Cloud computing o loʻo faʻaulu loloto ma loloto i totonu o tatou olaga ma atonu e leai se tagata e toʻatasi e leʻi faʻaaogaina soʻo se auaunaga ao pe a ma le tasi. Ae ui i lea, o le a tonu le ao ma le auala e galue ai, e toaitiiti tagata latou te iloa, e oʻo lava i le maualuga o se manatu. 5G ua avea nei ma mea moni ma o le telecom infrastructure ua amata ona alu ese mai le pole solutions i le cloud solutions, e pei lava ona sa i ai ina ua siitia mai le atoatoa meafaigaluega fofo i virtualized "poutu".
O aso nei o le a tatou talanoa e uiga i le lalolagi i totonu o le ao, aemaise lava o le a tatou vaʻavaʻai i faʻavae o le vaega o fesoʻotaʻiga.
O le a le ao? Le tutusa virtualization - va'aiga fa'amatalaga?
E sili atu nai lo se fesili talafeagai. Leai - e le o le virtualization, e ui lava e le mafai ona faia e aunoa ma lea. Se'i tatou va'ai i fa'auigaga se lua:
Cloud computing (e ta'ua mulimuli ane o Cloud) o se fa'ata'ita'iga mo le tu'uina atu o avanoa fa'aoga-fa'aoga i punaoa fa'akomepiuta tufaina e tatau ona fa'apipi'i ma fa'alauiloa i luga ole mana'oga fa'atasi ai ma le fa'agata maualalo ma le tau maualalo ile kamupani tu'uina atu auaunaga.
Fa'atonuga - o le mafai lea ona vaevae se tasi vaega faʻaletino (mo se faʻataʻitaʻiga, se server) i ni mea faʻapitoa, ma faʻateleina ai le faʻaogaina o punaoa (mo se faʻataʻitaʻiga, e 3 au 'auʻaunaga na utaina i le 25-30 pasene, pe a uma le virtualization e te maua le 1 server utaina i le 80-90 pasene). E masani lava, o le virtualization e 'ai nisi o punaoa - e tatau ona e fafagaina le hypervisor, peitaʻi, e pei ona faʻaalia e le faʻataʻitaʻiga, o le taʻaloga e aoga le moligao. O se faʻataʻitaʻiga lelei o le virtualization o le VMWare, lea e saunia lelei masini masini, pe mo se faʻataʻitaʻiga KVM, lea ou te fiafia i ai, ae o se mea lea o le tofo.
Matou te faʻaogaina le virtualization e aunoa ma le iloaina, ma e oʻo lava i le au taʻavale uʻamea ua uma ona faʻaogaina le virtualization - mo se faʻataʻitaʻiga, i le lomiga lata mai o JunOS, o loʻo faʻapipiʻiina le faiga faʻaogaina e pei o se masini komepiuta i luga o le tufatufaina o Linux taimi moni (Wind River 9). Ae o le virtualization e le o le ao, ae o le ao e le mafai ona i ai e aunoa ma le virtualization.
Virtualization o se tasi o poloka faufale lea e fausia ai le ao.
Faia o se ao e ala i le aoina mai o le tele o hypervisors i le tasi L2 domain, faʻaopoopoina ni nai tusi taʻaloga yaml mo le resitalaina otometi vlans e ala i se ituaiga o Ansible ma tuʻuina se mea e pei o se faʻasalalauga faʻapipiʻi i luga mo le faʻaogaina otometi masini masini e le aoga. O le a sili atu le saʻo, ae o le taunuuga o Frankenstein e le o le ao tatou te manaʻomia, e ui atonu o le miti sili lea mo isi. E le gata i lea, afai e te faʻaaogaina le Openstack tutusa, o le mea moni lava o Frankenstein, ae oka, aua neʻi o tatou talanoa e uiga i lena mea mo le taimi nei.
Ae ou te malamalama mai le faʻamatalaga o loʻo tuʻuina atu i luga e le o manino atoatoa le mea e mafai ona taʻua o le ao.
O le mea lea, o se pepa mai le NIST (National Institute of Standards and Technology) e maua ai uiga autu e 5 e tatau ona i ai i le ao:
Tuuina atu auaunaga pe a talosagaina. E tatau ona tuʻuina atu i le tagata faʻaoga avanoa avanoa i punaoa komepiuta ua tuʻuina atu ia te ia (e pei o fesoʻotaʻiga, masini komepiuta, manatua, cores processor, ma isi), ma o nei punaoa e tatau ona tuʻuina atu otometi - o lona uiga, e aunoa ma se faʻalavelave mai le kamupani e tuʻuina atu auaunaga.
Tele avanoa o auaunaga. O avanoa i punaoa e tatau ona tuʻuina atu e ala masani e faʻatagaina ai le faʻaogaina o PC masani ma tagata manifinifi ma masini feaveaʻi.
Tuufaatasia o punaoa i vaitaele. O puna'oa e tatau ona mafai ona tu'uina atu alaga'oa i le tele o tagata fa'atau i le taimi e tasi, fa'amautinoa o lo'o fa'amama'o tagata fa'atau ma saoloto mai le felagolagoma'i ma tauvaga mo punaoa. O feso'ota'iga o lo'o aofia ai fo'i i vaita'ele, lea e fa'ailoa mai ai le avanoa e fa'aogaina ai le fa'afeso'ota'i tuatusi. E tatau ona mafai ona fua vaitaele pe a mana'omia. O le faʻaogaina o vaitaele e mafai ai ona tuʻuina atu le tulaga manaʻomia o le faʻapalepale faʻaletonu o punaoa ma le faʻaaogaina o punaoa faʻaletino ma le faʻaogaina - o le tagata e mauaina le auaunaga e naʻo le tuʻuina atu ma le seti o punaoa na ia talosagaina (pe o fea o loʻo i ai nei punaoa, pe fia le tele. servers ma sui - e le afaina i le kalani). Ae ui i lea, e tatau ona tatou amanaʻia le mea moni e tatau i le kamupani tuʻuina atu ona mautinoa le faʻasaoina manino o nei punaoa.
Fa'afetaui vave i tulaga eseese. Au'aunaga e tatau ona fetu'una'i - vave tu'uina atu o punaoa, latou toe tufatufaina atu, fa'aopoopo pe fa'aitiitia punaoa i le mana'oga a le tagata o tausia, ma i le vaega a le kalani e tatau ona i ai se lagona e le gata o puna'oa ao. Mo le faigofie o le malamalama, mo se faʻataʻitaʻiga, e te le o vaʻaia se lapataiga o se vaega o lau vaʻa vaʻaia i Apple iCloud ua mou atu ona ua malepe le kiliva malo i luga o le server, ma ua malepe le taʻavale. E le gata i lea, i lau vaega, o avanoa o lenei auaunaga e toetoe lava a le gata - e te manaʻomia le 2 TB - leai se faʻafitauli, na e totogiina ma mauaina. E mafai ona tuʻuina atu se faʻataʻitaʻiga tutusa ma Google.Drive poʻo Yandex.Disk.
Avanoa e fuaina ai le auaunaga na tu'uina atu. E tatau ona otometi ona fa'atonutonu ma fa'asili puna'oa o lo'o fa'aaogaina, ma o nei faiga e tatau ona manino i le tagata fa'aoga ma le au'aunaga. O lona uiga, e mafai ona e siakiina i taimi uma le tele o punaoa o loʻo e faʻaaogaina ma au tagata faʻatau.
E taua le mafaufau i le mea moni o nei manaʻoga e tele lava ina manaʻomia mo se ao lautele, o lea mo se ao tumaoti (o lona uiga, o se ao faʻalauiloa mo manaoga i totonu o le kamupani), o nei manaʻoga e mafai ona faʻafetaui teisi. Ae ui i lea, e tatau lava ona faia, a leai o le a tatou le mauaina uma aoga o le cloud computing.
Aisea tatou te manaomia ai se ao?
Ae ui i lea, soʻo se tekonolosi fou pe o loʻo i ai nei, soʻo se tulafono fou ua faia mo se mea (lelei, sei vagana ai RIP-ng, ioe). E leai se tasi e manaʻomia se faʻasalalauga mo le lelei o se faʻasalalauga (lelei, vagana ai RIP-ng, ioe). E talafeagai le faia o le Ao e tuʻuina atu ai se ituaiga o auaunaga i le tagata faʻaoga / tagata faʻatau. Matou te masani uma i ni nai auaunaga ao, mo se faʻataʻitaʻiga Dropbox poʻo Google.Docs, ma ou te talitonu o le tele o tagata latou te faʻaaogaina ma le manuia - mo se faʻataʻitaʻiga, o lenei tusiga na tusia e faʻaaoga ai le Google.Docs cloud service. Ae o auaunaga ao matou te iloa ua na o se vaega o le gafatia o le ao-e sili atu ona saʻo, ua na o se SaaS-ituaiga auaunaga. E mafai ona matou tuʻuina atu se auaunaga ao i ni auala se tolu: i le tulaga o SaaS, PaaS poʻo IaaS. O le a le auaunaga e te manaʻomia e faʻalagolago i ou manaʻoga ma gafatia.
Se'i o tatou va'ai i fa'asologa ta'itasi:
Polokalame o se Auaunaga (SaaS) o se faʻataʻitaʻiga mo le tuʻuina atu o se auaunaga atoatoa i le kalani, mo se faʻataʻitaʻiga, o se imeli imeli e pei o Yandex.Mail poʻo Gmail. I lenei faʻataʻitaʻiga tuʻuina atu o auaunaga, o oe, i le avea ai ma se tagata faʻatau, e leai se mea e faia sei vagana ai le faʻaaogaina o auaunaga - o lona uiga, e te le manaʻomia le mafaufau e uiga i le faʻatulagaina o le auaunaga, lona faʻapalepale sese poʻo le toe faʻaaogaina. O le mea autu e le o le faʻafefeteina o lau faʻaupuga; o le tuʻuina atu o lenei auaunaga o le a faia le isi mea mo oe. Mai le vaaiga a le kamupani e tuʻuina atu auaunaga, e nafa atoatoa o ia mo le auaunaga atoa - mai mea faigaluega a le server ma le faʻaogaina o faiga faʻaoga i faʻamaumauga ma faʻapipiʻi polokalama.
Tulaga o se Auaunaga (PaaS) — pe a faʻaaogaina lenei faʻataʻitaʻiga, e tuʻuina atu e le auʻaunaga auaunaga i le kalani se mea faigaluega mo le tautua, mo se faʻataʻitaʻiga, seʻi o tatou ave se Web server. Na tuʻuina atu e le 'auʻaunaga i le kalani se 'auʻaunaga faʻapitoa (o le mea moni, o se seti o punaoa, e pei o le RAM / CPU / Storage / Nets, ma isi), ma faʻapipiʻi le OS ma polokalama talafeagai i luga o lenei 'auʻaunaga, ae ui i lea, o le faʻatulagaina o o nei mea uma e faia e le kalani lava ia ma mo le faʻatinoga o le auaunaga e tali mai ai le kalani. O le auʻaunaga, e pei o le mataupu muamua, e nafa ma le faʻatinoina o meafaigaluega faʻapitoa, hypervisors, masini komepiuta lava ia, lona avanoa fesoʻotaʻiga, ma isi, ae o le auaunaga lava ia e le o toe i ai i lana vaega o matafaioi.
Atinae Eseese o se Auaunaga (IaaS) - o lenei faiga ua sili atu ona manaia, o le mea moni, o le auʻaunaga e tuʻuina atu i le kalani se atinaʻe faʻapitoa faʻapitoa - o lona uiga, o nisi seti (vaivai) o punaoa, e pei o CPU Cores, RAM, Networks, ma isi mea uma. le tagata o tausia - o le a le mea e mana'o le kalani e fai i nei punaoa i totonu o le vaita'ele (quota) - e le taua tele mo le fa'atau oloa. Pe mana'o le kalani e fai lana lava vEPC po'o le fa'atupuina fo'i o se tama'i masini ma tu'uina atu auaunaga tau feso'ota'iga - leai se fesili - fai. I se tulaga faapena, o le auʻaunaga e nafa ma le tuʻuina atu o punaoa, o latou faʻaletonu ma le avanoa, faʻapea foʻi ma le OS e mafai ai ona latou faʻaputuina nei punaoa ma faʻaavanoaina i le tagata o tausia ma le mafai ona faʻateleina pe faʻaitiitia punaoa i soo se taimi. i le talosaga a le kalani. E fetuutuuna'i e le tagata o tausia masini fa'akomepiuta uma ma isi fa'alavalava e ala i le faitoto'a o le auaunaga a le tagata lava ia ma fa'amafanafanaga, e aofia ai le fa'atulagaina o feso'otaiga (sei vagana ai feso'ota'iga i fafo).
O le a le OpenStack?
I filifiliga uma e tolu, e manaʻomia e le 'auʻaunaga se OS e mafai ai ona faʻatupuina se atinaʻe ao. O le mea moni, faatasi ai ma le SaaS, e sili atu ma le tasi le vaega e nafa ma le faaputuga atoa o tekinolosi - o loʻo i ai se vaega e nafa ma atinaʻe - o lona uiga, e tuʻuina atu IaaS i se isi vaega, o lenei vaega e tuʻuina atu SaaS i le kalani. OpenStack o se tasi o faiga faʻaogaina ao e mafai ai e oe ona aoina le tele o ki, servers ma le teuina o mea i totonu o se vaitaele puna e tasi, vaeluaina lenei vaitaele masani i subpools (tagata nofoia) ma tuʻuina atu nei punaoa i tagata faʻatau i luga o le upega tafailagi.
OpenStack o se faiga faʻaogaina ao e mafai ai e oe ona pulea le tele o vaituloto o punaoa tau komepiuta, faʻamaumauga faʻamaumauga ma punaoa fesoʻotaʻiga, tuʻuina atu ma faʻatautaia e ala i le API e faʻaaoga ai faʻamaoniga masani.
I se isi faaupuga, o se seti o polokalama faakomepiuta e leai se totogi lea ua mamanuina e fatuina ai auaunaga ao (i le lautele ma le tumaoti) - o lona uiga, o se seti o meafaigaluega e mafai ai e oe ona tuʻufaʻatasia le server ma le fesuiaʻiina o meafaigaluega i totonu o se tasi vaitaele o punaoa, pulea. nei punaoa, e maua ai le tulaga talafeagai o le faapalepale masei .
I le taimi na tusia ai lenei mea, o le OpenStack structure e pei o lenei:
Ata na pueina mai
O vaega taʻitasi o loʻo aofia i OpenStack o loʻo faia se galuega faʻapitoa. O lenei faʻataʻitaʻiga tufatufaina e mafai ai ona e faʻaaofia i totonu o le fofo le seti o vaega aoga e te manaʻomia. Ae ui i lea, o nisi vaega o vaega aʻa ma o latou aveeseina o le a taʻitaʻia ai le atoatoa poʻo se vaega le mafai ona faʻaogaina o le fofo atoa. O vaega nei e masani ona fa'avasegaina i:
- Dashboard - GUI i luga ole laiga mo le puleaina o auaunaga OpenStack
- Maa 'Auʻau ose 'au'aunaga fa'asinomaga tu'ufa'atasi e tu'uina atu le fa'amaoni ma le fa'atagaina o galuega mo isi 'au'aunaga, fa'apea fo'i ma le fa'afoeina o fa'amaumauga a tagata fa'aoga ma latou matafaioi.
- Neutron - o se 'au'aunaga feso'ota'iga e maua ai feso'ota'iga i le va o feso'ota'iga o 'au'aunaga OpenStack eseese (e aofia ai le feso'ota'iga i le va o VM ma lo latou avanoa i le lalolagi i fafo)
- Cinder - maua ai le avanoa e poloka ai le teuina mo masini komepiuta
- Nova - pulega taamilomilo olaga o masini komepiuta
- Vaʻai - fale teuoloa o ata masini masini ma ata
- Swift - e maua ai le avanoa i le mea e teu ai
- Seilometer - o se 'au'aunaga e maua ai le tomai e aoina ai le telemetry ma fuaina avanoa ma fa'aaogaina punaoa
- vevela - tu'ufa'atasiga e fa'atatau i fa'ata'ita'iga mo le fa'atupu otometi ma le tu'uina atu o punaoa
O se lisi atoa o galuega faatino uma ma o latou faamoemoega e mafai ona va'aia .
O vaega taʻitasi OpenStack o se 'auʻaunaga e faʻatino se galuega faʻapitoa ma tuʻuina atu se API e pulea ai lena galuega ma fegalegaleai ma isi auaunaga faʻaogaina o le ao e fausia ai se faʻalapotopotoga tuʻufaʻatasia. Mo se faʻataʻitaʻiga, e tuʻuina atu e Nova le faʻatautaia o punaoa faʻakomepiuta ma se API mo le avanoa e faʻapipiʻi ai nei punaoa, Glance e maua ai le pulega o ata ma se API mo le puleaina, Cinder e tuʻuina atu poloka poloka ma se API mo le puleaina, ma isi. O galuega uma e fesoʻotaʻi i se auala vavalalata.
Ae peitaʻi, afai e te vaʻavaʻai i ai, o auaunaga uma o loʻo faʻaogaina i OpenStack e mulimuli ane o se ituaiga masini masini (poʻo se atigipusa) e fesoʻotaʻi i le fesoʻotaʻiga. O le fesili e tula’i mai – aisea tatou te manaomia ai le tele o elemene?
Sei o tatou alu i le algorithm mo le fatuina o se masini komepiuta ma faʻafesoʻotaʻi i le fesoʻotaʻiga ma le teuina tumau i Openstack.
- A e faia se talosaga e fatu ai se masini, pe o se talosaga e ala i Horizon (Dashboard) poʻo se talosaga e ala i le CLI, o le mea muamua e tupu o le faʻatagaina o lau talosaga ile Keystone - e mafai ona e fatuina se masini, pe iai le aia tatau e fa'aoga ai lenei feso'ota'iga, fai lau fa'ata'ita'iga o le aofa'iga, ma isi.
- Keystone faʻamaonia lau talosaga ma faʻatupuina se faʻamaoniga faʻamaonia i le tali tali, lea o le a faʻaaogaina atili. O le mauaina o se tali mai Keystone, o le talosaga e lafo atu i Nova (nova api).
- Nova-api siaki le aoga o lau talosaga e ala i le faʻafesoʻotaʻi Keystone e faʻaaoga ai le faʻailoga faʻamaonia muamua
- Keystone fa'atinoina le fa'amaoni ma tu'uina atu fa'amatalaga i fa'atagaga ma tapula'a e fa'atatau i lenei fa'ailoga fa'amaonia.
- Nova-api faia se faʻamatalaga mo le VM fou i le nova-faʻamaumauga ma pasia le talosaga e fai le masini i le nova-scheduler.
- Nova-scheduler e filifilia le talimalo (komepiuta komipiuta) lea o le a faʻapipiʻiina ai le VM e faʻatatau i faʻamaufaʻailoga, mamafa ma sone. O se faʻamaumauga o lenei mea ma le VM ID o loʻo tusia i le nova-database.
- Sosoo ai, fa'afeso'ota'i e le nova-scheduler le nova-compute ma se talosaga e fa'atino se fa'ata'ita'iga. Nova-compute faʻafesoʻotaʻi le nova-conductor e maua ai faʻamatalaga e uiga i masini masini (nova-conductor o se elemene nova e galue o se sui sui i le va o le nova-database ma le nova-compute, faʻatapulaʻaina le numera o talosaga i le nova-database e aloese ai mai faʻafitauli i faʻamaumauga. fa'aitiitiga fa'aitiitiga o uta).
- E maua e Nova-conductor faʻamatalaga talosaga mai le nova-database ma pasi atu i le nova-compute.
- Sosoo ai, nova-compute vala'au tilotilo e maua le ID ata. E fa'amaonia e Glace le talosaga i Keystone ma toe fa'afo'i mai fa'amatalaga e mana'omia.
- Nova-compute fa'afeso'ota'i le neutron e maua ai fa'amatalaga e uiga i fa'asologa o feso'otaiga. E tutusa ma le tilotilo, e faʻamaonia e le neutron le talosaga i Keystone, a maeʻa ona fatuina se faʻamatalaga i totonu o faʻamaumauga (taulaga faʻamatalaga, ma isi), fatuina se talosaga e fai se taulaga, ma toe faʻafoʻi le faʻamatalaga talosaga i le nova-compute.
- Nova-compute fesoʻotaʻiga faʻafesoʻotaʻi ma se talosaga e faʻasoa se voluma i le masini masini. E tutusa ma le tilotilo, e faʻamaonia e le cider le talosaga i Keystone, fatuina se talosaga mo le fatuina o le voluma, ma toe faʻafoʻi mai faʻamatalaga talosaga.
- Nova-compute faʻafesoʻotaʻi libvirt ma se talosaga e faʻapipiʻi se masini masini faʻatasi ma faʻamaufaʻailoga faʻapitoa.
O le mea moni, o se faʻaogaina faigofie o le fatuina o se masini komepiuta faigofie e liliu atu i se asiosio o API telefoni i le va o elemene o le ao. E le gata i lea, e pei ona mafai ona e vaʻai, e oʻo lava i auaunaga na faʻatulagaina muamua e aofia ai foi vaega laiti i le va o fegalegaleaiga e tupu. O le fatuina o se masini e naʻo se vaega itiiti o le mea e faʻatagaina e le ao faʻatagaina oe e fai - o loʻo i ai se auaunaga e nafa ma le faapaleniina o feoaiga, o se auaunaga e nafa ma le teuina o poloka, o se auaunaga e nafa ma DNS, o se auaunaga e nafa ma le tuʻuina atu o 'auʻaunaga uamea, ma isi. .O le ao e mafai ai ona e faʻaogaina au masini faʻapitoa e pei o se lafu mamoe (e ese mai le virtualization). Afai e tupu se mea i lau masini i totonu o se siosiomaga faʻapitoa - e te toe faʻafoʻisia mai faʻamaumauga, ma isi mea, ae o faʻaoga ao e fausia i se auala e le faia ai e le masini komepiuta se sao taua - o le masini masini "mate" - leai se faʻafitauli - o se mea fou e na o le faia o le taavale e faʻavae i luga o le faʻataʻitaʻiga ma, e pei ona latou fai mai, e leʻi matauina e le 'au le leiloa o le tagata tau. E masani lava, o lenei mea e maua ai le i ai o faiga faʻapipiʻi - faʻaaogaina faʻataʻitaʻiga Heat, e faigofie ona e faʻaogaina se galuega faʻalavelave e aofia ai le tele o fesoʻotaʻiga ma masini masini.
E taua i taimi uma le teu i lou mafaufau e leai se ao faʻaogaina e aunoa ma se fesoʻotaʻiga - o elemene taʻitasi i se tasi auala poʻo se isi e fegalegaleai ma isi elemene e ala i le fesoʻotaʻiga. E le gata i lea, o le ao e matua leai lava se fesoʻotaʻiga. E masani lava, o le fesoʻotaʻiga i lalo e sili atu pe itiiti ifo - e leʻo faʻaopoopoina ni pona fou ma suiga i aso uma, ae o le vaega faʻapipiʻi e mafai ma o le a suia pea - o fesoʻotaʻiga fou o le a faʻaopoopo pe tapeina, o le a aliali mai masini fou ma mea tuai. oti. Ma e pei ona e manatua mai le faʻamatalaga o le ao o loʻo tuʻuina atu i le amataga o le tusiga, e tatau ona tuʻuina atu punaoa i le tagata faʻaoga aunoa ma faʻatasi ai ma le itiiti (pe sili atu, e aunoa ma) faʻalavelave mai le kamupani e tuʻuina atu auaunaga. O lona uiga, o le ituaiga o tuʻuina atu o punaoa fesoʻotaʻiga o loʻo i ai nei i le tulaga o le pito i luma i le tulaga o lau faʻamatalaga patino e mafai ona maua e ala i le http/https ma le inisinia fesoʻotaʻiga i luga o le tiute Vasily o se backend e le o se ao, e oʻo lava. pe afai e valu lima o Vasily.
Neutron, i le avea ai o se 'auʻaunaga fesoʻotaʻiga, e tuʻuina atu se API mo le puleaina o le vaega o fesoʻotaʻiga o le ao. O le 'au'aunaga e fa'amalosia ma fa'atautaia le vaega o feso'ota'iga o Openstack e ala i le tu'uina atu o se vaega fa'apitoa e ta'ua Network-as-a-Service (NaaS). O lona uiga, o le fesoʻotaʻiga o le iunite faʻatauvaʻa tutusa e pei o, mo se faʻataʻitaʻiga, faʻaoga CPU poʻo le aofaʻi o le RAM.
Ae a'o le'i agai i luma i le fausaga o le vaega o feso'ota'iga a OpenStack, se'i o tatou mafaufau pe fa'apefea ona galue lenei feso'ota'iga i OpenStack ma pe aisea ua avea ai le feso'ota'iga ma vaega taua ma taua o le ao.
O lea e lua a matou VM client RED ma lua VM client GREEN. Seʻi tatou manatu o nei masini o loʻo i luga o le lua hypervisors i lenei auala:
I le taimi nei, ua naʻo le virtualization o 4 servers ma e leai se isi mea, talu ai o mea uma na matou faia o le virtualize 4 servers, tuʻuina i luga o le lua faʻaumau faaletino. Ma e oʻo mai i le taimi nei latou te le o fesoʻotaʻi atu i le fesoʻotaʻiga.
Ina ia faia se ao, tatou te manaʻomia le faʻaopoopoina o ni vaega. Muamua, matou te faʻaogaina le vaega o fesoʻotaʻiga - matou te manaʻomia le faʻafesoʻotaʻi o nei masini e 4 i paga, ma e manaʻomia e tagata faʻatau se fesoʻotaʻiga L2. E mafai ona e faʻaogaina se ki ma faʻapipiʻi se ogalaau i lona itu ma foia mea uma e faʻaaoga ai se alalaupapa linux poʻo, mo tagata faʻaoga sili atu, openvswitch (o le a matou toe foʻi i lenei mea mulimuli ane). Ae e mafai ona i ai le tele o fesoʻotaʻiga, ma o le tuleia pea o le L2 e ala i se ki e le o se manatu sili lea - o loʻo i ai matagaluega eseese, se kesi tautua, masina o faʻatali mo se talosaga e maeʻa, vaiaso o faʻafitauli - i le lalolagi faʻaonapo nei. auala ua le toe aoga. Ma o le vave ona malamalama se kamupani i lenei mea, o le faigofie foi lea ona agai i luma. O le mea lea, i le va o hypervisors o le a matou filifilia ai se fesoʻotaʻiga L3 lea o le a fesoʻotaʻi ai a matou masini masini, ma i luga o lenei fesoʻotaʻiga L3 o le a matou fausia ai fesoʻotaʻiga faʻapipiʻi L2 faʻaogaina lea o le a faʻatautaia ai le fefaʻatauaʻiga oa matou masini masini. E mafai ona e faʻaogaina GRE, Geneve poʻo VxLAN e faʻapipiʻi. Sei o tatou taulai atu i le vaega mulimuli mo le taimi nei, e ui lava e le o se mea taua tele.
Matou te manaʻomia le suʻeina o le VTEP i se mea (Ou te faʻamoemoe e masani tagata uma i upu VxLAN). Talu ai e iai la matou fesoʻotaʻiga L3 e sau saʻo mai le 'auʻaunaga, e leai se mea e taofia ai i matou mai le tuʻuina o le VTEP i luga o le 'auʻaunaga lava latou, ma o le OVS (OpenvSwitch) e sili ona lelei i le faia o lenei mea. O se taunuuga, na matou maua lenei mamanu:
Talu ai e tatau ona vaevaeina felauaiga i le va o VM, o ports agai i masini masini o le ai ai numera vlan eseese. O le numera o le pine e naʻo totonu o le tasi kilia mataʻutia, talu ai pe a faʻapipiʻi i le VxLAN e faigofie ona tatou aveese, talu ai o le ai ai se VNI.
Ole taimi nei e mafai ona tatou fatuina a tatou masini ma fesoʻotaiga vavave mo i latou e aunoa ma ni faʻafitauli.
Ae peita'i, fa'afefea pe a iai se isi masini a le kalani, ae o lo'o i luga o se isi feso'otaiga? Matou te manaʻomia le aʻa i le va o fesoʻotaʻiga. O le a tatou vaʻavaʻai i se filifiliga faigofie pe a faʻaogaina le faʻaogaina o le faʻaogaina - o lona uiga, o fefaʻatauaʻiga e faʻaogaina e ala i nodes fesoʻotaʻiga faʻapitoa faʻapitoa (lelei, o se tulafono, e tuʻufaʻatasia ma nodes pulea, o lea o le a tatou maua ai le mea lava e tasi).
E foliga mai e leai se mea faigata - matou te faia se fesoʻotaʻiga alalaupapa i luga o le node pule, ave taavale i ai ma mai iina matou te uia i le mea matou te manaʻomia. Ae o le faʻafitauli e manaʻo le tagata RED Client e faʻaoga le 10.0.0.0/24 network, ae manaʻo le client GREEN e faʻaoga le 10.0.0.0/24 network. O lona uiga, e amata ona tatou faʻafesoʻotaʻi avanoa tuatusi. E le gata i lea, e le manaʻo tagata faʻatau e mafai e isi tagata faʻatau ona alu atu i totonu o latou fesoʻotaʻiga i totonu, e talafeagai. Ina ia tu'u'ese'ese feso'ota'iga ma fefa'ataua'iga o fa'amaumauga a tagata o tausia, o le a matou tu'ufa'atasia se isi avanoa mo i latou ta'itasi. Igoa igoa o le mea moni o se kopi o le upega o fesoʻotaʻiga Linux, o lona uiga, o tagata faʻatau ile namespace RED e matua vavae ese mai tagata faʻatau mai namespace GREEN (lelei, pe o le taʻavale i le va o nei tagata faʻatau fesoʻotaʻiga e faʻatagaina e ala i le igoa ole igoa poʻo luga o masini felauaiga i luga).
O lona uiga, tatou te maua le ata lenei:
L2 tunnels e feso'ota'i mai nodes uma fa'akomepiuta i le node pule. node o loʻo i ai le fesoʻotaʻiga L3 mo nei fesoʻotaʻiga, e taʻitasi i se igoa tuʻufaʻatasia mo le vavaeeseina.
Peitaʻi, na galo iā i matou le mea e sili ona tāua. O le masini komepiuta e tatau ona tuʻuina atu se auaunaga i le kalani, o lona uiga, e tatau ona i ai le itiiti ifo ma le tasi le atinaʻe fafo e mafai ona oʻo i ai. O lona uiga, e tatau ona tatou o atu i fafo. E eseese filifiliga iinei. Sei o tatou faia le filifiliga sili ona faigofie. O le a matou faʻaopoopoina le tasi fesoʻotaʻiga i tagata taʻitasi, lea o le a aoga i le fesoʻotaʻiga a le kamupani ma o le a le faʻapipiʻiina ma isi fesoʻotaʻiga. O fesoʻotaʻiga e mafai foʻi ona fesoʻotaʻi ma vaʻavaʻai i VRF eseese i le itu o le fesoʻotaʻiga tuʻuina atu. O fa'amaumauga o feso'ota'iga o le a ola fo'i i totonu ole igoa ole tagata fa'atau ta'itasi. Ae ui i lea, o le a latou o atu pea i fafo atu o le lalolagi e ala i se tasi faʻapitoa (poʻo le sootaga, lea e sili atu ona talafeagai). Ina ia tu'u'ese'ese fefa'ataua'iga a tagata o tausia, o fe'avea'i o lo'o alu i fafo o le a fa'ailogaina i le VLAN tag e tu'uina atu i le kalani.
O se taunuuga, matou maua le ata lenei:
O se fesili talafeagai o le a le mea e le faia ai faitotoa i luga o le numera o latou lava? E le o se faʻafitauli tele lea; e le gata i lea, afai e te kiina le faʻasalalau faʻasalalau (DVR), o le a aoga. I lenei faʻataʻitaʻiga, o loʻo matou mafaufau i le filifiliga sili ona faigofie ma se faitotoa faʻapitoa, lea e faʻaaogaina e ala i le faaletonu i Openstack. Mo galuega maualuga, latou te faʻaogaina uma le faʻasalalau faʻasalalau ma tekinolosi faʻavavevave pei o SR-IOV ma Passthrough, ae pei ona latou fai mai, o se tala e matua ese lava. Muamua, sei o tatou feagai ma le vaega autu, ona tatou o atu lea i auiliiliga.
O le mea moni, o la matou polokalame ua uma ona aoga, ae o loʻo i ai ni nai nuances:
- Matou te manaʻomia le puipuia o matou masini, o lona uiga, tuʻu se faamama i luga o le faʻaogaina o fesoʻotaʻiga agai i le tagata o tausia.
- Ia mafai e se masini komepiuta ona maua otometi se tuatusi IP, ina ia e le tatau ona e ulufale i totonu e ala i le faʻamafanafanaga i taimi uma ma resitala le tuatusi.
Tatou amata i le puipuiga o masini. Mo lenei mea e mafai ona e faʻaogaina banal iptables, aisea e leai ai.
O lona uiga, o lea ua fai si lavelave la tatou topology:
Tatou agai i luma. Matou te manaʻomia le faʻaopoopoina o se DHCP server. O le nofoaga sili ona lelei e suʻe ai sapalai DHCP mo tagata taʻitoʻatasi o le node pulea ua uma ona taʻua i luga, o loʻo i ai igoa avanoa:
Ae peitai, o loo i ai se faafitauli laitiiti. Ae fa'afefea pe a toe fai mea uma ma fa'amatalaga uma e uiga i le lisiina o tuatusi ile DHCP ua mou atu. E talafeagai o le a tuʻuina atu i masini ni tuatusi fou, lea e le faigofie tele. E lua auala i fafo - pe faʻaaoga igoa ole igoa ma faʻaopopo se DNS server mo tagata taʻitasi, ona le taua tele lea o le tuatusi ia i matou (e tutusa ma le vaega o fesoʻotaʻiga i k8s) - ae o loʻo i ai se faʻafitauli i fesoʻotaiga i fafo, talu ai. e mafai foi ona tuʻuina atu tuatusi i totonu ia i latou e ala i le DHCP - e te manaʻomia le faʻamaopoopoina ma le DNS servers i luga o le ao ma se DNS server i fafo, lea i loʻu manatu e le matua fetuutuunai, ae e mafai lava. Pe o le filifiliga lona lua o le faʻaaogaina o metadata - o lona uiga, faʻasaoina faʻamatalaga e uiga i le tuatusi na tuʻuina atu i le masini ina ia iloa e le DHCP server le tuatusi e tuʻuina atu i le masini pe afai ua uma ona maua e le masini se tuatusi. O le filifiliga lona lua e faigofie ma sili atu ona fetuutuunai, aua e mafai ai ona e faasaoina faamatalaga faaopoopo e uiga i le taavale. Sei o tatou faʻaopopo metadata sui i le ata:
O le isi mataupu e taua foi ona talanoaina o le mafai lea ona faʻaogaina se tasi fesoʻotaʻiga i fafo e tagata uma, talu ai o fesoʻotaʻiga i fafo, pe afai e tatau ona faʻamaonia i luga ole fesoʻotaʻiga atoa, o le a faigata - e tatau ona e faʻasoa ma pulea le faʻasoaina o nei fesoʻotaʻiga. O le mafai ona fa'aogaina se feso'ota'iga fa'apipi'i fafo e tasi mo tagata fa'atau uma o le a aoga tele pe a fatuina se ao lautele. Ole mea lea ole a fa'afaigofie ai ona fa'apipi'i masini ona e le tau fa'afeso'ota'i se tuatusi fa'amaumauga ma filifili se avanoa fa'apitoa ole tuatusi mo feso'ota'iga fafo a tagata ta'itasi. E le gata i lea, e mafai ona matou resitalaina se fesoʻotaiga i fafo i luma atu ma i le taimi o le faʻapipiʻiina o le a naʻo matou manaʻomia le faʻafesoʻotaʻi tuatusi fafo ma masini tagata o tausia.
Ma o iinei e sau ai le NAT e fesoasoani mai - o le a matou faʻaavanoaina mo tagata faʻatau le avanoa i fafo atu o le lalolagi e ala i le faʻaogaina ole igoa ole faʻaliliuga NAT. Ia, o sina fa'afitauli la'ititi lea. E lelei lea pe afai e galue le tagata o tausia o se tagata o tausia ae le o se server - o lona uiga, e amataina nai lo le taliaina o fesoʻotaʻiga. Ae mo i tatou o le a i ai le isi itu. I lenei tulaga, e tatau ona tatou faia le taunuuga NAT ina ia maua ai le felauaiga, e malamalama le node pulea o lenei auala e faamoemoe mo masini komepiuta A o le tagata o tausia A, o lona uiga e tatau ona tatou faia se faaliliuga NAT mai se tuatusi fafo, mo se faataitaiga 100.1.1.1 .10.0.0.1, i se tuatusi i totonu 100. I lenei tulaga, e ui lava o le a faʻaogaina e tagata faʻatau uma le fesoʻotaʻiga tutusa, o le faʻaesea i totonu e faʻasaoina atoa. O lona uiga, e tatau ona tatou faia le dNAT ma le sNAT i luga o le node pule. Pe fa'aogaina se feso'ota'iga e tasi ma tuatusi fa'afefe po'o feso'ota'iga i fafo, po'o mea uma e lua i le taimi e tasi, e fa'alagolago i mea e te mana'o e aumai i totonu o le ao. Matou te le faʻaopoopoina tuatusi faʻafefe i le ata, ae o le a tuʻuina atu fesoʻotaʻiga i fafo ua uma ona faʻapipiʻiina muamua - o tagata taʻitasi e iai lana lava fesoʻotaʻiga i fafo (i le ata o loʻo faʻaalia ai le vlan 200 ma le XNUMX i luga o le atinaʻe fafo).
O se taunuuga, na matou mauaina se fofo manaia ma i le taimi lava e tasi e mafaufau lelei i ai, lea e iai se fetuutuunai faʻapitoa ae e leʻi iai ni faiga faʻapalepale sese.
Muamua, e na'o le tasi le node e pulea - o lona toilalo o le a taʻitaʻia ai le paʻu o faiga uma. Ina ia foia lenei faʻafitauli, e tatau ona e faia a itiiti ifo ma le 3 nodes. Se'i tatou fa'aopoopo le mea lea i le ata:
E masani lava, o node uma e fa'amaopoopoina ma a alu ese se pona malosi, o le a ave e le isi pona ona tiute.
O le isi faʻafitauli o masini masini masini. I le taimi nei, o loʻo teuina i luga o le hypervisors latou lava, ma i le tulaga o faʻafitauli i le hypervisor, matou te leiloa uma faʻamatalaga - ma o le i ai o se osofaʻiga o le a le fesoasoani iinei pe a le leiloa le disk, ae o le server atoa. Ina ia faia lenei mea, tatou te manaʻomia le faia o se auaunaga e avea ma pito i luma mo se ituaiga o teuina. O le a le ituaiga mea e teu ai e le taua tele ia i tatou, ae e tatau ona puipuia a tatou faʻamatalaga mai le toilalo o le disk ma le node, ma atonu o le kapeneta atoa. E tele filifiliga iinei - o loʻo i ai, ioe, SAN fesoʻotaʻiga ma Fiber Channel, ae ia tatou faʻamaoni - FC ua uma ona toe faʻaaogaina - o se faʻataʻitaʻiga o le E1 i felauaiga - ioe, ou te ioe, o loʻo faʻaaogaina pea, ae na'o le mea e matua'i le mafaia e aunoa ma lea mea. O le mea lea, ou te le ofo e faʻapipiʻi se fesoʻotaʻiga FC i le 2020, ma le iloa o loʻo i ai isi mea e sili atu ona manaia. E ui lava o ia taʻitoʻatasi, atonu ei ai i latou e talitonu o le FC ma ona tapulaʻa uma naʻo mea tatou te manaʻomia - ou te le finau, e tofu tagata uma ma o latou lava manatu. Ae ui i lea, o le tali sili ona manaia i loʻu manatu o le faʻaaogaina lea o se SDS, pei ole Ceph.
O le Ceph e mafai ai e oe ona fausia se fofo e teu ai faʻamatalaga sili ona avanoa ma le tele o filifiliga faʻapipiʻi e mafai, e amata i tulafono laiti ma le siakiina o le paʻu (e tutusa ma le osofaʻiga 5 poʻo le 6) faʻaiʻu i faʻamatalaga atoa o faʻamaumauga i tisiki eseese, ma amanaʻia le nofoaga o tisiki i totonu. servers, ma servers i cabinets, etc.
Ina ia fausia Ceph e te manaʻomia 3 isi nodes. Fegalegaleaiga ma le teuina o le a faia foi e ala i le fesoʻotaʻiga e faʻaaoga ai poloka, mea faitino ma faila faila. Sei o tatou faaopoopo le teuina i le ata:
Manatua: e mafai foi ona e faia hyperconverged compute nodes - o le manatu lea o le tuʻufaʻatasia o le tele o galuega i luga o le tasi node - mo se faʻataʻitaʻiga, teuina + faʻatusatusa - e aunoa ma le tuʻuina atu o nodes faapitoa mo le teuina o ceph. O le a matou maua le faiga lava e tasi e fa'apalepale fa'aletonu - talu ai o le SDS o le a fa'aagaga fa'amaumauga ma le tulaga fa'apolopolo matou te fa'amaoti. Ae ui i lea, o nodes hyperconverged e masani lava o se fetuutuunai - talu ai o le node teuina e le na o le vevela o le ea e pei ona foliga mai i le tepa muamua (talu ai e leai ni masini komepiuta i luga) - e faʻaalu punaoa CPU i le tautuaina o le SDS (o le mea moni, e faia uma. le toe faia ma le toe faʻaleleia pe a maeʻa le toilalo o nodes, disks, etc.). O lona uiga, o le ae leiloa nisi o le mana o le node compute pe afai e te tuʻufaʻatasia ma le teuina.
O nei mea uma e manaʻomia ona pulea i se isi itu - matou te manaʻomia se mea e mafai ai ona matou fatuina se masini, se fesoʻotaiga, se telefoni feaveaʻi, ma isi. Ina ia faia lenei mea, o le a matou faʻaopoopoina se auaunaga i le node pule lea o le a galue e pei o se dashboard - le o le a mafai e le tagata o tausia ona faʻafesoʻotaʻi i lenei faitotoa e ala i le http/ https ma fai mea uma na te manaʻomia (lelei, toetoe lava).
O le taunuuga, ua i ai nei le tatou faiga e faapalepale ai masei. O elemene uma o lenei atina'e e tatau ona pulea i se auala. Na faʻamatalaina muamua o Openstack o se seti o galuega faatino, o ia mea taʻitasi e maua ai se galuega faʻapitoa. E pei ona tatou vaʻai, e sili atu nai lo elemene e manaʻomia ona faʻatulagaina ma pulea. O le asō o le a tatou talanoa e uiga i le vaega o fesoʻotaʻiga.
Neutron fausaga
I OpenStack, o le Neutron lea e nafa ma le faʻafesoʻotaʻi o pusa masini masini i se fesoʻotaʻiga masani L2, faʻamautinoa le faʻaogaina o feoaiga i le va o VM o loʻo i luga o fesoʻotaʻiga L2 eseese, faʻapea foʻi ma auala i fafo, tuʻuina atu auaunaga e pei ole NAT, Floating IP, DHCP, ma isi.
I se tulaga maualuga, o le faʻaogaina o le 'auʻaunaga fesoʻotaʻiga (le vaega autu) e mafai ona faʻamatalaina e pei ona taua i lalo.
A amata le VM, o le 'auʻaunaga fesoʻotaiga:
- Fausia se taulaga mo se VM (poʻo ports) ma logoina le DHCP auaunaga e uiga i ai;
- Ua faia se masini feso'otaiga vavave fou (e ala i le libvirt);
- O le VM e fesoʻotaʻi i le (s) uafu na faia i le laasaga 1;
O le mea e ese ai, o le galuega a Neutron e faʻavae i luga o auala masani e masani ai tagata uma na faʻafefe i totonu o Linux - namespaces, iptables, linux bridges, openvswitch, conntrack, ma isi.
E tatau ona vave faʻamalamalamaina o Neutron e le o se SDN Pule.
Neutron e aofia ai le tele o vaega fesoʻotaʻi:
Openstack-neutron-server o se daemon e galue ma talosaga a tagata e ala i le API. O lenei temoni e le o aafia i le resitalaina o soʻo se fesoʻotaʻiga fesoʻotaʻiga, ae tuʻuina atu faʻamatalaga talafeagai mo lenei mea i ana plugins, ona faʻapipiʻi ai lea o le elemene fesoʻotaʻiga manaʻomia. Neutron sui i luga o OpenStack nodes resitala ma le Neutron server.
Neutron-server o se tusi talosaga na tusia i le python, e aofia ai vaega e lua:
- 'Au'aunaga malolo
- Neutron Plugin (autu/au'aunaga)
O le REST auaunaga ua mamanuina e maua ai API telefoni mai isi vaega (mo se faʻataʻitaʻiga, o se talosaga e tuʻuina atu nisi faʻamatalaga, ma isi)
O mea fa'apipi'i o mea fa'akomepiuta fa'apipi'i/modules e vala'au i taimi ole talosaga API - o lona uiga, o le fa'ailogaina o se tautua e tupu mai ia i latou. Ua vaevaeina plugini i ni ituaiga se lua - auaunaga ma a'a. I le avea ai o se tulafono, o le solofanua solofanua e masani lava ona nafa ma le puleaina o le avanoa tuatusi ma fesoʻotaʻiga L2 i le va o VMs, ma faʻapipiʻi tautua ua uma ona tuʻuina atu galuega faʻaopoopo e pei ole VPN poʻo le FW.
O le lisi o plugins o loʻo avanoa i aso nei e mafai ona vaʻaia mo se faʻataʻitaʻiga
E mafai ona i ai le tele o faʻapipiʻi tautua, ae naʻo le tasi le solofanua solofanua.
Openstack-neutron-ml2 o le Openstack root plugin masani. O lenei masini e iai se fausaga faʻapitoa (e le pei o lona muamua) ma faʻapipiʻi le auaunaga fesoʻotaʻiga e ala i avetaavale e fesoʻotaʻi i ai. O le a tatou vaʻavaʻai i le plugin lava ia i se taimi mulimuli ane, talu ai o le mea moni e maua ai le fetuutuunai o OpenStack i le vaega o fesoʻotaʻiga. E mafai ona sui le root plugin (mo se faʻataʻitaʻiga, Contrail Networking e faia se mea e sui ai).
Au'aunaga RPC (rabbitmq-server) - o se 'auʻaunaga e tuʻuina atu ai le faʻatulagaina o laina ma fegalegaleaiga ma isi auaunaga OpenStack, faʻapea foʻi ma fegalegaleaiga i le va o sui o fesoʻotaʻiga.
Sui feso'ota'iga - sooupu o loʻo i totonu o node taʻitasi, lea e faʻapipiʻiina ai auaunaga fesoʻotaʻiga.
E tele ituaiga o sooupu.
Ole sui autu ole L2 sooupu. O nei sooupu e taʻavale i luga o hypervisors taʻitasi, e aofia ai nodes pulea (sili atu, i luga o nodes uma e tuʻuina atu soʻo se auaunaga mo tagata nofoia) ma o la latou galuega autu o le faʻafesoʻotaʻi masini komepiuta i se fesoʻotaʻiga masani L2, ma faʻatupu ai foi faʻasalalauga pe a tupu ni mea e tutupu ( mo se faʻataʻitaʻiga faʻamalo/faʻaaga le uafu).
O le isi, e le itiiti ifo le taua o le sui L3 sooupu. Ona o le faaletonu, o lenei sui e tamo'e na'o luga o se node feso'ota'iga (e masani ona tu'ufa'atasia le node o feso'ota'iga ma se node e pulea) ma tu'uina atu le ta'amilosaga i le va o feso'ota'iga a tagata mautotogi (i le va o ana feso'otaiga ma feso'ota'iga a isi tagata mautotogi, ma e mafai ona maua e le lalolagi i fafo, saunia. NAT, faʻapea foʻi ma le DHCP service). Ae peitaʻi, pe a faʻaaogaina se DVR (faʻasalalau faʻasalalau), o le manaʻomia mo se faʻapipiʻi L3 o loʻo faʻaalia foi i luga o nodes compute.
O lo'o fa'aogaina e le sui L3 igoa ole Linux e tu'uina atu ai i tagata nofoia ta'ito'atasi se seti o ana lava feso'ota'iga tu'ufua ma le fa'atinoga o ta'avale va'aia e fa'asolo ai feoaiga ma tu'uina atu auaunaga faitoto'a mo feso'ota'iga Layer 2.
faamaumauga - se faʻamaumauga o faʻamatalaga o fesoʻotaʻiga, subnets, ports, pools, etc.
O le mea moni, e talia e Neutron talosaga API mai le fausiaina o soʻo se faʻalapotopotoga fesoʻotaʻiga, faʻamaonia le talosaga, ma e ala i le RPC (pe a maua se mea faʻapipiʻi poʻo se sui) poʻo le REST API (pe a fesoʻotaʻi i SDN) faʻasalalau atu i sui (e ala i plugins) le faatonuga talafeagai e faatulaga ai le auaunaga manaomia .
Sei o tatou liliu atu i le faʻapipiʻiina o suʻega (faʻafefea ona faʻapipiʻiina ma mea o loʻo aofia ai, o le a tatou vaʻai mulimuli ane i le vaega aoga) ma vaʻai poʻo fea o loʻo i ai vaega taʻitasi:
(overcloud) [stack@undercloud ~]$ openstack network agent list
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| ID | Agent Type | Host | Availability Zone | Alive | State | Binary |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| 10495de9-ba4b-41fe-b30a-b90ec3f8728b | Open vSwitch agent | overcloud-novacompute-1.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| 1515ad4a-5972-46c3-af5f-e5446dff7ac7 | L3 agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-l3-agent |
| 322e62ca-1e5a-479e-9a96-4f26d09abdd7 | DHCP agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-dhcp-agent |
| 9c1de2f9-bac5-400e-998d-4360f04fc533 | Open vSwitch agent | overcloud-novacompute-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| d99c5657-851e-4d3c-bef6-f1e3bb1acfb0 | Open vSwitch agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| ff85fae6-5543-45fb-a301-19c57b62d836 | Metadata agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-metadata-agent |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
(overcloud) [stack@undercloud ~]$
O le mea moni, o le fausaga atoa lena o Neutron. Ole taimi nei e aoga le faʻaaluina o sina taimi ile ML2 plugin.
Laega Fa'atosina 2
E pei ona taʻua i luga, o le plugin o se OpenStack root plugin ma e iai se fausaga faʻapitoa.
O le muamua o le ML2 plugin sa i ai se fausaga monolithic, lea e leʻi faʻatagaina, mo se faʻataʻitaʻiga, le faʻaaogaina o le tele o tekinolosi i le tasi faʻapipiʻi. Mo se faʻataʻitaʻiga, e le mafai ona e faʻaogaina uma openvswitch ma linuxbridge i le taimi e tasi - pe o le muamua poʻo le lua. Mo lenei mafuaʻaga, na faia ai le ML2 plugin ma lona fausaga.
ML2 e lua vaega - lua ituaiga o avetaavale: Tulaga avetaavale ma Mechanism avetaavale.
Tu'aiga avetaavale fuafua tekinolosi o le a faʻaaogaina e faʻapipiʻi fesoʻotaʻiga fesoʻotaʻiga, mo se faʻataʻitaʻiga VxLAN, VLAN, GRE. I le taimi lava e tasi, e faʻatagaina e le avetaavale le faʻaaogaina o tekinolosi eseese. Ole tekonolosi masani ole VxLAN encapsulation mo fesoʻotaʻiga faʻapipiʻi ma vlan fesoʻotaʻiga fafo.
Tulaga aveta'avale e aofia ai ituaiga feso'ota'iga nei:
fale - feso'ota'iga e aunoa ma le fa'ailogaina
VLAN - fa'ailoga feso'ota'iga
i le lotoifale - o se ituaiga faʻapitoa o fesoʻotaʻiga mo mea faʻapipiʻi uma (o ia mea faʻapipiʻi e manaʻomia mo tagata atiaʻe pe mo aʻoaʻoga)
GRE - faʻapipiʻi fesoʻotaʻiga e faʻaaoga ai alalaupapa GRE
VxLAN - fa'apipi'i feso'ota'iga e fa'aoga VxLAN tunnels
Avetaavale masini faʻamatalaina meafaigaluega e faʻamautinoa ai le faʻatulagaina o tekinolosi ua faʻamaonia i le ituaiga avetaavale - mo se faʻataʻitaʻiga, openvswitch, sr-iov, opendaylight, OVN, ma isi.
Faʻalagolago i le faʻatinoga o lenei avetaʻavale, o le a faʻaaogaina sui e pulea e Neutron, pe faʻaogaina fesoʻotaʻiga i fafo ole SDN controller, lea e taulimaina uma mataupu e fesoʻotaʻi ma le faʻatulagaina o fesoʻotaʻiga L2, taʻavale, ma isi.
Fa'ata'ita'iga: afai tatou te fa'aogaina le ML2 fa'atasi ma le OVS, ona fa'apipi'i lea o se sui L2 i node ta'itasi e pulea ai le OVS. Ae peitaʻi, afai tatou te faʻaaogaina, mo se faʻataʻitaʻiga, OVN poʻo OpenDayLight, ona oʻo mai lea o le pulea o le OVS i lalo o la latou pulega - Neutron, e ala i le aʻa faʻapipiʻi, tuʻuina atu poloaiga i le pule, ma ua uma ona faia le mea na taʻu mai ai.
Se'i o tatou su'esu'e le Open vSwitch
I le taimi nei, o se tasi o vaega autu o OpenStack o le Open vSwitch.
A faʻapipiʻi OpenStack e aunoa ma se isi faʻatau SDN e pei o Juniper Contrail poʻo Nokia Nuage, OVS o le vaega autu o fesoʻotaʻiga o fesoʻotaʻiga ao ma, faʻatasi ai ma iptables, conntrack, namespaces, faʻatagaina oe e faʻatulagaina fesoʻotaʻiga faʻapipiʻi tele-tenancy overlay. E masani lava, e mafai ona sui lenei vaega, mo se faʻataʻitaʻiga, pe a faʻaaogaina faʻataʻitaʻiga faʻapitoa (faʻatau) SDN solutions.
OVS o se faʻamatalaga faʻapipiʻi punaoa tatala lea ua mamanuina mo le faʻaogaina i totonu o siosiomaga faʻapitoa e avea o se faʻasalalauga fefaʻatauaʻiga.
I le taimi nei, o loʻo i ai i le OVS galuega lelei tele, lea e aofia ai tekinolosi e pei ole QoS, LACP, VLAN, VxLAN, GENEVE, OpenFlow, DPDK, ma isi.
Fa'aaliga: OVS e le'i fuafuaina muamua o se ki vaivai mo galuega telecom tele ma sa sili atu ona mamanuina mo galuega IT e manaʻomia tele bandwidth e pei ole WEB server poʻo le meli meli. Ae ui i lea, o loʻo faʻalauteleina le atinaʻeina o le OVS ma o faʻatinoga o loʻo i ai nei o le OVS ua faʻaleleia atili ai lona faʻatinoga ma gafatia, lea e mafai ai ona faʻaaogaina e le telefoni feaveaʻi ma galuega mamafa tele, mo se faʻataʻitaʻiga, o loʻo i ai se faʻatinoga o le OVS ma le lagolago mo le faʻavaveina o le DPDK.
E tolu vaega taua ole OVS e tatau ona e nofouta i ai:
- Kernel module - o se vaega o loʻo i totonu o le kernel avanoa e faʻatautaia ai fefaʻatauaiga e faʻavae i luga o tulafono na maua mai le elemene pule;
- vSwitch daemon (ovs-vswitchd) o se faʻagasologa na faʻalauiloaina i avanoa faʻaoga e nafa ma le faʻatulagaina o le kernel module - o lona uiga, e faʻaalia saʻo le faʻaogaina o le gaioiga o le ki.
- Fa'amaumauga fa'amaumauga - se faʻamaumauga faʻapitonuʻu o loʻo i luga o talimalo taʻitasi o loʻo faʻaogaina le OVS, lea e teu ai le faʻatulagaga. SDN controllers e mafai ona feso'ota'i e ala i lenei module e fa'aoga ai le OVSDB protocol.
O nei mea uma o loʻo faʻatasi ma se seti o faʻataʻitaʻiga ma pulega faʻaoga, e pei o ovs-vsctl, ovs-appctl, ovs-ofctl, ma isi.
I le taimi nei, o le Openstack o loʻo faʻaaogaina lautele e le telefoni feaveaʻi e faʻafeiloaʻi ai galuega tau fesoʻotaʻiga, e pei o le EPC, SBC, HLR, ma isi. se aofaiga tele o feoaiga (o lea ua oʻo atu le tele o feoaiga i le selau gigabits i le sekone). E masani lava, o le aveina o ia fefaʻatauaiga e ala i le kernel space (talu ai o le faʻasalalau o loʻo i ai iina ona o le faaletonu) e le o se manatu sili lea. O le mea lea, o le OVS e masani ona faʻapipiʻiina atoa i avanoa faʻaoga e faʻaaoga ai le DPDK acceleration technology e faʻafeiloaʻi ai fefaʻatauaiga mai le NIC i le avanoa faʻaoga e ala i le faʻaogaina o le fatu.
Fa'aaliga: mo se ao fa'apipi'i mo galuega telecom, e mafai ona fa'auluina fe'avea'i mai se node fa'akomepiuta e pasi sa'o ai le OVS i le fesuia'i o mea faigaluega. SR-IOV ma Passthrough masini e faʻaaogaina mo lenei faʻamoemoe.
E fa'apefea ona galue lenei mea i se fa'atulagaga moni?
Ia, se'i o tatou aga'i atu i le vaega fa'atino ma va'ai pe fa'apefea ona fa'atino uma i le fa'atinoga.
Muamua, tatou faʻapipiʻi se faʻapipiʻi faigofie o Openstack. Talu ai e leai sau seti o 'auʻaunaga o loʻo i ou lima mo faʻataʻitaʻiga, o le a matou faʻapipiʻiina le faʻataʻitaʻiga i luga o se tasi faʻaumau faaletino mai masini masini. Ioe, e masani lava, o sea fofo e le talafeagai mo faamoemoega faapisinisi, ae ia vaʻai i se faʻataʻitaʻiga o le auala e galue ai le fesoʻotaʻiga i Openstack, o sea faʻapipiʻi e lava mo mata. E le gata i lea, o sea faʻapipiʻi e sili atu ona manaia mo faʻamoemoega aʻoaʻoga - talu ai e mafai ona e puʻeina fefaʻatauaiga, ma isi.
Talu ai e tatau ona tatou vaʻai i le vaega autu, e le mafai ona tatou faʻaogaina le tele o fesoʻotaʻiga ae faʻapipiʻi mea uma e faʻaaoga ai naʻo le lua fesoʻotaʻiga, ma o le fesoʻotaʻiga lona lua i lenei faʻatulagaga o le a faʻaaogaina faapitoa mo le avanoa i le undercloud ma le DNS server. Matou te le paʻi atu i luga o fesoʻotaʻiga i fafo mo le taimi nei - o se autu lea mo se isi tusitusiga tele.
O lea, tatou amata i le faasologa. Muamua, o sina manatu itiiti. O le a matou faʻapipiʻi Openstack faʻaaoga le TripleO (Openstack on Openstack). O le aano o le TripleO o le faʻapipiʻiina lea o Openstack uma-i-le tasi (o lona uiga, i luga o le tasi node), taʻua i lalo o le ao, ona faʻaogaina lea o le gafatia o le Opentack faʻapipiʻiina e faʻapipiʻi ai Openstack fuafuaina mo le faʻagaioiga, e taʻua o le overcloud. Undercloud o le a faʻaaogaina lona tomai faʻapitoa e faʻatautaia ai 'auʻaunaga faʻapitoa (metala paʻu) - le Ironic project - e tuʻuina atu hypervisors o le a faʻatinoina matafaioi o le faʻatulagaina, pulea, faʻapipiʻi nodes. O lona uiga, matou te le fa'aogaina so'o se mea faigaluega lona tolu e fa'apipi'i ai Openstack - matou te fa'aaogaina Openstack e fa'aaoga ai Openstack. O le a sili atu ona manino aʻo faʻagasolo le faʻapipiʻiina, o lea matou te le tu ai iina ma agai i luma.
Faʻaaliga: I lenei tusiga, mo le faʻafaigofie, ou te leʻi faʻaogaina le vavaeeseina o fesoʻotaʻiga mo fesoʻotaʻiga i totonu o le Openstack, ae o mea uma e faʻapipiʻiina e faʻaaoga ai na o le tasi le fesoʻotaʻiga. Ae ui i lea, o le i ai poʻo le leai o se faʻaogaina o fesoʻotaʻiga e le afaina ai le galuega autu o le fofo - o mea uma o le a tutusa lelei ma le faʻaaogaina o le vavae ese, ae o fefaʻatauaiga o le a tafe i luga ole laiga tutusa. Mo se faʻapipiʻi faʻapisinisi, e masani lava ona manaʻomia le faʻaogaina o le vavae ese e faʻaaoga ai vlans eseese ma fesoʻotaʻiga. Mo se faʻataʻitaʻiga, o le ceph storage management traffic and data traffic himself (machine access to disks, etc.) pe a tuʻuʻesea faʻaogaina subnets eseese (Storage management and Storage) ma o lenei mea e mafai ai ona e faia le fofo e sili atu le faʻafeiloaʻi e ala i le vaevaeina o lenei fefaʻatauaiga, mo se faʻataʻitaʻiga , i luga o taulaga eseese, poʻo le faʻaogaina o faʻamatalaga QoS eseese mo fefaʻatauaʻiga eseese ina ia le faʻafefeina e felauaiga faʻamatalaga le faʻailogaina o fefaʻatauaiga. I la matou tulaga, o le a latou o i luga o le fesoʻotaʻiga tutusa ma o le mea moni e le faʻatapulaaina i matou i soʻo se auala.
Manatua: Talu ai o le a matou faʻatautaia masini faʻapitoa i se siosiomaga faʻapitoa e faʻavae i luga o masini masini, matou te manaʻomia muamua le faʻaogaina o le faʻaogaina.
E mafai ona e siaki pe faʻaogaina le virtualization nested pe leai foi e pei o lenei:
[root@hp-gen9 bormoglotx]# cat /sys/module/kvm_intel/parameters/nested N [root@hp-gen9 bormoglotx]#Afai e te vaʻai i le mataitusi N, ona matou faʻatagaina lea o le lagolago mo le faʻaogaina o le faʻaogaina e tusa ai ma soʻo se taʻiala e te mauaina i luga o le upega tafailagi, mo se faʻataʻitaʻiga .
Matou te manaʻomia le faʻapipiʻiina o le matagaluega nei mai masini masini:
I loʻu tulaga, e faʻafesoʻotaʻi masini komepiuta o se vaega o le faʻapipiʻiina i le lumanaʻi (ma na ou maua le 7 o latou, ae e mafai ona e maua i le 4 pe afai e le tele au punaoa), na ou faʻaaogaina OpenvSwitch. Na ou faia se alalaupapa se tasi ma faʻafesoʻotaʻi masini faʻapitoa i ai e ala i port-groups. Ina ia faia lenei mea, na ou fatuina se faila xml pei o lenei:
[root@hp-gen9 ~]# virsh net-dumpxml ovs-network-1
<network>
<name>ovs-network-1</name>
<uuid>7a2e7de7-fc16-4e00-b1ed-4d190133af67</uuid>
<forward mode='bridge'/>
<bridge name='ovs-br1'/>
<virtualport type='openvswitch'/>
<portgroup name='trunk-1'>
<vlan trunk='yes'>
<tag id='100'/>
<tag id='101'/>
<tag id='102'/>
</vlan>
</portgroup>
<portgroup name='access-100'>
<vlan>
<tag id='100'/>
</vlan>
</portgroup>
<portgroup name='access-101'>
<vlan>
<tag id='101'/>
</vlan>
</portgroup>
</network>E tolu vaega o taulaga o loʻo faʻaalia iinei - lua avanoa ma le tasi ogalaau (o le mea mulimuli na manaʻomia mo le DNS server, ae e mafai ona e faia e aunoa ma lena, pe faʻapipiʻi i luga o le masini talimalo - poʻo fea lava e sili atu ona faigofie mo oe). Ma le isi, faʻaaogaina lenei faʻataʻitaʻiga, matou te faʻaalia a matou e ala i le virsh net-define:
virsh net-define ovs-network-1.xml
virsh net-start ovs-network-1
virsh net-autostart ovs-network-1 O lea ua matou faʻasaʻo le faʻaogaina o le taulaga hypervisor:
[root@hp-gen9 ~]# cat /etc/sysconfig/network-scripts/ifcfg-ens1f0
TYPE=Ethernet
NAME=ens1f0
DEVICE=ens1f0
TYPE=OVSPort
DEVICETYPE=ovs
OVS_BRIDGE=ovs-br1
ONBOOT=yes
OVS_OPTIONS="trunk=100,101,102"
[root@hp-gen9 ~]
[root@hp-gen9 ~]# cat /etc/sysconfig/network-scripts/ifcfg-ovs-br1
DEVICE=ovs-br1
DEVICETYPE=ovs
TYPE=OVSBridge
BOOTPROTO=static
ONBOOT=yes
IPADDR=192.168.255.200
PREFIX=24
[root@hp-gen9 ~]# Manatua: i lenei fa'aaliga, o le tuatusi i luga o le port ovs-br1 o le a le mafai ona maua ona e leai se vlan tag. Ina ia faʻaleleia lenei mea, e tatau ona e tuʻuina atu le poloaiga sudo ovs-vsctl seti port ovs-br1 tag = 100. Ae ui i lea, a maeʻa le toe faʻafouina, o le a mou atu lenei pine (afai e iloa e se tasi pe faʻafefea ona tumau i le nofoaga, ou te matua faʻafetai lava). Ae e le taua tele lenei mea, aua o le a matou manaʻomia naʻo lenei tuatusi i le taimi o le faʻapipiʻiina ma o le a le manaʻomia pe a uma ona faʻapipiʻiina Openstack.
Ma le isi, matou te fatuina se masini undercloud:
virt-install -n undercloud --description "undercloud" --os-type=Linux --os-variant=centos7.0 --ram=8192 --vcpus=8 --disk path=/var/lib/libvirt/images/undercloud.qcow2,bus=virtio,size=40,format=qcow2 --network network:ovs-network-1,model=virtio,portgroup=access-100 --network network:ovs-network-1,model=virtio,portgroup=access-101 --graphics none --location /var/lib/libvirt/boot/CentOS-7-x86_64-Minimal-2003.iso --extra-args console=ttyS0I le taimi o le faʻapipiʻiina, e te setiina uma mea e manaʻomia, e pei ole igoa ole masini, passwords, tagata faʻaoga, ntp servers, ma isi, e mafai ona e vave faʻapipiʻi ports, ae mo aʻu lava ia, pe a uma ona faʻapipiʻi, e faigofie ona e ulufale i totonu o le masini e ala i le faʻamafanafanaga ma faʻasaʻo faila manaʻomia. Afai ua uma ona i ai sau ata ua saunia, e mafai ona e faʻaogaina, pe fai le mea na ou faia - download le ata itiiti Centos 7 ma faʻaoga e faʻapipiʻi ai le VM.
A maeʻa faʻapipiʻi manuia, e tatau ona i ai sau masini masini e mafai ona e faʻapipiʻi ai i lalo o le ao
[root@hp-gen9 bormoglotx]# virsh list
Id Name State
----------------------------------------------------
6 dns-server running
62 undercloud runningMuamua, faʻapipiʻi meafaigaluega e manaʻomia mo le faʻapipiʻiina:
sudo yum update -y
sudo yum install -y net-tools
sudo yum install -y wget
sudo yum install -y ipmitool
Fa'apipi'i i lalo o le ao
Matou te fatuina se tagata faʻapipiʻi, seti se faʻaupuga, faʻaopopo i sudoer ma tuʻuina atu ia te ia le malosi e faʻatino ai aʻa tulafono e ala i sudo e aunoa ma le ulufale i se faʻaupuga:
useradd stack
passwd stack
echo “stack ALL=(root) NOPASSWD:ALL” > /etc/sudoers.d/stack
chmod 0440 /etc/sudoers.d/stackO lenei matou te faʻamaonia le igoa atoa i lalo o le ao i le faila faila:
vi /etc/hosts
127.0.0.1 undercloud.openstack.rnd localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6Ma le isi, matou te faʻaopoopo fale teu oloa ma faʻapipiʻi le polokalama matou te manaʻomia:
sudo yum install -y https://trunk.rdoproject.org/centos7/current/python2-tripleo-repos-0.0.1-0.20200409224957.8bac392.el7.noarch.rpm
sudo -E tripleo-repos -b queens current
sudo -E tripleo-repos -b queens current ceph
sudo yum install -y python-tripleoclient
sudo yum install -y ceph-ansibleManatua: afai e te le fuafua e faʻapipiʻi le ceph, ona e le manaʻomia lea ona e ulufale i le ceph-related commands. Na ou faʻaaogaina le Queens release, ae e mafai ona e faʻaogaina soʻo se isi mea e te manaʻo ai.
Sosoo ai, kopi le faila fetuutuuna'i i lalo o le ao i le fa'aputuga o fa'amaumauga a le tagata fa'aoga:
cp /usr/share/instack-undercloud/undercloud.conf.sample ~/undercloud.confOle taimi nei e manaʻomia ona faʻasaʻo lenei faila, fetuutuunai i la tatou faʻapipiʻi.
E te manaʻomia le faʻaopoopoina o laina nei i le amataga o le faila:
vi undercloud.conf
[DEFAULT]
undercloud_hostname = undercloud.openstack.rnd
local_ip = 192.168.255.1/24
network_gateway = 192.168.255.1
undercloud_public_host = 192.168.255.2
undercloud_admin_host = 192.168.255.3
undercloud_nameservers = 192.168.255.253
generate_service_certificate = false
local_interface = eth0
local_mtu = 1450
network_cidr = 192.168.255.0/24
masquerade = true
masquerade_network = 192.168.255.0/24
dhcp_start = 192.168.255.11
dhcp_end = 192.168.255.50
inspection_iprange = 192.168.255.51,192.168.255.100
scheduler_max_attempts = 10O lea, seʻi o tatou faʻaogaina faʻatulagaga:
undercloud_hostname - o le igoa atoa o le undercloud server, e tatau ona fetaui ma le faʻamatalaga i luga ole DNS server
local_ip - tuatusi fa'apitonu'u i lalo o le ao aga'i i le tu'uina atu o feso'otaiga
network_gateway - o le tuatusi faʻapitonuʻu lava e tasi, lea o le a avea o se faitotoa mo avanoa i fafo atu o le lalolagi i le taimi o le faʻapipiʻiina o nodes overcloud, faʻatasi foi ma le IP i le lotoifale
undercloud_public_host - tuatusi API fafo, soʻo se tuatusi saoloto mai le fesoʻotaʻiga tuʻuina atu ua tofia
undercloud_admin_host tuatusi API i totonu, so'o se tuatusi saoloto mai le feso'ota'iga tu'ufa'atasia ua tofia
undercloud_nameservers - DNS server
gaosia_au'aunaga_tusitusi - o lenei laina e taua tele i le faʻataʻitaʻiga o loʻo i ai nei, aua afai e te le setiina i le sese o le ae mauaina se mea sese i le taimi o le faʻapipiʻiina, o loʻo faʻamatalaina le faʻafitauli i le Red Hat bug tracker
local_interface fa'afeso'ota'i i le tu'uina atu o feso'otaiga. O lenei atinaʻe o le a toe faʻaleleia i le taimi o le faʻapipiʻiina i lalo o le ao, o lea e manaʻomia ai ona i ai ni au fesoʻotaʻiga se lua i lalo o le ao - tasi mo le mauaina, o le lona lua mo le tuʻuina atu.
local_mtu — MTU. Talu ai o loʻo i ai le matou suʻesuʻega suʻesuʻe ma o loʻo i ai laʻu MTU o le 1500 i luga o ports sui o le OVS, e tatau ona seti i le 1450 ina ia mafai ona pasi atu pusa o loʻo faʻapipiʻiina i le VxLAN.
network_cidr - tu'uina atu feso'otaiga
faʻamaʻi - fa'aaoga le NAT e maua ai se feso'otaiga i fafo
masquerade_network - feso'ota'iga o le a NATed
dhcp_start — o le tuatusi amata o le vaituloto o le tuatusi lea o le a tu'uina atu ai tuatusi i nodes i le taimi o le faʻapipiʻiina o luga o le ao
dhcp_end — o le tuatusi mulimuli o le vaitusi tuatusi lea o le a tu'uina atu ai tuatusi i nodes i le taimi o le fa'apipi'iina o luga o le ao
inspection_iprange - o se vaituloto o tuatusi e manaʻomia mo suʻesuʻega (e le tatau ona faʻapipiʻi ma le vaitaele o loʻo i luga)
scheduler_max_attempts - numera aupito maualuga o taumafaiga e faʻapipiʻi le overcloud (e tatau ona sili atu pe tutusa ma le numera o nodes)
A maeʻa ona faʻamatalaina le faila, e mafai ona e tuʻuina atu le poloaiga e faʻapipiʻi i lalo o le ao:
openstack undercloud install
O le fa'agasologa e fai mai le 10 i le 30 minute e fa'atatau i lau u'amea. I le mea mulimuli e tatau ona e vaʻai i le gaioiga e pei o lenei:
vi undercloud.conf
2020-08-13 23:13:12,668 INFO:
#############################################################################
Undercloud install complete.
The file containing this installation's passwords is at
/home/stack/undercloud-passwords.conf.
There is also a stackrc file at /home/stack/stackrc.
These files are needed to interact with the OpenStack services, and should be
secured.
#############################################################################O lenei gaioiga fai mai ua maeʻa ona e faʻapipiʻi i lalo o le ao ma e mafai nei ona e siaki le tulaga o le undercloud ma faʻaauau ona faʻapipiʻi le overcloud.
Afai e te vaʻavaʻai i le gaioiga ifconfig, o le a e vaʻai ua faʻaalia se alalaupapa fou
[stack@undercloud ~]$ ifconfig
br-ctlplane: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 192.168.255.1 netmask 255.255.255.0 broadcast 192.168.255.255
inet6 fe80::5054:ff:fe2c:89e prefixlen 64 scopeid 0x20<link>
ether 52:54:00:2c:08:9e txqueuelen 1000 (Ethernet)
RX packets 14 bytes 1095 (1.0 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 20 bytes 1292 (1.2 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0O le fa'aogaina o le overcloud o le a faia nei e ala i lenei fa'aoga.
Mai le gaioiga o loʻo i lalo e mafai ona e vaʻaia o loʻo i ai a matou auaunaga uma i luga o le tasi node:
(undercloud) [stack@undercloud ~]$ openstack host list
+--------------------------+-----------+----------+
| Host Name | Service | Zone |
+--------------------------+-----------+----------+
| undercloud.openstack.rnd | conductor | internal |
| undercloud.openstack.rnd | scheduler | internal |
| undercloud.openstack.rnd | compute | nova |
+--------------------------+-----------+----------+O loʻo i lalo le faʻatulagaina o le vaega o fesoʻotaʻiga i lalo o le ao:
(undercloud) [stack@undercloud ~]$ python -m json.tool /etc/os-net-config/config.json
{
"network_config": [
{
"addresses": [
{
"ip_netmask": "192.168.255.1/24"
}
],
"members": [
{
"dns_servers": [
"192.168.255.253"
],
"mtu": 1450,
"name": "eth0",
"primary": "true",
"type": "interface"
}
],
"mtu": 1450,
"name": "br-ctlplane",
"ovs_extra": [
"br-set-external-id br-ctlplane bridge-id br-ctlplane"
],
"routes": [],
"type": "ovs_bridge"
}
]
}
(undercloud) [stack@undercloud ~]$Fa'apipi'i i luga o le ao
I le taimi nei, e na o lalo o le ao, ma e le lava a matou nodes e faʻapipiʻi ai le overcloud. O le mea lea, muamua lava, seʻi o tatou faʻapipiʻi masini masini tatou te manaʻomia. I le taimi o le faʻapipiʻiina, undercloud lava ia o le a faʻapipiʻi le OS ma le polokalama talafeagai i luga o le masini overcloud - o lona uiga, tatou te le manaʻomia le faʻapipiʻiina atoa o le masini, ae naʻo le fatuina o se tisiki (poʻo tisiki) mo ia ma fuafua ona faʻamau - o lona uiga. , o le mea moni, matou te maua se 'auʻaunaga e leai se OS faʻapipiʻiina i luga.
Sei o tatou alu i le faila ma tisiki a tatou masini masini ma fatuina tisiki o le tele manaʻomia:
cd /var/lib/libvirt/images/
qemu-img create -f qcow2 -o preallocation=metadata control-1.qcow2 60G
qemu-img create -f qcow2 -o preallocation=metadata compute-1.qcow2 60G
qemu-img create -f qcow2 -o preallocation=metadata compute-2.qcow2 60G
qemu-img create -f qcow2 -o preallocation=metadata storage-1.qcow2 160G
qemu-img create -f qcow2 -o preallocation=metadata storage-2.qcow2 160GTalu ai o loʻo matou faʻaogaina aʻa, matou te manaʻomia le suia o lē e ona nei tisiki ina ia aua neʻi maua se faʻafitauli i aia tatau:
[root@hp-gen9 images]# ls -lh
total 5.8G
drwxr-xr-x. 2 qemu qemu 4.0K Aug 13 16:15 backups
-rw-r--r--. 1 root root 61G Aug 14 03:07 compute-1.qcow2
-rw-r--r--. 1 root root 61G Aug 14 03:07 compute-2.qcow2
-rw-r--r--. 1 root root 61G Aug 14 03:07 control-1.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:03 dns-server.qcow2
-rw-r--r--. 1 root root 161G Aug 14 03:07 storage-1.qcow2
-rw-r--r--. 1 root root 161G Aug 14 03:07 storage-2.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:07 undercloud.qcow2
[root@hp-gen9 images]#
[root@hp-gen9 images]#
[root@hp-gen9 images]# chown qemu:qemu /var/lib/libvirt/images/*qcow2
[root@hp-gen9 images]# ls -lh
total 5.8G
drwxr-xr-x. 2 qemu qemu 4.0K Aug 13 16:15 backups
-rw-r--r--. 1 qemu qemu 61G Aug 14 03:07 compute-1.qcow2
-rw-r--r--. 1 qemu qemu 61G Aug 14 03:07 compute-2.qcow2
-rw-r--r--. 1 qemu qemu 61G Aug 14 03:07 control-1.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:03 dns-server.qcow2
-rw-r--r--. 1 qemu qemu 161G Aug 14 03:07 storage-1.qcow2
-rw-r--r--. 1 qemu qemu 161G Aug 14 03:07 storage-2.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:08 undercloud.qcow2
[root@hp-gen9 images]# Faʻaaliga: afai e te le fuafua e faʻapipiʻi le ceph ina ia suʻesuʻe ai, ona le faia lea e le poloaiga ia le itiiti ifo i le 3 nodes ma le itiiti ifo ma le lua tisiketi, ae i totonu o le faʻataʻitaʻiga o loʻo faʻaalia ai o le a faʻaaogaina masini komepiuta vda, vdb, ma isi.
Lelei, o lea e manaʻomia ona tatou faʻamalamalamaina uma nei masini:
virt-install --name control-1 --ram 32768 --vcpus 8 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/control-1.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --network network:ovs-network-1,model=virtio,portgroup=trunk-1 --dry-run --print-xml > /tmp/control-1.xml
virt-install --name storage-1 --ram 16384 --vcpus 4 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/storage-1.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/storage-1.xml
virt-install --name storage-2 --ram 16384 --vcpus 4 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/storage-2.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/storage-2.xml
virt-install --name compute-1 --ram 32768 --vcpus 12 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/compute-1.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/compute-1.xml
virt-install --name compute-2 --ram 32768 --vcpus 12 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/compute-2.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/compute-2.xml I le faaiuga o loʻo i ai se faʻatonuga -print-xml > /tmp/storage-1.xml, lea e fatuina ai se faila xml ma faʻamatalaga o masini taʻitasi i totonu o le /tmp/ folder; afai e te le faʻaopoopoina, o le ae le mafai ona faʻailoa masini faʻapitoa.
Ole taimi nei e tatau ona tatou faʻamalamalamaina uma nei masini i virsh:
virsh define --file /tmp/control-1.xml
virsh define --file /tmp/compute-1.xml
virsh define --file /tmp/compute-2.xml
virsh define --file /tmp/storage-1.xml
virsh define --file /tmp/storage-2.xml
[root@hp-gen9 ~]# virsh list --all
Id Name State
----------------------------------------------------
6 dns-server running
64 undercloud running
- compute-1 shut off
- compute-2 shut off
- control-1 shut off
- storage-1 shut off
- storage-2 shut off
[root@hp-gen9 ~]#Le taimi nei o se nuance itiiti - tripleO faʻaaogaina le IPMI e pulea ai 'auʻaunaga i le taimi o le faʻapipiʻiina ma le suʻesuʻeina.
O le su'esu'ega o le fa'agasologa lea o le su'esu'eina o masini ina ia maua ai ona fa'amaufa'ailoga e mana'omia mo le tu'uina atili o nodes. O le su'esu'ega e faia i le fa'aogaina o le ironic, o se 'au'aunaga na fa'atulagaina e galulue ai ma 'au'aunaga u'amea.
Ae o le faʻafitauli lenei - aʻo i ai i le masini komepiuta IPMI se isi taulaga (poʻo se vaʻa fefaʻasoaaʻi, ae e le taua lea), ona leai lea o ni pusa faʻapitoa i masini komepiuta. O iinei o se tootoo e taʻua o le vbmc e sau e fesoasoani ia i matou - o se faʻaoga e mafai ai ona e faʻataʻitaʻiina se uafu IPMI. O lenei faʻaaliga e aoga le faʻalogo i ai aemaise lava mo i latou e manaʻo e faʻatūina sea fale suʻesuʻe i luga o se ESXI hypervisor - ia faʻamaoni, ou te le iloa pe iai se analogue o le vbmc, o lea e aoga ai le mafaufau e uiga i lenei mataupu aʻo leʻi faʻaogaina mea uma. .
Fa'apipi'i le vbmc:
yum install yum install python2-virtualbmcAfai e le mafai e lau OS ona maua le afifi, ona faaopoopo lea o le fale teu oloa:
yum install -y https://www.rdoproject.org/repos/rdo-release.rpmO lea ua matou setiina le aoga. O mea uma iinei e fa'atauva'a i le tulaga o le fa'alumaina. Ole taimi nei e talafeagai e leai ni 'auʻaunaga ile lisi vbmc
[root@hp-gen9 ~]# vbmc list
[root@hp-gen9 ~]# Ina ia fa'aalia, e tatau ona fa'ailoa ma le lima fa'apenei:
[root@hp-gen9 ~]# vbmc add control-1 --port 7001 --username admin --password admin
[root@hp-gen9 ~]# vbmc add storage-1 --port 7002 --username admin --password admin
[root@hp-gen9 ~]# vbmc add storage-2 --port 7003 --username admin --password admin
[root@hp-gen9 ~]# vbmc add compute-1 --port 7004 --username admin --password admin
[root@hp-gen9 ~]# vbmc add compute-2 --port 7005 --username admin --password admin
[root@hp-gen9 ~]#
[root@hp-gen9 ~]# vbmc list
+-------------+--------+---------+------+
| Domain name | Status | Address | Port |
+-------------+--------+---------+------+
| compute-1 | down | :: | 7004 |
| compute-2 | down | :: | 7005 |
| control-1 | down | :: | 7001 |
| storage-1 | down | :: | 7002 |
| storage-2 | down | :: | 7003 |
+-------------+--------+---------+------+
[root@hp-gen9 ~]#Ou te manatu o le syntax o le poloaiga e manino e aunoa ma se faʻamatalaga. Ae ui i lea, mo le taimi nei o matou vasega uma o loʻo i lalo tulaga. Mo i latou e siitia atu i le tulaga UP, e tatau ona e faʻatagaina i latou:
[root@hp-gen9 ~]# vbmc start control-1
2020-08-14 03:15:57,826.826 13149 INFO VirtualBMC [-] Started vBMC instance for domain control-1
[root@hp-gen9 ~]# vbmc start storage-1
2020-08-14 03:15:58,316.316 13149 INFO VirtualBMC [-] Started vBMC instance for domain storage-1
[root@hp-gen9 ~]# vbmc start storage-2
2020-08-14 03:15:58,851.851 13149 INFO VirtualBMC [-] Started vBMC instance for domain storage-2
[root@hp-gen9 ~]# vbmc start compute-1
2020-08-14 03:15:59,307.307 13149 INFO VirtualBMC [-] Started vBMC instance for domain compute-1
[root@hp-gen9 ~]# vbmc start compute-2
2020-08-14 03:15:59,712.712 13149 INFO VirtualBMC [-] Started vBMC instance for domain compute-2
[root@hp-gen9 ~]#
[root@hp-gen9 ~]#
[root@hp-gen9 ~]# vbmc list
+-------------+---------+---------+------+
| Domain name | Status | Address | Port |
+-------------+---------+---------+------+
| compute-1 | running | :: | 7004 |
| compute-2 | running | :: | 7005 |
| control-1 | running | :: | 7001 |
| storage-1 | running | :: | 7002 |
| storage-2 | running | :: | 7003 |
+-------------+---------+---------+------+
[root@hp-gen9 ~]#Ma o le paʻi mulimuli - e tatau ona e faʻasaʻo tulafono o le firewall (pe faʻamalo atoa):
firewall-cmd --zone=public --add-port=7001/udp --permanent
firewall-cmd --zone=public --add-port=7002/udp --permanent
firewall-cmd --zone=public --add-port=7003/udp --permanent
firewall-cmd --zone=public --add-port=7004/udp --permanent
firewall-cmd --zone=public --add-port=7005/udp --permanent
firewall-cmd --reload
Ia tatou o atu i lalo o le ao ma siaki o loʻo galue mea uma. O le tuatusi o le masini talimalo o le 192.168.255.200, i lalo o le ao na matou faʻaopoopoina le pusa ipmitool talafeagai i le taimi o sauniuniga mo le faʻapipiʻiina:
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power status
Chassis Power is off
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power on
Chassis Power Control: Up/On
[stack@undercloud ~]$
[root@hp-gen9 ~]# virsh list
Id Name State
----------------------------------------------------
6 dns-server running
64 undercloud running
65 control-1 runningE pei ona mafai ona e vaʻai, ua matou faʻalauiloaina ma le manuia le node e ala i le vbmc. Se'i o tatou tape loa ma agai i luma:
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power off
Chassis Power Control: Down/Off
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power status
Chassis Power is off
[stack@undercloud ~]$
[root@hp-gen9 ~]# virsh list --all
Id Name State
----------------------------------------------------
6 dns-server running
64 undercloud running
- compute-1 shut off
- compute-2 shut off
- control-1 shut off
- storage-1 shut off
- storage-2 shut off
[root@hp-gen9 ~]#O le isi laasaga o le suʻesuʻeina o nodes lea o le a faʻapipiʻi ai le overcloud. Ina ia faia lenei mea, matou te manaʻomia le saunia o se faila json ma se faʻamatalaga o matou nodes. Faamolemole ia maitauina, e le pei o le faʻapipiʻiina i luga o sapalai e leai ni mea, o le faila o loʻo faʻaalia ai le taulaga o loʻo faʻaogaina ai le vbmc mo masini taʻitasi.
[root@hp-gen9 ~]# virsh domiflist --domain control-1
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:20:a2:2f
- network ovs-network-1 virtio 52:54:00:3f:87:9f
[root@hp-gen9 ~]# virsh domiflist --domain compute-1
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:98:e9:d6
[root@hp-gen9 ~]# virsh domiflist --domain compute-2
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:6a:ea:be
[root@hp-gen9 ~]# virsh domiflist --domain storage-1
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:79:0b:cb
[root@hp-gen9 ~]# virsh domiflist --domain storage-2
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:a7:fe:27Manatua: o le node pule e lua fesoʻotaʻiga, ae i lenei tulaga e le taua, i lenei faʻapipiʻi o le a lava mo i tatou.
O lea ua matou saunia le faila json. Matou te manaʻomia le faʻaalia o le tuatusi poppy o le taulaga lea o le a faʻatinoina ai le tuʻuina atu, o tapulaʻa o nodes, tuʻuina atu ia i latou igoa ma faʻaalia le auala e oʻo ai i le ipmi:
{
"nodes":[
{
"mac":[
"52:54:00:20:a2:2f"
],
"cpu":"8",
"memory":"32768",
"disk":"60",
"arch":"x86_64",
"name":"control-1",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7001"
},
{
"mac":[
"52:54:00:79:0b:cb"
],
"cpu":"4",
"memory":"16384",
"disk":"160",
"arch":"x86_64",
"name":"storage-1",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7002"
},
{
"mac":[
"52:54:00:a7:fe:27"
],
"cpu":"4",
"memory":"16384",
"disk":"160",
"arch":"x86_64",
"name":"storage-2",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7003"
},
{
"mac":[
"52:54:00:98:e9:d6"
],
"cpu":"12",
"memory":"32768",
"disk":"60",
"arch":"x86_64",
"name":"compute-1",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7004"
},
{
"mac":[
"52:54:00:6a:ea:be"
],
"cpu":"12",
"memory":"32768",
"disk":"60",
"arch":"x86_64",
"name":"compute-2",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7005"
}
]
}Ole taimi nei e tatau ona tatou saunia ata mo le faʻafefe. Ina ia faia lenei mea, download i latou e ala i le wget ma faʻapipiʻi:
(undercloud) [stack@undercloud ~]$ sudo wget https://images.rdoproject.org/queens/delorean/current-tripleo-rdo/overcloud-full.tar --no-check-certificate
(undercloud) [stack@undercloud ~]$ sudo wget https://images.rdoproject.org/queens/delorean/current-tripleo-rdo/ironic-python-agent.tar --no-check-certificate
(undercloud) [stack@undercloud ~]$ ls -lh
total 1.9G
-rw-r--r--. 1 stack stack 447M Aug 14 10:26 ironic-python-agent.tar
-rw-r--r--. 1 stack stack 1.5G Aug 14 10:26 overcloud-full.tar
-rw-------. 1 stack stack 916 Aug 13 23:10 stackrc
-rw-r--r--. 1 stack stack 15K Aug 13 22:50 undercloud.conf
-rw-------. 1 stack stack 2.0K Aug 13 22:50 undercloud-passwords.conf
(undercloud) [stack@undercloud ~]$ mkdir images/
(undercloud) [stack@undercloud ~]$ tar -xpvf ironic-python-agent.tar -C ~/images/
ironic-python-agent.initramfs
ironic-python-agent.kernel
(undercloud) [stack@undercloud ~]$ tar -xpvf overcloud-full.tar -C ~/images/
overcloud-full.qcow2
overcloud-full.initrd
overcloud-full.vmlinuz
(undercloud) [stack@undercloud ~]$
(undercloud) [stack@undercloud ~]$ ls -lh images/
total 1.9G
-rw-rw-r--. 1 stack stack 441M Aug 12 17:24 ironic-python-agent.initramfs
-rwxr-xr-x. 1 stack stack 6.5M Aug 12 17:24 ironic-python-agent.kernel
-rw-r--r--. 1 stack stack 53M Aug 12 17:14 overcloud-full.initrd
-rw-r--r--. 1 stack stack 1.4G Aug 12 17:18 overcloud-full.qcow2
-rwxr-xr-x. 1 stack stack 6.5M Aug 12 17:14 overcloud-full.vmlinuz
(undercloud) [stack@undercloud ~]$Tu'u i luga ata i lalo o le ao:
(undercloud) [stack@undercloud ~]$ openstack overcloud image upload --image-path ~/images/
Image "overcloud-full-vmlinuz" was uploaded.
+--------------------------------------+------------------------+-------------+---------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+------------------------+-------------+---------+--------+
| c2553770-3e0f-4750-b46b-138855b5c385 | overcloud-full-vmlinuz | aki | 6761064 | active |
+--------------------------------------+------------------------+-------------+---------+--------+
Image "overcloud-full-initrd" was uploaded.
+--------------------------------------+-----------------------+-------------+----------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+-----------------------+-------------+----------+--------+
| 949984e0-4932-4e71-af43-d67a38c3dc89 | overcloud-full-initrd | ari | 55183045 | active |
+--------------------------------------+-----------------------+-------------+----------+--------+
Image "overcloud-full" was uploaded.
+--------------------------------------+----------------+-------------+------------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+----------------+-------------+------------+--------+
| a2f2096d-c9d7-429a-b866-c7543c02a380 | overcloud-full | qcow2 | 1487475712 | active |
+--------------------------------------+----------------+-------------+------------+--------+
Image "bm-deploy-kernel" was uploaded.
+--------------------------------------+------------------+-------------+---------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+------------------+-------------+---------+--------+
| e413aa78-e38f-404c-bbaf-93e582a8e67f | bm-deploy-kernel | aki | 6761064 | active |
+--------------------------------------+------------------+-------------+---------+--------+
Image "bm-deploy-ramdisk" was uploaded.
+--------------------------------------+-------------------+-------------+-----------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+-------------------+-------------+-----------+--------+
| 5cf3aba4-0e50-45d3-929f-27f025dd6ce3 | bm-deploy-ramdisk | ari | 461759376 | active |
+--------------------------------------+-------------------+-------------+-----------+--------+
(undercloud) [stack@undercloud ~]$Siaki ua uma ona uta ata
(undercloud) [stack@undercloud ~]$ openstack image list
+--------------------------------------+------------------------+--------+
| ID | Name | Status |
+--------------------------------------+------------------------+--------+
| e413aa78-e38f-404c-bbaf-93e582a8e67f | bm-deploy-kernel | active |
| 5cf3aba4-0e50-45d3-929f-27f025dd6ce3 | bm-deploy-ramdisk | active |
| a2f2096d-c9d7-429a-b866-c7543c02a380 | overcloud-full | active |
| 949984e0-4932-4e71-af43-d67a38c3dc89 | overcloud-full-initrd | active |
| c2553770-3e0f-4750-b46b-138855b5c385 | overcloud-full-vmlinuz | active |
+--------------------------------------+------------------------+--------+
(undercloud) [stack@undercloud ~]$Le isi mea - e tatau ona e faʻaopoopoina se DNS server:
(undercloud) [stack@undercloud ~]$ openstack subnet list
+--------------------------------------+-----------------+--------------------------------------+------------------+
| ID | Name | Network | Subnet |
+--------------------------------------+-----------------+--------------------------------------+------------------+
| f45dea46-4066-42aa-a3c4-6f84b8120cab | ctlplane-subnet | 6ca013dc-41c2-42d8-9d69-542afad53392 | 192.168.255.0/24 |
+--------------------------------------+-----------------+--------------------------------------+------------------+
(undercloud) [stack@undercloud ~]$ openstack subnet show f45dea46-4066-42aa-a3c4-6f84b8120cab
+-------------------+-----------------------------------------------------------+
| Field | Value |
+-------------------+-----------------------------------------------------------+
| allocation_pools | 192.168.255.11-192.168.255.50 |
| cidr | 192.168.255.0/24 |
| created_at | 2020-08-13T20:10:37Z |
| description | |
| dns_nameservers | |
| enable_dhcp | True |
| gateway_ip | 192.168.255.1 |
| host_routes | destination='169.254.169.254/32', gateway='192.168.255.1' |
| id | f45dea46-4066-42aa-a3c4-6f84b8120cab |
| ip_version | 4 |
| ipv6_address_mode | None |
| ipv6_ra_mode | None |
| name | ctlplane-subnet |
| network_id | 6ca013dc-41c2-42d8-9d69-542afad53392 |
| prefix_length | None |
| project_id | a844ccfcdb2745b198dde3e1b28c40a3 |
| revision_number | 0 |
| segment_id | None |
| service_types | |
| subnetpool_id | None |
| tags | |
| updated_at | 2020-08-13T20:10:37Z |
+-------------------+-----------------------------------------------------------+
(undercloud) [stack@undercloud ~]$
(undercloud) [stack@undercloud ~]$ neutron subnet-update f45dea46-4066-42aa-a3c4-6f84b8120cab --dns-nameserver 192.168.255.253
neutron CLI is deprecated and will be removed in the future. Use openstack CLI instead.
Updated subnet: f45dea46-4066-42aa-a3c4-6f84b8120cab
(undercloud) [stack@undercloud ~]$O lenei e mafai ona matou tuʻuina atu le poloaiga mo le suʻesuʻeina:
(undercloud) [stack@undercloud ~]$ openstack overcloud node import --introspect --provide inspection.json
Started Mistral Workflow tripleo.baremetal.v1.register_or_update. Execution ID: d57456a3-d8ed-479c-9a90-dff7c752d0ec
Waiting for messages on queue 'tripleo' with no timeout.
5 node(s) successfully moved to the "manageable" state.
Successfully registered node UUID b4b2cf4a-b7ca-4095-af13-cc83be21c4f5
Successfully registered node UUID b89a72a3-6bb7-429a-93bc-48393d225838
Successfully registered node UUID 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e
Successfully registered node UUID bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8
Successfully registered node UUID 766ab623-464c-423d-a529-d9afb69d1167
Waiting for introspection to finish...
Started Mistral Workflow tripleo.baremetal.v1.introspect. Execution ID: 6b4d08ae-94c3-4a10-ab63-7634ec198a79
Waiting for messages on queue 'tripleo' with no timeout.
Introspection of node b89a72a3-6bb7-429a-93bc-48393d225838 completed. Status:SUCCESS. Errors:None
Introspection of node 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e completed. Status:SUCCESS. Errors:None
Introspection of node bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 completed. Status:SUCCESS. Errors:None
Introspection of node 766ab623-464c-423d-a529-d9afb69d1167 completed. Status:SUCCESS. Errors:None
Introspection of node b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 completed. Status:SUCCESS. Errors:None
Successfully introspected 5 node(s).
Started Mistral Workflow tripleo.baremetal.v1.provide. Execution ID: f5594736-edcf-4927-a8a0-2a7bf806a59a
Waiting for messages on queue 'tripleo' with no timeout.
5 node(s) successfully moved to the "available" state.
(undercloud) [stack@undercloud ~]$E pei ona mafai ona e vaʻai mai le gaioiga, o mea uma na maeʻa e aunoa ma ni mea sese. Sei o tatou siaki po'o nodes uma o lo'o i le tulaga avanoa:
(undercloud) [stack@undercloud ~]$ openstack baremetal node list
+--------------------------------------+-----------+---------------+-------------+--------------------+-------------+
| UUID | Name | Instance UUID | Power State | Provisioning State | Maintenance |
+--------------------------------------+-----------+---------------+-------------+--------------------+-------------+
| b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 | control-1 | None | power off | available | False |
| b89a72a3-6bb7-429a-93bc-48393d225838 | storage-1 | None | power off | available | False |
| 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e | storage-2 | None | power off | available | False |
| bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 | compute-1 | None | power off | available | False |
| 766ab623-464c-423d-a529-d9afb69d1167 | compute-2 | None | power off | available | False |
+--------------------------------------+-----------+---------------+-------------+--------------------+-------------+
(undercloud) [stack@undercloud ~]$ Afai o nodes o loʻo i se tulaga ese, e masani ona faʻaogaina, ona i ai lea o se mea na tupu ma e tatau ona e tilotilo i le ogalaau ma iloa pe aisea na tupu ai lenei mea. Ia manatua o lenei faʻataʻitaʻiga o loʻo matou faʻaogaina le virtualization ma e ono iai ni faʻailoga e fesoʻotaʻi ma le faʻaogaina o masini masini poʻo vbmc.
Ma le isi, e tatau ona tatou faʻaalia po o le fea node o le a faʻatinoina le galuega - o lona uiga, faʻaalia le faʻamatalaga e faʻapipiʻi ai le node:
(undercloud) [stack@undercloud ~]$ openstack overcloud profiles list
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| Node UUID | Node Name | Provision State | Current Profile | Possible Profiles |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 | control-1 | available | None | |
| b89a72a3-6bb7-429a-93bc-48393d225838 | storage-1 | available | None | |
| 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e | storage-2 | available | None | |
| bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 | compute-1 | available | None | |
| 766ab623-464c-423d-a529-d9afb69d1167 | compute-2 | available | None | |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
(undercloud) [stack@undercloud ~]$ openstack flavor list
+--------------------------------------+---------------+------+------+-----------+-------+-----------+
| ID | Name | RAM | Disk | Ephemeral | VCPUs | Is Public |
+--------------------------------------+---------------+------+------+-----------+-------+-----------+
| 168af640-7f40-42c7-91b2-989abc5c5d8f | swift-storage | 4096 | 40 | 0 | 1 | True |
| 52148d1b-492e-48b4-b5fc-772849dd1b78 | baremetal | 4096 | 40 | 0 | 1 | True |
| 56e66542-ae60-416d-863e-0cb192d01b09 | control | 4096 | 40 | 0 | 1 | True |
| af6796e1-d0c4-4bfe-898c-532be194f7ac | block-storage | 4096 | 40 | 0 | 1 | True |
| e4d50fdd-0034-446b-b72c-9da19b16c2df | compute | 4096 | 40 | 0 | 1 | True |
| fc2e3acf-7fca-4901-9eee-4a4d6ef0265d | ceph-storage | 4096 | 40 | 0 | 1 | True |
+--------------------------------------+---------------+------+------+-----------+-------+-----------+
(undercloud) [stack@undercloud ~]$Fa'ailoa le fa'ailoga mo node ta'itasi:
openstack baremetal node set --property capabilities='profile:control,boot_option:local' b4b2cf4a-b7ca-4095-af13-cc83be21c4f5
openstack baremetal node set --property capabilities='profile:ceph-storage,boot_option:local' b89a72a3-6bb7-429a-93bc-48393d225838
openstack baremetal node set --property capabilities='profile:ceph-storage,boot_option:local' 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e
openstack baremetal node set --property capabilities='profile:compute,boot_option:local' bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8
openstack baremetal node set --property capabilities='profile:compute,boot_option:local' 766ab623-464c-423d-a529-d9afb69d1167Sei o tatou siaki pe sa'o sa'o mea uma:
(undercloud) [stack@undercloud ~]$ openstack overcloud profiles list
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| Node UUID | Node Name | Provision State | Current Profile | Possible Profiles |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 | control-1 | available | control | |
| b89a72a3-6bb7-429a-93bc-48393d225838 | storage-1 | available | ceph-storage | |
| 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e | storage-2 | available | ceph-storage | |
| bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 | compute-1 | available | compute | |
| 766ab623-464c-423d-a529-d9afb69d1167 | compute-2 | available | compute | |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
(undercloud) [stack@undercloud ~]$Afai e saʻo mea uma, matou te tuʻuina atu le faʻatonuga e faʻapipiʻi luga o le ao:
openstack overcloud deploy --templates --control-scale 1 --compute-scale 2 --ceph-storage-scale 2 --control-flavor control --compute-flavor compute --ceph-storage-flavor ceph-storage --libvirt-type qemuI se faʻapipiʻi moni, o faʻataʻitaʻiga faʻapitoa o le a faʻaaogaina masani, i la matou tulaga o le a matua faʻalavelaveina ai le faagasologa, talu ai e tatau ona faʻamatalaina faʻasologa taʻitasi i le faʻataʻitaʻiga. E pei ona tusia muamua, e oʻo lava i se faʻapipiʻi faigofie o le a lava mo i tatou e vaʻai pe faʻafefea.
Manatua: o le --libvirt-type qemu fesuiaiga e manaʻomia i lenei tulaga, talu ai o le a matou faʻaogaina le faʻaogaina o le faʻaogaina. A leai, o le a le mafai ona e faʻatautaia masini masini.
Ole taimi nei e tusa ma le itula, pe sili atu (faʻalagolago i le gafatia o meafaigaluega) ma e mafai ona e faʻamoemoe pe a maeʻa lenei taimi o le a e vaʻaia le faʻamatalaga nei:
2020-08-14 08:39:21Z [overcloud]: CREATE_COMPLETE Stack CREATE completed successfully
Stack overcloud CREATE_COMPLETE
Host 192.168.255.21 not found in /home/stack/.ssh/known_hosts
Started Mistral Workflow tripleo.deployment.v1.get_horizon_url. Execution ID: fcb996cd-6a19-482b-b755-2ca0c08069a9
Overcloud Endpoint: http://192.168.255.21:5000/
Overcloud Horizon Dashboard URL: http://192.168.255.21:80/dashboard
Overcloud rc file: /home/stack/overcloudrc
Overcloud Deployed
(undercloud) [stack@undercloud ~]$O lea ua i ai sau faʻamatalaga toetoe lava atoa o le openstack, lea e mafai ona e suʻesuʻe ai, faʻataʻitaʻiga, ma isi.
Sei o tatou siaki pe o lelei mea uma. I totonu o le fa'aputuga o le lisi o fale e lua faila - tasi le stackrc (mo le puleaina o lalo o le ao) ma le lona lua overcloudrc (mo le puleaina o le overcloud). O nei faila e tatau ona faʻamaonia e avea ma puna, talu ai o loʻo i ai faʻamatalaga e manaʻomia mo le faʻamaonia.
(undercloud) [stack@undercloud ~]$ openstack server list
+--------------------------------------+-------------------------+--------+-------------------------+----------------+--------------+
| ID | Name | Status | Networks | Image | Flavor |
+--------------------------------------+-------------------------+--------+-------------------------+----------------+--------------+
| fd7d36f4-ce87-4b9a-93b0-add2957792de | overcloud-controller-0 | ACTIVE | ctlplane=192.168.255.15 | overcloud-full | control |
| edc77778-8972-475e-a541-ff40eb944197 | overcloud-novacompute-1 | ACTIVE | ctlplane=192.168.255.26 | overcloud-full | compute |
| 5448ce01-f05f-47ca-950a-ced14892c0d4 | overcloud-cephstorage-1 | ACTIVE | ctlplane=192.168.255.34 | overcloud-full | ceph-storage |
| ce6d862f-4bdf-4ba3-b711-7217915364d7 | overcloud-novacompute-0 | ACTIVE | ctlplane=192.168.255.19 | overcloud-full | compute |
| e4507bd5-6f96-4b12-9cc0-6924709da59e | overcloud-cephstorage-0 | ACTIVE | ctlplane=192.168.255.44 | overcloud-full | ceph-storage |
+--------------------------------------+-------------------------+--------+-------------------------+----------------+--------------+
(undercloud) [stack@undercloud ~]$
(undercloud) [stack@undercloud ~]$ source overcloudrc
(overcloud) [stack@undercloud ~]$
(overcloud) [stack@undercloud ~]$ openstack project list
+----------------------------------+---------+
| ID | Name |
+----------------------------------+---------+
| 4eed7d0f06544625857d51cd77c5bd4c | admin |
| ee1c68758bde41eaa9912c81dc67dad8 | service |
+----------------------------------+---------+
(overcloud) [stack@undercloud ~]$
(overcloud) [stack@undercloud ~]$
(overcloud) [stack@undercloud ~]$ openstack network agent list
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| ID | Agent Type | Host | Availability Zone | Alive | State | Binary |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| 10495de9-ba4b-41fe-b30a-b90ec3f8728b | Open vSwitch agent | overcloud-novacompute-1.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| 1515ad4a-5972-46c3-af5f-e5446dff7ac7 | L3 agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-l3-agent |
| 322e62ca-1e5a-479e-9a96-4f26d09abdd7 | DHCP agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-dhcp-agent |
| 9c1de2f9-bac5-400e-998d-4360f04fc533 | Open vSwitch agent | overcloud-novacompute-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| d99c5657-851e-4d3c-bef6-f1e3bb1acfb0 | Open vSwitch agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| ff85fae6-5543-45fb-a301-19c57b62d836 | Metadata agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-metadata-agent |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
(overcloud) [stack@undercloud ~]$O laʻu faʻapipiʻi e manaʻomia pea se tasi paʻi laitiiti - faʻaopoopo se auala i luga o le pule, talu ai o le masini o loʻo ou galue ai o loʻo i luga o se isi fesoʻotaʻiga. Ina ia faia lenei mea, alu i le control-1 i lalo ole heat-admin account ma resitala le auala
(undercloud) [stack@undercloud ~]$ ssh [email protected]
Last login: Fri Aug 14 09:47:40 2020 from 192.168.255.1
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ip route add 10.169.0.0/16 via 192.168.255.254Ia, o lea e mafai ona e alu i le tafailagi. O faʻamatalaga uma - tuatusi, login ma upu faʻamaonia - o loʻo i totonu o le faila /home/stack/overcloudrc. O le ata mulimuli e pei o lenei:
I le auala, i la matou faʻapipiʻiina, na tuʻuina atu tuatusi masini e ala i le DHCP ma, e pei ona e vaʻaia, e tuʻuina atu "i se taimi faʻafuaseʻi". E mafai ona e faʻamalamalama manino i totonu o le faʻataʻitaʻiga poʻo le fea tuatusi e tatau ona faʻapipiʻi i le masini i le taimi o le faʻaogaina, pe a e manaʻomia.
E fa'afefea ona feoa'i fe'avea'i i le va o masini va'aia?
I lenei tusiga o le a tatou vaʻavaʻai i ni filifiliga se tolu mo le pasia o feoaiga
- E lua masini i luga o le tasi hypervisor i luga ole fesoʻotaʻiga L2
- E lua masini i luga o hypervisors eseese i luga ole laiga L2 tutusa
- E lua masini i luga o fesoʻotaʻiga eseese (aʻa fesoʻotaʻiga)
O mataupu e iai le avanoa i le lalolagi i fafo e ala i se fesoʻotaʻiga i fafo, faʻaaogaina o tuatusi faʻafefe, faʻapea foʻi ma faʻasalalauga faʻasalalau, o le a tatou mafaufau i le isi taimi, mo le taimi nei o le a tatou taulaʻi atu i fefaʻatauaiga i totonu.
Ina ia siaki, sei o tatou tuufaatasia le ata lenei:
Ua matou faia 4 masini komepiuta - 3 i luga o le tasi fesoʻotaʻiga L2 - upega-1, ma le isi 1 i luga ole upega-2 fesoʻotaʻiga
(overcloud) [stack@undercloud ~]$ nova list --tenant 5e18ce8ec9594e00b155485f19895e6c
+--------------------------------------+------+----------------------------------+--------+------------+-------------+-----------------+
| ID | Name | Tenant ID | Status | Task State | Power State | Networks |
+--------------------------------------+------+----------------------------------+--------+------------+-------------+-----------------+
| f53b37b5-2204-46cc-aef0-dba84bf970c0 | vm-1 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-1=10.0.1.85 |
| fc8b6722-0231-49b0-b2fa-041115bef34a | vm-2 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-1=10.0.1.88 |
| 3cd74455-b9b7-467a-abe3-bd6ff765c83c | vm-3 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-1=10.0.1.90 |
| 7e836338-6772-46b0-9950-f7f06dbe91a8 | vm-4 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-2=10.0.2.8 |
+--------------------------------------+------+----------------------------------+--------+------------+-------------+-----------------+
(overcloud) [stack@undercloud ~]$ Se'i o tatou va'ai po'o le a le hypervisors o lo'o i ai masini na faia:
(overcloud) [stack@undercloud ~]$ nova show f53b37b5-2204-46cc-aef0-dba84bf970c0 | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-1 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-0.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000001 |(overcloud) [stack@undercloud ~]$ nova show fc8b6722-0231-49b0-b2fa-041115bef34a | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-2 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-1.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000002 |(overcloud) [stack@undercloud ~]$ nova show 3cd74455-b9b7-467a-abe3-bd6ff765c83c | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-3 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-0.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000003 |(overcloud) [stack@undercloud ~]$ nova show 7e836338-6772-46b0-9950-f7f06dbe91a8 | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-4 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-1.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000004 |
(overcloud) [stack@undercloud ~]$
O masini vm-1 ma vm-3 o lo'o i luga ole compute-0, masini vm-2 ma vm-4 o lo'o i luga ole node compute-1.
E le gata i lea, ua faia se telefoni feaveaʻi e mafai ai ona taʻavale i le va o fesoʻotaʻiga faʻamaonia:
(overcloud) [stack@undercloud ~]$ openstack router list --project 5e18ce8ec9594e00b155485f19895e6c
+--------------------------------------+----------+--------+-------+-------------+-------+----------------------------------+
| ID | Name | Status | State | Distributed | HA | Project |
+--------------------------------------+----------+--------+-------+-------------+-------+----------------------------------+
| 0a4d2420-4b9c-46bd-aec1-86a1ef299abe | router-1 | ACTIVE | UP | False | False | 5e18ce8ec9594e00b155485f19895e6c |
+--------------------------------------+----------+--------+-------+-------------+-------+----------------------------------+
(overcloud) [stack@undercloud ~]$ O le router e lua ports virtual, lea e fai ma faitotoa mo fesoʻotaʻiga:
(overcloud) [stack@undercloud ~]$ openstack router show 0a4d2420-4b9c-46bd-aec1-86a1ef299abe | grep interface
| interfaces_info | [{"subnet_id": "2529ad1a-6b97-49cd-8515-cbdcbe5e3daa", "ip_address": "10.0.1.254", "port_id": "0c52b15f-8fcc-4801-bf52-7dacc72a5201"}, {"subnet_id": "335552dd-b35b-456b-9df0-5aac36a3ca13", "ip_address": "10.0.2.254", "port_id": "92fa49b5-5406-499f-ab8d-ddf28cc1a76c"}] |
(overcloud) [stack@undercloud ~]$ Ae tatou te leʻi vaʻavaʻai pe faʻafefea ona tafe le auala, seʻi o tatou vaʻavaʻai i mea o loʻo ia i tatou i le taimi nei i luga o le node pule (lea o se node fesoʻotaʻiga) ma luga o le node compute. Sei o tatou amata i le node compute.
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-vsctl show
[heat-admin@overcloud-novacompute-0 ~]$ sudo sudo ovs-appctl dpif/show
system@ovs-system: hit:3 missed:3
br-ex:
br-ex 65534/1: (internal)
phy-br-ex 1/none: (patch: peer=int-br-ex)
br-int:
br-int 65534/2: (internal)
int-br-ex 1/none: (patch: peer=phy-br-ex)
patch-tun 2/none: (patch: peer=patch-int)
br-tun:
br-tun 65534/3: (internal)
patch-int 1/none: (patch: peer=patch-tun)
vxlan-c0a8ff0f 3/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.15)
vxlan-c0a8ff1a 2/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.26)
[heat-admin@overcloud-novacompute-0 ~]$I le taimi nei, o le node e tolu alalaupapa ovs - br-int, br-tun, br-ex. I le va oi latou, e pei ona tatou vaʻaia, o loʻo i ai se seti o fesoʻotaʻiga. Mo le faigofie o le malamalama, seʻi o tatou faʻavasega uma nei fesoʻotaʻiga i luga o le ata ma vaʻai pe o le a le mea e tupu.
A va'ai i tuatusi o lo'o fa'atūina ai tunnels VxLAN, e mafai ona va'aia o lo'o si'i a'e le tunnel e tasi e fa'atatau-1 (192.168.255.26), o le tunnel lona lua e va'ava'ai i le pulea-1 (192.168.255.15). Ae o le mea e sili ona manaia o le br-ex e leai ni fesoʻotaʻiga faʻapitoa, ma afai e te vaʻavaʻai i mea o loʻo faʻatulagaina, e mafai ona e vaʻaia o lenei alalaupapa e mafai ona paʻu i le taimi nei.
[heat-admin@overcloud-novacompute-0 ~]$ ifconfig eth0
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 192.168.255.19 netmask 255.255.255.0 broadcast 192.168.255.255
inet6 fe80::5054:ff:fe6a:eabe prefixlen 64 scopeid 0x20<link>
ether 52:54:00:6a:ea:be txqueuelen 1000 (Ethernet)
RX packets 2909669 bytes 4608201000 (4.2 GiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1821057 bytes 349198520 (333.0 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
[heat-admin@overcloud-novacompute-0 ~]$ E pei ona mafai ona e vaʻai mai le gaioiga, o le tuatusi o loʻo faʻapipiʻiina saʻo i le taulaga faʻapitoa, ae le o le fesoʻotaʻiga alalaupapa virtual.
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-ex
port VLAN MAC Age
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl dump-flows br-ex
cookie=0x9169eae8f7fe5bb2, duration=216686.864s, table=0, n_packets=303, n_bytes=26035, priority=2,in_port="phy-br-ex" actions=drop
cookie=0x9169eae8f7fe5bb2, duration=216686.887s, table=0, n_packets=0, n_bytes=0, priority=0 actions=NORMAL
[heat-admin@overcloud-novacompute-0 ~]$
E tusa ai ma le tulafono muamua, o mea uma na sau mai le phy-br-ex uafu e tatau ona lafoai.
O le mea moni, e leai se isi mea i le taimi nei e sau ai feoaiga i totonu o lenei alalaupapa sei vagana ai mai lenei faʻaoga (le fesoʻotaʻiga ma br-int), ma faʻatatau i mataua, ua uma ona tafe atu le BUM traffic i totonu o le alalaupapa.
O lona uiga, e mafai ona alu ese le taʻavale i lenei node naʻo le VxLAN tunnel ae leai se isi mea. Ae peitai, afai e te ki le DVR, o le a suia le tulaga, ae o le a matou taulimaina lena mea i se isi taimi. A fa'aogaina le fa'aesea o feso'ota'iga, mo se fa'ata'ita'iga le fa'aaogaina o vlans, o le a leai sau fa'aoga L3 ile vlan 0, ae tele feso'ota'iga. Ae ui i lea, VxLAN felauaiga o le a tuua le node i le auala lava e tasi, ae faʻapipiʻiina foi i se ituaiga vlan tuuto.
Ua matou fa'avasegaina le node compute, se'i o tatou agai i le node e pulea.
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl dpif/show
system@ovs-system: hit:930491 missed:825
br-ex:
br-ex 65534/1: (internal)
eth0 1/2: (system)
phy-br-ex 2/none: (patch: peer=int-br-ex)
br-int:
br-int 65534/3: (internal)
int-br-ex 1/none: (patch: peer=phy-br-ex)
patch-tun 2/none: (patch: peer=patch-int)
br-tun:
br-tun 65534/4: (internal)
patch-int 1/none: (patch: peer=patch-tun)
vxlan-c0a8ff13 3/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.19)
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$O le mea moni, e mafai ona tatou fai atu e tutusa mea uma, ae o le tuatusi IP e le o toe i luga o le faʻaogaina o le tino ae i luga o le alalaupapa faʻapitoa. E fai lea mea ona o lenei uafu o le uafu lea e alu atu ai feoaiga i fafo.
[heat-admin@overcloud-controller-0 ~]$ ifconfig br-ex
br-ex: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 192.168.255.15 netmask 255.255.255.0 broadcast 192.168.255.255
inet6 fe80::5054:ff:fe20:a22f prefixlen 64 scopeid 0x20<link>
ether 52:54:00:20:a2:2f txqueuelen 1000 (Ethernet)
RX packets 803859 bytes 1732616116 (1.6 GiB)
RX errors 0 dropped 63 overruns 0 frame 0
TX packets 808475 bytes 121652156 (116.0 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl fdb/show br-ex
port VLAN MAC Age
3 100 28:c0:da:00:4d:d3 35
1 0 28:c0:da:00:4d:d3 35
1 0 52:54:00:98:e9:d6 0
LOCAL 0 52:54:00:20:a2:2f 0
1 0 52:54:00:2c:08:9e 0
3 100 52:54:00:20:a2:2f 0
1 0 52:54:00:6a:ea:be 0
[heat-admin@overcloud-controller-0 ~]$ O lenei uafu o loʻo nonoa i le alalaupapa br-ex ma talu ai e leai ni faʻailoga vlan i luga, o lenei uafu o se pusa ogalaau lea e faʻatagaina uma ai vlans, o lea e alu atu taavale i fafo e aunoa ma se pine, e pei ona faʻaalia e vlan-id 0 i le galuega faatino i luga.
O isi mea uma i le taimi nei e tutusa ma le numera o le numera - o alalaupapa tutusa, o alalaupapa tutusa e alu i le lua faʻatatau.
O le a tatou le mafaufau i le teuina o nodes i lenei tusiga, ae mo le malamalama e tatau ona fai atu o le vaega o fesoʻotaʻiga o nei nodes e banal i le tulaga o le faalumaina. I la matou tulaga, e naʻo le tasi le pusa faʻapitoa (eth0) faʻatasi ai ma se tuatusi IP na tuʻuina atu i ai ma o le mea lena. E leai ni alalaupapa VxLAN, alalaupapa alalaupapa, ma isi - e leai lava se ovs, talu ai e leai se aoga i totonu. Pe a faʻaogaina le faʻaesea o fesoʻotaʻiga, o lenei node o le ai ai ni fesoʻotaʻiga se lua (tulaga faaletino, bodny, pe naʻo le lua vlans - e le afaina - e faʻalagolago i mea e te manaʻo ai) - tasi mo le pulega, lona lua mo fefaʻatauaiga (tusi i le VM disk , faitau mai le tisiki, ma isi)
Na matou iloa mea o loʻo i ai i luga o nodes i le leai o soʻo se auaunaga. Seʻi o tatou faʻalauiloa 4 masini masini ma vaʻai pe faʻafefea ona suia le polokalame o loʻo faʻamatalaina i luga - e tatau ona i ai ni a tatou ports, virtual routers, etc.
E o'o mai i le taimi nei e pei o lenei la matou feso'ota'iga:
E lua a matou masini mata'utia i node komepiuta ta'itasi. Fa'aaoga le compute-0 e fai ma fa'ata'ita'iga, se'i o tatou va'ai pe fa'apefea ona fa'aaofia mea uma.
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh list
Id Name State
----------------------------------------------------
1 instance-00000001 running
3 instance-00000003 running
[heat-admin@overcloud-novacompute-0 ~]$ O le masini e naʻo le tasi le atinaʻe faʻapitoa - tap95d96a75-a0:
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000001
Interface Type Source Model MAC
-------------------------------------------------------
tap95d96a75-a0 bridge qbr95d96a75-a0 virtio fa:16:3e:44:98:20
[heat-admin@overcloud-novacompute-0 ~]$
O lenei atinaʻe e vaʻavaʻai i le alalaupapa linux:
[heat-admin@overcloud-novacompute-0 ~]$ sudo brctl show
bridge name bridge id STP enabled interfaces
docker0 8000.0242904c92a8 no
qbr5bd37136-47 8000.5e4e05841423 no qvb5bd37136-47
tap5bd37136-47
qbr95d96a75-a0 8000.de076cb850f6 no qvb95d96a75-a0
tap95d96a75-a0
[heat-admin@overcloud-novacompute-0 ~]$ E pei ona mafai ona e vaʻaia mai le gaioiga, e naʻo le lua fesoʻotaʻiga i le alalaupapa - tap95d96a75-a0 ma qvb95d96a75-a0.
O iinei e aoga le nofo ai i luga o ituaiga o masini fesoʻotaiga vavave i OpenStack:
vtap - fesoʻotaʻiga faʻapitoa e faʻapipiʻi i se faʻataʻitaʻiga (VM)
qbr - alalaupapa Linux
qvb ma qvo - vEth pa'aga e feso'ota'i ile alalaupapa Linux ma le alalaupapa Open vSwitch
br-int, br-tun, br-vlan - Tatala alalaupapa vSwitch
patch-, int-br-, phy-br- - Tatala vSwitch patch feso'ota'iga feso'ota'i alalaupapa
qg, qr, ha, fg, sg - Tatala vSwitch ports faʻaogaina e masini komepiuta e faʻafesoʻotaʻi i le OVS
E pei ona e malamalama i ai, afai ei ai sa matou taulaga qvb95d96a75-a0 i le alalaupapa, o se vEth pair, ona i ai lea i se mea o loʻo i ai lona sui, lea e tatau ona taʻua o le qvo95d96a75-a0. Se'i tatou va'ai po'o a ports o lo'o i luga ole OVS.
[heat-admin@overcloud-novacompute-0 ~]$ sudo sudo ovs-appctl dpif/show
system@ovs-system: hit:526 missed:91
br-ex:
br-ex 65534/1: (internal)
phy-br-ex 1/none: (patch: peer=int-br-ex)
br-int:
br-int 65534/2: (internal)
int-br-ex 1/none: (patch: peer=phy-br-ex)
patch-tun 2/none: (patch: peer=patch-int)
qvo5bd37136-47 6/6: (system)
qvo95d96a75-a0 3/5: (system)
br-tun:
br-tun 65534/3: (internal)
patch-int 1/none: (patch: peer=patch-tun)
vxlan-c0a8ff0f 3/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.15)
vxlan-c0a8ff1a 2/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.26)
[heat-admin@overcloud-novacompute-0 ~]$ E pei ona mafai ona tatou vaʻaia, o le taulaga o loʻo i totonu o le br-int. O le Br-int e galue o se ki e faʻamuta ai pusa masini masini. I le faaopoopo atu i le qvo95d96a75-a0, o le taulaga qvo5bd37136-47 o loʻo faʻaalia i le gaosiga. O le uafu lea i le masini komepiuta lona lua. O le i'uga, ua fa'apea nei la tatou ata:
O se fesili e tatau ona vave fiafia i ai le tagata faitau faʻalogo - o le a le alalaupapa linux i le va o le masini masini masini ma le OVS port? O le mea moni o le puipuia o le masini, o loʻo faʻaogaina vaega saogalemu, e leai se mea e sili atu nai lo iptables. OVS e le galue i iptables, o lea na faia ai lenei "tootoo". Ae ui i lea, ua amata ona le toe aoga - ua suia i le conntrack i faʻasalalauga fou.
O lona uiga, mulimuli ane o le polokalame e pei o lenei:
E lua masini i luga o le tasi hypervisor i luga ole fesoʻotaʻiga L2
Talu ai o nei VM e lua o loʻo i luga o le fesoʻotaʻiga L2 tutusa ma luga o le hypervisor lava e tasi, o fefaʻatauaiga i le va oi latou o le a tafe lelei i le lotoifale e ala i br-int, talu ai o masini uma e lua o le a i luga o le VLAN tutusa:
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000001
Interface Type Source Model MAC
-------------------------------------------------------
tap95d96a75-a0 bridge qbr95d96a75-a0 virtio fa:16:3e:44:98:20
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000003
Interface Type Source Model MAC
-------------------------------------------------------
tap5bd37136-47 bridge qbr5bd37136-47 virtio fa:16:3e:83:ad:a4
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-int
port VLAN MAC Age
6 1 fa:16:3e:83:ad:a4 0
3 1 fa:16:3e:44:98:20 0
[heat-admin@overcloud-novacompute-0 ~]$ E lua masini i luga o hypervisors eseese i luga ole laiga L2 tutusa
Se'i o tatou va'ai pe fa'afefea ona alu le ta'avale i le va o masini e lua i luga ole feso'ota'iga L2 tutusa, ae o lo'o i luga ole va'aiga eseese. Ina ia faʻamaoni, e leai se mea e suia tele, naʻo fefaʻatauaiga i le va o hypervisors o le a alu i le vxlan tunnel. Seʻi o tatou vaavaai i se faaaʻoaʻoga.
Tuatusi o masini faʻapitoa i le va o le a matou vaʻavaʻai ai feoaiga:
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000001
Interface Type Source Model MAC
-------------------------------------------------------
tap95d96a75-a0 bridge qbr95d96a75-a0 virtio fa:16:3e:44:98:20
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-1 ~]$ sudo virsh domiflist instance-00000002
Interface Type Source Model MAC
-------------------------------------------------------
tape7e23f1b-07 bridge qbre7e23f1b-07 virtio fa:16:3e:72:ad:53
[heat-admin@overcloud-novacompute-1 ~]$ Matou te vaʻavaʻai i le laulau tuʻuina atu i le br-int i luga ole compute-0:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:72:ad:53
2 1 fa:16:3e:72:ad:53 1
[heat-admin@overcloud-novacompute-0 ~]E tatau ona alu le ta'avale i le uafu 2 - se'i o tatou va'ai po'o le a le ituaiga uafu lea:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:7e:7f:28:1f:bd:54
2(patch-tun): addr:0a:bd:07:69:58:d9
3(qvo95d96a75-a0): addr:ea:50:9a:3d:69:58
6(qvo5bd37136-47): addr:9a:d1:03:50:3d:96
LOCAL(br-int): addr:1a:0f:53:97:b1:49
[heat-admin@overcloud-novacompute-0 ~]$Ole patch-tun lea - o lona uiga, o le faʻaoga ile br-tun. Se'i o tatou va'ai po'o le a le mea e tupu i le afifi ile br-tun:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl dump-flows br-tun | grep fa:16:3e:72:ad:53
cookie=0x8759a56536b67a8e, duration=1387.959s, table=20, n_packets=1460, n_bytes=138880, hard_timeout=300, idle_age=0, hard_age=0, priority=1,vlan_tci=0x0001/0x0fff,dl_dst=fa:16:3e:72:ad:53 actions=load:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[],output:2
[heat-admin@overcloud-novacompute-0 ~]$ O lo'o fa'apipi'iina le afifi i le VxLAN ma lafo i le taulaga 2. Se'i va'ai po'o fea e ta'ita'ia ai le taulaga 2:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl show br-tun | grep addr
1(patch-int): addr:b2:d1:f8:21:96:66
2(vxlan-c0a8ff1a): addr:be:64:1f:75:78:a7
3(vxlan-c0a8ff0f): addr:76:6f:b9:3c:3f:1c
LOCAL(br-tun): addr:a2:5b:6d:4f:94:47
[heat-admin@overcloud-novacompute-0 ~]$Ole ala lea vxlan ile compute-1:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl dpif/show | egrep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.26)
[heat-admin@overcloud-novacompute-0 ~]$Sei o tatou i le compute-1 ma vaʻai poʻo le a le mea e tupu i le afifi:
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-appctl fdb/show br-int | egrep fa:16:3e:44:98:20
2 1 fa:16:3e:44:98:20 1
[heat-admin@overcloud-novacompute-1 ~]$ Mac o loʻo i totonu o le laulau faʻafeiloaʻi br-int i luga o le compute-1, ma e pei ona mafai ona vaʻaia mai le gaioiga o loʻo i luga, e mafai ona iloa i le port 2, o le uafu agai i le br-tun:
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:8a:d7:f9:ad:8c:1d
2(patch-tun): addr:46:cc:40:bd:20:da
3(qvoe7e23f1b-07): addr:12:78:2e:34:6a:c7
4(qvo3210e8ec-c0): addr:7a:5f:59:75:40:85
LOCAL(br-int): addr:e2:27:b2:ed:14:46Ia, ona tatou vaʻai lea i totonu o le br-int i luga o le compute-1 o loʻo i ai se poppy taunuuga:
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-appctl fdb/show br-int | egrep fa:16:3e:72:ad:53
3 1 fa:16:3e:72:ad:53 0
[heat-admin@overcloud-novacompute-1 ~]$ O lona uiga, o le pepa na maua o le a lele i le taulaga 3, i tua atu o loʻo i ai se masini masini masini-00000003.
O le matagofie o le faʻaogaina o Openstack mo le aʻoaʻoina i luga o atinaʻe faʻapitoa e faigofie ona tatou puʻeina fefaʻatauaiga i le va o hypervisors ma vaʻai i le mea o loʻo tupu i ai. O le mea lea o le a matou faia nei, taʻavale tcpdump i luga o le vnet port agai i le compute-0:
[root@hp-gen9 bormoglotx]# tcpdump -vvv -i vnet3
tcpdump: listening on vnet3, link-type EN10MB (Ethernet), capture size 262144 bytes
*****************omitted*******************
04:39:04.583459 IP (tos 0x0, ttl 64, id 16868, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.19.39096 > 192.168.255.26.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 64, id 8012, offset 0, flags [DF], proto ICMP (1), length 84)
10.0.1.85 > 10.0.1.88: ICMP echo request, id 5634, seq 16, length 64
04:39:04.584449 IP (tos 0x0, ttl 64, id 35181, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.26.speedtrace-disc > 192.168.255.19.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 64, id 59124, offset 0, flags [none], proto ICMP (1), length 84)
10.0.1.88 > 10.0.1.85: ICMP echo reply, id 5634, seq 16, length 64
*****************omitted*******************O le laina muamua o loʻo faʻaalia ai o Patek mai le tuatusi 10.0.1.85 e alu i le tuatusi 10.0.1.88 (ICMP traffic), ma o loʻo afifi i se VxLAN packet ma vni 22 ma o le paʻu e alu mai le host 192.168.255.19 (compute-0) e faʻafeiloaʻi 192.168.255.26. .1 (faitau-XNUMX). E mafai ona matou siaki pe o le VNI e fetaui ma le tasi o loʻo faʻamaonia i ovs.
Tatou toe fo'i i le laina lea actions=load:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[],output:2. 0x16 o le vni i le fa'asologa o numera hexadecimal. Se'i o tatou fa'aliliu le numera lea i le faiga lona 16:
16 = 6*16^0+1*16^1 = 6+16 = 22O lona uiga, vni e fetaui ma le mea moni.
O le laina lona lua o loʻo faʻaalia ai le toe foʻi mai, lelei, e leai se aoga e faʻamatalaina ai, o loʻo manino mea uma iina.
E lua masini i luga o fesoʻotaʻiga eseese (faʻasologa o fesoʻotaʻiga)
O le mataupu mulimuli mo aso nei o le taʻavale i le va o fesoʻotaʻiga i totonu o le tasi poloketi e faʻaaoga ai se telefoni feaveaʻi. O loʻo matou iloiloina se mataupu e aunoa ma se DVR (o le a matou vaʻavaʻai i ai i se isi tusiga), o lea e tupu ai le taʻavale i luga o le node network. I la matou tulaga, e le tuʻuina le node fesoʻotaʻiga i se isi vaega ma o loʻo i luga o le node pule.
Muamua, seʻi o tatou vaʻai o loʻo galue le auala:
$ ping 10.0.2.8
PING 10.0.2.8 (10.0.2.8): 56 data bytes
64 bytes from 10.0.2.8: seq=0 ttl=63 time=7.727 ms
64 bytes from 10.0.2.8: seq=1 ttl=63 time=3.832 ms
^C
--- 10.0.2.8 ping statistics ---
2 packets transmitted, 2 packets received, 0% packet loss
round-trip min/avg/max = 3.832/5.779/7.727 msTalu ai i lenei tulaga e tatau ona alu le pepa i le faitotoa ma ave iina, e tatau ona tatou sailia le tuatusi MAC o le faitotoa, lea tatou te tilotilo ai i le laulau ARP i le faʻataʻitaʻiga:
$ arp
host-10-0-1-254.openstacklocal (10.0.1.254) at fa:16:3e:c4:64:70 [ether] on eth0
host-10-0-1-1.openstacklocal (10.0.1.1) at fa:16:3e:e6:2c:5c [ether] on eth0
host-10-0-1-90.openstacklocal (10.0.1.90) at fa:16:3e:83:ad:a4 [ether] on eth0
host-10-0-1-88.openstacklocal (10.0.1.88) at fa:16:3e:72:ad:53 [ether] on eth0Se'i o tatou va'ai po'o fea e tatau ona lafo ai le fe'avea'i ma taunu'uga (10.0.1.254) fa:16:3e:c4:64:70:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-int | egrep fa:16:3e:c4:64:70
2 1 fa:16:3e:c4:64:70 0
[heat-admin@overcloud-novacompute-0 ~]$ Se'i o tatou va'ai i le mea e ta'ita'ia ai le taulaga 2:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:7e:7f:28:1f:bd:54
2(patch-tun): addr:0a:bd:07:69:58:d9
3(qvo95d96a75-a0): addr:ea:50:9a:3d:69:58
6(qvo5bd37136-47): addr:9a:d1:03:50:3d:96
LOCAL(br-int): addr:1a:0f:53:97:b1:49
[heat-admin@overcloud-novacompute-0 ~]$ O mea uma lava e fetaui, e alu le taʻavale i br-tun. Se'i o tatou va'ai po'o fea vxlan tunnel o le a afifi ai:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl dump-flows br-tun | grep fa:16:3e:c4:64:70
cookie=0x8759a56536b67a8e, duration=3514.566s, table=20, n_packets=3368, n_bytes=317072, hard_timeout=300, idle_age=0, hard_age=0, priority=1,vlan_tci=0x0001/0x0fff,dl_dst=fa:16:3e:c4:64:70 actions=load:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[],output:3
[heat-admin@overcloud-novacompute-0 ~]$ O le taulaga lona tolu o le vxlan tunnel:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-tun | grep addr
1(patch-int): addr:a2:69:00:c5:fa:ba
2(vxlan-c0a8ff1a): addr:86:f0:ce:d0:e8:ea
3(vxlan-c0a8ff13): addr:72:aa:73:2c:2e:5b
LOCAL(br-tun): addr:a6:cb:cd:72:1c:45
[heat-admin@overcloud-controller-0 ~]$ O loʻo vaʻai i le node pule:
[heat-admin@overcloud-controller-0 ~]$ sudo sudo ovs-appctl dpif/show | grep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$ Ua o'o atu le ta'avale i le node e pulea, o lea e tatau ai ona tatou alu i ai ma va'ai pe fa'afefea ona tupu le ta'avale.
E pei ona e manatua, o le node pulea i totonu e foliga tutusa lava ma le node compute - o alalaupapa tutusa e tolu, na'o le br-ex sa i ai se uafu faaletino e mafai ai e le node ona auina atu taavale i fafo. O le fa'atupuina o fa'ata'ita'iga na suia ai le fa'atonuga i luga o nodes compute - linux bridge, iptables ma feso'ota'iga na fa'aopoopoina i nodes. O le fausiaina o fesoʻotaʻiga ma se telefoni feaveaʻi na tuʻu ai foi lona faʻailoga i le faʻatulagaina o le node pule.
O lea la, e manino lava o le tuatusi MAC faitotoa e tatau ona i totonu o le laulau faʻafeiloaʻi br-int i luga o le node pule. Sei o tatou siaki o loʻo i ai iina ma le mea o loʻo vaʻaia ai:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:c4:64:70
5 1 fa:16:3e:c4:64:70 1
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:2e:58:b6:db:d5:de
2(patch-tun): addr:06:41:90:f0:9e:56
3(tapca25a97e-64): addr:fa:16:3e:e6:2c:5c
4(tap22015e46-0b): addr:fa:16:3e:76:c2:11
5(qr-0c52b15f-8f): addr:fa:16:3e:c4:64:70
6(qr-92fa49b5-54): addr:fa:16:3e:80:13:72
LOCAL(br-int): addr:06:de:5d:ed:44:44
[heat-admin@overcloud-controller-0 ~]$ O lo'o va'aia le Mac mai le taulaga qr-0c52b15f-8f. Afai tatou te toe foʻi i le lisi o vaʻa mataʻutia i Openstack, o lenei ituaiga o taulaga e faʻaogaina e faʻafesoʻotaʻi ai masini faʻapitoa i le OVS. Ina ia sili atu le saʻo, qr o se uafu i le telefoni feaveaʻi, lea o loʻo faʻatusalia o se igoa avanoa.
Se'i o tatou va'ai po'o a igoa o lo'o i luga ole server:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns
qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe (id: 2)
qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638 (id: 1)
qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 (id: 0)
[heat-admin@overcloud-controller-0 ~]$ E tusa ma le tolu kopi. Ae a fua i igoa, e mafai ona e mateina le faamoemoega o ia igoa taitasi. O le a matou toe foʻi i faʻataʻitaʻiga ma le ID 0 ma le 1 mulimuli ane, o lea matou te fiafia i le namespace qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe ip route
10.0.1.0/24 dev qr-0c52b15f-8f proto kernel scope link src 10.0.1.254
10.0.2.0/24 dev qr-92fa49b5-54 proto kernel scope link src 10.0.2.254
[heat-admin@overcloud-controller-0 ~]$ O lenei namespace o loʻo i ai ni mea e lua i totonu na matou faia muamua. Ua fa'aopoopo uma ports virtual i le br-int. Sei o tatou siaki le tuatusi mac o le taulaga qr-0c52b15f-8f, talu ai o le feʻaveaʻi, faʻamasino i le tuatusi mac, na alu i lenei atinaʻe.
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe ifconfig qr-0c52b15f-8f
qr-0c52b15f-8f: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 10.0.1.254 netmask 255.255.255.0 broadcast 10.0.1.255
inet6 fe80::f816:3eff:fec4:6470 prefixlen 64 scopeid 0x20<link>
ether fa:16:3e:c4:64:70 txqueuelen 1000 (Ethernet)
RX packets 5356 bytes 427305 (417.2 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 5195 bytes 490603 (479.1 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
[heat-admin@overcloud-controller-0 ~]$ O lona uiga, i lenei tulaga, o mea uma e galue e tusa ai ma tulafono o auala masani. Talu ai ona o le felauaiga o loʻo faʻamoemoe mo le talimalo 10.0.2.8, e tatau ona alu ese e ala i le faʻaoga lona lua qr-92fa49b5-54 ma ui atu i le vxlan tunnel i le node compute:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe arp
Address HWtype HWaddress Flags Mask Iface
10.0.1.88 ether fa:16:3e:72:ad:53 C qr-0c52b15f-8f
10.0.1.90 ether fa:16:3e:83:ad:a4 C qr-0c52b15f-8f
10.0.2.8 ether fa:16:3e:6c:ad:9c C qr-92fa49b5-54
10.0.2.42 ether fa:16:3e:f5:0b:29 C qr-92fa49b5-54
10.0.1.85 ether fa:16:3e:44:98:20 C qr-0c52b15f-8f
[heat-admin@overcloud-controller-0 ~]$ O mea uma e fetaui, e leai se mea e ofo ai. Se'i o tatou va'ai po'o fea o lo'o va'aia ai le tuatusi poppy a le host 10.0.2.8 ile br-int:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:6c:ad:9c
2 2 fa:16:3e:6c:ad:9c 1
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:2e:58:b6:db:d5:de
2(patch-tun): addr:06:41:90:f0:9e:56
3(tapca25a97e-64): addr:fa:16:3e:e6:2c:5c
4(tap22015e46-0b): addr:fa:16:3e:76:c2:11
5(qr-0c52b15f-8f): addr:fa:16:3e:c4:64:70
6(qr-92fa49b5-54): addr:fa:16:3e:80:13:72
LOCAL(br-int): addr:06:de:5d:ed:44:44
[heat-admin@overcloud-controller-0 ~]$ E pei ona fa'amoemoeina, e alu le ta'avale i br-tun, se'i va'ai po'o fea alāvai e alu i ai le ta'avale e soso'o ai:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl dump-flows br-tun | grep fa:16:3e:6c:ad:9c
cookie=0x2ab04bf27114410e, duration=5346.829s, table=20, n_packets=5248, n_bytes=498512, hard_timeout=300, idle_age=0, hard_age=0, priority=1,vlan_tci=0x0002/0x0fff,dl_dst=fa:16:3e:6c:ad:9c actions=load:0->NXM_OF_VLAN_TCI[],load:0x63->NXM_NX_TUN_ID[],output:2
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-tun | grep addr
1(patch-int): addr:a2:69:00:c5:fa:ba
2(vxlan-c0a8ff1a): addr:86:f0:ce:d0:e8:ea
3(vxlan-c0a8ff13): addr:72:aa:73:2c:2e:5b
LOCAL(br-tun): addr:a6:cb:cd:72:1c:45
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo sudo ovs-appctl dpif/show | grep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$ E alu le ta'avale i totonu o le alavai e fa'atatau-1. Ia, ile compute-1 e faigofie mea uma - mai le br-tun o le afifi e alu i br-int ma mai iina i le masini masini masini:
[heat-admin@overcloud-controller-0 ~]$ sudo sudo ovs-appctl dpif/show | grep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:6c:ad:9c
4 2 fa:16:3e:6c:ad:9c 1
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:8a:d7:f9:ad:8c:1d
2(patch-tun): addr:46:cc:40:bd:20:da
3(qvoe7e23f1b-07): addr:12:78:2e:34:6a:c7
4(qvo3210e8ec-c0): addr:7a:5f:59:75:40:85
LOCAL(br-int): addr:e2:27:b2:ed:14:46
[heat-admin@overcloud-novacompute-1 ~]$ Sei o tatou siaki o le sa'o sa'o lea:
[heat-admin@overcloud-novacompute-1 ~]$ brctl show
bridge name bridge id STP enabled interfaces
docker0 8000.02429c001e1c no
qbr3210e8ec-c0 8000.ea27f45358be no qvb3210e8ec-c0
tap3210e8ec-c0
qbre7e23f1b-07 8000.b26ac0eded8a no qvbe7e23f1b-07
tape7e23f1b-07
[heat-admin@overcloud-novacompute-1 ~]$
[heat-admin@overcloud-novacompute-1 ~]$ sudo virsh domiflist instance-00000004
Interface Type Source Model MAC
-------------------------------------------------------
tap3210e8ec-c0 bridge qbr3210e8ec-c0 virtio fa:16:3e:6c:ad:9c
[heat-admin@overcloud-novacompute-1 ~]$
O le mea moni, na matou o'o atu i le afifi. Ou te manatu na e matauina na ui atu le taʻavale i auala eseese vxlan ma alu ese ma VNI eseese. Se'i o tatou va'ai po'o le a le ituaiga VNI ia, a mae'a ona tatou aoina lea o se lapisi i luga o le uafu fa'atonutonu o le node ma ia mautinoa o lo'o tafe tonu le ta'avale e pei ona fa'amatalaina i luga.
O lea la, o le alavai e fa'atatau-0 o lo'o i ai gaioiga nei=load:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[],output:3. Se'i o tatou fa'aliliuina le 0x16 ile faiga numera tesimale:
0x16 = 6*16^0+1*16^1 = 6+16 = 22O le alavai e fa'atatau-1 o lo'o iai VNI nei:gaioiga=avega:0->NXM_OF_VLAN_TCI[], uta:0x63->NXM_NX_TUN_ID[],output:2. Se'i o tatou fa'aliliu le 0x63 ile faiga numera tesimale:
0x63 = 3*16^0+6*16^1 = 3+96 = 99Ia, o lea se'i o tatou va'ai i le lapisi:
[root@hp-gen9 bormoglotx]# tcpdump -vvv -i vnet4
tcpdump: listening on vnet4, link-type EN10MB (Ethernet), capture size 262144 bytes
*****************omitted*******************
04:35:18.709949 IP (tos 0x0, ttl 64, id 48650, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.19.41591 > 192.168.255.15.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 64, id 49042, offset 0, flags [DF], proto ICMP (1), length 84)
10.0.1.85 > 10.0.2.8: ICMP echo request, id 5378, seq 9, length 64
04:35:18.710159 IP (tos 0x0, ttl 64, id 23360, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.15.38983 > 192.168.255.26.4789: [no cksum] VXLAN, flags [I] (0x08), vni 99
IP (tos 0x0, ttl 63, id 49042, offset 0, flags [DF], proto ICMP (1), length 84)
10.0.1.85 > 10.0.2.8: ICMP echo request, id 5378, seq 9, length 64
04:35:18.711292 IP (tos 0x0, ttl 64, id 43596, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.26.42588 > 192.168.255.15.4789: [no cksum] VXLAN, flags [I] (0x08), vni 99
IP (tos 0x0, ttl 64, id 55103, offset 0, flags [none], proto ICMP (1), length 84)
10.0.2.8 > 10.0.1.85: ICMP echo reply, id 5378, seq 9, length 64
04:35:18.711531 IP (tos 0x0, ttl 64, id 8555, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.15.38983 > 192.168.255.19.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 63, id 55103, offset 0, flags [none], proto ICMP (1), length 84)
10.0.2.8 > 10.0.1.85: ICMP echo reply, id 5378, seq 9, length 64
*****************omitted*******************O le pepa muamua o se vxlan packet mai le host 192.168.255.19 (compute-0) e faʻafeiloaʻi 192.168.255.15 (control-1) ma vni 22, i totonu o loʻo afifiina ai se pusa ICMP mai le host 10.0.1.85 e faʻafeiloaʻi 10.0.2.8. E pei ona matou fuafuaina i luga, vni e fetaui ma mea na matou vaʻaia i le gaioiga.
O le pusa lona lua o se vxlan packet mai le host 192.168.255.15 (control-1) e faʻafeiloaʻi 192.168.255.26 (compute-1) ma le vni 99, i totonu o loʻo afifiina ai se pusa ICMP mai le host 10.0.1.85 e faʻafeiloaʻi 10.0.2.8. E pei ona matou fuafuaina i luga, vni e fetaui ma mea na matou vaʻaia i le gaioiga.
O isi pusa e lua e toe foʻi mai le 10.0.2.8 ae le o le 10.0.1.85.
O lona uiga, i le faaiuga na matou maua le polokalame o le node pule:
E foliga mai o lena? Ua galo ia matou igoa e lua:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns
qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe (id: 2)
qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638 (id: 1)
qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 (id: 0)
[heat-admin@overcloud-controller-0 ~]$ A o matou talanoa e uiga i le fausaga o le ao, e lelei pe a maua e masini tuatusi otometi mai le DHCP server. O 'au'aunaga DHCP nei e lua mo a tatou feso'ota'iga e lua 10.0.1.0/24 ma le 10.0.2.0/24.
Sei o tatou siaki pe moni lenei mea. E na'o le tasi le tuatusi i lenei igoa - 10.0.1.1 - le tuatusi o le DHCP server lava ia, ma o lo'o aofia ai fo'i i le br-int:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 ifconfig
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1000 (Local Loopback)
RX packets 1 bytes 28 (28.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1 bytes 28 (28.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
tapca25a97e-64: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 10.0.1.1 netmask 255.255.255.0 broadcast 10.0.1.255
inet6 fe80::f816:3eff:fee6:2c5c prefixlen 64 scopeid 0x20<link>
ether fa:16:3e:e6:2c:5c txqueuelen 1000 (Ethernet)
RX packets 129 bytes 9372 (9.1 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 49 bytes 6154 (6.0 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0Sei o tatou vaʻai pe o faʻagasologa o loʻo i ai qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 i lo latou igoa i luga o le node pule:
[heat-admin@overcloud-controller-0 ~]$ ps -aux | egrep qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638
root 640420 0.0 0.0 4220 348 ? Ss 11:31 0:00 dumb-init --single-child -- ip netns exec qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638 /usr/sbin/dnsmasq -k --no-hosts --no-resolv --pid-file=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/pid --dhcp-hostsfile=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/host --addn-hosts=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/addn_hosts --dhcp-optsfile=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/opts --dhcp-leasefile=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/leases --dhcp-match=set:ipxe,175 --local-service --bind-dynamic --dhcp-range=set:subnet-335552dd-b35b-456b-9df0-5aac36a3ca13,10.0.2.0,static,255.255.255.0,86400s --dhcp-option-force=option:mtu,1450 --dhcp-lease-max=256 --conf-file= --domain=openstacklocal
heat-ad+ 951620 0.0 0.0 112944 980 pts/0 S+ 18:50 0:00 grep -E --color=auto qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638
[heat-admin@overcloud-controller-0 ~]$ O loʻo i ai se faʻagasologa ma faʻavae i luga o faʻamatalaga o loʻo tuʻuina atu i le galuega o loʻo i luga, e mafai, mo se faʻataʻitaʻiga, vaʻai mea o loʻo i ai nei mo le lisi:
[heat-admin@overcloud-controller-0 ~]$ cat /var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/leases
1597492111 fa:16:3e:6c:ad:9c 10.0.2.8 host-10-0-2-8 01:fa:16:3e:6c:ad:9c
1597491115 fa:16:3e:76:c2:11 10.0.2.1 host-10-0-2-1 *
[heat-admin@overcloud-controller-0 ~]$O se taunuuga, matou te maua le seti o auaunaga i luga o le node pule:
Ia, ia manatua - e na o le 4 masini, 2 fesoʻotaʻiga i totonu ma le tasi le telefoni feaveaʻi ... E leai ni a matou fesoʻotaʻiga i fafo iinei i le taimi nei, o le tele o galuega eseese, e tofu ma a latou lava fesoʻotaʻiga (faʻapipiʻi), ma ua matou maua. tape le alalaupapa tufatufa, ma i le faaiuga A uma mea uma, e na o le tasi le node pulea i le nofoa suʻega (mo le faapalepale sese e tatau ona i ai se korama e tolu nodes). E fetaui lelei i pisinisi o mea uma lava e "laititi" sili atu ona faigata, ae i lenei faʻataʻitaʻiga faigofie tatou te malamalama pe faʻafefea ona galue - pe o iai sau 3 poʻo 300 namespaces e taua tele, ae mai le vaaiga o le faʻagaioiga atoa. fausaga, e leai se mea e suia tele ... e ui lava e te le faʻapipiʻi i totonu o se SDN faʻatau. Ae o se tala e matua ese lava.
Ou te faamoemoe sa manaia. Afai ei ai ni au faʻamatalaga / faʻaopoopoga, poʻo se mea na ou pepelo ai (O aʻu o le tagata ma o loʻu manatu e faʻatatau i taimi uma) - tusi mea e manaʻomia ona faʻasaʻo / faʻaopoopo - matou te faʻasaʻo / faʻaopoopo mea uma.
I le faaiuga, ou te fia fai atu ni nai upu e uiga i le faʻatusatusaina o Openstack (vanila ma le faʻatau) ma le fofo o le ao mai le VMWare - Ua tele taimi na fesiligia ai aʻu i lenei fesili i le lua tausaga ua tuanaʻi ma, saʻo, o aʻu ua uma ona vaivai, ae o lea lava. I loʻu manatu, e matua faigata lava ona faʻatusatusa nei fofo e lua, ae e mafai lava ona tatou fai atu o loʻo i ai faʻaletonu i fofo uma e lua ma pe a filifilia se tasi fofo e te manaʻomia le fuaina o le lelei ma le le lelei.
Afai o le OpenStack o se fofo e faʻatautaia e le nuʻu, o lona uiga o le VMWare e iai le aia e fai ai naʻo le mea e manaʻo ai (faitau - o le a le mea e aoga ai) ma e talafeagai lea - aua o se kamupani faʻapisinisi e masani ona maua tupe mai ana tagata faʻatau. Ae o loʻo i ai se tasi lapoʻa ma gaʻo AE - e mafai ona e alu ese mai OpenStack, mo se faʻataʻitaʻiga mai Nokia, ma faʻatasi ai ma sina suiga faʻaalu i se fofo mai, mo se faʻataʻitaʻiga, Juniper (Contrail Cloud), ae atonu e le mafai ona e alu ese mai le VMWare. . Mo a'u, o nei vaifofo e lua e pei o lenei - Openstack (fa'atau) o se fale faigofie e tu'uina ai oe, ae o lo'o i ai lau ki ma e mafai ona e alu i so'o se taimi. O le VMWare o se pa auro, o lē e ona le ki o le fale ma o le a tele se tau.
Ou te le faʻalauiloaina le oloa muamua poʻo le lona lua - e te filifilia le mea e te manaʻomia. Ae afai e iai laʻu filifiliga faapena, o le a ou filifilia uma fofo - VMWare mo le IT cloud (maualalo uta, pulea faigofie), OpenStack mai nisi faʻatau (Nokia ma Juniper e maua ai ni fofo lelei tele) - mo le Telecom cloud. Ou te le faʻaaogaina le Openstack mo IT mama - e pei o le fanaina o manu iti i se fana, ae ou te le iloa ni faʻalavelave i le faʻaaogaina e ese mai le faʻaaogaina. Peita'i, o le fa'aogaina o le VMWare i le telefoni e pei o le tosoina o ma'a nutililii i totonu o le Ford Raptor - e matagofie mai fafo, ae e 10 malaga a le aveta'avale nai lo le tasi.
I loʻu manatu, o le mea sili ona leaga o le VMWare o lona tapunia atoatoa - o le a le tuʻuina atu e le kamupani ia te oe ni faʻamatalaga e uiga i le auala e galue ai, mo se faʻataʻitaʻiga, vSAN poʻo le a le mea o loʻo i totonu o le fatu hypervisor - e le o se mea e aoga mo ia - o lona uiga, o le ae faia. 'aua lava ne'i avea oe ma se tagata poto i le VMWare - e aunoa ma le lagolago a le au fa'atau, ua e malaia (e masani ona ou feiloa'i ma tagata tomai faapitoa VMWare o lo'o fememea'i i fesili le taua). Mo aʻu, o loʻo faʻatau e le VMWare se taʻavale e loka le pulou - ioe, atonu e iai au tagata tomai faapitoa e mafai ona suia le fusi o le taimi, ae naʻo le tagata na faʻatau atu ia te oe lenei fofo e mafai ona tatala le pulou. I le tagata lava ia, ou te le fiafia i fofo e le mafai ona ou ofi i ai. E te fai mai atonu e te le tau alu i lalo o le pulou. Ioe, e mafai lenei mea, ae o le a ou tilotilo atu ia te oe pe ae manaʻomia le faʻapipiʻiina o se galuega tele i le ao mai le 20-30 masini masini, 40-50 fesoʻotaʻiga, o le afa e manaʻo e alu i fafo, ma le afa lona lua e fesili mo SR-IOV faʻavavevave, a leai o le a e manaʻomia le tele o nai taseni o nei taavale - a leai o le a le lava le faʻatinoga.
E iai isi manatu, e na'o oe e mafai ona filifili po'o le a le mea e te filifilia ma, o le mea e sili ona taua, o oe o le a nafa ma lau filifiliga. E naʻo loʻu manatu - o se tagata na vaʻaia ma paʻi atu i le itiiti ifo ma le 4 oloa - Nokia, Juniper, Red Hat ma VMWare. O lona uiga, e i ai sa'u mea e faatusatusa i ai.
puna: www.habr.com