kọntaktị iji nweta ozi gbasara parampat netwọkụ. Dị ka ilele anya, neutron kwadoro arịrịọ ahụ na Keystone, mgbe nke ahụ gasịrị, ọ na-emepụta ntinye na nchekwa data (ihe nchọpụta ọdụ ụgbọ mmiri, wdg), na-emepụta arịrịọ ịmepụta ọdụ ụgbọ mmiri, ma weghachite ozi a rịọrọ na nova-compute.
- Nova-gbakọọ kọntaktị cinder na arịrịọ ka ekenye otu olu na mebere igwe. Yiri ilekiri, cider na-akwado arịrịọ ahụ na Keystone, mepụta arịrịọ okike olu, wee weghachi ozi achọrọ.
- Nova-gbakọọ kọntaktị libvirt na arịrịọ ka ibuga igwe mebere ya na paramita akọwapụtara.
N'ezie, ọrụ yiri ka ọ dị mfe nke ịmepụta igwe mebere dị mfe na-atụgharị gaa n'ụdị oku API dị n'etiti ihe dị n'elu ikpo okwu igwe ojii. Ọzọkwa, dị ka ị pụrụ ịhụ, ọbụna ndị mbụ họpụtara na-enwekwa nta components n'etiti nke mmekọrịta emee. Ịmepụta igwe bụ naanị obere akụkụ nke ihe igwe ojii na-enye gị ohere ime - enwere ọrụ na-ahụ maka ịhazi okporo ụzọ, ọrụ na-ahụ maka nchekwa ngọngọ, ọrụ na-ahụ maka DNS, ọrụ na-ahụ maka ịnye sava igwe efu, wdg. Igwe ojii na-enye gị ohere ka ị na-emeso igwe mebere gị ka igwe atụrụ (na-emegide virtualization). Ọ bụrụ na ihe emee igwe gị na ebe mebere - ị weghachi ya site na nkwado ndabere na mpaghara, wdg, mana a na-ewu ngwa igwe ojii n'ụzọ nke na igwe mebere anaghị arụ ọrụ dị mkpa - igwe mebere "nwụrụ" - enweghị nsogbu. - ọhụrụ bụ naanị kere ụgbọ ala dabere na template na, dị ka ha na-ekwu, squad ahụghị ọnwụ nke onye agha ahụ. Dị ka o kwesịrị ịdị, nke a na-enye ọnụnọ nke usoro orchestration - site na iji ndebiri okpomọkụ, ị nwere ike ibuga ọrụ dị mgbagwoju anya nke nwere ọtụtụ netwọkụ na igwe mebere.
Ọ dị mma iburu n'uche na ọ dịghị akụrụngwa igwe ojii na-enweghị netwọk - ihe ọ bụla n'otu ụzọ ma ọ bụ ọzọ na-emekọrịta ihe na ihe ndị ọzọ site na netwọk. Na mgbakwunye, igwe ojii nwere netwọkụ na-abụghị static. Dị ka o kwesịrị ịdị, netwọọdụ dị n'okpuru bụ ọbụna karịa ma ọ bụ obere static - a naghị agbakwunye oghere ọhụrụ na switches kwa ụbọchị, mana akụkụ ahụ nwere ike ịgbanwe mgbe niile - a ga-agbakwunye ma ọ bụ hichapụ netwọkụ ọhụrụ, igwe mebere ọhụrụ ga-apụta na ndị ochie ga-apụta. anwụ. Ma dị ka ị na-echeta site na nkọwa nke ígwé ojii nyere na mmalite nke isiokwu ahụ, a ga-ekenye onye ọrụ ihe onwunwe na-akpaghị aka na nke kacha nta (ma ọ bụ ka mma, na-enweghị) enyemaka sitere n'aka onye na-ahụ maka ọrụ. Nke ahụ bụ, ụdị inye ihe netwọkụ nke dị ugbu a n'ụdị nke njedebe n'ihu n'ụdị akaụntụ nkeonwe nke ị nwere ike ịnweta site na http/https na onye na-ahụ maka netwọkụ na-arụ ọrụ Vasily dị ka azụ azụ abụghị igwe ojii, ọbụlagodi ọ bụrụ na Vasily nwere aka asatọ.
Neutron, dị ka ọrụ netwọk, na-enye API maka ijikwa akụkụ netwọk nke akụrụngwa igwe ojii. Ọrụ ahụ na-enye ike ma na-ejikwa akụkụ ịkparịta ụka n'Ịntanet nke Openstack site na ịnye oyi akwa abstraction akpọrọ Network-as-a-Service (NaaS). Ya bụ, netwọkụ ahụ bụ otu nkeji enwere ike ịtụnye ihe dịka ọmụmaatụ, cores CPU mebere ma ọ bụ ọnụọgụ RAM.
Ma tupu ịga n'ihu na nhazi nke akụkụ netwọk nke OpenStack, ka anyị tụlee otú netwọk a si arụ ọrụ na OpenStack na ihe kpatara netwọk ahụ ji bụrụ akụkụ dị mkpa na nke dị mkpa nke igwe ojii.
Yabụ anyị nwere VM ndị ahịa RED abụọ na VM ndị ahịa GREEN abụọ. Ka anyị chee na igwe ndị a dị na hypervisors abụọ n'ụzọ dị otú a:
N'oge a, nke a bụ naanị virtualization nke sava 4 na ọ dịghị ihe ọzọ, ebe ọ bụ na ihe niile anyị mere bụ virtualize 4 sava, na-etinye ha na abụọ anụ ahụ sava. Na ruo ugbu a, ha adịghị ọbụna jikọọ na netwọk.
Iji mee igwe ojii, anyị kwesịrị ịgbakwunye ọtụtụ ihe. Nke mbụ, anyị na-emezi akụkụ netwọk ahụ - anyị kwesịrị ijikọ igwe 4 ndị a na abụọ, na ndị ahịa chọrọ njikọ L2. Ị nwere ike iji mgba ọkụ ma hazie ogwe ya na ntụziaka ya wee dozie ihe niile site na iji akwa linux ma ọ bụ, maka ndị ọrụ dị elu karị, openvswitch (anyị ga-alaghachi na nke a ma emechaa). Ma enwere ike inwe ọtụtụ netwọkụ, na ịkwanye L2 mgbe niile site na mgba ọkụ abụghị echiche kachasị mma - enwere ngalaba dị iche iche, tebụl ọrụ, ọnwa nke ichere ka ngwa ngwa mechaa, izu nke nchọpụta nsogbu - na ụwa nke oge a. ịbịaru nso anaghịzi arụ ọrụ. Na ngwa ngwa otu ụlọ ọrụ ghọtara nke a, ọ na-adịrị ya mfe ịga n'ihu. Ya mere, n'etiti hypervisors anyị ga-ahọrọ L3 netwọk nke anyị mebere igwe ga-ekwurịta okwu, na n'elu nke a L3 netwọk anyị ga-ewu virtual L2 overlay netwọk ebe okporo ụzọ nke anyị mebere igwe ga-agba ọsọ. Ị nwere ike iji GRE, Geneve ma ọ bụ VxLAN dị ka encapsulation. Ka anyị lekwasị anya na nke ikpeazụ ugbu a, n'agbanyeghị na ọ dịghị mkpa karịsịa.
Anyị kwesịrị ịchọta VTEP ebe (Atụrụ m anya na onye ọ bụla maara okwu VxLAN). Ebe ọ bụ na anyị nwere netwọk L3 na-abịa ozugbo site na sava, ọ dịghị ihe na-egbochi anyị itinye VTEP na sava n'onwe ha, na OVS (OpenvSwitch) magburu onwe ya n'ime nke a. N'ihi ya, anyị nwetara atụmatụ a:
Ebe ọ bụ na a ga-ekewarịrị okporo ụzọ n'etiti VM, ọdụ ụgbọ mmiri chere igwe mebere ga-enwe ọnụọgụ vlan dị iche iche. Nọmba mkpado na-arụ ọrụ naanị n'ime otu mgba ọkụ mebere, ebe ọ bụ na mgbe etinyere ya na VxLAN anyị nwere ike wepu ya ngwa ngwa, ebe anyị ga-enwe VNI.
Ugbu a, anyị nwere ike ịmepụta igwe anyị na netwọk mebere maka ha n'enweghị nsogbu ọ bụla.
Otú ọ dị, gịnị ma ọ bụrụ na onye ahịa ahụ nwere igwe ọzọ, mana ọ nọ na netwọk dị iche? Anyị kwesịrị mgbọrọgwụ n'etiti netwọk. Anyị ga-eleba anya na nhọrọ dị mfe mgbe a na-eji okporo ụzọ etiti eme ihe - ya bụ, a na-ebugharị okporo ụzọ site na oghere netwọk pụrụ iche (ọ dị mma, dịka iwu, a na-ejikọta ha na ọnụ ọgụgụ nchịkwa, ya mere anyị ga-enwe otu ihe ahụ).
O yiri ka ọ dịghị ihe mgbagwoju anya - anyị na-eme ka a àkwà mmiri interface na njikwa ọnụ, ụgbọala okporo ụzọ na ya na si ebe anyị na-aga ya ebe anyị chọrọ ya. Ma nsogbu bụ na onye ahịa RED chọrọ iji netwọk 10.0.0.0/24, na onye ahịa GREEN chọrọ iji netwọk 10.0.0.0/24. Ya bụ, anyị na-amalite ịgbakọ oghere adreesị. Na mgbakwunye, ndị ahịa achọghị ka ndị ahịa ndị ọzọ nwee ike ịbanye na netwọkụ dị n'ime ha, nke nwere ezi uche. Iji kewaa netwọkụ na okporo ụzọ data ndị ahịa, anyị ga-ekenye oghere aha dị iche iche maka nke ọ bụla n'ime ha. Namespace bụ n'ezie nnomi nke nchịkọta netwọkụ Linux, ya bụ, ndị ahịa nọ na namespace RED dịpụrụ adịpụ kpamkpam na ndị ahịa na aha ohere GREEN (nke ọma, a na-ahapụ ma ọ bụ na-agagharị n'etiti netwọk ndị ahịa ndị a site na aha aha ndabara ma ọ bụ na ngwá ọrụ ụgbọ njem).
Ya bụ, anyị na-enweta eserese a:
Ọwara L2 na-agbakọta site na ọnụ kọmpụta niile gaa na ọnụ njikwa. ọnụ ebe L3 interface maka netwọk ndị a dị, nke ọ bụla n'ime aha aha raara onwe ya nye maka iche.
Otú ọ dị, anyị chefuru ihe kacha mkpa. Igwe mebere igwe ga-enye onye ahịa ọrụ, ya bụ, ọ ga-enwerịrị opekata mpe otu interface mpụga nke enwere ike iru ya. Ya bụ, anyị kwesịrị ịpụ n'ime ụwa. Enwere nhọrọ dị iche iche ebe a. Ka anyị mee nhọrọ kachasị mfe. Anyị ga-agbakwunye otu netwọk na onye ahịa ọ bụla, nke ga-adị irè na netwọk onye na-eweta ya agaghị ejikọta ya na netwọk ndị ọzọ. Netwọk ahụ nwekwara ike ịgbakọta wee lelee VRF dị iche iche n'akụkụ netwọk ndị na-eweta ya. Data netwọk ga-ebikwa n'aha aha nke onye ahịa ọ bụla. Agbanyeghị, ha ka ga-aga na mpụga ụwa site na otu interface anụ ahụ (ma ọ bụ nkekọ, nke bụ ihe ezi uche dị na ya). Iji kewaa okporo ụzọ ndị ahịa, okporo ụzọ na-aga n'èzí ga-eji akara VLAN ekenye onye ahịa.
N'ihi ya, anyị nwetara eserese a:
Ajụjụ ezi uche dị na ya bụ gịnị kpatara na ị gaghị eme ọnụ ụzọ ámá na ọnụ ọnụ compute n'onwe ha? Nke a abụghị nnukwu nsogbu; Ọzọkwa, ọ bụrụ na ịgbanwuo rawụta ekesa (DVR), nke a ga-arụ ọrụ. N'ọnọdụ a, anyị na-atụle nhọrọ kachasị mfe yana ọnụ ụzọ etiti, nke a na-eji na ndabara na Openstack. Maka ọrụ dị elu, ha ga-eji ma rawụta na-ekesa na teknụzụ ngwa ngwa dị ka SR-IOV na Passthrough, mana dịka ha na-ekwu, nke ahụ bụ akụkọ dị iche. Nke mbụ, ka anyị leba anya na akụkụ bụ isi, mgbe ahụ anyị ga-abanye na nkọwa.
N'ezie, atụmatụ anyị adịlarị ịrụ ọrụ, mana enwere nuances ole na ole:
- Anyị kwesịrị ichekwa igwe anyị n'ụzọ ụfọdụ, ya bụ, tinye nzacha na ngbanwe ihu onye ahịa.
- Mee ka igwe mebere nweta adreesị IP na-akpaghị aka, ka ị ghara ịbanye na ya na njikwa oge ọ bụla wee debanye aha adreesị ahụ.
Ka anyị malite na nchekwa igwe. Maka nke a ị nwere ike iji banal iptables, gịnị kpatara na ọ bụghị.
Ya bụ, ugbu a topology anyị aghọwo ntakịrị mgbagwoju anya:
Ka anyị gaa n'ihu. Anyị kwesịrị itinye ihe nkesa DHCP. Ebe kacha mma ịchọta sava DHCP maka onye ahịa ọ bụla ga-abụ ọnụ njikwa nke akpọtụrụla n'elu, ebe oghere aha dị:
Agbanyeghị, enwere obere nsogbu. Kedu ihe ma ọ bụrụ na ihe niile malitegharịa na ozi niile gbasara adreesị mgbazinye na DHCP ga-apụ n'anya. Ọ bụ ihe ezi uche dị na ya na a ga-enye igwe ndị ahụ adreesị ọhụrụ, nke na-adịghị mma. Enwere ụzọ abụọ ebe a - ma jiri ngalaba aha wee gbakwunye ihe nkesa DNS maka onye ahịa ọ bụla, mgbe ahụ adreesị agaghị adị anyị mkpa karịsịa (dị ka akụkụ netwọk na k8s) - mana enwere nsogbu na netwọk dị n'èzí, ebe ọ bụ na adreesị ahụ agaghị adị anyị mkpa. Enwere ike ịnye adreesị n'ime ha site na DHCP - ịchọrọ mmekọrịta na sava DNS na ikpo okwu igwe ojii na ihe nkesa DNS dị n'èzí, nke n'echiche m adịghị agbanwe agbanwe, mana ọ ga-ekwe omume. Ma ọ bụ nhọrọ nke abụọ bụ iji metadata - ya bụ, chekwaa ozi gbasara adreesị e nyere igwe ka ihe nkesa DHCP mara adreesị ọ ga-enye igwe ma ọ bụrụ na igwe enwetala adreesị. Nhọrọ nke abụọ dị mfe ma na-agbanwe agbanwe, ebe ọ na-enye gị ohere ịchekwa ozi ndị ọzọ gbasara ụgbọ ala ahụ. Ugbu a, ka anyị tinye metadata onye nnọchi anya na eserese ahụ:
Ihe ọzọ dị mkpa nke kwesịrị ikwurịta bụ ikike iji otu netwọk mpụga site na ndị ahịa niile, ebe ọ bụ na netwọk mpụga, ọ bụrụ na ha ga-adị irè na netwọk dum, ọ ga-esi ike - ịkwesịrị ịkenye na ịchịkwa oke nke netwọk ndị a. Ikike iji otu netwọk nke ahaziri ahazi maka ndị ahịa niile ga-aba uru nke ukwuu mgbe ị na-eke igwe ojii. Nke a ga-eme ka ọ dị mfe ibunye igwe n'ihi na anyị agaghị enyocha ebe nchekwa data wee họrọ oghere adreesị pụrụ iche maka netwọk mpụga onye ahịa ọ bụla. Tụkwasị na nke ahụ, anyị nwere ike ịdebanye aha netwọk mpụga n'ihu na n'oge ntinye akwụkwọ anyị ga-achọ naanị ijikọ adreesị mpụga na igwe ndị ahịa.
Na ebe a NAT bịara nyere anyị aka - anyị ga-eme ka ndị ahịa nwee ike ịnweta ụwa n'èzí site na oghere aha ndabara site na iji ntụgharị NAT. Ọfọn, nke a bụ obere nsogbu. Nke a dị mma ma ọ bụrụ na ihe nkesa ahịa na-eme dị ka onye ahịa ọ bụghị dị ka ihe nkesa - ya bụ, ọ na-amalite kama ịnakwere njikọ. Mana maka anyị ọ ga-abụ ụzọ ọzọ. N'okwu a, anyị kwesịrị ime NAT ebe anyị na-aga ka mgbe ị na-anata okporo ụzọ, ọnụ ụzọ njikwa ghọtara na e bu n'obi na okporo ụzọ a bụ maka igwe mebere A nke onye ahịa A, nke pụtara na anyị kwesịrị ịme ntụgharị NAT site na adreesị mpụga, dịka ọmụmaatụ 100.1.1.1. .10.0.0.1, gaa na adreesị ime 100. N'okwu a, ọ bụ ezie na ndị ahịa niile ga-eji otu netwọkụ ahụ, a na-echekwa ikewapụ n'ime ya kpamkpam. Ya bụ, anyị kwesịrị ime dNAT na sNAT na ọnụ njikwa. Ma iji otu netwọkụ nwere adreesị na-ese n'elu mmiri ma ọ bụ netwọk mpụga, ma ọ bụ abụọ n'otu oge, dabere n'ihe ịchọrọ iwebata n'igwe ojii. Anyị agaghị etinye adreesị na-ese n'elu eserese na eserese ahụ, mana ha ga-ahapụ netwọkụ mpụga agbakwunyere na mbụ - onye ahịa ọ bụla nwere netwọkụ mpụga nke ya (na eserese a gosipụtara dị ka vlan 200 na XNUMX na interface mpụga).
N'ihi ya, anyị nwetara ihe ngwọta na-adọrọ mmasị ma n'otu oge ahụ nke ọma echepụtara nke ọma, nke nwere mgbanwe ụfọdụ mana ọ nwebeghị usoro nnabata mmejọ.
Nke mbụ, anyị nwere naanị otu ọnụ njikwa - ọdịda ya ga-eduga na ọdịda nke sistemụ niile. Iji dozie nsogbu a, ịkwesịrị ịme ma ọ dịkarịa ala quorum nke ọnụ 3. Ka anyị tinye nke a na eserese a:
Dị ka o kwesịrị ịdị, ọnụ ọnụ niile na-emekọrịta ọnụ ma mgbe ọnụ na-arụ ọrụ ga-apụ, ọnụ ọzọ ga-eweghara ọrụ ya.
Nsogbu na-esote bụ diski igwe mebere. N'oge a, a na-echekwa ha na hypervisors n'onwe ha, na n'ọnọdụ nsogbu na hypervisor, anyị na-atụfu data niile - na ọnụnọ nke mwakpo agaghị enyere ebe a aka ma ọ bụrụ na anyị efughị diski ahụ, mana ihe nkesa dum. Iji mee nke a, anyị kwesịrị ịrụ ọrụ nke ga-eme ka njedebe dị n'ihu maka ụdị nchekwa ụfọdụ. Kedu ụdị nchekwa ọ ga-abụ abụghị ihe dị anyị mkpa karịsịa, mana o kwesịrị ichebe data anyị site na ọdịda nke diski na ọnụ, na ikekwe ụlọ ọrụ dum. E nwere ọtụtụ nhọrọ ebe a - e nwere, n'ezie, SAN netwọk na Fiber Channel, ma ka anyị na-eme ihe n'eziokwu - FC bụ ugbua a relic nke gara aga - ihe analogue nke E1 na iga - ee, ekwenyere m, ọ ka na-eji, ma. naanị ebe ọ na-agaghị ekwe omume na-enweghị ya. Ya mere, agaghị m eji aka m wepụta netwọkụ FC na 2020, n'ịmara na enwere ụzọ ndị ọzọ na-atọ ụtọ karị. Ọ bụ ezie na onye ọ bụla nke ya, enwere ike ịnwe ndị kwenyere na FC na njedebe ya niile bụ ihe anyị chọrọ - agaghị m arụ ụka, onye ọ bụla nwere echiche nke ya. Otú ọ dị, ngwọta kachasị mma n'echiche m bụ iji SDS, dị ka Ceph.
Ceph na-enye gị ohere iji wuo nchekwa nchekwa data dị ukwuu yana ọtụtụ nhọrọ ndabere enwere ike ịmalite, na-amalite site na koodu na-enyocha nha anya (ihe yiri wara 5 ma ọ bụ 6) na-ejedebe na ntinye data zuru ezu na diski dị iche iche, na-eburu n'uche ọnọdụ diski dị na ya. sava, na ihe nkesa na kabinet, wdg.
Iji wuo Ceph ị ga-achọ ọnụ ụzọ atọ ọzọ. A ga-emekwa mmekọrịta na nchekwa ahụ site na netwọk site na iji ngọngọ, ihe na ọrụ nchekwa faịlụ. Ka anyị tinye nchekwa na schema:
Rịba ama: ị nwekwara ike ịme ọnụ ọnụ ọnụ ọgụgụ hyperconverged - nke a bụ echiche nke ijikọta ọtụtụ ọrụ n'otu ọnụ - dịka ọmụmaatụ, nchekwa+mgbakọ - na-enyeghị oghere pụrụ iche maka nchekwa ceph. Anyị ga-enweta otu atụmatụ nnabata mmejọ - ebe SDS ga-edobe data na ọkwa ndoputa anyị ezipụtara. Otú ọ dị, ọnụ ọnụ hyperconverged na-abụ nkwekọrịta mgbe niile - ebe ọ bụ na oghere nchekwa anaghị ekpo ọkụ dị ka ọ dị na nlele mbụ (ebe ọ bụ na ọ dịghị igwe mebere na ya) - ọ na-etinye ihe CPU na-arụ ọrụ na SDS (n'ezie, ọ na-eme ihe niile). mmeghari na mgbake mgbe ọdịda nke ọnụ, diski, wdg). Ya bụ, ị ga-atụfu ụfọdụ ike nke ọnụ ọgụgụ kọmpụta ma ọ bụrụ na ị jikọta ya na nchekwa.
All stof kwesịrị jisiri n'ụzọ ụfọdụ - anyị mkpa ihe site na nke anyị nwere ike ịmepụta a igwe, a netwọk, a mebere rawụta, wdg Iji mee nke a, anyị ga-agbakwunyere a ọrụ na njikwa ọnụ nke ga-eme dị ka a dashboard - na Onye ahịa ga-enwe ike ijikọ na portal a site na http / https wee mee ihe niile ọ chọrọ (nke ọma, ọ fọrọ nke nta ka ọ bụrụ).
N'ihi ya, anyị nwere ugbu a usoro na-anabata mmejọ. A ghaghị ijikwa ihe niile nke akụrụngwa a n'ụzọ ụfọdụ. A kọwaburu ya na Openstack bụ otu ọrụ, nke ọ bụla na-enye otu ọrụ. Dị ka anyị na-ahụ, e nwere ihe karịrị ezuru ihe dị mkpa ka ahazi na ịchịkwa. Taa, anyị ga-ekwu maka akụkụ netwọk.
Neutron architecture
Na OpenStack, ọ bụ Neutron bụ onye na-ahụ maka ijikọ ọdụ ụgbọ mmiri mebere igwe na netwọọdụ L2 nkịtị, na-ahụ maka ụzọ okporo ụzọ n'etiti VM dị na netwọkụ L2 dị iche iche, yana ntụgharị ihu, na-enye ọrụ dị ka NAT, Floating IP, DHCP, wdg.
N'ebe dị elu, a pụrụ ịkọwa ọrụ nke ọrụ netwọk (akụkụ bụ isi) dị ka ndị a.
Mgbe ịmalite VM, ọrụ netwọk:
- Na-emepụta ọdụ ụgbọ mmiri maka VM (ma ọ bụ ọdụ ụgbọ mmiri) enyere ma gwa ọrụ DHCP gbasara ya;
- Emepụtara ngwaọrụ netwọkụ mebere ọhụrụ (site na libvirt);
- VM na-ejikọta na ọdụ ụgbọ mmiri (s) emepụtara na nzọụkwụ 1;
N'ụzọ dị ịtụnanya, ọrụ Neutron dabere na usoro ọkọlọtọ maara onye ọ bụla dabara na Linux - aha aha, iptables, linux bridges, openvswitch, conntrack, wdg.
Ekwesịrị ịkọwapụta ozugbo na Neutron abụghị onye njikwa SDN.
Neutron nwere ọtụtụ ihe jikọrọ ọnụ:
Ihe nkesa na-emeghe-neutron bụ daemon na-arụ ọrụ na arịrịọ onye ọrụ site na API. Mmụọ ọjọọ a adịghị etinye aka na ịdenye njikọ netwọkụ ọ bụla, mana na-enye ozi dị mkpa maka nke a na plugins ya, nke na-ahazi ihe netwọk chọrọ. Ndị nnọchite Neutron na oghere OpenStack debanye aha na sava Neutron.
Neutron-sava bụ ngwa edere na Python, nke nwere akụkụ abụọ:
- Ọrụ REST
- Ngwa mgbakwunye Neutron (isi/ọrụ)
Emebere ọrụ REST ka ọ nweta oku API site na akụrụngwa ndị ọzọ (dịka ọmụmaatụ, arịrịọ ịnye ụfọdụ ozi, wdg.)
Ngwa mgbakwunye bụ akụrụngwa/modul sọftụwia nke a na-akpọ n'oge arịrịọ API - ya bụ, njirimara nke ọrụ na-esite na ha. A na-ekewa ngwa mgbakwunye ụzọ abụọ - ọrụ na mgbọrọgwụ. Dị ka a na-achị, ngwa mgbakwunye ịnyịnya na-ahụ maka ijikwa oghere adreesị na njikọ L2 n'etiti VM, yana plugins ọrụ enyelarị ọrụ ndị ọzọ dị ka VPN ma ọ bụ FW.
Enwere ike ilele ndepụta plugins dị taa dịka ọmụmaatụ
Enwere ike inwe ọtụtụ plugins ọrụ, mana enwere ike ịnwe naanị otu ngwa mgbakwunye.
oghere-neutron-ml2 bụ ọkọlọtọ Openstack mgbọrọgwụ ngwa mgbakwunye. Ngwa mgbakwunye a nwere ụkpụrụ ụlọ modular (n'adịghị ka onye bu ya ụzọ) wee hazie ọrụ netwọkụ site na ndị ọkwọ ụgbọ ala jikọtara ya. Anyị ga-elele ngwa mgbakwunye n'onwe ya ntakịrị oge, ebe ọ bụ na ọ na-enye mgbanwe nke OpenStack nwere na akụkụ netwọkụ. Enwere ike dochie ngwa mgbakwunye mgbọrọgwụ (dịka ọmụmaatụ, Contrail Networking na-eme mgbanwe dị otú ahụ).
Ọrụ RPC (rabbitmq-sava) - ọrụ na-enye njikwa kwụ n'ahịrị na mmekọrịta ya na ọrụ OpenStack ndị ọzọ, yana mmekọrịta n'etiti ndị ọrụ ọrụ netwọk.
Ndị ọrụ netwọk - ndị ọrụ nke dị na ọnụ ọnụ nke ọ bụla, nke a na-ahazi ọrụ netwọk.
Enwere ọtụtụ ụdị ndị nnọchi anya.
Onye nnọchi anya bụ Onye nnọchi anya L2. Ndị ọrụ ndị a na-agba ọsọ na nke ọ bụla hypervisors, gụnyere akara njikwa (n'ụzọ ziri ezi, na ọnụ ọgụgụ niile na-enye ọrụ ọ bụla maka ndị bi n'ụlọ) na isi ọrụ ha bụ ijikọ igwe mebere na netwọk L2 nkịtị, ma na-emepụta ọkwa mgbe ihe ọ bụla mere. dịka ọmụmaatụ gbanyụọ / gbanye ọdụ ụgbọ mmiri).
Na-esote, ọ dịghị obere mkpa gị n'ụlọnga bụ Onye nnọchi anya L3. Site na ndabara, onye ọrụ a na-agba ọsọ naanị na oghere netwọk (mgbe ọ na-ejikọta ọnụ netwọk ahụ na njikwa njikwa) ma na-enye ụzọ n'etiti netwọk ndị nwe ụlọ (ma n'etiti netwọk ya na netwọk nke ndị nwe ụlọ ndị ọzọ, na-enwetakwa ya na mpụga ụwa, na-enye. NAT, yana ọrụ DHCP). Agbanyeghị, mgbe ị na-eji DVR (rauta ekesa), mkpa maka ngwa mgbakwunye L3 na-apụtakwa na ọnụ ọnụ.
Onye nnọchi anya L3 na-eji oghere aha Linux iji nye onye nwe ụlọ ọ bụla usoro netwọkụ dịpụrụ adịpụ yana ọrụ nke ndị na-anya ụgbọ ala na-ebugharị okporo ụzọ ma na-enye ọrụ ọnụ ụzọ maka netwọk Layer 2.
database - nchekwa data nke njirimara netwọkụ, subnets, ọdụ ụgbọ mmiri, ọdọ mmiri, wdg.
N'ezie, Neutron na-anabata arịrịọ API site na okike nke ụlọ ọrụ netwọkụ ọ bụla, na-akwado arịrịọ ahụ, yana site na RPC (ọ bụrụ na ọ na-enweta ụfọdụ ngwa mgbakwunye ma ọ bụ onye nnọchi anya) ma ọ bụ REST API (ọ bụrụ na ọ na-ekwurịta okwu na SDN) na-ebuga ndị nnọchi anya (site na plugins) ntuziaka dị mkpa iji hazie ọrụ achọrọ.
Ugbu a, ka anyị tụgharịa na ntinye ule (otu esi etinye ya na ihe dị na ya, anyị ga-ahụ mgbe e mesịrị na akụkụ bara uru) ma hụ ebe akụkụ nke ọ bụla dị:
(overcloud) [stack@undercloud ~]$ openstack network agent list
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| ID | Agent Type | Host | Availability Zone | Alive | State | Binary |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| 10495de9-ba4b-41fe-b30a-b90ec3f8728b | Open vSwitch agent | overcloud-novacompute-1.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| 1515ad4a-5972-46c3-af5f-e5446dff7ac7 | L3 agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-l3-agent |
| 322e62ca-1e5a-479e-9a96-4f26d09abdd7 | DHCP agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-dhcp-agent |
| 9c1de2f9-bac5-400e-998d-4360f04fc533 | Open vSwitch agent | overcloud-novacompute-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| d99c5657-851e-4d3c-bef6-f1e3bb1acfb0 | Open vSwitch agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| ff85fae6-5543-45fb-a301-19c57b62d836 | Metadata agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-metadata-agent |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
(overcloud) [stack@undercloud ~]$ 
N'ezie, nke ahụ bụ usoro niile nke Neutron. Ugbu a, ọ bara uru itinye oge na ngwa mgbakwunye ML2.
Modul oyi akwa 2
Dịka e kwuru n'elu, ngwa mgbakwunye bụ ngwa mgbakwunye mgbọrọgwụ OpenStack ma nwee ụkpụrụ ụlọ.
Onye bu ụzọ ML2 ngwa mgbakwunye nwere usoro monolithic, nke na-ekweghị, dịka ọmụmaatụ, iji ngwakọta nke teknụzụ dị iche iche n'otu nrụnye. Dịka ọmụmaatụ, ịnweghị ike iji ma openvswitch na linuxbridge n'otu oge - ma nke mbụ ma ọ bụ nke abụọ. N'ihi nke a, e mepụtara ngwa mgbakwunye ML2 nwere ihe owuwu ya.
ML2 nwere akụkụ abụọ - ụdị ọkwọ ụgbọ ala abụọ: Ụdị ọkwọ ụgbọ ala na ndị ọkwọ ụgbọ ala.
Ụdị ndị ọkwọ ụgbọala chọpụta teknụzụ ndị a ga-eji hazie njikọ netwọkụ, dịka ọmụmaatụ VxLAN, VLAN, GRE. N'otu oge ahụ, onye ọkwọ ụgbọ ala na-enye ohere iji teknụzụ dị iche iche. Teknụzụ ọkọlọtọ bụ VxLAN encapsulation maka netwọk machie na netwọk mpụga vlan.
Ụdị ọkwọ ụgbọala gụnyere ụdị netwọk ndị a:
ewepụghị - netwọk na-enweghị mkpado
VLAN - mkpado netwọk
Obodo - ụdị netwọk pụrụ iche maka nrụnye niile n'ime otu (nrụnye dị otú ahụ dị mkpa maka ndị mmepe ma ọ bụ maka ọzụzụ)
GRE - netwọk machie site na iji ọwara GRE
VxLAN - machie netwọk site na iji tunnels VxLAN
Ndị ọkwọ ụgbọ ala kọwapụta ngwaọrụ ndị na-ahụ na nhazi nke teknụzụ akọwapụtara na ụdị ọkwọ ụgbọ ala - dịka ọmụmaatụ, openvswitch, sr-iov, opendaylight, OVN, wdg.
Dabere na mmejuputa onye ọkwọ ụgbọ ala a, a ga-eji ma ọ bụ ndị ọrụ Neutron na-achịkwa, ma ọ bụ njikọ na njikwa SDN dịpụrụ adịpụ ga-eji, nke na-elekọta nsogbu niile metụtara ịhazi netwọk L2, ntụgharị, wdg.
Ọmụmaatụ: ọ bụrụ na anyị na-eji ML2 yana OVS, mgbe ahụ, a na-etinye onye nnọchi anya L2 na ọnụ ọnụ mgbakọ ọ bụla na-ejikwa OVS. Otú ọ dị, ọ bụrụ na anyị na-eji, dịka ọmụmaatụ, OVN ma ọ bụ OpenDayLight, mgbe ahụ, njikwa nke OVS na-abịa n'okpuru ikike ha - Neutron, site na mgbọrọgwụ ngwa mgbakwunye, na-enye onye njikwa iwu iwu, ma ọ na-emerịrị ihe a gwara ya.
Ka anyị kpochaa na Open vSwitch
N'oge a, otu n'ime isi ihe nke OpenStack bụ Open vSwitch.
Mgbe ị na-etinye OpenStack na-enweghị SDN ọzọ na-ere ahịa dị ka Juniper Contrail ma ọ bụ Nokia Nuage, OVS bụ akụkụ netwọkụ bụ isi nke netwọkụ ígwé ojii yana, yana iptables, conntrack, namespaces, na-enye gị ohere ịhazi netwọọdụ mkpuchi ọtụtụ ndị nwe ụlọ zuru oke. Dị ka o kwesịrị ịdị, enwere ike dochie akụkụ a, dịka ọmụmaatụ, mgbe ị na-eji ngwọta SDN nke ndị ọzọ (ndị na-ere) ndị ọzọ.
OVS bụ mgba ọkụ sọftụwia mepere emepe emebere maka ojiji na gburugburu mebere nke ọma dị ka onye na-ebugharị okporo ụzọ mebere.
N'oge a, OVS nwere ezigbo ọrụ, nke gụnyere teknụzụ dịka QoS, LACP, VLAN, VxLAN, GENEVE, OpenFlow, DPDK, wdg.
Mara: OVS echeghị na mbụ dị ka mgba ọkụ dị nro maka ọrụ telecom juru eju nke ukwuu yana emebere ya maka obere bandwidth na-achọ ọrụ IT dị ka sava WEB ma ọ bụ nkesa ozi. Otú ọ dị, a na-emepewanye OVS na mmejuputa iwu nke OVS ugbu a emeela ka arụmọrụ ya na ike ya dịkwuo mma, nke na-enye ohere ka ndị ọrụ telecom na-arụ ọrụ na-arụ ọrụ dị ukwuu, dịka ọmụmaatụ, enwere mmejuputa OVS na nkwado maka ngwa ngwa DPDK.
Enwere akụkụ atọ dị mkpa nke OVS ị kwesịrị ịma:
- Modul kernel - akụkụ nke dị na oghere kernel nke na-arụ ọrụ okporo ụzọ dabere na iwu enwetara site na njikwa njikwa;
- Nkechi daemon (ovs-vswitchd) bụ usoro ewepụtara na oghere ndị ọrụ nke na-ahụ maka ịhazi modul kernel - ya bụ, ọ na-anọchite anya mgbagha nke ọrụ mgba ọkụ.
- Ihe nkesa nchekwa data - nchekwa data mpaghara dị na onye ọbịa ọ bụla na-agba ọsọ OVS, nke echekwara nhazi ya. Ndị na-ahụ maka SDN nwere ike ịkparịta ụka site na modul a site na iji protocol OVSDB.
Ihe ndị a niile na-esonyere ya na usoro nyocha na njikwa ọrụ, dị ka ovs-vsctl, ovs-appctl, ovs-ofctl, wdg.
Ka ọ dị ugbu a, ndị na-ahụ maka telecom na-eji Opentack na-ebugharị ọrụ netwọk na ya, dị ka EPC, SBC, HLR, wdg. Ụfọdụ ọrụ nwere ike ịdị ndụ na-enweghị nsogbu na OVS dị ka ọ dị, ma dịka ọmụmaatụ, EPC na-ahazi okporo ụzọ ndị debanyere aha - mgbe ahụ ọ na-agafe. nnukwu okporo ụzọ (ugbu a oke okporo ụzọ na-eru ọtụtụ narị gigabits kwa nkeji). Dị ka o kwesịrị ịdị, ịkwọ ụgbọ okporo ígwè dị otú ahụ site na oghere kernel (ebe ọ bụ na onye na-ebugharị dị na ndabara) abụghị echiche kacha mma. Ya mere, a na-ebugharị OVS kpamkpam na oghere onye ọrụ site na iji teknụzụ ngwa ngwa DPDK iji bufee okporo ụzọ site na NIC gaa na ohere onye ọrụ na-agafe kernel.
Mara: maka igwe ojii etinyere maka ọrụ telecom, ọ ga-ekwe omume ịwepụta okporo ụzọ site na ọnụ ọnụ compute na-agafe OVS ozugbo gaa na ngwa ngbanwe. A na-eji usoro SR-IOV na Passthrough mee ihe maka nke a.
Kedu ka nke a si arụ ọrụ na nhazi n'ezie?
Ọfọn, ugbu a ka anyị gaa n'ihu na akụkụ bara uru ma hụ ka ọ na-arụ ọrụ na omume.
Nke mbụ, ka anyị bunye nrụnye Opentack dị mfe. Ebe ọ bụ na enweghị m ihe nkesa dị n'aka maka nnwale, anyị ga-achịkọta prototype na otu ihe nkesa anụ ahụ site na igwe mebere. Ee, n'ụzọ nkịtị, ngwọta dị otú ahụ adịghị adabara maka ebumnuche azụmahịa, ma ịhụ ihe atụ nke otú netwọk ahụ si arụ ọrụ na Openstack, ntinye dị otú ahụ zuru ezu maka anya. Ọzọkwa, nrụnye dị otú ahụ na-adọrọ mmasị karị maka ebumnuche ọzụzụ - ebe ị nwere ike ijide okporo ụzọ, wdg.
Ebe ọ bụ na naanị anyị kwesịrị ịhụ akụkụ bụ isi, anyị enweghị ike iji ọtụtụ netwọkụ ma bulie ihe niile site na iji naanị netwọkụ abụọ, na netwọkụ nke abụọ na okirikiri nhọrọ ukwuu ga-eji naanị maka ịnweta undercloud na sava DNS. Anyị agaghị emetụ aka na netwọk dị n'èzí ugbu a - nke a bụ isiokwu maka isiokwu dị iche iche.
Yabụ, ka anyị bido n'usoro. Mbụ, ntakịrị tiori. Anyị ga-arụnye Openstack site na iji TripleO (Openstack na Openstack). Ihe kachasị mkpa nke TripleO bụ na anyị wụnye Openstack niile-in-one (ya bụ, n'otu ọnụ), nke a na-akpọ undercloud, wee jiri ike nke Opentack arụnyere iji wụnye Openstack ezubere maka ịrụ ọrụ, nke a na-akpọ overcloud. Undercloud ga-eji ikike okike ya jikwaa sava anụ ahụ (ọla efu) - ọrụ Ironic - iji nye ndị hypervisors ga-arụ ọrụ nke ịgbakọ, njikwa, ọnụ nchekwa. Ya bụ, anyị anaghị eji ngwa ndị ọzọ na-ebuga Openstack - anyị na-ebuga Openstack site na iji Opentack. Ọ ga-edo anya karịa ka nrụnye na-aga n'ihu, n'ihi ya, anyị agaghị akwụsị ebe ahụ ma gaa n'ihu.
Mara: N'isiokwu a, n'ihi ịdị mfe, ejighị m ikewapụ netwọkụ maka netwọọdụ n'ime Openstack, mana a na-ebugharị ihe niile site na iji naanị otu netwọkụ. Otú ọ dị, ọnụnọ ma ọ bụ enweghị ikewapụ netwọk adịghị emetụta ọrụ bụ isi nke ngwọta - ihe niile ga-arụ ọrụ kpọmkwem dị ka mgbe ị na-eji ihe dịpụrụ adịpụ, ma okporo ụzọ ga-agafe na otu netwọk ahụ. Maka nrụnye azụmahịa, ọ dị mkpa iji kewapụ iche site na iji vlans dị iche iche na ihu. Dịka ọmụmaatụ, okporo ụzọ njikwa nchekwa ceph na okporo ụzọ data n'onwe ya (igwe ịnweta diski, wdg) mgbe dịpụrụ adịpụ na-eji subnets dị iche iche (Nchekwa Nchekwa na Nchekwa) na nke a na-enye gị ohere ime ka ngwọta ahụ dịkwuo njọ site n'ịkesa okporo ụzọ a, dịka ọmụmaatụ. , n'ofe ọdụ ụgbọ mmiri dị iche iche, ma ọ bụ iji profaịlụ QoS dị iche iche maka okporo ụzọ dị iche iche ka okporo ụzọ data ghara iwepụ okporo ụzọ mgbaàmà. N'ọnọdụ anyị, ha ga-aga n'otu netwọkụ ahụ ma n'eziokwu nke a anaghị egbochi anyị n'ụzọ ọ bụla.
Mara: Ebe ọ bụ na anyị ga-agba igwe mebere n'ime ebe mebere igwe dabere na igwe mebere, anyị ga-ebu ụzọ mee ka ọ nwee ike ime nke ọma.
Ị nwere ike ịlele ma agbanyere ikike ime ka ọ bụrụ na o nweghị nke a:
[root@hp-gen9 bormoglotx]# cat /sys/module/kvm_intel/parameters/nested N [root@hp-gen9 bormoglotx]#Ọ bụrụ n’ịhụ mkpụrụedemede N, yabụ anyị na-akwado nkwado maka njiri mara nke ọma dịka ntuziaka ọ bụla ị hụrụ na netwọkụ, dịka ọmụmaatụ. .
Anyị kwesịrị ikpokọta sekit ndị a site na igwe mebere:
N'ọnọdụ m, iji jikọọ igwe mebere nke bụ akụkụ nke nrụnye n'ọdịnihu (na enwetara m 7 n'ime ha, mana ị nwere ike nweta 4 ma ọ bụrụ na ịnweghị ọtụtụ ihe onwunwe), ejiri m OpenvSwitch. Emepụtara m otu àkwà mmiri ovs wee jikọọ igwe mebere ya na ya site na otu ọdụ ụgbọ mmiri. Iji mee nke a, m mepụtara faịlụ xml dị ka nke a:
[root@hp-gen9 ~]# virsh net-dumpxml ovs-network-1
<network>
<name>ovs-network-1</name>
<uuid>7a2e7de7-fc16-4e00-b1ed-4d190133af67</uuid>
<forward mode='bridge'/>
<bridge name='ovs-br1'/>
<virtualport type='openvswitch'/>
<portgroup name='trunk-1'>
<vlan trunk='yes'>
<tag id='100'/>
<tag id='101'/>
<tag id='102'/>
</vlan>
</portgroup>
<portgroup name='access-100'>
<vlan>
<tag id='100'/>
</vlan>
</portgroup>
<portgroup name='access-101'>
<vlan>
<tag id='101'/>
</vlan>
</portgroup>
</network>A na-ekwupụta otu ọdụ ụgbọ mmiri atọ ebe a - ohere abụọ na otu ogwe (nke ikpeazụ dị mkpa maka sava DNS, mana ị nwere ike ime na-enweghị ya, ma ọ bụ tinye ya na igwe nnabata - nke ọ bụla dabara gị mma). Na-esote, na iji template a, anyị na-ekwupụta nke anyị site na virsh net-define:
virsh net-define ovs-network-1.xml
virsh net-start ovs-network-1
virsh net-autostart ovs-network-1 Ugbu a, anyị na-edezi nhazi ọdụ ụgbọ mmiri hypervisor:
[root@hp-gen9 ~]# cat /etc/sysconfig/network-scripts/ifcfg-ens1f0
TYPE=Ethernet
NAME=ens1f0
DEVICE=ens1f0
TYPE=OVSPort
DEVICETYPE=ovs
OVS_BRIDGE=ovs-br1
ONBOOT=yes
OVS_OPTIONS="trunk=100,101,102"
[root@hp-gen9 ~]
[root@hp-gen9 ~]# cat /etc/sysconfig/network-scripts/ifcfg-ovs-br1
DEVICE=ovs-br1
DEVICETYPE=ovs
TYPE=OVSBridge
BOOTPROTO=static
ONBOOT=yes
IPADDR=192.168.255.200
PREFIX=24
[root@hp-gen9 ~]# Mara: na ọnọdụ a, adreesị dị na ọdụ ụgbọ mmiri ovs-br1 agaghị enweta ya n'ihi na ọ nweghị mkpado vlan. Iji dozie nke a, ịkwesịrị ịnye iwu sudo ovs-vsctl set port ovs-br1 tag=100. Otú ọ dị, mgbe ịmalitegharịa, mkpado a ga-apụ n'anya (ọ bụrụ na onye ọ bụla maara otú e si eme ka ọ nọrọ n'ebe ahụ, m ga-enwe ekele dị ukwuu). Mana nke a adịghị mkpa, n'ihi na anyị ga-achọ naanị adreesị a n'oge nrụnye na agaghị achọ ya mgbe a na-ebugharị Opentack.
Ọzọ, anyị na-emepụta igwe n'okpuru Cloud:
virt-install -n undercloud --description "undercloud" --os-type=Linux --os-variant=centos7.0 --ram=8192 --vcpus=8 --disk path=/var/lib/libvirt/images/undercloud.qcow2,bus=virtio,size=40,format=qcow2 --network network:ovs-network-1,model=virtio,portgroup=access-100 --network network:ovs-network-1,model=virtio,portgroup=access-101 --graphics none --location /var/lib/libvirt/boot/CentOS-7-x86_64-Minimal-2003.iso --extra-args console=ttyS0N'oge echichi, ị na-edozi paramita niile dị mkpa, dị ka aha igwe, okwuntughe, ndị ọrụ, sava ntp, wdg, ị nwere ike hazie ọdụ ụgbọ mmiri ozugbo, mana maka mụ onwe m, mgbe echichi, ọ dị mfe ịbanye n'ime igwe. console ma dozie faịlụ ndị dị mkpa. Ọ bụrụ na ịnweela ihe onyonyo emebere, ị nwere ike iji ya, ma ọ bụ mee ihe m mere - budata onyonyo Centos 7 pere mpe wee jiri ya tinye VM.
Mgbe emechara nke ọma, ị kwesịrị ịnwe igwe mebere nke ị nwere ike ịwụnye undercloud
[root@hp-gen9 bormoglotx]# virsh list
Id Name State
----------------------------------------------------
6 dns-server running
62 undercloud runningNke mbụ, wụnye ngwaọrụ ndị dị mkpa maka usoro nrụnye:
sudo yum update -y
sudo yum install -y net-tools
sudo yum install -y wget
sudo yum install -y ipmitool
Nwụnye Undercloud
Anyị na-emepụta onye ọrụ nchịkọta, tọọ paswọọdụ, tinye ya na sudoer ma nye ya ikike ịme iwu mgbọrọgwụ site na sudo na-enweghị itinye paswọọdụ:
useradd stack
passwd stack
echo “stack ALL=(root) NOPASSWD:ALL” > /etc/sudoers.d/stack
chmod 0440 /etc/sudoers.d/stackUgbu a, anyị ezipụta aha zuru oke na faịlụ ndị ọbịa:
vi /etc/hosts
127.0.0.1 undercloud.openstack.rnd localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6Ọzọ, anyị na-agbakwunye ebe nchekwa ma wụnye ngwanro anyị chọrọ:
sudo yum install -y https://trunk.rdoproject.org/centos7/current/python2-tripleo-repos-0.0.1-0.20200409224957.8bac392.el7.noarch.rpm
sudo -E tripleo-repos -b queens current
sudo -E tripleo-repos -b queens current ceph
sudo yum install -y python-tripleoclient
sudo yum install -y ceph-ansibleMara: ọ bụrụ na ị naghị eme atụmatụ ịwụnye ceph, ịkwesighi itinye iwu metụtara ceph. Eji m ntọhapụ Queens, mana ị nwere ike iji nke ọ bụla masịrị gị.
Na-esote, detuo faịlụ nhazi undercloud na nchịkọta ndekọ ụlọ nke onye ọrụ:
cp /usr/share/instack-undercloud/undercloud.conf.sample ~/undercloud.confUgbu a, anyị kwesịrị imezi faịlụ a, na-edozi ya na nrụnye anyị.
Ịkwesịrị ịgbakwunye ahịrị ndị a na mmalite faịlụ:
vi undercloud.conf
[DEFAULT]
undercloud_hostname = undercloud.openstack.rnd
local_ip = 192.168.255.1/24
network_gateway = 192.168.255.1
undercloud_public_host = 192.168.255.2
undercloud_admin_host = 192.168.255.3
undercloud_nameservers = 192.168.255.253
generate_service_certificate = false
local_interface = eth0
local_mtu = 1450
network_cidr = 192.168.255.0/24
masquerade = true
masquerade_network = 192.168.255.0/24
dhcp_start = 192.168.255.11
dhcp_end = 192.168.255.50
inspection_iprange = 192.168.255.51,192.168.255.100
scheduler_max_attempts = 10Yabụ, ka anyị banye na ntọala:
undercloud_hostname - aha zuru oke nke ihe nkesa undercloud, ga-adabarịrị na ntinye na sava DNS
local_ip - adreesị undercloud mpaghara maka ịnye netwọkụ
netwọk_ọnụ ụzọ - otu adreesị mpaghara, nke ga-arụ ọrụ dị ka ọnụ ụzọ maka ịbanye n'èzí n'oge ntinye nke overcloud nodes, na-adabakwa na mpaghara ip.
undercloud_public_host - Adreesị API mpụga, a na-ekenye adreesị ọ bụla n'efu site na netwọk inyefe
undercloud_admin_host Adreesị API dị n'ime, a na-ekenye adreesị ọ bụla efu sitere na netwọk ntinye
undercloud_nameservers - ihe nkesa DNS
mepụta_service_certificate - ahịrị a dị ezigbo mkpa na ihe atụ ugbu a, n'ihi na ọ bụrụ na ịtọghị ya na ụgha, ị ga-enweta njehie n'oge echichi, a na-akọwa nsogbu ahụ na Red Hat bug tracker.
local_interface interface dị na netwọkụ mmekọrịta. A ga-ahazigharị interface a n'oge mbugharị n'okpuru Cloud, yabụ ịkwesịrị ịnwe oghere abụọ na undercloud - otu maka ịnweta ya, nke abụọ maka ịnye
local_mtu - MTU. Ebe ọ bụ na anyị nwere ụlọ nyocha nyocha na enwere m MTU nke 1500 na ọdụ ụgbọ mmiri nke mgbanwe OVS, ọ dị mkpa ịtọ ya na 1450 ka ngwugwu ekpuchiri na VxLAN wee gafere.
netwọk_cidr - netwọk mmekọrịta
ihe nkpuchi - iji NAT nweta netwọk dị n'èzí
masquerade_netwọk - netwọk ga-NATed
dhcp_mbido - adreesị mmalite nke ọdọ mmiri adreesị nke a ga-ekenye adreesị n'ọnụ ọnụ n'oge nnyefe overcloud
dhcp_njedebe - adreesị ikpeazụ nke ọdọ mmiri adreesị nke a ga-ekenye adreesị n'ọnụ ọnụ n'oge nnyefe overcloud
nyochaa_iprange - ọdọ mmiri nke adreesị dị mkpa maka introspection (ekwesịghị ijikọ na ọdọ mmiri dị n'elu)
oge nhazi_max_mgbalị - ọnụ ọgụgụ kachasị nke mgbalị iji wụnye overcloud (ga-abụrịrị karịa ma ọ bụ hà nhata na ọnụọgụ ọnụ)
Mgbe akọwara faịlụ ahụ, ịnwere ike ịnye iwu ka ibuga undercloud:
openstack undercloud install
Usoro a na-ewe site na 10 ruo 30 nkeji dabere na ígwè gị. N'ikpeazụ ị ga-ahụ mmepụta dị ka nke a:
vi undercloud.conf
2020-08-13 23:13:12,668 INFO:
#############################################################################
Undercloud install complete.
The file containing this installation's passwords is at
/home/stack/undercloud-passwords.conf.
There is also a stackrc file at /home/stack/stackrc.
These files are needed to interact with the OpenStack services, and should be
secured.
#############################################################################Ihe mmepụta a na-ekwu na ị tinyela nke ọma n'okpuru Cloud na ị nwere ike ịlele ọnọdụ nke undercloud wee gaa n'ihu ịwụnye overcloud.
Ọ bụrụ na ị lelee mmepụta ifconfig, ị ga-ahụ na interface akwa akwa ọhụrụ apụtala
[stack@undercloud ~]$ ifconfig
br-ctlplane: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 192.168.255.1 netmask 255.255.255.0 broadcast 192.168.255.255
inet6 fe80::5054:ff:fe2c:89e prefixlen 64 scopeid 0x20<link>
ether 52:54:00:2c:08:9e txqueuelen 1000 (Ethernet)
RX packets 14 bytes 1095 (1.0 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 20 bytes 1292 (1.2 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0A ga-eme mbugharị Overcloud ugbu a site na interface a.
Site na mmepụta dị n'okpuru, ị ga-ahụ na anyị nwere ọrụ niile n'otu ọnụ:
(undercloud) [stack@undercloud ~]$ openstack host list
+--------------------------+-----------+----------+
| Host Name | Service | Zone |
+--------------------------+-----------+----------+
| undercloud.openstack.rnd | conductor | internal |
| undercloud.openstack.rnd | scheduler | internal |
| undercloud.openstack.rnd | compute | nova |
+--------------------------+-----------+----------+N'okpuru bụ nhazi akụkụ netwọkụ undercloud:
(undercloud) [stack@undercloud ~]$ python -m json.tool /etc/os-net-config/config.json
{
"network_config": [
{
"addresses": [
{
"ip_netmask": "192.168.255.1/24"
}
],
"members": [
{
"dns_servers": [
"192.168.255.253"
],
"mtu": 1450,
"name": "eth0",
"primary": "true",
"type": "interface"
}
],
"mtu": 1450,
"name": "br-ctlplane",
"ovs_extra": [
"br-set-external-id br-ctlplane bridge-id br-ctlplane"
],
"routes": [],
"type": "ovs_bridge"
}
]
}
(undercloud) [stack@undercloud ~]$Nwụnye Overcloud
N'oge a, anyị nwere naanị n'okpuru Cloud, ma anyị enweghị oke ọnụ ebe a ga-esi na-achịkọta igwe ojii. Ya mere, nke mbụ, ka anyị na-ebugharị igwe mebere anyị chọrọ. N'oge nkenye ya, undercloud n'onwe ya ga-etinye OS na ngwanrọ dị mkpa na igwe overcloud - ya bụ, anyị adịghị mkpa ịkwanye igwe ahụ kpamkpam, kama ọ bụ naanị mepụta diski (ma ọ bụ diski) maka ya wee chọpụta paramita ya - ya bụ. N'ezie, anyị na-enweta ihe nkesa efu na-enweghị OS arụnyere na ya.
Ka anyị gaa na folda nwere diski nke igwe mebere anyị wee mepụta diski nke nha achọrọ:
cd /var/lib/libvirt/images/
qemu-img create -f qcow2 -o preallocation=metadata control-1.qcow2 60G
qemu-img create -f qcow2 -o preallocation=metadata compute-1.qcow2 60G
qemu-img create -f qcow2 -o preallocation=metadata compute-2.qcow2 60G
qemu-img create -f qcow2 -o preallocation=metadata storage-1.qcow2 160G
qemu-img create -f qcow2 -o preallocation=metadata storage-2.qcow2 160GEbe anyị na-arụ ọrụ dị ka mgbọrọgwụ, anyị kwesịrị ịgbanwe onye nwe diski ndị a ka ị ghara inwe nsogbu na ikike:
[root@hp-gen9 images]# ls -lh
total 5.8G
drwxr-xr-x. 2 qemu qemu 4.0K Aug 13 16:15 backups
-rw-r--r--. 1 root root 61G Aug 14 03:07 compute-1.qcow2
-rw-r--r--. 1 root root 61G Aug 14 03:07 compute-2.qcow2
-rw-r--r--. 1 root root 61G Aug 14 03:07 control-1.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:03 dns-server.qcow2
-rw-r--r--. 1 root root 161G Aug 14 03:07 storage-1.qcow2
-rw-r--r--. 1 root root 161G Aug 14 03:07 storage-2.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:07 undercloud.qcow2
[root@hp-gen9 images]#
[root@hp-gen9 images]#
[root@hp-gen9 images]# chown qemu:qemu /var/lib/libvirt/images/*qcow2
[root@hp-gen9 images]# ls -lh
total 5.8G
drwxr-xr-x. 2 qemu qemu 4.0K Aug 13 16:15 backups
-rw-r--r--. 1 qemu qemu 61G Aug 14 03:07 compute-1.qcow2
-rw-r--r--. 1 qemu qemu 61G Aug 14 03:07 compute-2.qcow2
-rw-r--r--. 1 qemu qemu 61G Aug 14 03:07 control-1.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:03 dns-server.qcow2
-rw-r--r--. 1 qemu qemu 161G Aug 14 03:07 storage-1.qcow2
-rw-r--r--. 1 qemu qemu 161G Aug 14 03:07 storage-2.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:08 undercloud.qcow2
[root@hp-gen9 images]# Rịba ama: ọ bụrụ na ị naghị eme atụmatụ ịwụnye ceph iji mụọ ya, mgbe ahụ iwu ndị ahụ adịghị emepụta ma ọ dịkarịa ala 3 ọnụ na ọ dịkarịa ala diski abụọ, ma na template na-egosi na a ga-eji diski mebere vda, vdb, wdg.
Ọ dị mma, ugbu a anyị kwesịrị ịkọwa igwe ndị a niile:
virt-install --name control-1 --ram 32768 --vcpus 8 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/control-1.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --network network:ovs-network-1,model=virtio,portgroup=trunk-1 --dry-run --print-xml > /tmp/control-1.xml
virt-install --name storage-1 --ram 16384 --vcpus 4 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/storage-1.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/storage-1.xml
virt-install --name storage-2 --ram 16384 --vcpus 4 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/storage-2.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/storage-2.xml
virt-install --name compute-1 --ram 32768 --vcpus 12 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/compute-1.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/compute-1.xml
virt-install --name compute-2 --ram 32768 --vcpus 12 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/compute-2.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/compute-2.xml Na njedebe enwere iwu -print-xml> /tmp/storage-1.xml, nke na-emepụta faịlụ xml na nkọwa nke igwe ọ bụla na /tmp/ nchekwa; ọ bụrụ na itinyeghị ya, ị gaghị adị. nwee ike ịmata igwe mebere.
Ugbu a, anyị kwesịrị ịkọwapụta igwe ndị a niile na vish:
virsh define --file /tmp/control-1.xml
virsh define --file /tmp/compute-1.xml
virsh define --file /tmp/compute-2.xml
virsh define --file /tmp/storage-1.xml
virsh define --file /tmp/storage-2.xml
[root@hp-gen9 ~]# virsh list --all
Id Name State
----------------------------------------------------
6 dns-server running
64 undercloud running
- compute-1 shut off
- compute-2 shut off
- control-1 shut off
- storage-1 shut off
- storage-2 shut off
[root@hp-gen9 ~]#Ugbu a obere nuance - tripleO na-eji IPMI jikwaa sava n'oge ntinye na introspection.
Introspection bụ usoro nke inyocha ngwaike iji nweta paramita ya dị mkpa maka inwekwu ndokwa nke ọnụ. A na-eme ntinye anya site na iji ironic, ọrụ emebere iji rụọ ọrụ na sava igwe efu.
Mana nke a bụ nsogbu ahụ - ebe sava IPMI ngwaike nwere ọdụ ụgbọ mmiri dị iche (ma ọ bụ ọdụ ụgbọ mmiri nkekọrịta, mana nke a adịghị mkpa), yabụ igwe mebere enweghị ọdụ ụgbọ mmiri dị otú ahụ. Ebe a crutch a na-akpọ vbmc na-abịara anyị enyemaka - akụrụngwa na-enye gị ohere iṅomi ọdụ ụgbọ mmiri IPMI. Nke a nuance kwesịrị ịṅa ntị karịsịa maka ndị chọrọ ịmepụta ụlọ nyocha dị otú ahụ na hypervisor ESXI - n'eziokwu, amaghị m ma ọ nwere analogue nke vbmc, n'ihi ya, ọ bara uru iche echiche banyere okwu a tupu ibuga ihe niile. .
Wụnye vbmc:
yum install yum install python2-virtualbmcỌ bụrụ na OS gị enweghị ike ịchọta ngwugwu ahụ, tinyezie ebe nchekwa ahụ:
yum install -y https://www.rdoproject.org/repos/rdo-release.rpmUgbu a, anyị melite ọrụ. Ihe niile ebe a bụ banal ruo n'ókè nke ihere. Ugbu a ọ bụ ihe ezi uche dị na ya na enweghị sava na ndepụta vbmc
[root@hp-gen9 ~]# vbmc list
[root@hp-gen9 ~]# Ka ha pụta ìhè, a ga-eji aka kwupụta ha dị ka nke a:
[root@hp-gen9 ~]# vbmc add control-1 --port 7001 --username admin --password admin
[root@hp-gen9 ~]# vbmc add storage-1 --port 7002 --username admin --password admin
[root@hp-gen9 ~]# vbmc add storage-2 --port 7003 --username admin --password admin
[root@hp-gen9 ~]# vbmc add compute-1 --port 7004 --username admin --password admin
[root@hp-gen9 ~]# vbmc add compute-2 --port 7005 --username admin --password admin
[root@hp-gen9 ~]#
[root@hp-gen9 ~]# vbmc list
+-------------+--------+---------+------+
| Domain name | Status | Address | Port |
+-------------+--------+---------+------+
| compute-1 | down | :: | 7004 |
| compute-2 | down | :: | 7005 |
| control-1 | down | :: | 7001 |
| storage-1 | down | :: | 7002 |
| storage-2 | down | :: | 7003 |
+-------------+--------+---------+------+
[root@hp-gen9 ~]#Echere m na syntax iwu doro anya na-enweghị nkọwa. Agbanyeghị, maka ugbu a nnọkọ anyị niile nọ n'ọkwa DOWN. Ka ha kwaga n'ọkwa UP, ị ga-enyere ha aka:
[root@hp-gen9 ~]# vbmc start control-1
2020-08-14 03:15:57,826.826 13149 INFO VirtualBMC [-] Started vBMC instance for domain control-1
[root@hp-gen9 ~]# vbmc start storage-1
2020-08-14 03:15:58,316.316 13149 INFO VirtualBMC [-] Started vBMC instance for domain storage-1
[root@hp-gen9 ~]# vbmc start storage-2
2020-08-14 03:15:58,851.851 13149 INFO VirtualBMC [-] Started vBMC instance for domain storage-2
[root@hp-gen9 ~]# vbmc start compute-1
2020-08-14 03:15:59,307.307 13149 INFO VirtualBMC [-] Started vBMC instance for domain compute-1
[root@hp-gen9 ~]# vbmc start compute-2
2020-08-14 03:15:59,712.712 13149 INFO VirtualBMC [-] Started vBMC instance for domain compute-2
[root@hp-gen9 ~]#
[root@hp-gen9 ~]#
[root@hp-gen9 ~]# vbmc list
+-------------+---------+---------+------+
| Domain name | Status | Address | Port |
+-------------+---------+---------+------+
| compute-1 | running | :: | 7004 |
| compute-2 | running | :: | 7005 |
| control-1 | running | :: | 7001 |
| storage-1 | running | :: | 7002 |
| storage-2 | running | :: | 7003 |
+-------------+---------+---------+------+
[root@hp-gen9 ~]#Na mmetụ ikpeazụ - ịkwesịrị idozi iwu firewall (ma ọ bụ gbanyụọ ya kpamkpam):
firewall-cmd --zone=public --add-port=7001/udp --permanent
firewall-cmd --zone=public --add-port=7002/udp --permanent
firewall-cmd --zone=public --add-port=7003/udp --permanent
firewall-cmd --zone=public --add-port=7004/udp --permanent
firewall-cmd --zone=public --add-port=7005/udp --permanent
firewall-cmd --reload
Ugbu a, ka anyị gaa undercloud ma lelee na ihe niile na-arụ ọrụ. Adreesị nke igwe nnabata bụ 192.168.255.200, na undercloud anyị gbakwunyere ngwugwu ipmitool dị mkpa n'oge nkwadebe maka ibuga:
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power status
Chassis Power is off
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power on
Chassis Power Control: Up/On
[stack@undercloud ~]$
[root@hp-gen9 ~]# virsh list
Id Name State
----------------------------------------------------
6 dns-server running
64 undercloud running
65 control-1 runningDịka ị na-ahụ, anyị ewepụtala ọnụ ụzọ njikwa nke ọma site na vbmc. Ugbu a, ka anyị gbanyụọ ya gawa n'ihu:
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power off
Chassis Power Control: Down/Off
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power status
Chassis Power is off
[stack@undercloud ~]$
[root@hp-gen9 ~]# virsh list --all
Id Name State
----------------------------------------------------
6 dns-server running
64 undercloud running
- compute-1 shut off
- compute-2 shut off
- control-1 shut off
- storage-1 shut off
- storage-2 shut off
[root@hp-gen9 ~]#Nzọụkwụ ọzọ bụ introspection nke ọnụ nke a ga-etinye overcloud na ya. Iji mee nke a, anyị kwesịrị ịkwadebe faịlụ json nwere nkọwa nke ọnụ anyị. Biko mara na, n'adịghị ka ntinye na sava efu, faịlụ ahụ na-egosi ọdụ ụgbọ mmiri nke vbmc na-agba maka igwe ọ bụla.
[root@hp-gen9 ~]# virsh domiflist --domain control-1
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:20:a2:2f
- network ovs-network-1 virtio 52:54:00:3f:87:9f
[root@hp-gen9 ~]# virsh domiflist --domain compute-1
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:98:e9:d6
[root@hp-gen9 ~]# virsh domiflist --domain compute-2
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:6a:ea:be
[root@hp-gen9 ~]# virsh domiflist --domain storage-1
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:79:0b:cb
[root@hp-gen9 ~]# virsh domiflist --domain storage-2
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:a7:fe:27Rịba ama: ọnụ ụzọ nchịkwa nwere oghere abụọ, ma na nke a abụghị ihe dị mkpa, na ntinye a ga-ezuru anyị.
Ugbu a, anyị na-akwadebe faịlụ json. Anyị kwesịrị igosi adreesị poppy nke ọdụ ụgbọ mmiri nke a ga-esi na-arụ ọrụ, parampat nke ọnụ, nye ha aha ma gosi otu esi esi ipmi:
{
"nodes":[
{
"mac":[
"52:54:00:20:a2:2f"
],
"cpu":"8",
"memory":"32768",
"disk":"60",
"arch":"x86_64",
"name":"control-1",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7001"
},
{
"mac":[
"52:54:00:79:0b:cb"
],
"cpu":"4",
"memory":"16384",
"disk":"160",
"arch":"x86_64",
"name":"storage-1",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7002"
},
{
"mac":[
"52:54:00:a7:fe:27"
],
"cpu":"4",
"memory":"16384",
"disk":"160",
"arch":"x86_64",
"name":"storage-2",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7003"
},
{
"mac":[
"52:54:00:98:e9:d6"
],
"cpu":"12",
"memory":"32768",
"disk":"60",
"arch":"x86_64",
"name":"compute-1",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7004"
},
{
"mac":[
"52:54:00:6a:ea:be"
],
"cpu":"12",
"memory":"32768",
"disk":"60",
"arch":"x86_64",
"name":"compute-2",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7005"
}
]
}Ugbu a, anyị kwesịrị ịkwadebe ihe oyiyi maka ironic. Iji mee nke a, budata ha site na wget wee wụnye:
(undercloud) [stack@undercloud ~]$ sudo wget https://images.rdoproject.org/queens/delorean/current-tripleo-rdo/overcloud-full.tar --no-check-certificate
(undercloud) [stack@undercloud ~]$ sudo wget https://images.rdoproject.org/queens/delorean/current-tripleo-rdo/ironic-python-agent.tar --no-check-certificate
(undercloud) [stack@undercloud ~]$ ls -lh
total 1.9G
-rw-r--r--. 1 stack stack 447M Aug 14 10:26 ironic-python-agent.tar
-rw-r--r--. 1 stack stack 1.5G Aug 14 10:26 overcloud-full.tar
-rw-------. 1 stack stack 916 Aug 13 23:10 stackrc
-rw-r--r--. 1 stack stack 15K Aug 13 22:50 undercloud.conf
-rw-------. 1 stack stack 2.0K Aug 13 22:50 undercloud-passwords.conf
(undercloud) [stack@undercloud ~]$ mkdir images/
(undercloud) [stack@undercloud ~]$ tar -xpvf ironic-python-agent.tar -C ~/images/
ironic-python-agent.initramfs
ironic-python-agent.kernel
(undercloud) [stack@undercloud ~]$ tar -xpvf overcloud-full.tar -C ~/images/
overcloud-full.qcow2
overcloud-full.initrd
overcloud-full.vmlinuz
(undercloud) [stack@undercloud ~]$
(undercloud) [stack@undercloud ~]$ ls -lh images/
total 1.9G
-rw-rw-r--. 1 stack stack 441M Aug 12 17:24 ironic-python-agent.initramfs
-rwxr-xr-x. 1 stack stack 6.5M Aug 12 17:24 ironic-python-agent.kernel
-rw-r--r--. 1 stack stack 53M Aug 12 17:14 overcloud-full.initrd
-rw-r--r--. 1 stack stack 1.4G Aug 12 17:18 overcloud-full.qcow2
-rwxr-xr-x. 1 stack stack 6.5M Aug 12 17:14 overcloud-full.vmlinuz
(undercloud) [stack@undercloud ~]$Na-ebugo onyonyo n'okpuru Cloud:
(undercloud) [stack@undercloud ~]$ openstack overcloud image upload --image-path ~/images/
Image "overcloud-full-vmlinuz" was uploaded.
+--------------------------------------+------------------------+-------------+---------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+------------------------+-------------+---------+--------+
| c2553770-3e0f-4750-b46b-138855b5c385 | overcloud-full-vmlinuz | aki | 6761064 | active |
+--------------------------------------+------------------------+-------------+---------+--------+
Image "overcloud-full-initrd" was uploaded.
+--------------------------------------+-----------------------+-------------+----------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+-----------------------+-------------+----------+--------+
| 949984e0-4932-4e71-af43-d67a38c3dc89 | overcloud-full-initrd | ari | 55183045 | active |
+--------------------------------------+-----------------------+-------------+----------+--------+
Image "overcloud-full" was uploaded.
+--------------------------------------+----------------+-------------+------------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+----------------+-------------+------------+--------+
| a2f2096d-c9d7-429a-b866-c7543c02a380 | overcloud-full | qcow2 | 1487475712 | active |
+--------------------------------------+----------------+-------------+------------+--------+
Image "bm-deploy-kernel" was uploaded.
+--------------------------------------+------------------+-------------+---------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+------------------+-------------+---------+--------+
| e413aa78-e38f-404c-bbaf-93e582a8e67f | bm-deploy-kernel | aki | 6761064 | active |
+--------------------------------------+------------------+-------------+---------+--------+
Image "bm-deploy-ramdisk" was uploaded.
+--------------------------------------+-------------------+-------------+-----------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+-------------------+-------------+-----------+--------+
| 5cf3aba4-0e50-45d3-929f-27f025dd6ce3 | bm-deploy-ramdisk | ari | 461759376 | active |
+--------------------------------------+-------------------+-------------+-----------+--------+
(undercloud) [stack@undercloud ~]$Na-elele na onyonyo niile ebugola
(undercloud) [stack@undercloud ~]$ openstack image list
+--------------------------------------+------------------------+--------+
| ID | Name | Status |
+--------------------------------------+------------------------+--------+
| e413aa78-e38f-404c-bbaf-93e582a8e67f | bm-deploy-kernel | active |
| 5cf3aba4-0e50-45d3-929f-27f025dd6ce3 | bm-deploy-ramdisk | active |
| a2f2096d-c9d7-429a-b866-c7543c02a380 | overcloud-full | active |
| 949984e0-4932-4e71-af43-d67a38c3dc89 | overcloud-full-initrd | active |
| c2553770-3e0f-4750-b46b-138855b5c385 | overcloud-full-vmlinuz | active |
+--------------------------------------+------------------------+--------+
(undercloud) [stack@undercloud ~]$Otu ihe ọzọ - ịkwesịrị ịgbakwunye sava DNS:
(undercloud) [stack@undercloud ~]$ openstack subnet list
+--------------------------------------+-----------------+--------------------------------------+------------------+
| ID | Name | Network | Subnet |
+--------------------------------------+-----------------+--------------------------------------+------------------+
| f45dea46-4066-42aa-a3c4-6f84b8120cab | ctlplane-subnet | 6ca013dc-41c2-42d8-9d69-542afad53392 | 192.168.255.0/24 |
+--------------------------------------+-----------------+--------------------------------------+------------------+
(undercloud) [stack@undercloud ~]$ openstack subnet show f45dea46-4066-42aa-a3c4-6f84b8120cab
+-------------------+-----------------------------------------------------------+
| Field | Value |
+-------------------+-----------------------------------------------------------+
| allocation_pools | 192.168.255.11-192.168.255.50 |
| cidr | 192.168.255.0/24 |
| created_at | 2020-08-13T20:10:37Z |
| description | |
| dns_nameservers | |
| enable_dhcp | True |
| gateway_ip | 192.168.255.1 |
| host_routes | destination='169.254.169.254/32', gateway='192.168.255.1' |
| id | f45dea46-4066-42aa-a3c4-6f84b8120cab |
| ip_version | 4 |
| ipv6_address_mode | None |
| ipv6_ra_mode | None |
| name | ctlplane-subnet |
| network_id | 6ca013dc-41c2-42d8-9d69-542afad53392 |
| prefix_length | None |
| project_id | a844ccfcdb2745b198dde3e1b28c40a3 |
| revision_number | 0 |
| segment_id | None |
| service_types | |
| subnetpool_id | None |
| tags | |
| updated_at | 2020-08-13T20:10:37Z |
+-------------------+-----------------------------------------------------------+
(undercloud) [stack@undercloud ~]$
(undercloud) [stack@undercloud ~]$ neutron subnet-update f45dea46-4066-42aa-a3c4-6f84b8120cab --dns-nameserver 192.168.255.253
neutron CLI is deprecated and will be removed in the future. Use openstack CLI instead.
Updated subnet: f45dea46-4066-42aa-a3c4-6f84b8120cab
(undercloud) [stack@undercloud ~]$Ugbu a, anyị nwere ike ịnye iwu maka introspection:
(undercloud) [stack@undercloud ~]$ openstack overcloud node import --introspect --provide inspection.json
Started Mistral Workflow tripleo.baremetal.v1.register_or_update. Execution ID: d57456a3-d8ed-479c-9a90-dff7c752d0ec
Waiting for messages on queue 'tripleo' with no timeout.
5 node(s) successfully moved to the "manageable" state.
Successfully registered node UUID b4b2cf4a-b7ca-4095-af13-cc83be21c4f5
Successfully registered node UUID b89a72a3-6bb7-429a-93bc-48393d225838
Successfully registered node UUID 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e
Successfully registered node UUID bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8
Successfully registered node UUID 766ab623-464c-423d-a529-d9afb69d1167
Waiting for introspection to finish...
Started Mistral Workflow tripleo.baremetal.v1.introspect. Execution ID: 6b4d08ae-94c3-4a10-ab63-7634ec198a79
Waiting for messages on queue 'tripleo' with no timeout.
Introspection of node b89a72a3-6bb7-429a-93bc-48393d225838 completed. Status:SUCCESS. Errors:None
Introspection of node 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e completed. Status:SUCCESS. Errors:None
Introspection of node bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 completed. Status:SUCCESS. Errors:None
Introspection of node 766ab623-464c-423d-a529-d9afb69d1167 completed. Status:SUCCESS. Errors:None
Introspection of node b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 completed. Status:SUCCESS. Errors:None
Successfully introspected 5 node(s).
Started Mistral Workflow tripleo.baremetal.v1.provide. Execution ID: f5594736-edcf-4927-a8a0-2a7bf806a59a
Waiting for messages on queue 'tripleo' with no timeout.
5 node(s) successfully moved to the "available" state.
(undercloud) [stack@undercloud ~]$Dị ka ị nwere ike ịhụ site na mmepụta, ihe niile emechara na-enweghị njehie. Ka anyị lelee na ọnụ ụzọ niile dị na steeti dị:
(undercloud) [stack@undercloud ~]$ openstack baremetal node list
+--------------------------------------+-----------+---------------+-------------+--------------------+-------------+
| UUID | Name | Instance UUID | Power State | Provisioning State | Maintenance |
+--------------------------------------+-----------+---------------+-------------+--------------------+-------------+
| b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 | control-1 | None | power off | available | False |
| b89a72a3-6bb7-429a-93bc-48393d225838 | storage-1 | None | power off | available | False |
| 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e | storage-2 | None | power off | available | False |
| bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 | compute-1 | None | power off | available | False |
| 766ab623-464c-423d-a529-d9afb69d1167 | compute-2 | None | power off | available | False |
+--------------------------------------+-----------+---------------+-------------+--------------------+-------------+
(undercloud) [stack@undercloud ~]$ Ọ bụrụ na ọnụ ọgụgụ ndị ahụ dị na steeti dị iche iche, a na-ejikarị eme ihe, mgbe ahụ, ihe na-ezighị ezi ma ịkwesịrị ileba anya na log ahụ wee chọpụta ihe kpatara nke a ji mee. Buru n'uche na n'ọnọdụ a, anyị na-eji virtualization na enwere ike inwe ahụhụ jikọtara ya na iji igwe mebere ma ọ bụ vbmc.
Ọzọ, anyị kwesịrị igosi nke ọnụ ga-arụ ọrụ - ya bụ, gosi profaịlụ nke ọnụ ga-eji:
(undercloud) [stack@undercloud ~]$ openstack overcloud profiles list
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| Node UUID | Node Name | Provision State | Current Profile | Possible Profiles |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 | control-1 | available | None | |
| b89a72a3-6bb7-429a-93bc-48393d225838 | storage-1 | available | None | |
| 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e | storage-2 | available | None | |
| bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 | compute-1 | available | None | |
| 766ab623-464c-423d-a529-d9afb69d1167 | compute-2 | available | None | |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
(undercloud) [stack@undercloud ~]$ openstack flavor list
+--------------------------------------+---------------+------+------+-----------+-------+-----------+
| ID | Name | RAM | Disk | Ephemeral | VCPUs | Is Public |
+--------------------------------------+---------------+------+------+-----------+-------+-----------+
| 168af640-7f40-42c7-91b2-989abc5c5d8f | swift-storage | 4096 | 40 | 0 | 1 | True |
| 52148d1b-492e-48b4-b5fc-772849dd1b78 | baremetal | 4096 | 40 | 0 | 1 | True |
| 56e66542-ae60-416d-863e-0cb192d01b09 | control | 4096 | 40 | 0 | 1 | True |
| af6796e1-d0c4-4bfe-898c-532be194f7ac | block-storage | 4096 | 40 | 0 | 1 | True |
| e4d50fdd-0034-446b-b72c-9da19b16c2df | compute | 4096 | 40 | 0 | 1 | True |
| fc2e3acf-7fca-4901-9eee-4a4d6ef0265d | ceph-storage | 4096 | 40 | 0 | 1 | True |
+--------------------------------------+---------------+------+------+-----------+-------+-----------+
(undercloud) [stack@undercloud ~]$Ezipụta profaịlụ maka ọnụ ọ bụla:
openstack baremetal node set --property capabilities='profile:control,boot_option:local' b4b2cf4a-b7ca-4095-af13-cc83be21c4f5
openstack baremetal node set --property capabilities='profile:ceph-storage,boot_option:local' b89a72a3-6bb7-429a-93bc-48393d225838
openstack baremetal node set --property capabilities='profile:ceph-storage,boot_option:local' 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e
openstack baremetal node set --property capabilities='profile:compute,boot_option:local' bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8
openstack baremetal node set --property capabilities='profile:compute,boot_option:local' 766ab623-464c-423d-a529-d9afb69d1167Ka anyị lelee na anyị mere ihe niile nke ọma:
(undercloud) [stack@undercloud ~]$ openstack overcloud profiles list
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| Node UUID | Node Name | Provision State | Current Profile | Possible Profiles |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 | control-1 | available | control | |
| b89a72a3-6bb7-429a-93bc-48393d225838 | storage-1 | available | ceph-storage | |
| 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e | storage-2 | available | ceph-storage | |
| bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 | compute-1 | available | compute | |
| 766ab623-464c-423d-a529-d9afb69d1167 | compute-2 | available | compute | |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
(undercloud) [stack@undercloud ~]$Ọ bụrụ na ihe niile ziri ezi, anyị na-enye iwu ka ibuga overcloud:
openstack overcloud deploy --templates --control-scale 1 --compute-scale 2 --ceph-storage-scale 2 --control-flavor control --compute-flavor compute --ceph-storage-flavor ceph-storage --libvirt-type qemuN'ime nrụnye n'ezie, a ga-eji ndebiri ahaziri ahazi, n'ọnọdụ anyị nke a ga-eme ka usoro ahụ sie ike nke ukwuu, ebe ọ bụ na a ga-akọwarịrị ndezi ọ bụla na ndebiri. Dị ka e dere na mbụ, ọbụna nrụnye dị mfe ga-ezuru anyị ịhụ otú o si arụ ọrụ.
Mara: ụdị qemu --libvirt-ụdị qemu dị mkpa na nke a, ebe anyị ga-eji ike ime nke ọma. Ma ọ bụghị ya, ị gaghị enwe ike ịme igwe mebere.
Ugbu a ị nwere ihe dị ka otu awa, ma ọ bụ ikekwe karịa (dabere na ike nke ngwaike) na ị nwere ike ịtụ anya na mgbe oge a gachara, ị ga-ahụ ozi ndị a:
2020-08-14 08:39:21Z [overcloud]: CREATE_COMPLETE Stack CREATE completed successfully
Stack overcloud CREATE_COMPLETE
Host 192.168.255.21 not found in /home/stack/.ssh/known_hosts
Started Mistral Workflow tripleo.deployment.v1.get_horizon_url. Execution ID: fcb996cd-6a19-482b-b755-2ca0c08069a9
Overcloud Endpoint: http://192.168.255.21:5000/
Overcloud Horizon Dashboard URL: http://192.168.255.21:80/dashboard
Overcloud rc file: /home/stack/overcloudrc
Overcloud Deployed
(undercloud) [stack@undercloud ~]$Ugbu a ị nwere ụdị openstack ihe fọrọ nke nta ka ọ bụrụ zuru oke, nke ị nwere ike ịmụ ihe, nnwale, wdg.
Ka anyị lelee na ihe niile na-arụ ọrụ nke ọma. N'ime ndekọ ndekọ ụlọ onye ọrụ enwere faịlụ abụọ - otu stackrc (maka ijikwa undercloud) yana nke abụọ overcloudrc (maka ijikwa overcloud). A ghaghị ịkọwa faịlụ ndị a dị ka isi iyi, ebe ọ bụ na ha nwere ozi dị mkpa maka nyocha.
(undercloud) [stack@undercloud ~]$ openstack server list
+--------------------------------------+-------------------------+--------+-------------------------+----------------+--------------+
| ID | Name | Status | Networks | Image | Flavor |
+--------------------------------------+-------------------------+--------+-------------------------+----------------+--------------+
| fd7d36f4-ce87-4b9a-93b0-add2957792de | overcloud-controller-0 | ACTIVE | ctlplane=192.168.255.15 | overcloud-full | control |
| edc77778-8972-475e-a541-ff40eb944197 | overcloud-novacompute-1 | ACTIVE | ctlplane=192.168.255.26 | overcloud-full | compute |
| 5448ce01-f05f-47ca-950a-ced14892c0d4 | overcloud-cephstorage-1 | ACTIVE | ctlplane=192.168.255.34 | overcloud-full | ceph-storage |
| ce6d862f-4bdf-4ba3-b711-7217915364d7 | overcloud-novacompute-0 | ACTIVE | ctlplane=192.168.255.19 | overcloud-full | compute |
| e4507bd5-6f96-4b12-9cc0-6924709da59e | overcloud-cephstorage-0 | ACTIVE | ctlplane=192.168.255.44 | overcloud-full | ceph-storage |
+--------------------------------------+-------------------------+--------+-------------------------+----------------+--------------+
(undercloud) [stack@undercloud ~]$
(undercloud) [stack@undercloud ~]$ source overcloudrc
(overcloud) [stack@undercloud ~]$
(overcloud) [stack@undercloud ~]$ openstack project list
+----------------------------------+---------+
| ID | Name |
+----------------------------------+---------+
| 4eed7d0f06544625857d51cd77c5bd4c | admin |
| ee1c68758bde41eaa9912c81dc67dad8 | service |
+----------------------------------+---------+
(overcloud) [stack@undercloud ~]$
(overcloud) [stack@undercloud ~]$
(overcloud) [stack@undercloud ~]$ openstack network agent list
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| ID | Agent Type | Host | Availability Zone | Alive | State | Binary |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| 10495de9-ba4b-41fe-b30a-b90ec3f8728b | Open vSwitch agent | overcloud-novacompute-1.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| 1515ad4a-5972-46c3-af5f-e5446dff7ac7 | L3 agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-l3-agent |
| 322e62ca-1e5a-479e-9a96-4f26d09abdd7 | DHCP agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-dhcp-agent |
| 9c1de2f9-bac5-400e-998d-4360f04fc533 | Open vSwitch agent | overcloud-novacompute-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| d99c5657-851e-4d3c-bef6-f1e3bb1acfb0 | Open vSwitch agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| ff85fae6-5543-45fb-a301-19c57b62d836 | Metadata agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-metadata-agent |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
(overcloud) [stack@undercloud ~]$Echichi m ka na-achọ otu obere mmetụ - na-agbakwunye ụzọ na njikwa, ebe igwe nke m na-arụ ọrụ dị na netwọk dị iche. Iji mee nke a, gaa na njikwa-1 n'okpuru akaụntụ nchịkwa okpomọkụ ma debanye aha ụzọ
(undercloud) [stack@undercloud ~]$ ssh heat-admin@192.168.255.15
Last login: Fri Aug 14 09:47:40 2020 from 192.168.255.1
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ip route add 10.169.0.0/16 via 192.168.255.254Ọfọn, ugbu a ị nwere ike ịbanye na mbara igwe. Ozi niile - adreesị, nbanye na paswọọdụ - dị na faịlụ /home/stack/overcloudrc. Eserese ikpeazụ dị ka nke a:
Site n'ụzọ, na ntinye anyị, e nyere adreesị igwe site na DHCP na, dịka ị na-ahụ, a na-enye ha "na-enweghị usoro". Ị nwere ike kọwapụta nke ọma na ndebiri adreesị nke kwesịrị itinye na igwe n'oge mbugharị, ma ọ bụrụ na ịchọrọ ya.
Kedu ka okporo ụzọ si aga n'etiti igwe mebere?
N'isiokwu a, anyị ga-ele anya nhọrọ atọ maka ịgafe okporo ụzọ
- Igwe abụọ na otu hypervisor na otu netwọk L2
- Igwe abụọ dị na hypervisors dị iche iche n'otu netwọkụ L2
- Igwe abụọ dị na netwọkụ dị iche iche (ịgba mgbọrọgwụ netwọk)
Ọnọdụ ndị nwere ohere ịbanye n'èzí site na netwọk dị n'èzí, na-eji adreesị na-ese n'elu mmiri, yana nkesa nkesa, anyị ga-atụle oge ọzọ, maka ugbu a, anyị ga-elekwasị anya na okporo ụzọ dị n'ime.
Iji lelee, ka anyị chịkọta eserese a:
Anyị ekepụtala igwe mebere 4 - 3 n'otu netwọkụ L2 - net-1, yana 1 ọzọ na netwọkụ net-2.
(overcloud) [stack@undercloud ~]$ nova list --tenant 5e18ce8ec9594e00b155485f19895e6c
+--------------------------------------+------+----------------------------------+--------+------------+-------------+-----------------+
| ID | Name | Tenant ID | Status | Task State | Power State | Networks |
+--------------------------------------+------+----------------------------------+--------+------------+-------------+-----------------+
| f53b37b5-2204-46cc-aef0-dba84bf970c0 | vm-1 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-1=10.0.1.85 |
| fc8b6722-0231-49b0-b2fa-041115bef34a | vm-2 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-1=10.0.1.88 |
| 3cd74455-b9b7-467a-abe3-bd6ff765c83c | vm-3 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-1=10.0.1.90 |
| 7e836338-6772-46b0-9950-f7f06dbe91a8 | vm-4 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-2=10.0.2.8 |
+--------------------------------------+------+----------------------------------+--------+------------+-------------+-----------------+
(overcloud) [stack@undercloud ~]$ Ka anyị hụ ihe hypervisors igwe ndị emepụtara dị na:
(overcloud) [stack@undercloud ~]$ nova show f53b37b5-2204-46cc-aef0-dba84bf970c0 | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-1 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-0.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000001 |(overcloud) [stack@undercloud ~]$ nova show fc8b6722-0231-49b0-b2fa-041115bef34a | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-2 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-1.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000002 |(overcloud) [stack@undercloud ~]$ nova show 3cd74455-b9b7-467a-abe3-bd6ff765c83c | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-3 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-0.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000003 |(overcloud) [stack@undercloud ~]$ nova show 7e836338-6772-46b0-9950-f7f06dbe91a8 | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-4 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-1.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000004 | (overcloud) [stack@undercloud ~]$
Igwe vm-1 na vm-3 dị na compute-0, igwe vm-2 na vm-4 dị na node compute-1.
Na mgbakwunye, emepụtara rawụta mebere ka ọ mee ka ụzọ n'etiti netwọk ndị akọwapụtara:
(overcloud) [stack@undercloud ~]$ openstack router list --project 5e18ce8ec9594e00b155485f19895e6c
+--------------------------------------+----------+--------+-------+-------------+-------+----------------------------------+
| ID | Name | Status | State | Distributed | HA | Project |
+--------------------------------------+----------+--------+-------+-------------+-------+----------------------------------+
| 0a4d2420-4b9c-46bd-aec1-86a1ef299abe | router-1 | ACTIVE | UP | False | False | 5e18ce8ec9594e00b155485f19895e6c |
+--------------------------------------+----------+--------+-------+-------------+-------+----------------------------------+
(overcloud) [stack@undercloud ~]$ Onye rawụta ahụ nwere ọdụ ụgbọ mmiri abụọ mebere, nke na-arụ ọrụ dị ka ọnụ ụzọ maka netwọk:
(overcloud) [stack@undercloud ~]$ openstack router show 0a4d2420-4b9c-46bd-aec1-86a1ef299abe | grep interface
| interfaces_info | [{"subnet_id": "2529ad1a-6b97-49cd-8515-cbdcbe5e3daa", "ip_address": "10.0.1.254", "port_id": "0c52b15f-8fcc-4801-bf52-7dacc72a5201"}, {"subnet_id": "335552dd-b35b-456b-9df0-5aac36a3ca13", "ip_address": "10.0.2.254", "port_id": "92fa49b5-5406-499f-ab8d-ddf28cc1a76c"}] |
(overcloud) [stack@undercloud ~]$ Mana tupu anyị eleba anya ka okporo ụzọ na-aga, ka anyị leba anya n'ihe anyị nwere ugbu a na oghere njikwa (nke bụkwa ọnụ ụzọ netwọkụ) yana na ọnụ ụzọ mgbakọ. Ka anyị jiri ọnụ kọmpụta malite.
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-vsctl show
[heat-admin@overcloud-novacompute-0 ~]$ sudo sudo ovs-appctl dpif/show
system@ovs-system: hit:3 missed:3
br-ex:
br-ex 65534/1: (internal)
phy-br-ex 1/none: (patch: peer=int-br-ex)
br-int:
br-int 65534/2: (internal)
int-br-ex 1/none: (patch: peer=phy-br-ex)
patch-tun 2/none: (patch: peer=patch-int)
br-tun:
br-tun 65534/3: (internal)
patch-int 1/none: (patch: peer=patch-tun)
vxlan-c0a8ff0f 3/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.15)
vxlan-c0a8ff1a 2/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.26)
[heat-admin@overcloud-novacompute-0 ~]$N'oge a, ọnụ nwere atọ ovs àkwà mmiri - br-int, br-tun, br-ex. N'etiti ha, dị ka anyị na-ahụ, e nwere set nke interfaces. Maka mfe nghọta, ka anyị kpaa nkata ndị a niile na eserese ahụ wee hụ ihe na-eme.
N'ileghachi anya na adreesị nke ọwara VxLAN na-ebuli, enwere ike ịhụ na a na-ebuli otu ọwara iji gbakọọ-1 (192.168.255.26), ọwara nke abụọ na-ele anya njikwa-1 (192.168.255.15). Mana ihe kacha adọrọ mmasị bụ na br-ex enweghị oghere anụ ahụ, ma ọ bụrụ na ị lelee ihe na-ahazi mmiri, ị ga-ahụ na àkwà mmiri a nwere ike ịdaba okporo ụzọ ugbu a.
[heat-admin@overcloud-novacompute-0 ~]$ ifconfig eth0
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 192.168.255.19 netmask 255.255.255.0 broadcast 192.168.255.255
inet6 fe80::5054:ff:fe6a:eabe prefixlen 64 scopeid 0x20<link>
ether 52:54:00:6a:ea:be txqueuelen 1000 (Ethernet)
RX packets 2909669 bytes 4608201000 (4.2 GiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1821057 bytes 349198520 (333.0 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
[heat-admin@overcloud-novacompute-0 ~]$ Dị ka ị pụrụ ịhụ site na mmepụta, adreesị na-screwed ozugbo na anụ ahụ ọdụ ụgbọ mmiri, na ọ bụghị na virtual àkwà mmiri interface.
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-ex
port VLAN MAC Age
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl dump-flows br-ex
cookie=0x9169eae8f7fe5bb2, duration=216686.864s, table=0, n_packets=303, n_bytes=26035, priority=2,in_port="phy-br-ex" actions=drop
cookie=0x9169eae8f7fe5bb2, duration=216686.887s, table=0, n_packets=0, n_bytes=0, priority=0 actions=NORMAL
[heat-admin@overcloud-novacompute-0 ~]$ Dị ka iwu mbụ si dị, a ga-atụfu ihe niile sitere na ọdụ ụgbọ mmiri phy-br-ex.
N'ezie, ọ nweghị ebe ọzọ maka okporo ụzọ na-abata n'ime mmiri a ma e wezụga site na interface a ( interface na br-int ), na ikpe ikpe site na ọdịda, okporo ụzọ BUM abanyelarị n'ime mmiri ahụ.
Ya bụ, okporo ụzọ nwere ike ịhapụ ọnụ a naanị site na VxLAN ọwara na ọ dịghị ihe ọzọ. Agbanyeghị, ọ bụrụ na ịgbanwuo DVR, ọnọdụ ahụ ga-agbanwe, mana anyị ga-emerịrị nke ahụ oge ọzọ. Mgbe ị na-eji ikewapụ netwọkụ, dịka ọmụmaatụ na iji vlans, ị gaghị enwe otu interface L3 na vlan 0, mana ọtụtụ interfaces. Agbanyeghị, okporo ụzọ VxLAN ga-ahapụ ọnụ ụzọ ahụ, mana etinyekwara ya n'ụdị vlan raara onwe ya nye.
Anyị ahaziela ọnụ ọnụ compute, ka anyị gaa n'ihu na ọnụ njikwa.
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl dpif/show
system@ovs-system: hit:930491 missed:825
br-ex:
br-ex 65534/1: (internal)
eth0 1/2: (system)
phy-br-ex 2/none: (patch: peer=int-br-ex)
br-int:
br-int 65534/3: (internal)
int-br-ex 1/none: (patch: peer=phy-br-ex)
patch-tun 2/none: (patch: peer=patch-int)
br-tun:
br-tun 65534/4: (internal)
patch-int 1/none: (patch: peer=patch-tun)
vxlan-c0a8ff13 3/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.19)
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$N'ezie, anyị nwere ike ịsị na ihe niile bụ otu, mana adreesị IP adịghịzi na interface anụ ahụ kama na akwa akwa. Emere nke a n'ihi na ọdụ ụgbọ mmiri a bụ ọdụ ụgbọ mmiri nke okporo ụzọ ga-esi na ya pụta na mpụga ụwa.
[heat-admin@overcloud-controller-0 ~]$ ifconfig br-ex
br-ex: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 192.168.255.15 netmask 255.255.255.0 broadcast 192.168.255.255
inet6 fe80::5054:ff:fe20:a22f prefixlen 64 scopeid 0x20<link>
ether 52:54:00:20:a2:2f txqueuelen 1000 (Ethernet)
RX packets 803859 bytes 1732616116 (1.6 GiB)
RX errors 0 dropped 63 overruns 0 frame 0
TX packets 808475 bytes 121652156 (116.0 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl fdb/show br-ex
port VLAN MAC Age
3 100 28:c0:da:00:4d:d3 35
1 0 28:c0:da:00:4d:d3 35
1 0 52:54:00:98:e9:d6 0
LOCAL 0 52:54:00:20:a2:2f 0
1 0 52:54:00:2c:08:9e 0
3 100 52:54:00:20:a2:2f 0
1 0 52:54:00:6a:ea:be 0
[heat-admin@overcloud-controller-0 ~]$ A na-ejikọta ọdụ ụgbọ mmiri a na akwa mmiri br-ex na ebe ọ bụ na enweghị vlan mkpado na ya, ọdụ ụgbọ mmiri a bụ ọdụ ụgbọ mmiri nke a na-ahapụ vlan niile, ugbu a okporo ụzọ na-apụ n'èzí na-enweghị mkpado, dị ka vlan-id 0 gosiri na ya. mmepụta n'elu.
Ihe ọ bụla ọzọ n'oge a yiri ọnụ ọgụgụ compute - otu àkwà mmiri, otu tunnels na-aga na ọnụ ọgụgụ abụọ.
Anyị agaghị atụle oghere nchekwa n'isiokwu a, ma maka nghọta ọ dị mkpa ịsị na akụkụ netwọk nke ọnụ ndị a bụ banal ruo n'ókè nke ihere. N'ọnọdụ anyị, enwere naanị otu ọdụ ụgbọ mmiri (eth0) nwere adreesị IP ekenyere ya ma ọ bụ ya. Enweghị ọwara VxLAN, àkwà mmiri ọwara, wdg - ọ dịghị ovs ma ọlị, ebe ọ bụ na ọ dịghị uru na ya. Mgbe ị na-eji ikewapụ netwọkụ, ọnụ a ga-enwe oghere abụọ (ọdụ ụgbọ mmiri anụ ahụ, bodny, ma ọ bụ naanị vlans abụọ - ọ dịghị mkpa - ọ dabere na ihe ịchọrọ) - otu maka njikwa, nke abụọ maka okporo ụzọ (na-ede na diski VM. , ịgụ ihe site na diski, wdg)
Anyị chepụtara ihe anyị nwere na ọnụ na enweghị ọrụ ọ bụla. Ugbu a, ka anyị malite igwe mebere 4 wee hụ ka atụmatụ akọwara n'elu si agbanwe - anyị kwesịrị inwe ọdụ ụgbọ mmiri, ndị na-anya ụgbọ ala, wdg.
Ruo ugbu a netwọk anyị dị ka nke a:
Anyị nwere igwe mebere abụọ na ọnụ kọmpụta ọ bụla. Iji compute-0 dịka ọmụmaatụ, ka anyị hụ ka esi tinye ihe niile.
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh list
Id Name State
----------------------------------------------------
1 instance-00000001 running
3 instance-00000003 running
[heat-admin@overcloud-novacompute-0 ~]$ Igwe ahụ nwere naanị otu interface mebere - tap95d96a75-a0:
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000001
Interface Type Source Model MAC
-------------------------------------------------------
tap95d96a75-a0 bridge qbr95d96a75-a0 virtio fa:16:3e:44:98:20
[heat-admin@overcloud-novacompute-0 ~]$
Ihe interface a na-ele anya na linux bridge:
[heat-admin@overcloud-novacompute-0 ~]$ sudo brctl show
bridge name bridge id STP enabled interfaces
docker0 8000.0242904c92a8 no
qbr5bd37136-47 8000.5e4e05841423 no qvb5bd37136-47
tap5bd37136-47
qbr95d96a75-a0 8000.de076cb850f6 no qvb95d96a75-a0
tap95d96a75-a0
[heat-admin@overcloud-novacompute-0 ~]$ Dị ka ị na-ahụ na mmepụta, e nwere nanị abụọ interfaces na akwa - tap95d96a75-a0 na qvb95d96a75-a0.
Ebe a ọ bara uru ibi ntakịrị na ụdị ngwaọrụ netwọkụ mebere na OpenStack:
vtap - mebere interface jikọtara na ihe atụ (VM)
qbr-Linux akwa
qvb na qvo-veth ụzọ ejikọrọ na Linux àkwà mmiri na Open vSwitch bridge
br-int, br-tun, br-vlan - Mepee àkwà mmiri vSwitch
patch-, int-br-, phy-br- - Mepee vSwitch patch interfaces jikọtara àkwà mmiri
qg, qr, ha, fg, sg - Mepee ọdụ ụgbọ mmiri vSwitch nke ngwaọrụ mebere eji jikọọ na OVS
Dị ka ị ghọtara, ọ bụrụ na anyị nwere ọdụ ụgbọ mmiri qvb95d96a75-a0 na àkwà mmiri, nke bụ ụzọ vEth, mgbe ahụ, ebe e nwere onye mmekọ ya, nke ekwesịrị ịkpọ qvo95d96a75-a0. Ka anyị hụ ihe ọdụ ụgbọ mmiri dị na OVS.
[heat-admin@overcloud-novacompute-0 ~]$ sudo sudo ovs-appctl dpif/show
system@ovs-system: hit:526 missed:91
br-ex:
br-ex 65534/1: (internal)
phy-br-ex 1/none: (patch: peer=int-br-ex)
br-int:
br-int 65534/2: (internal)
int-br-ex 1/none: (patch: peer=phy-br-ex)
patch-tun 2/none: (patch: peer=patch-int)
qvo5bd37136-47 6/6: (system)
qvo95d96a75-a0 3/5: (system)
br-tun:
br-tun 65534/3: (internal)
patch-int 1/none: (patch: peer=patch-tun)
vxlan-c0a8ff0f 3/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.15)
vxlan-c0a8ff1a 2/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.26)
[heat-admin@overcloud-novacompute-0 ~]$ Dị ka anyị nwere ike ịhụ, ọdụ ụgbọ mmiri dị na br-int. Br-int na-arụ ọrụ dị ka mgba ọkụ na-akwụsị ọdụ ụgbọ mmiri mebere igwe. Na mgbakwunye na qvo95d96a75-a0, a na-ahụ ọdụ ụgbọ mmiri qvo5bd37136-47 na mmepụta. Nke a bụ ọdụ ụgbọ mmiri nke abụọ mebere igwe. N'ihi ya, eserese anyị ugbu a dị ka nke a:
Ajụjụ kwesịrị ịmasị onye na-agụ agụ akwụkwọ ozugbo - gịnị bụ àkwà mmiri Linux dị n'etiti ọdụ ụgbọ mmiri mebere igwe na ọdụ ụgbọ mmiri OVS? Nke bụ eziokwu bụ na iji kpuchido igwe ahụ, a na-eji otu nchekwa, nke na-abụghị ihe ọ bụla karịa iptables. OVS anaghị arụ ọrụ na iptables, yabụ e chepụtara “crutch” a. Otú ọ dị, ọ na-aghọ ihe mgbe ochie - a na-eji contrack dochie ya na mwepụta ọhụrụ.
Ya bụ, n'ikpeazụ, atụmatụ a dị ka nke a:
Igwe abụọ na otu hypervisor na otu netwọk L2
Ebe VM abụọ a dị n'otu netwọkụ L2 yana n'otu hypervisor, okporo ụzọ dị n'etiti ha ga-aga n'ụzọ ezi uche dị na ya na mpaghara site na br-int, ebe igwe abụọ a ga-adị na otu VLAN:
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000001
Interface Type Source Model MAC
-------------------------------------------------------
tap95d96a75-a0 bridge qbr95d96a75-a0 virtio fa:16:3e:44:98:20
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000003
Interface Type Source Model MAC
-------------------------------------------------------
tap5bd37136-47 bridge qbr5bd37136-47 virtio fa:16:3e:83:ad:a4
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-int
port VLAN MAC Age
6 1 fa:16:3e:83:ad:a4 0
3 1 fa:16:3e:44:98:20 0
[heat-admin@overcloud-novacompute-0 ~]$ Igwe abụọ dị na hypervisors dị iche iche n'otu netwọkụ L2
Ugbu a, ka anyị hụ ka okporo ụzọ ga-esi gaa n'etiti igwe abụọ n'otu netwọk L2, mana dị na hypervisors dị iche iche. N'ikwu eziokwu, ọ nweghị ihe ga-agbanwe nke ukwuu, naanị okporo ụzọ dị n'etiti hypervisors ga-agafe ọwara vxlan. Ka anyị lee otu ihe atụ.
Adreesị igwe mebere nke anyị ga-ekiri okporo ụzọ:
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000001
Interface Type Source Model MAC
-------------------------------------------------------
tap95d96a75-a0 bridge qbr95d96a75-a0 virtio fa:16:3e:44:98:20
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-1 ~]$ sudo virsh domiflist instance-00000002
Interface Type Source Model MAC
-------------------------------------------------------
tape7e23f1b-07 bridge qbre7e23f1b-07 virtio fa:16:3e:72:ad:53
[heat-admin@overcloud-novacompute-1 ~]$ Anyị na-ele tebụl mbugharị na br-int na compute-0:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:72:ad:53
2 1 fa:16:3e:72:ad:53 1
[heat-admin@overcloud-novacompute-0 ~]Okporo ụzọ kwesịrị ịga n'ọdụ ụgbọ mmiri 2 - ka anyị hụ ụdị ọdụ ụgbọ mmiri ọ bụ:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:7e:7f:28:1f:bd:54
2(patch-tun): addr:0a:bd:07:69:58:d9
3(qvo95d96a75-a0): addr:ea:50:9a:3d:69:58
6(qvo5bd37136-47): addr:9a:d1:03:50:3d:96
LOCAL(br-int): addr:1a:0f:53:97:b1:49
[heat-admin@overcloud-novacompute-0 ~]$Nke a bụ patch-tun - ya bụ, interface dị na br-tun. Ka anyị hụ ihe na-eme ngwungwu na br-tun:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl dump-flows br-tun | grep fa:16:3e:72:ad:53
cookie=0x8759a56536b67a8e, duration=1387.959s, table=20, n_packets=1460, n_bytes=138880, hard_timeout=300, idle_age=0, hard_age=0, priority=1,vlan_tci=0x0001/0x0fff,dl_dst=fa:16:3e:72:ad:53 actions=load:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[],output:2
[heat-admin@overcloud-novacompute-0 ~]$ A na-etinye ngwugwu ahụ na VxLAN wee ziga ya na ọdụ ụgbọ mmiri 2. Ka anyị hụ ebe ọdụ ụgbọ mmiri 2 na-eduga:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl show br-tun | grep addr
1(patch-int): addr:b2:d1:f8:21:96:66
2(vxlan-c0a8ff1a): addr:be:64:1f:75:78:a7
3(vxlan-c0a8ff0f): addr:76:6f:b9:3c:3f:1c
LOCAL(br-tun): addr:a2:5b:6d:4f:94:47
[heat-admin@overcloud-novacompute-0 ~]$Nke a bụ ọwara vxlan na compute-1:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl dpif/show | egrep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.26)
[heat-admin@overcloud-novacompute-0 ~]$Ka anyị gaa compute-1 wee hụ ihe na-esote ngwugwu:
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-appctl fdb/show br-int | egrep fa:16:3e:44:98:20
2 1 fa:16:3e:44:98:20 1
[heat-admin@overcloud-novacompute-1 ~]$ Mac nọ na tebụl mbugharị br-int na compute-1, yana dịka enwere ike ịhụ site na mmepụta n'elu, a na-ahụ ya site na ọdụ ụgbọ mmiri 2, nke bụ ọdụ ụgbọ mmiri chere br-tun:
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:8a:d7:f9:ad:8c:1d
2(patch-tun): addr:46:cc:40:bd:20:da
3(qvoe7e23f1b-07): addr:12:78:2e:34:6a:c7
4(qvo3210e8ec-c0): addr:7a:5f:59:75:40:85
LOCAL(br-int): addr:e2:27:b2:ed:14:46Ọ dị mma, mgbe ahụ anyị na-ahụ na na br-int na compute-1 enwere poppy na-aga:
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-appctl fdb/show br-int | egrep fa:16:3e:72:ad:53
3 1 fa:16:3e:72:ad:53 0
[heat-admin@overcloud-novacompute-1 ~]$ Nke ahụ bụ, ngwugwu natara ga-efega n'ọdụ ụgbọ mmiri 3, n'azụ ya enweelarị igwe ihe atụ-00000003.
Mma nke ibugharị Openstack maka mmụta na akụrụngwa mebere bụ na anyị nwere ike ijide okporo ụzọ n'etiti hypervisors wee hụ ihe na-eme ya. Nke a bụ ihe anyị ga-eme ugbu a, gbaa tcpdump na ọdụ ụgbọ mmiri vnet gaa compute-0:
[root@hp-gen9 bormoglotx]# tcpdump -vvv -i vnet3
tcpdump: listening on vnet3, link-type EN10MB (Ethernet), capture size 262144 bytes
*****************omitted*******************
04:39:04.583459 IP (tos 0x0, ttl 64, id 16868, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.19.39096 > 192.168.255.26.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 64, id 8012, offset 0, flags [DF], proto ICMP (1), length 84)
10.0.1.85 > 10.0.1.88: ICMP echo request, id 5634, seq 16, length 64
04:39:04.584449 IP (tos 0x0, ttl 64, id 35181, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.26.speedtrace-disc > 192.168.255.19.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 64, id 59124, offset 0, flags [none], proto ICMP (1), length 84)
10.0.1.88 > 10.0.1.85: ICMP echo reply, id 5634, seq 16, length 64
*****************omitted*******************Ahịrị nke mbụ na-egosi na Patek sitere na adreesị 10.0.1.85 na-aga na adreesị 10.0.1.88 (traffic ICMP), ma kechie ya na ngwugwu VxLAN na vni 22 na ngwugwu ahụ sitere na onye ọbịa 192.168.255.19 (mgbakọ-0) iji kwado 192.168.255.26. .1 (gbakọọ-XNUMX). Anyị nwere ike ịlele na VNI dabara nke akọwapụtara na ovs.
Ka anyị laghachi na ahịrị a omume=load:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[], mmepụta:2. 0x16 bụ vni na usoro ọnụọgụ hexadecimal. Ka anyị tụgharịa nọmba a na sistemụ nke iri:
16 = 6*16^0+1*16^1 = 6+16 = 22Ya bụ, vni kwekọrọ n'eziokwu.
Ahịrị nke abụọ na-egosi okporo ụzọ nlọghachi, nke ọma, ọ nweghị uru ịkọwa ya, ihe niile doro anya n'ebe ahụ.
Igwe abụọ dị na netwọkụ dị iche iche (ntugharị ntanetị)
Ikpe ikpeazu maka taa bụ ịnyagharị n'etiti netwọkụ n'ime otu oru ngo site na iji rawụta mebere. Anyị na-atụle ikpe na-enweghị DVR (anyị ga-ele ya anya n'isiokwu ọzọ), ya mere ntụgharị na-eme na oghere netwọk. N'ọnọdụ anyị, a naghị etinye oghere netwọk ahụ n'ime ihe dị iche iche ma dị na oghere njikwa.
Nke mbụ, ka anyị hụ na routing na-arụ ọrụ:
$ ping 10.0.2.8
PING 10.0.2.8 (10.0.2.8): 56 data bytes
64 bytes from 10.0.2.8: seq=0 ttl=63 time=7.727 ms
64 bytes from 10.0.2.8: seq=1 ttl=63 time=3.832 ms
^C
--- 10.0.2.8 ping statistics ---
2 packets transmitted, 2 packets received, 0% packet loss
round-trip min/avg/max = 3.832/5.779/7.727 msEbe ọ bụ na n'okwu a, ngwugwu ahụ ga-aga n'ọnụ ụzọ ámá wee bugharịa ebe ahụ, anyị kwesịrị ịchọpụta adreesị MAC nke ọnụ ụzọ ámá, nke anyị na-ele anya na tebụl ARP na ihe atụ:
$ arp
host-10-0-1-254.openstacklocal (10.0.1.254) at fa:16:3e:c4:64:70 [ether] on eth0
host-10-0-1-1.openstacklocal (10.0.1.1) at fa:16:3e:e6:2c:5c [ether] on eth0
host-10-0-1-90.openstacklocal (10.0.1.90) at fa:16:3e:83:ad:a4 [ether] on eth0
host-10-0-1-88.openstacklocal (10.0.1.88) at fa:16:3e:72:ad:53 [ether] on eth0Ugbu a, ka anyị hụ ebe okporo ụzọ nwere ebe aga (10.0.1.254) fa:16:3e:c4:64:70 kwesịrị iziga:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-int | egrep fa:16:3e:c4:64:70
2 1 fa:16:3e:c4:64:70 0
[heat-admin@overcloud-novacompute-0 ~]$ Ka anyị lee ebe ọdụ ụgbọ mmiri 2 na-eduga:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:7e:7f:28:1f:bd:54
2(patch-tun): addr:0a:bd:07:69:58:d9
3(qvo95d96a75-a0): addr:ea:50:9a:3d:69:58
6(qvo5bd37136-47): addr:9a:d1:03:50:3d:96
LOCAL(br-int): addr:1a:0f:53:97:b1:49
[heat-admin@overcloud-novacompute-0 ~]$ Ihe niile bụ ezi uche, okporo ụzọ na-aga br-tun. Ka anyị hụ ọwara vxlan nke a ga-ekechi na:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl dump-flows br-tun | grep fa:16:3e:c4:64:70
cookie=0x8759a56536b67a8e, duration=3514.566s, table=20, n_packets=3368, n_bytes=317072, hard_timeout=300, idle_age=0, hard_age=0, priority=1,vlan_tci=0x0001/0x0fff,dl_dst=fa:16:3e:c4:64:70 actions=load:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[],output:3
[heat-admin@overcloud-novacompute-0 ~]$ Ọdụ ụgbọ mmiri nke atọ bụ ọwara vxlan:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-tun | grep addr
1(patch-int): addr:a2:69:00:c5:fa:ba
2(vxlan-c0a8ff1a): addr:86:f0:ce:d0:e8:ea
3(vxlan-c0a8ff13): addr:72:aa:73:2c:2e:5b
LOCAL(br-tun): addr:a6:cb:cd:72:1c:45
[heat-admin@overcloud-controller-0 ~]$ Nke na-ele anya ọnụ njikwa:
[heat-admin@overcloud-controller-0 ~]$ sudo sudo ovs-appctl dpif/show | grep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$ Okporo ụzọ ahụ erutela ọnụ ụzọ njikwa, yabụ anyị kwesịrị ịga na ya wee hụ ka ngagharị ga-esi mee.
Dị ka ị na-echeta, ọnụ ụzọ njikwa n'ime na-ele anya otu ihe ahụ dị ka ọnụ ọgụgụ compute - otu àkwà mmiri atọ ahụ, nanị br-ex nwere ọdụ ụgbọ mmiri anụ ahụ nke ọnụ nwere ike izipu okporo ụzọ n'èzí. Ihe okike nke ihe omuma gbanwere nhazi na onu ogugu - linux bridge, iptables na interfaces ka etinyere na onu ogugu. Ịmepụta netwọkụ na onye rawụta mebere ahapụkwara akara ya na nhazi nke ọnụ njikwa.
Yabụ, o doro anya na adreesị MAC ọnụ ụzọ ga-abụrịrị na tebụl ebugharị br-int na ọnụ njikwa. Ka anyị lelee na ọ dị na ebe ọ na-ele anya:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:c4:64:70
5 1 fa:16:3e:c4:64:70 1
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:2e:58:b6:db:d5:de
2(patch-tun): addr:06:41:90:f0:9e:56
3(tapca25a97e-64): addr:fa:16:3e:e6:2c:5c
4(tap22015e46-0b): addr:fa:16:3e:76:c2:11
5(qr-0c52b15f-8f): addr:fa:16:3e:c4:64:70
6(qr-92fa49b5-54): addr:fa:16:3e:80:13:72
LOCAL(br-int): addr:06:de:5d:ed:44:44
[heat-admin@overcloud-controller-0 ~]$ A na-ahụ Mac ahụ site na ọdụ ụgbọ mmiri qr-0c52b15f-8f. Ọ bụrụ na anyị laghachi azụ na ndepụta nke mebere ọdụ ụgbọ mmiri na Openstack, a na-eji ụdị ọdụ ụgbọ mmiri a jikọọ ngwaọrụ dị iche iche na OVS. Iji mee nke ọma karị, qr bụ ọdụ ụgbọ mmiri nke rawụta mebere, nke a na-anọchi anya ya dị ka oghere aha.
Ka anyị hụ ihe oghere aha dị na sava ahụ:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns
qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe (id: 2)
qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638 (id: 1)
qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 (id: 0)
[heat-admin@overcloud-controller-0 ~]$ Ihe ruru akwụkwọ atọ. Ma na-ekpe ikpe site na aha, ị nwere ike maa nzube nke ọ bụla n'ime ha. Anyị ga-alaghachi na ikpe nwere ID 0 na 1 emechaa, ugbu a anyị nwere mmasị na namespace qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe ip route
10.0.1.0/24 dev qr-0c52b15f-8f proto kernel scope link src 10.0.1.254
10.0.2.0/24 dev qr-92fa49b5-54 proto kernel scope link src 10.0.2.254
[heat-admin@overcloud-controller-0 ~]$ Oghere aha a nwere nke ime abụọ anyị mepụtara na mbụ. Agbakwunyela ọdụ ụgbọ mmiri abụọ mebere na br-int. Ka anyị lelee adreesị Mac nke ọdụ ụgbọ mmiri qr-0c52b15f-8f, ebe ọ bụ na okporo ụzọ, na-ekpe ikpe site na adreesị Mac ebe, gara na interface a.
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe ifconfig qr-0c52b15f-8f
qr-0c52b15f-8f: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 10.0.1.254 netmask 255.255.255.0 broadcast 10.0.1.255
inet6 fe80::f816:3eff:fec4:6470 prefixlen 64 scopeid 0x20<link>
ether fa:16:3e:c4:64:70 txqueuelen 1000 (Ethernet)
RX packets 5356 bytes 427305 (417.2 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 5195 bytes 490603 (479.1 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
[heat-admin@overcloud-controller-0 ~]$ Ya bụ, na nke a, ihe niile na-arụ ọrụ dị ka iwu nke ọkọlọtọ okporo ụzọ. Ebe ọ bụ na a kara aka na okporo ụzọ maka onye ọbịa 10.0.2.8, ọ ga-apụ na interface nke abụọ qr-92fa49b5-54 wee gafee ọwara vxlan gaa na ọnụ ọnụ:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe arp
Address HWtype HWaddress Flags Mask Iface
10.0.1.88 ether fa:16:3e:72:ad:53 C qr-0c52b15f-8f
10.0.1.90 ether fa:16:3e:83:ad:a4 C qr-0c52b15f-8f
10.0.2.8 ether fa:16:3e:6c:ad:9c C qr-92fa49b5-54
10.0.2.42 ether fa:16:3e:f5:0b:29 C qr-92fa49b5-54
10.0.1.85 ether fa:16:3e:44:98:20 C qr-0c52b15f-8f
[heat-admin@overcloud-controller-0 ~]$ Ihe niile bụ ezi uche, ọ dịghị ihe ijuanya. Ka anyị hụ ebe a na-ahụ adreesị poppy nke onye ọbịa 10.0.2.8 na br-int:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:6c:ad:9c
2 2 fa:16:3e:6c:ad:9c 1
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:2e:58:b6:db:d5:de
2(patch-tun): addr:06:41:90:f0:9e:56
3(tapca25a97e-64): addr:fa:16:3e:e6:2c:5c
4(tap22015e46-0b): addr:fa:16:3e:76:c2:11
5(qr-0c52b15f-8f): addr:fa:16:3e:c4:64:70
6(qr-92fa49b5-54): addr:fa:16:3e:80:13:72
LOCAL(br-int): addr:06:de:5d:ed:44:44
[heat-admin@overcloud-controller-0 ~]$ Dị ka a tụrụ anya, okporo ụzọ na-aga br-tun, ka anyị hụ nke ọwara okporo ụzọ na-abanye na-esote:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl dump-flows br-tun | grep fa:16:3e:6c:ad:9c
cookie=0x2ab04bf27114410e, duration=5346.829s, table=20, n_packets=5248, n_bytes=498512, hard_timeout=300, idle_age=0, hard_age=0, priority=1,vlan_tci=0x0002/0x0fff,dl_dst=fa:16:3e:6c:ad:9c actions=load:0->NXM_OF_VLAN_TCI[],load:0x63->NXM_NX_TUN_ID[],output:2
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-tun | grep addr
1(patch-int): addr:a2:69:00:c5:fa:ba
2(vxlan-c0a8ff1a): addr:86:f0:ce:d0:e8:ea
3(vxlan-c0a8ff13): addr:72:aa:73:2c:2e:5b
LOCAL(br-tun): addr:a6:cb:cd:72:1c:45
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo sudo ovs-appctl dpif/show | grep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$ Okporo ụzọ na-abanye n'ọwara iji gbakọọ-1. Ọ dị mma, na compute-1 ihe niile dị mfe - site na br-tun ngwugwu na-aga br-int wee si ebe ahụ gaa na interface igwe mebere:
[heat-admin@overcloud-controller-0 ~]$ sudo sudo ovs-appctl dpif/show | grep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:6c:ad:9c
4 2 fa:16:3e:6c:ad:9c 1
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:8a:d7:f9:ad:8c:1d
2(patch-tun): addr:46:cc:40:bd:20:da
3(qvoe7e23f1b-07): addr:12:78:2e:34:6a:c7
4(qvo3210e8ec-c0): addr:7a:5f:59:75:40:85
LOCAL(br-int): addr:e2:27:b2:ed:14:46
[heat-admin@overcloud-novacompute-1 ~]$ Ka anyị lelee na nke a bụ n'ezie interface ziri ezi:
[heat-admin@overcloud-novacompute-1 ~]$ brctl show
bridge name bridge id STP enabled interfaces
docker0 8000.02429c001e1c no
qbr3210e8ec-c0 8000.ea27f45358be no qvb3210e8ec-c0
tap3210e8ec-c0
qbre7e23f1b-07 8000.b26ac0eded8a no qvbe7e23f1b-07
tape7e23f1b-07
[heat-admin@overcloud-novacompute-1 ~]$
[heat-admin@overcloud-novacompute-1 ~]$ sudo virsh domiflist instance-00000004
Interface Type Source Model MAC
-------------------------------------------------------
tap3210e8ec-c0 bridge qbr3210e8ec-c0 virtio fa:16:3e:6c:ad:9c
[heat-admin@overcloud-novacompute-1 ~]$ N'ezie, anyị gafere na ngwugwu ahụ. Echere m na ị chọpụtara na okporo ụzọ gafere dị iche iche vxlan tunnels na exited dị iche iche VNI. Ka anyị hụ ụdị VNI ndị a bụ, mgbe nke ahụ gasịrị, anyị ga-anakọta mkpofu n'ọdụ ụgbọ mmiri nke ọnụ ọnụ ma jide n'aka na okporo ụzọ na-aga kpọmkwem dị ka akọwara n'elu.
Yabụ, ọwara iji gbakọọ-0 nwere omume ndị a = ibu: 0->NXM_OF_VLAN_TCI[],bu:0x16->NXM_NX_TUN_ID[], mmepụta:3. Ka anyị tụgharịa 0x16 ka ọ bụrụ usoro ọnụọgụgụ ọnụọgụgụ:
0x16 = 6*16^0+1*16^1 = 6+16 = 22Ọwara iji gbakọọ-1 nwere VNI ndị a: omume = ibu: 0->NXM_OF_VLAN_TCI[],bu:0x63->NXM_NX_TUN_ID[], mmepụta:2. Ka anyị tụgharịa 0x63 ka ọ bụrụ usoro ọnụọgụgụ ọnụọgụgụ:
0x63 = 3*16^0+6*16^1 = 3+96 = 99Ọfọn, ugbu a, ka anyị leba anya na mkpofu:
[root@hp-gen9 bormoglotx]# tcpdump -vvv -i vnet4
tcpdump: listening on vnet4, link-type EN10MB (Ethernet), capture size 262144 bytes
*****************omitted*******************
04:35:18.709949 IP (tos 0x0, ttl 64, id 48650, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.19.41591 > 192.168.255.15.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 64, id 49042, offset 0, flags [DF], proto ICMP (1), length 84)
10.0.1.85 > 10.0.2.8: ICMP echo request, id 5378, seq 9, length 64
04:35:18.710159 IP (tos 0x0, ttl 64, id 23360, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.15.38983 > 192.168.255.26.4789: [no cksum] VXLAN, flags [I] (0x08), vni 99
IP (tos 0x0, ttl 63, id 49042, offset 0, flags [DF], proto ICMP (1), length 84)
10.0.1.85 > 10.0.2.8: ICMP echo request, id 5378, seq 9, length 64
04:35:18.711292 IP (tos 0x0, ttl 64, id 43596, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.26.42588 > 192.168.255.15.4789: [no cksum] VXLAN, flags [I] (0x08), vni 99
IP (tos 0x0, ttl 64, id 55103, offset 0, flags [none], proto ICMP (1), length 84)
10.0.2.8 > 10.0.1.85: ICMP echo reply, id 5378, seq 9, length 64
04:35:18.711531 IP (tos 0x0, ttl 64, id 8555, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.15.38983 > 192.168.255.19.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 63, id 55103, offset 0, flags [none], proto ICMP (1), length 84)
10.0.2.8 > 10.0.1.85: ICMP echo reply, id 5378, seq 9, length 64
*****************omitted*******************Akpa mbụ bụ ngwugwu vxlan sitere na onye ọbịa 192.168.255.19 (compute-0) iji kwado 192.168.255.15 (njikwa-1) na vni 22, n'ime nke a na-ejikọta ngwugwu ICMP site na onye ọbịa 10.0.1.85 iji kwado 10.0.2.8. Dị ka anyị gbakọrọ n'elu, vni dakọtara ihe anyị hụrụ na mmepụta.
Ihe ngwugwu nke abụọ bụ ngwugwu vxlan sitere na onye ọbịa 192.168.255.15 (njikwa-1) iji kwado 192.168.255.26 (compute-1) na vni 99, n'ime nke a na-ejikọta ngwugwu ICMP site na onye ọbịa 10.0.1.85 iji kwado 10.0.2.8. Dị ka anyị gbakọrọ n'elu, vni dakọtara ihe anyị hụrụ na mmepụta.
Ngwunye abụọ na-esote bụ nloghachi okporo ụzọ site na 10.0.2.8 ọ bụghị 10.0.1.85.
Ya bụ, n'ikpeazụ anyị nwetara atụmatụ njikwa ọnụ:
Ọ dị ka ọ bụ ya? Anyị chefuru maka oghere aha abụọ:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns
qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe (id: 2)
qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638 (id: 1)
qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 (id: 0)
[heat-admin@overcloud-controller-0 ~]$ Dịka anyị na-ekwu maka nhazi nke ikpo okwu igwe ojii, ọ ga-adị mma ma igwe na-enweta adreesị na-akpaghị aka site na ihe nkesa DHCP. Ndị a bụ sava DHCP abụọ maka netwọkụ anyị abụọ 10.0.1.0/24 na 10.0.2.0/24.
Ka anyị lelee na nke a bụ eziokwu. Enwere naanị otu adreesị na oghere aha a - 10.0.1.1 - adreesị nke ihe nkesa DHCP n'onwe ya, yana ya gụnyere na br-int:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 ifconfig
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1000 (Local Loopback)
RX packets 1 bytes 28 (28.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1 bytes 28 (28.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
tapca25a97e-64: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 10.0.1.1 netmask 255.255.255.0 broadcast 10.0.1.255
inet6 fe80::f816:3eff:fee6:2c5c prefixlen 64 scopeid 0x20<link>
ether fa:16:3e:e6:2c:5c txqueuelen 1000 (Ethernet)
RX packets 129 bytes 9372 (9.1 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 49 bytes 6154 (6.0 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0Ka anyị hụ ma usoro nwere qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 n'aha ha na ọnụ njikwa:
[heat-admin@overcloud-controller-0 ~]$ ps -aux | egrep qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638
root 640420 0.0 0.0 4220 348 ? Ss 11:31 0:00 dumb-init --single-child -- ip netns exec qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638 /usr/sbin/dnsmasq -k --no-hosts --no-resolv --pid-file=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/pid --dhcp-hostsfile=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/host --addn-hosts=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/addn_hosts --dhcp-optsfile=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/opts --dhcp-leasefile=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/leases --dhcp-match=set:ipxe,175 --local-service --bind-dynamic --dhcp-range=set:subnet-335552dd-b35b-456b-9df0-5aac36a3ca13,10.0.2.0,static,255.255.255.0,86400s --dhcp-option-force=option:mtu,1450 --dhcp-lease-max=256 --conf-file= --domain=openstacklocal
heat-ad+ 951620 0.0 0.0 112944 980 pts/0 S+ 18:50 0:00 grep -E --color=auto qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638
[heat-admin@overcloud-controller-0 ~]$ Enwere usoro dị otú ahụ ma dabere na ozi ewepụtara na mmepụta n'elu, anyị nwere ike, dịka ọmụmaatụ, hụ ihe anyị nwere ugbu a maka mgbazinye:
[heat-admin@overcloud-controller-0 ~]$ cat /var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/leases
1597492111 fa:16:3e:6c:ad:9c 10.0.2.8 host-10-0-2-8 01:fa:16:3e:6c:ad:9c
1597491115 fa:16:3e:76:c2:11 10.0.2.1 host-10-0-2-1 *
[heat-admin@overcloud-controller-0 ~]$N'ihi ya, anyị na-enweta usoro ọrụ ndị a na ọnụ njikwa:
Ọ dị mma, buru n'uche - nke a bụ naanị igwe 4, netwọkụ n'ime 2 na otu rawụta mebere ... Anyị enweghị netwọkụ mpụga ebe a ugbu a, ụyọkọ ọrụ dị iche iche, nke ọ bụla nwere netwọkụ nke ya (n'elu), anyị nwere. agbanyụrụ rawụta ekesa, na n'ikpeazụ E kwuwerị, e nwere naanị otu ọnụ njikwa na bench ule (maka mmejọ nnabata a ga-enwerịrị quorum nke ọnụ atọ). Ọ bụ ihe ezi uche dị na ya na azụmahịa ihe niile bụ "obere" mgbagwoju anya, ma na nke a dị mfe ihe atụ anyị na-aghọta otú o kwesịrị ịrụ ọrụ - ma ị nwere 3 ma ọ bụ 300 namespaces bụ n'ezie dị mkpa, ma si n'ókè nke ọrụ nke dum. Ọdịdị, ọ dịghị ihe ga-agbanwe nke ukwuu ... ọ bụ ezie na ruo mgbe ị gaghị etinye ụfọdụ SDN na-ere ahịa. Mana nke ahụ bụ akụkọ dị iche kpamkpam.
Enwere m olileanya na ọ dị ụtọ. Ọ bụrụ na ị nwere nkọwa / mgbakwunye ọ bụla, ma ọ bụ ebe m ghaara ụgha kpamkpam (Abụ m mmadụ na echiche m ga-adị mgbe niile) - dee ihe kwesịrị imezi / gbakwunye - anyị ga-edozi / tinye ihe niile.
N'ikpeazụ, ọ ga-amasị m ikwu okwu ole na ole gbasara iji tụnyere Openstack (ma vanilla na onye na-ere ahịa) na ngwọta igwe ojii sitere na VMWare - Ajụrụ m ajụjụ a ugboro ugboro n'ime afọ ole na ole gara aga na, n'ikwu eziokwu, a na m ike gwụrụ ya, mana ka. N'uche nke m, ọ bụ ihe siri ike iji tụnyere ihe ngwọta abụọ a, ma anyị nwere ike ikwu n'ezie na e nwere adịghị ike na ma ngwọta na mgbe ị na-ahọrọ otu ngwọta ị kwesịrị ịtụle uru na ọghọm.
Ọ bụrụ na OpenStack bụ ihe ngwọta nke obodo, mgbe ahụ VMWare nwere ikike ime naanị ihe ọ chọrọ (gụọ - ihe bara uru maka ya) na nke a bụ ihe ezi uche dị na ya - n'ihi na ọ bụ ụlọ ọrụ azụmahịa nke a na-eji eme ego n'aka ndị ahịa ya. Mana enwere otu buru ibu ma buru ibu ma - ị nwere ike pụọ na OpenStack, dịka ọmụmaatụ site na Nokia, yana iji obere ego gbanwee gaa na ngwọta sitere na Juniper (Contrail Cloud), mana o yighị ka ị ga-esi pụọ na VMWare. . Maka m, ngwọta abụọ a dị ka nke a - Openstack (onye na-ere ahịa) bụ oghere dị mfe nke etinyere gị, mana ị nwere igodo ma ị nwere ike ịpụ n'oge ọ bụla. VMWare bụ oghere ọla edo, onye nwe ya nwere mkpịsị ugodi nke ọnụ ụlọ ahụ ma ọ ga-eri gị nnukwu ego.
Anaghị m akwalite ma ngwaahịa mbụ ma ọ bụ nke abụọ - ị họrọ ihe ịchọrọ. Ma ọ bụrụ na m nwere nhọrọ dị otú ahụ, m ga-ahọrọ ma ngwọta - VMWare maka IT igwe ojii (obere ibu, mfe management), OpenStack si ụfọdụ ere (Nokia na Juniper na-enye ezigbo turnkey ngwọta) - maka Telecom igwe ojii. Agaghị m eji Opentack maka IT dị ọcha - ọ dị ka iji egbe agba nza, mana ahụghị m ihe mgbochi ọ bụla maka iji ya na-abụghị ọrụ. Otú ọ dị, iji VMWare na telecom dị ka ịdọrọ nkume e gwepịara egwepịa n'ime Ford Raptor - ọ mara mma site na mpụga, mana onye ọkwọ ụgbọ ala ga-eme njem 10 kama otu.
N'uche nke m, nnukwu mwepu nke VMWare bụ mmechi ya zuru oke - ụlọ ọrụ agaghị enye gị ozi ọ bụla gbasara otu o si arụ ọrụ, dịka ọmụmaatụ, vSAN ma ọ bụ ihe dị na kernel hypervisor - ọ bụghị naanị uru maka ya - ya bụ, ị ga-eme ya. aghọọla ọkachamara na VMWare - na-enweghị nkwado onye na-ere ahịa, ị ga-aga n'ihu (mgbe m na-ezute ndị ọkachamara VMWare bụ ndị ajụjụ na-enweghị isi na-eju gị anya). Maka m, VMWare na-azụta ụgbọ ala nwere mkpuchi mkpuchi - ee, ị nwere ike ịnwe ndị ọkachamara nwere ike ịgbanwe eriri oge, mana naanị onye rere gị ihe ngwọta a nwere ike imeghe mkpuchi ahụ. Onwe m, anaghị amasị m ngwọta nke m na-enweghị ike ịbanye na ya. Ị ga-asị na ị gaghị aga n'okpuru mkpuchi. Ee, nke a ga-ekwe omume, mana m ga-ele gị anya mgbe ịchọrọ ikpokọta nnukwu ọrụ na igwe ojii site na igwe mebere 20-30, netwọkụ 40-50, ọkara nke chọrọ ịpụ n'èzí, ọkara nke abụọ na-arịọ maka ya. Osooso SR-IOV, ma ọ bụghị ya, ị ga-achọ karịa abụọ nke iri na abuo nke ụgbọ ala ndị a - ma ọ bụghị na arụmọrụ agaghị ezuru.
Enwere echiche ndị ọzọ, yabụ naanị gị nwere ike ikpebi ihe ị ga-ahọrọ na, nke kachasị mkpa, ị ga-ahụ maka nhọrọ gị. Nke a bụ echiche m - onye hụrụ ma metụrụ opekata mpe ngwaahịa anọ aka - Nokia, Juniper, Red Hat na VMWare. Ya bụ, enwere m ihe atụnyere ya.
isi: www.habr.com
