Cloud computing e kenella ka botebo le ho teba bophelong ba rona mme mohlomong ha ho motho a le mong ea e-s'o sebelise litšebeletso leha e le life tsa maru bonyane hang. Leha ho le joalo, hantle-ntle leru ke eng le hore na le sebetsa joang, ke batho ba fokolang ba tsebang, esita le boemong ba khopolo. 5G e se e ntse e fetoha 'nete' me meaho ea mehala ea mehala ea mehala e qala ho tloha ho tharollo ea lipalo ho ea ho litharollo tsa leru, joalo ka ha e ne e tloha ho tloha tharollong ea lisebelisoa tse felletseng ho ea ho "litšiea" tse fumanehang.
Kajeno re tla bua ka lefats'e la ka hare la lisebelisoa tsa maru, haholo-holo re tla sheba lintho tsa motheo tsa karolo ea marang-rang.
Leru ke eng? Mokhoa o ts'oanang oa virtualization - pono ea profil?
Ho feta potso e utloahalang. Che - sena ha se virtualization, leha e ne e ke ke ea etsoa ntle le eona. Ha re shebeng litlhaloso tse peli:
Cloud computing (eo hamorao e tla bitsoa Cloud) ke mohlala oa ho fana ka phihlello e bonolo ho basebelisi ho lisebelisoa tsa khomphutha tse ajoang tse tlamehang ho romelloa le ho qalisoa ha ho hlokahala ka nako e tlase ka ho fetesisa le litšenyehelo tse fokolang ho mofani oa litšebeletso.
Virtualization - bona ke bokhoni ba ho arola ntho e le 'ngoe ea' mele (mohlala, seva) ho tse 'maloa tse fumanehang, ka hona, ho eketsa ts'ebeliso ea lisebelisoa (mohlala, u ne u e-na le li-server tse 3 tse laetsoeng ho liperesente tse 25-30, kamora ts'ebeliso ea nnete, u fumana seva e le 'ngoe e laetsoeng. ka karolo ea 1-80 lekholong). Ka tlhaho, virtualization e ja tse ling tsa lisebelisoa - o hloka ho fepa hypervisor, leha ho le joalo, joalokaha tloaelo e bontšitse, papali e tšoanela kerese. Mohlala o motle oa ho tsebahatsa hantle ke VMWare, e lokisang mechini e sebetsang hantle, kapa mohlala KVM, eo ke e ratang, empa ena ke taba ea tatso.
Re sebelisa virtualization ntle le ho elelloa, esita le li-routers tsa tšepe li se li ntse li sebelisa virtualization - ka mohlala, phetolelong ea morao-rao ea JunOS, tsamaiso ea ts'ebetso e kenngoa e le mochine oa sebele holim'a phepelo ea nako ea sebele ea Linux (Wind River 9). Empa virtualization ha se leru, empa leru le ke ke la ba teng ntle le virtualization.
Virtualization ke e 'ngoe ea meaho eo leru le hahiloeng holim'a eona.
Ho etsa leru ka ho bokella li-hypervisors tse 'maloa sebakeng se le seng sa L2, ho kenyelletsa libuka tse' maloa tsa ho bapala tsa yaml bakeng sa ho ingolisa li-vlan ka mofuta o mong o utloahalang le ho kopanya ntho e kang ea 'mino oa liletsa ho eona kaofela bakeng sa ho iketsetsa mechine e ke keng ea sebetsa. E tla ba e nepahetseng haholoanyane, empa sephetho sa Frankenstein ha se leru leo re le hlokang, le hoja e ka ba toro ea ho qetela ho ba bang. Ho feta moo, haeba u nka Openstack e tšoanang, ha e le hantle e ntse e le Frankenstein, empa hantle, ha re bue ka seo hajoale.
Empa kea utloisisa hore ho latela tlhaloso e fanoeng ka holimo ha ho hlake ka ho feletseng hore na ha e le hantle ho ka thoeng ke leru.
Ka hona, tokomane e tsoang ho NIST (Setsi sa Naha sa Maemo le Theknoloji) e fana ka litšobotsi tsa mantlha tsa 5 tseo setsi sa maru se lokelang ho ba le sona:
Ho fana ka litšebeletso ka kopo. Mosebelisi o tlameha ho fuoa monyetla oa ho fumana lisebelisoa tsa khomphutha tseo a li abetsoeng (joalo ka marang-rang, li-disks tse fumanehang, memori, li-processor cores, joalo-joalo), mme lisebelisoa tsena li tlameha ho fanoa ka boiketsetso - ke hore, ntle le ho kenella ho tsoa ho mofani oa litšebeletso.
Ho fumaneha ha litšebeletso ka bongata. Phihlello ea lisebelisoa e tlameha ho fanoa ka mekhoa e tloaelehileng ea ho lumella tšebeliso ea li-PC tse tloaelehileng le bareki ba tšesaane le lisebelisoa tsa mohala.
Ho kopanya lisebelisoa ka matamo. Matamo a mehloli a tlameha ho fana ka lisebelisoa ho bareki ba bangata ka nako e le 'ngoe, ho etsa bonnete ba hore bareki ba arohantsoe le ho ba le tšusumetso e tšoanang le tlhōlisano bakeng sa lisebelisoa. Marang-rang a boetse a kenyelelitsoe matamong, e leng se bontšang monyetla oa ho sebelisa liaterese tse fetang. Matamo a tlameha ho khona ho eketseha ho latela tlhoko. Tšebeliso ea matamo e etsa hore ho khonehe ho fana ka boemo bo hlokahalang ba ho mamella liphoso tsa mohloli le ho tlosoa ha lisebelisoa tsa 'mele le tse ka khonehang - moamoheli oa tšebeletso o fuoa feela lisebelisoa tseo a li kōpileng (moo lisebelisoa tsena li leng teng, hore na ke tse kae li-server le li-switches - ha ho na taba ho moreki). Leha ho le joalo, re tlameha ho ela hloko taba ea hore mofani oa thepa o tlameha ho etsa bonnete ba ho boloka pepeneneng ha lisebelisoa tsena.
Ho ikamahanya ka potlako le maemo a fapaneng. Litšebeletso li tlameha ho feto-fetoha - ho fana ka lisebelisoa ka potlako, kabo ea tsona, ho eketsa kapa ho fokotsa lisebelisoa ka kopo ea moreki, 'me ka lehlakoreng la moreki ho lokela ho ba le maikutlo a hore lisebelisoa tsa maru ha li fele. Bakeng sa kutloisiso e bonolo, ka mohlala, ha u bone temoso ea hore karolo ea sebaka sa hau sa disk ho Apple iCloud e nyametse hobane hard drive ho seva e senyehile, 'me likoloi li senyeha. Ho phaella moo, ka lehlakoreng la hau, menyetla ea ts'ebeletso ena e batla e se na moeli - o hloka 2 TB - ha ho bothata, ue lefile 'me ua e amohela. Mohlala o tšoanang o ka fanoa ka Google.Drive kapa Yandex.Disk.
Monyetla oa ho lekanya tšebeletso e fanoeng. Litsamaiso tsa maru li tlameha ho laola le ho ntlafatsa lisebelisoa tse sebelisoang ka bo eona, 'me mekhoa ena e tlameha ho ba pepeneneng ho mosebelisi le mofani oa litšebeletso. Ke hore, u ka lula u lekola hore na uena le bareki ba hau le sebelisa lisebelisoa tse kae.
Ke habohlokoa ho nahana ka taba ea hore litlhoko tsena hangata li hlokoa bakeng sa leru la sechaba, kahoo bakeng sa leru la poraefete (ke hore, leru le hlahisitsoeng bakeng sa litlhoko tsa ka hare tsa k'hamphani), litlhoko tsena li ka fetoloa hanyenyane. Leha ho le joalo, li ntse li tlameha ho etsoa, ho seng joalo re ke ke ra fumana melemo eohle ea cloud computing.
Hobaneng re hloka leru?
Leha ho le joalo, theknoloji leha e le efe e ncha kapa e teng, protocol leha e le efe e ncha e bōptjoa bakeng sa ntho e itseng (hantle, ntle le RIP-ng, ho hlakile). Ha ho motho ea hlokang protocol molemong oa protocol (hantle, ntle le RIP-ng, ehlile). Hoa utloahala hore Cloud e etselitsoe ho fana ka mofuta o itseng oa ts'ebeletso ho mosebelisi / moreki. Kaofela re tseba bonyane litšebeletso tse 'maloa tsa cloud, mohlala Dropbox kapa Google.Docs,' me ke lumela hore batho ba bangata ba li sebelisa ka katleho - mohlala, sehlooho sena se ngotsoe ho sebelisoa Google.Docs cloud service. Empa lits'ebeletso tsa leru tseo re li tsebang ke karolo feela ea bokhoni ba leru - ka nepo, ke ts'ebeletso ea mofuta oa SaaS feela. Re ka fana ka tšebeletso ea leru ka litsela tse tharo: ka mokhoa oa SaaS, PaaS kapa IaaS. Tšebeletso eo u e hlokang e itšetlehile ka litakatso le bokhoni ba hau.
Ha re shebeng e 'ngoe le e 'ngoe ka tatellano:
Software e le Tšebeletso (SaaS) ke mohlala oa ho fana ka tšebeletso e feletseng ho mofani, mohlala, tšebeletso ea imeile e kang Yandex.Mail kapa Gmail. Moetsong ona oa phano ea litšebeletso, uena, joalo ka moreki, ha e le hantle ha u etse letho ntle le ho sebelisa lits'ebeletso - ke hore, ha ho hlokahale hore u nahane ka ho theha ts'ebeletso, mamello ea eona ea phoso kapa ho fokotsa mosebetsi. Taba ea mantlha ha se ho sekisetsa phasewete ea hau; mofani oa ts'ebeletso ena o tla u etsetsa tse ling. Ho latela pono ea mofani oa litšebeletso, o ikarabella ka botlalo bakeng sa ts'ebeletso eohle - ho tloha ho li-hardware tsa seva le lits'ebetso tsa ts'ebetso ea moamoheli ho isa ho database le litlhophiso tsa software.
Sethala e le Tšebeletso (PaaS) - ha o sebelisa mohlala ona, mofani oa litšebeletso o fa mofani oa mosebetsi bakeng sa tšebeletso, mohlala, a re nke seva sa Websaete. Mofani oa lits'ebeletso o file moreki seva sa nnete (ha e le hantle, sete ea lisebelisoa, joalo ka RAM/CPU/Storage/Nets, joalo-joalo), a ba a kenya OS le software e hlokahalang ho seva sena, leha ho le joalo, tlhophiso ea lintho tsena kaofela li etsoa ke moreki ka boeena le bakeng sa ts'ebetso ea ts'ebeletso eo moreki a e arabang. Mofani oa litšebeletso, joalo ka tabeng e fetileng, o ikarabella bakeng sa ts'ebetso ea lisebelisoa tsa 'mele, li-hypervisors, mochine oa sebele ka boeona, ho fumaneha ha marang-rang, joalo-joalo, empa tšebeletso ka boeona ha e sa le sebakeng sa boikarabelo.
Meaho ea Ts'ireletso joalo ka Ts'ebeletso (IaaS) - mokhoa ona o se o ntse o thahasellisa haholoanyane, ha e le hantle, mofani oa litšebeletso o fana ka mofani oa litšebeletso tsa motheo tse feletseng - ke hore, lisebelisoa tse ling (letamo) tse kang CPU Cores, RAM, Networks, joalo-joalo. moreki - seo moreki a batlang ho se etsa ka lisebelisoa tsena ka har'a letamo le abetsoeng (quota) - ha se bohlokoa haholo ho mofani oa thepa. Hore na moreki o batla ho iketsetsa vEPC ea hae kapa esita le ho theha opareitara e nyane le ho fana ka lits'ebeletso tsa puisano - ha ho potso - etsa joalo. Boemong bo joalo, mofani oa litšebeletso o ikarabella bakeng sa ho fana ka lisebelisoa, mamello ea bona ea phoso le ho fumaneha ha bona, hammoho le OS e ba lumellang ho kopanya lisebelisoa tsena le ho li etsa hore li fumanehe ho mofani ka bokhoni ba ho eketsa kapa ho fokotsa lisebelisoa ka nako leha e le efe. ka kopo ya moreki. Moreki o lokisa mechini eohle le lisebelisoa tse ling ka portal ea boitšebeletso le khomphutha, ho kenyelletsa ho theha marang-rang (ntle le marang-rang a kantle).
OpenStack ke eng?
Likhethong tsohle tse tharo, mofani oa litšebeletso o hloka OS e tla etsa hore ho thehoe lisebelisoa tsa maru. Ha e le hantle, ka SaaS, karohano e fetang e le 'ngoe e ikarabella bakeng sa stack eohle ea thekenoloji - ho na le karohano e ikarabellang bakeng sa lisebelisoa tsa motheo - ke hore, e fana ka IaaS ho karolo e' ngoe, karohano ena e fana ka SaaS ho mofani. OpenStack ke e 'ngoe ea lisebelisoa tsa ts'ebetso ea leru tse u lumellang hore u bokelle sehlopha sa li-switches, li-server le litsamaiso tsa polokelo ka har'a letamo le le leng la lisebelisoa, ho arola letamo lena le tloaelehileng ho li-subpools (bahiri) le ho fana ka lisebelisoa tsena ho bareki ka marang-rang.
OpenStack ke mokhoa oa ho sebetsa oa leru o u lumellang ho laola matamo a maholo a lisebelisoa tsa k'homphieutha, polokelo ea data le lisebelisoa tsa marang-rang, tse fanoeng le ho laoloa ka API ho sebelisa mekhoa e tloaelehileng ea ho netefatsa.
Ka mantsoe a mang, ena ke sete sa merero ea mahala ea software e etselitsoeng ho theha lits'ebeletso tsa leru (tsa sechaba le tsa poraefete) - ke hore, sete sa lisebelisoa tse u lumellang ho kopanya seva le ho fetola lisebelisoa hore e be letamo le le leng la lisebelisoa, laola. lisebelisoa tsena, ho fana ka boemo bo hlokahalang ba mamello ea liphoso.
Nakong ea ho ngola thepa ena, sebopeho sa OpenStack se shebahala tjena:
Setšoantšo se nkiloeng ho
E 'ngoe le e' ngoe ea likarolo tse kenyellelitsoeng ho OpenStack e etsa mosebetsi o itseng. Mehaho ena e ajoang e u lumella ho kenyelletsa tharollong ea likarolo tse sebetsang tseo u li hlokang. Leha ho le joalo, likarolo tse ling ke likarolo tsa metso 'me ho tlosoa ha tsona ho tla lebisa ho se sebetse ka ho feletseng kapa karolo e itseng ea tharollo ka kakaretso. Likaroloana tsena hangata li hlophisoa e le:
- Dashboard - GUI e thehiloeng marang-rang bakeng sa ho tsamaisa lits'ebeletso tsa OpenStack
- ntlha ea motheo ke ts'ebeletso ea boitsebiso e bohareng e fanang ka netefatso le ts'ebetso ea tumello bakeng sa lits'ebeletso tse ling, hammoho le ho laola lintlha tsa mosebelisi le mesebetsi ea bona.
- Neutron - ts'ebeletso ea marang-rang e fanang ka khokahano lipakeng tsa likhokahano tsa lits'ebeletso tse fapaneng tsa OpenStack (ho kenyeletsoa khokahanyo lipakeng tsa li-VM le phihlello ea bona lefatšeng le kantle)
- Cinder - e fana ka phihlello ea ho boloka li-block bakeng sa mechini e fumanehang
- Nova - Tsamaiso ea potoloho ea bophelo ea mechini ea sebele
- Khanya - polokelo ea litšoantšo tsa mochini le linepe
- Swift — e fana ka phihlello ea ntho ea polokelo
- Ceilometer - tšebeletso e fanang ka bokhoni ba ho bokella telemetry le ho lekanya lisebelisoa tse teng le tse sebelisoang
- Heat - orchestration e ipapisitseng le lithempleite tsa ho iketsetsa le ho fana ka lisebelisoa
Lethathamo le felletseng la merero eohle le sepheo sa tsona li ka bonoa .
Karolo e 'ngoe le e' ngoe ea OpenStack ke tšebeletso e etsang mosebetsi o itseng 'me e fana ka API ho laola mosebetsi oo le ho sebelisana le lits'ebeletso tse ling tsa tsamaiso ea maru ho etsa lisebelisoa tse kopanetsoeng. Mohlala, Nova e fana ka taolo ea lisebelisoa tsa komporo le API bakeng sa phihlello ea ho lokisa lisebelisoa tsena, Glance e fana ka taolo ea litšoantšo le API bakeng sa ho li laola, Cinder e fana ka polokelo ea block le API bakeng sa ho e laola, joalo-joalo. Mesebetsi eohle e hokahane ka tsela e haufi haholo.
Leha ho le joalo, ha u e sheba, lits'ebeletso tsohle tse sebetsang ho OpenStack qetellong ke mofuta o itseng oa mochini (kapa setshelo) o hokahaneng le marang-rang. Ho hlaha potso - ke hobane'ng ha re hloka lintho tse ngata hakaale?
Ha re feteleng ka algorithm bakeng sa ho theha mochini o hlakileng le ho o hokahanya le marang-rang le polokelo e tsitsitseng ho Openstack.
- Ha o etsa kopo ea ho theha mochini, ekaba kopo ka Horizon (Dashboard) kapa kopo ka CLI, ntho ea pele e etsahalang ke tumello ea kopo ea hau ho Keystone - na o ka etsa mochini, na o na le na tokelo ea ho sebelisa marang-rang ana, na sekhetho sa hau sa marang-rang, joalo-joalo.
- Keystone e netefatsa kopo ea hau mme e hlahisa lets'oao la auth molaetseng oa karabelo, e tla sebelisoa ho ea pele. Kamora ho fumana karabo ho tsoa ho Keystone, kopo e romelloa ho ea Nova (nova api).
- Nova-api e lekola bonnete ba kopo ea hau ka ho ikopanya le Keystone o sebelisa lets'oao la auth le entsoeng pele
- Keystone e etsa netefatso mme e fana ka tlhaiso-leseling mabapi le litumello le lithibelo tse ipapisitseng le tokeneng ena ea netefatso.
- Nova-api e theha ho kenoa bakeng sa VM e ncha sebakeng sa database sa nova mme e fetisa kopo ea ho theha mochini ho nova-scheduler.
- Nova-scheduler e khetha moamoheli (node ea khomphutha) eo VM e tla romelloa ho eona ho latela litekanyo tse boletsoeng, boima le libaka. Rekoto ea sena le ID ea VM li ngoletsoe nova-database.
- Ka mor'a moo, nova-scheduler contacts nova-compute ka kopo ea ho tsamaisa mohlala. Nova-compute contacts nova-conductor ho fumana tlhahisoleseling mabapi le mekhahlelo ea mochini (nova-conductor ke ntho ea nova e sebetsang e le seva sa proxy lipakeng tsa nova-database le nova-compute, e fokotsang palo ea likopo ho nova-database ho qoba mathata le database. phokotso e tsitsitseng ya mojaro).
- Nova-conductor e amohela tlhahisoleseling e kopiloeng ho tsoa ho nova-database mme e e fetisetsa ho nova-compute.
- Ka mor'a moo, nova-compute mehala ha u sheba ho fumana ID ea setšoantšo. Glace e netefatsa kopo ho Keystone mme e khutlisa lintlha tse kopiloeng.
- Nova-compute mabitso a neutron ho fumana tlhahisoleseding e mabapi le marangrang paramethara. Joalo ka ha o habanya mahlo, neutron e netefatsa kopo ho Keystone, ka mor'a moo e theha ho kena polokelong ea polokelo (setsibi sa boema-kepe, joalo-joalo), e etsa kopo ea ho theha boema-kepe, 'me e khutlisetsa tlhahisoleseling e kopiloeng ho nova-compute.
- Mabitso a Nova-compute cinder ka kopo ea ho fana ka molumo ho mochini o hlakileng. Joalo ka ha o habanya mahlo, cider e netefatsa kopo ho Keystone, e etsa kopo ea ho theha molumo, 'me e khutlisa tlhaiso-leseling e batloang.
- Nova-compute contacts libvirt ka kopo ea ho tsamaisa mochini o hlakileng o nang le liparamente tse boletsoeng.
Ha e le hantle, ts'ebetso e bonahalang e le bonolo ea ho theha mochine o bonolo oa sebele o fetoha moferefere o joalo oa mehala ea API pakeng tsa likarolo tsa sethala sa leru. Ho feta moo, joalokaha u ka bona, esita le litšebeletso tse khethiloeng pele li boetse li na le likaroloana tse nyenyane pakeng tsa ho kopana ho etsahalang. Ho theha mochine ke karolo e nyenyane feela ea seo sethaleng sa leru se u lumellang ho se etsa - ho na le tšebeletso e ikarabellang bakeng sa ho leka-lekanya sephethephethe, tšebeletso e ikarabellang bakeng sa polokelo ea li-block, tšebeletso e ikarabellang bakeng sa DNS, tšebeletso e ikarabellang bakeng sa ho fana ka lisebelisoa tsa tšepe tse se nang letho, joalo-joalo. Leru le u lumella ho tšoara mechine ea hau ea sebele joaloka mohlape oa linku (ho fapana le virtualization). Haeba ho na le ho hong ho etsahalang mochining oa hau tikolohong e fumanehang - o e khutlisa ho tsoa ho li-backups, joalo-joalo, empa lits'ebetso tsa leru li hahiloe ka tsela eo mochini o sa sebetseng o sa bapale karolo ea bohlokoa joalo - mochini o hlakileng "o shoele" - ha ho bothata. - e ncha e bōptjoa feela koloi e itšetlehile ka template 'me, joalokaha ba re, sehlopha ha sea ka sa hlokomela tahlehelo ea mohlabani. Ka tlhaho, sena se fana ka boteng ba mekhoa ea 'mino oa liletsa - u sebelisa litempele tsa Heat, u ka sebelisa ts'ebetso e rarahaneng e nang le marang-rang a mangata le mechini e fumanehang habonolo.
Kamehla ke habohlokoa ho hopola hore ha ho na lisebelisoa tsa maru ntle le marang-rang - ntho e 'ngoe le e' ngoe ka tsela e 'ngoe e sebelisana le likarolo tse ling ka marang-rang. Ho phaella moo, leru le na le marang-rang a sa tsitsitseng ka ho feletseng. Ka tlhaho, marang-rang a marang-rang a tsitsitse le ho feta - li-node tse ncha le li-switches ha li eketsoe letsatsi le leng le le leng, empa karolo e ka holimo e ka fetoha kamehla - marang-rang a macha a tla eketsoa kapa a hlakoloe, ho tla hlaha mechine e mecha le ea khale. shoa. 'Me joalo ka ha u hopola ho tsoa tlhalosong ea leru e fanoeng qalong ea sengoloa, lisebelisoa li lokela ho abeloa mosebelisi ka bo eona le ka bonyane (kapa ho betere, ntle le) ho kenella ho tsoa ho mofani oa litšebeletso. Ke hore, mofuta oa ho fana ka lisebelisoa tsa marang-rang tse teng hona joale ka mokhoa oa ho qetela ka mokhoa oa akhaonto ea hau ea botho e fumanehang ka http / https le moenjiniere oa marang-rang Vasily e le backend ha se leru, esita le haeba Vasily a na le matsoho a robeli.
Neutron, e le tšebeletso ea marang-rang, e fana ka API bakeng sa ho laola karolo ea marang-rang ea lisebelisoa tsa maru. Ts'ebeletso e na le matla le ho laola karolo ea marang-rang ea Openstack ka ho fana ka lera le khutsitseng le bitsoang Network-as-a-Service (NaaS). Ka mantsoe a mang, marang-rang ke yuniti e lekantsoeng e tšoanang, joalo ka mohlala, li-cores tsa CPU kapa palo ea RAM.
Empa pele re fetela ho meralo ea karolo ea marang-rang ea OpenStack, a re ke re hlahlobeng hore na marang-rang ana a sebetsa joang ho OpenStack le hore na ke hobane'ng ha marang-rang e le karolo ea bohlokoa le ea bohlokoa ea leru.
Kahoo re na le li-VM tse peli tsa bareki ba RED le li-VM tse peli tsa GREEN tsa bareki. Ha re nke hore mechini ena e fumaneha ho li-hypervisors tse peli ka tsela ena:
Hajoale, sena e mpa e le ts'ebetso ea li-server tse 4 mme ha ho letho le leng hape, kaha ho fihlela joale sohle seo re se entseng ke ho etsa li-server tse 4, ho li beha ho li-server tse peli tsa 'mele. 'Me ho fihlela joale ha ba so kopane le marang-rang.
Ho etsa leru, re hloka ho eketsa likarolo tse 'maloa. Taba ea pele, re ntlafatsa karolo ea marang-rang - re hloka ho hokahanya mechini ena e 4 ka lipara, mme bareki ba batla khokahano ea L2. U ka sebelisa sesebelisoa le ho lokisa kutu ka tataiso ea eona 'me u rarolle ntho e' ngoe le e 'ngoe u sebelisa borokho ba linux kapa, bakeng sa basebelisi ba tsoetseng pele, openvswitch (re tla khutlela ho sena hamorao). Empa ho ka ba le marang-rang a mangata, 'me ho sututsa L2 khafetsa ka switch ha se mohopolo o motle - ho na le mafapha a fapaneng, deske ea litšebeletso, likhoeli tsa ho emela hore kopo e phetheloe, libeke tsa ho rarolla mathata - lefatšeng la sejoale-joale. katamelo ha e sa sebetsa. 'Me hang ha k'hamphani e utloisisa sena, ho ba bonolo hore e tsoele pele. Ka hona, pakeng tsa li-hypervisors re tla khetha marang-rang a L3 ao mechine ea rona ea sebele e tla buisana ka eona, 'me ka holim'a marang-rang ana a L3 re tla haha marang-rang a holimo a L2 moo sephethephethe sa mechine ea rona e tla sebetsa. U ka sebelisa GRE, Geneve kapa VxLAN joalo ka encapsulation. Ha re shebeng taba ea morao-rao hajoale, leha e se ea bohlokoa haholo.
Re hloka ho fumana VTEP kae-kae (ke tšepa hore bohle ba tseba mantsoe a VxLAN). Kaha re na le marang-rang a L3 a tlang ka kotloloho ho tsoa ho li-server, ha ho letho le re thibelang ho beha VTEP ho li-server ka botsona, 'me OVS (OpenvSwitch) e ntle haholo ho etsa sena. Ka lebaka leo, re fumane moralo ona:
Kaha sephethephethe lipakeng tsa li-VM se tlameha ho aroloa, likou tse lebisang mecheng ea sebele li tla ba le linomoro tse fapaneng tsa vlan. Nomoro ea tag e phetha karolo feela ka har'a sesebelisoa se le seng sa sebele, kaha ha se kenngoa VxLAN re ka se tlosa habonolo, kaha re tla ba le VNI.
Hona joale re ka iketsetsa mechine ea rona le marang-rang a sebele bakeng sa bona ntle le mathata.
Leha ho le joalo, ho thoe'ng haeba moreki a e-na le mochine o mong, empa a le marang-rang a fapaneng? Re hloka rooting pakeng tsa marang-rang. Re tla sheba khetho e bonolo ha ho sebelisoa routing e bohareng - ke hore, sephethephethe se tsamaisoa ka li-node tse khethehileng tsa marang-rang (hantle, e le molao, li kopantsoe le li-node tsa taolo, kahoo re tla ba le ntho e tšoanang).
Ho bonahala eka ha ho letho le rarahaneng - re etsa sebopeho sa borokho sebakeng sa taolo, re khanna sephethephethe ho eona 'me ho tloha moo re e tsamaisa moo re e hlokang. Empa bothata ke hore moreki oa RED o batla ho sebelisa marang-rang a 10.0.0.0/24, 'me moreki oa GREEN o batla ho sebelisa marang-rang a 10.0.0.0/24. Ke hore, re qala ho kopana le libaka tsa aterese. Ho feta moo, bareki ha ba batle hore bareki ba bang ba khone ho kena marang-rang a bona a ka hare, e leng ntho e utloahalang. Ho arola marang-rang le sephethephethe sa data sa bareki, re tla abela e 'ngoe le e 'ngoe ea tsona sebaka sa mabitso. Namespace ha e le hantle ke kopi ea marang-rang a Linux, ke hore, bareki ba sebakeng sa mabitso RED ba qheletsoe ka thoko ho bareki ba sebaka sa mabitso GREEN (hantle, ho tsamaea lipakeng tsa marang-rang ana a bareki ho lumelloa ka sebaka sa mabitso sa kamehla kapa lisebelisoa tsa lipalangoang tse holimo).
Ke hore, re fumana setšoantšo se latelang:
Lithapo tsa L2 lia fetoha ho tloha ho li-node tsohle tsa komporo ho ea sebakeng sa taolo. node moo sebopeho sa L3 sa marang-rang ana se leng teng, se seng le se seng se sebakeng se ikhethileng sa mabitso bakeng sa ho itšehla thajana.
Leha ho le joalo, re ile ra lebala ntho ea bohlokoa ka ho fetisisa. Mochini o sebetsang o tlameha ho fana ka ts'ebeletso ho moreki, ke hore, o tlameha ho ba le bonyane sebopeho se le seng sa kantle seo o ka fihlellehang ho sona. Ke hore, re hloka ho ea lefatšeng le kantle. Ho na le likhetho tse fapaneng mona. Ha re etseng khetho e bonolo ka ho fetisisa. Re tla eketsa marang-rang a le mong ho mofani e mong le e mong, e tla sebetsa marang-rang a mofani oa thepa 'me e ke ke ea kopana le marang-rang a mang. Marang-rang a ka boela a kopana le ho sheba li-VRF tse fapaneng ka lehlakoreng la marang-rang a mofani. Lintlha tsa marang-rang li tla lula sebakeng sa mabitso sa moreki e mong le e mong. Leha ho le joalo, ba ntse ba tla ea lefatšeng le kantle ka sebopeho se le seng sa 'mele (kapa tlamahano, e utloahalang haholoanyane). Ho arola sephethephethe sa bareki, sephethephethe se eang kantle se tla tšoauoa ka tag ea VLAN e abetsoeng moreki.
Ka lebaka leo, re fumane setšoantšo sena:
Potso e utloahalang ke hore na ke hobane'ng ha u sa etse liheke ho li-compute node ka bobona? Hona ha se bothata bo boholo; ho feta moo, haeba u bulela router e tsamaisoang (DVR), sena se tla sebetsa. Boemong bona, re nahana ka khetho e bonolo ka ho fetisisa e nang le heke e bohareng, e sebelisoang ke kamehla ho Openstack. Bakeng sa mesebetsi e boima haholo, ba tla sebelisa router e ajoang le theknoloji ea ho potlakisa e kang SR-IOV le Passthrough, empa joalo ka ha ba re, ke pale e fapaneng ka ho feletseng. Pele, a re sebetsanang le karolo ea motheo, 'me joale re tla kena lintlheng.
Ha e le hantle, morero oa rona o se o ntse o sebetsa, empa ho na le li-nuances tse 'maloa:
- Re hloka ho sireletsa mechini ea rona ka tsela e itseng, ke hore, ho beha filthara ho sebopeho sa switjha ho ea ho moreki.
- Etsa hore ho khonehe hore mochine oa sebele o fumane aterese ea IP ka bo eona, e le hore u se ke ua tlameha ho kena ho eona ka console nako le nako ebe u ngolisa aterese.
Ha re qale ka ho sireletsa mechini. Bakeng sa sena o ka sebelisa li-iptables tsa banal, ke hobane'ng ha ho se joalo.
Ke hore, joale topology ea rona e se e rarahane le ho feta:
Ha re tsoeleng pele. Re hloka ho kenya seva ea DHCP. Sebaka se setle ka ho fetisisa sa ho fumana li-server tsa DHCP bakeng sa moreki e mong le e mong e tla ba node ea taolo e seng e boletsoe ka holimo, moo libaka tsa mabitso li leng teng:
Leha ho le joalo, ho na le bothata bo fokolang. Ho thoe'ng haeba ntho e 'ngoe le e' ngoe e qala hape 'me tlhahisoleseding eohle e mabapi le ho hira liaterese ho DHCP e nyamela. Ke ntho e utloahalang hore mechine e tla fuoa liaterese tse ncha, tse seng bonolo haholo. Ho na le mekhoa e 'meli ea ho tsoa mona - ebang sebelisa mabitso a marang-rang le ho eketsa seva sa DNS bakeng sa mofani e mong le e mong, joale aterese e ke ke ea e-ba ea bohlokoa haholo ho rona (e tšoanang le karolo ea marang-rang ho k8s) - empa ho na le bothata ba marang-rang a ka ntle, kaha liaterese li ka boela tsa fanoa ho tsona ka DHCP - o hloka ho lumellana le li-server tsa DNS sethaleng sa leru le seva sa ka ntle sa DNS, seo ka maikutlo a ka se sa fetoheng haholo, empa se ka khoneha. Kapa khetho ea bobeli ke ho sebelisa metadata - ke hore, boloka tlhahisoleseding e mabapi le aterese e fanoeng mochine e le hore seva sa DHCP se tsebe hore na ke aterese efe e lokelang ho fana ka mochine haeba mochine o se o fumane aterese. Khetho ea bobeli e bonolo ebile e bonolo haholoanyane, kaha e u lumella ho boloka boitsebiso bo eketsehileng mabapi le koloi. Joale ha re kenye metadata ea moemeli setšoantšong:
Taba e 'ngoe eo hape e lokelang ho tšohloa ke bokhoni ba ho sebelisa marang-rang a le mong ka ntle ho bareki bohle, kaha marang-rang a ka ntle, haeba a tlameha ho ba a sebetsang ho pholletsa le marang-rang kaofela, a tla ba thata - o hloka ho fana ka kamehla le ho laola kabo ea marang-rang ana. Bokhoni ba ho sebelisa marang-rang a le mong a ka ntle a lokiselitsoeng esale pele bakeng sa bareki bohle bo tla ba molemo haholo ha ho etsoa leru la sechaba. Sena se tla etsa hore ho be bonolo ho tsamaisa mechini hobane ha ho hlokahale hore re shebane le polokelo ea aterese ebe re khetha sebaka se ikhethileng sa aterese bakeng sa marang-rang a kantle a moreki ka mong. Ho phaella moo, re ka ngolisa marang-rang a kantle esale pele 'me nakong ea ho romelloa re tla hloka feela ho amahanya liaterese tsa kantle le mechine ea bareki.
Mona NAT e tla re thusa - re tla etsa hore bareki ba khone ho fihlella lefats'e le kantle ka sebaka sa mabitso sa kamehla ba sebelisa phetolelo ea NAT. Ho lokile, bona ke bothata bo bonyenyane. Sena se molemo haeba seva sa bareki se sebetsa joalo ka moreki eseng joalo ka seva - ke hore, se qala ho fapana le ho amohela likhokahano. Empa ho rona e tla ba ka tsela e fapaneng. Tabeng ena, re hloka ho etsa sebaka sa NAT e le hore ha re fumana sephethephethe, node ea taolo e utloisise hore sephethephethe sena se reretsoe mochine oa sebele oa A oa mofani oa A, ho bolelang hore re hloka ho etsa phetolelo ea NAT ho tloha atereseng e ka ntle, mohlala 100.1.1.1 .10.0.0.1, ho ea atereseng ea ka hare 100. Tabeng ena, le hoja bareki bohle ba tla sebelisa marang-rang a tšoanang, ho itšehla thajana ka hare ho bolokiloe ka ho feletseng. Ke hore, re hloka ho etsa dNAT le sNAT sebakeng sa taolo. Hore na o sebelisa marang-rang a le mong a nang le liaterese tse phaphametseng kapa marang-rang a kantle, kapa ka bobeli hang-hang, ho ipapisitse le seo u batlang ho se tlisa marung. Re ke ke ra eketsa liaterese tse phaphametseng setšoantšong, empa re tla siea marang-rang a kantle a seng a kentsoe pejana - moreki e mong le e mong o na le marang-rang a hae a kantle (setšoantšong ba bonts'itsoe joalo ka vlan 200 le XNUMX ka sebopeho sa kantle).
Ka lebaka leo, re fumane tharollo e thahasellisang le ka nako e ts'oanang e nahannoeng hantle, e nang le phetoho e itseng empa ha e e-s'o be le mekhoa ea ho mamella liphoso.
Taba ea pele, re na le node e le 'ngoe feela ea taolo - ho hloleha ha eona ho tla lebisa ho putlama ha litsamaiso tsohle. Ho lokisa bothata bona, o hloka ho etsa bonyane quorum ea li-node tse 3. Ha re kenyelle sena setšoantšong:
Ka tlhaho, li-node tsohle li lumellana 'me ha node e sebetsang e tloha, node e' ngoe e tla nka boikarabelo ba eona.
Bothata bo latelang ke li-disk tsa mochini oa sebele. Hona joale, li bolokiloe ho li-hypervisors ka botsona, 'me ha ho e-na le mathata a hypervisor, re lahleheloa ke lintlha tsohle - mme ho ba teng ha tlhaselo ho ke ke ha thusa mona haeba re lahleheloa ke disk, empa seva kaofela. Ho etsa sena, re hloka ho etsa tšebeletso e tla sebetsa e le pheletso ea mofuta o itseng oa polokelo. E tla ba mofuta ofe oa polokelo ha o bohlokoa haholo ho rona, empa e lokela ho sireletsa data ea rona ho hloleha ha disk le node, mohlomong le khabinete eohle. Ho na le likhetho tse 'maloa mona - ho na le, ho hlakile, marang-rang a SAN a nang le Fiber Channel, empa a re bue 'nete - FC e se e ntse e le relic ea nakong e fetileng - analogue ea E1 ka lipalangoang - e, kea lumela, e ntse e sebelisoa, empa feela moo ho ke keng ha khoneha ho hang ntle le eona. Ka hona, ke ne nke ke ka sebelisa marang-rang a FC ka boithaopo ka 2020, ke tseba hore ho na le mekhoa e meng e khahlisang. Leha ho e mong le e mong oa hae, ho ka ba le ba lumelang hore FC ka mefokolo eohle ea eona ke eona feela eo re e hlokang - nke ke ka pheha khang, e mong le e mong o na le maikutlo a hae. Leha ho le joalo, tharollo e thahasellisang ka ho fetisisa ka maikutlo a ka ke ho sebelisa SDS, e kang Ceph.
Ceph e u lumella ho haha tharollo ea polokelo ea data e fumanehang haholo ka bongata ba likhetho tse ka khonehang tsa ho boloka, ho qala ka likhoutu ka ho hlahloba ka bonngoe (ho tšoana le ho hlasela 5 kapa 6) ho qetella ka ho pheta-pheta ka botlalo ho li-disk tse fapaneng, ho nahanela sebaka sa disk ho li-server, le li-server tse ka har'a likhabinete, joalo-joalo.
Ho haha Ceph o hloka li-node tse ling tse 3. Ho sebelisana le polokelo ho tla boela ho etsoe ka marang-rang ho sebelisa li-block, ntho le litšebeletso tsa polokelo ea lifaele. Ha re kenyelle polokelo ho schema:
Tlhokomeliso: o ka boela oa etsa li-compute node tsa hyperconverged - ona ke mohopolo oa ho kopanya mesebetsi e mengata sebakeng se le seng - mohlala, polokelo + compute - ntle le ho fana ka li-node tse khethehileng bakeng sa polokelo ea ceph. Re tla fumana mokhoa o ts'oanang oa ho mamella liphoso - kaha SDS e tla boloka data ka boemo ba peheletso boo re bo bolelang. Leha ho le joalo, li-node tsa hyperconverged li lula li le tšitiso - kaha node ea polokelo ha e chese moea feela joalokaha e bonahala qalong (kaha ha ho na mechine ea sebele ho eona) - e sebelisa lisebelisoa tsa CPU ho sebeletsa SDS (ha e le hantle, e etsa tsohle. ho pheta-pheta le ho hlaphoheloa ka mor'a ho hlōleha ha li-node, li-disks, joalo-joalo). Ke hore, u tla lahleheloa ke matla a mang a node ea compute haeba u e kopanya le polokelo.
Lintho tsena kaofela li hloka ho laoloa ka tsela e itseng - re hloka ntho eo ka eona re ka etsang mochine, marang-rang, router ea sebele, joalo-joalo Ho etsa sena, re tla eketsa tšebeletso ho node ea taolo e tla sebetsa joaloka dashboard - the moreki o tla khona ho hokela portal ena ka http/ https mme a etse tsohle tseo a li hlokang (hantle, hoo e batlang e le).
Ka lebaka leo, hona joale re na le tsamaiso ea ho mamella liphoso. Likarolo tsohle tsa motheo ona li tlameha ho laoloa ka tsela e itseng. Ho ile ha hlalosoa pejana hore Openstack ke sehlopha sa merero, e 'ngoe le e' ngoe e fanang ka mosebetsi o itseng. Joalo ka ha re bona, ho na le likarolo tse fetang tse lekaneng tse hlokang ho hlophisoa le ho laoloa. Kajeno re tla bua ka karolo ea marang-rang.
Mehaho ea Neutron
Ho OpenStack, ke Neutron e ikarabellang bakeng sa ho hokahanya likou tsa mochine oa sebele ho marang-rang a tloaelehileng a L2, ho etsa bonnete ba tsela ea sephethephethe pakeng tsa li-VM tse fumanehang marang-rang a fapaneng a L2, hammoho le litsela tse ka ntle, tse fanang ka litšebeletso tse kang NAT, Floating IP, DHCP, joalo-joalo.
Boemong bo phahameng, ts'ebetso ea ts'ebeletso ea marang-rang (karolo ea motheo) e ka hlalosoa ka tsela e latelang.
Ha o qala VM, tšebeletso ea marang-rang:
- E theha boema-kepe bakeng sa VM e fanoeng (kapa likou) mme e tsebisa tšebeletso ea DHCP ka eona;
- Sesebelisoa se secha sa marang-rang se entsoe (ka libvirt);
- VM e hokahana le boema-kepe bo entsoeng mohatong oa 1;
Ka mokhoa o makatsang, mosebetsi oa Neutron o ipapisitse le mekhoa e tloaelehileng e tloaelehileng ho motho e mong le e mong ea kileng a ikakhela ka har'a Linux - libaka tsa mabitso, li-iptables, marokho a linux, openvswitch, contrack, jj.
E lokela ho hlakisoa hang-hang hore Neutron ha se molaoli oa SDN.
Neutron e na le likarolo tse 'maloa tse hokahaneng:
Openstack-neutron-server ke daemon e sebetsang le likopo tsa basebelisi ka API. Modemona enoa ha a amehe ho ngolisa likhokahano leha e le life tsa marang-rang, empa o fana ka tlhahisoleseding e hlokahalang bakeng sa sena ho li-plugins tsa eona, ebe o lokisa ntho e lakatsehang ea marang-rang. Baemeli ba Neutron ba li-node tsa OpenStack ba ngolisa le seva sa Neutron.
Neutron-server ha e le hantle ke sesebelisoa se ngotsoeng ka python, se nang le likarolo tse peli:
- REST tšebeletso
- Neutron plugin (konokono / tšebeletso)
Ts'ebeletso ea REST e etselitsoe ho amohela mehala ea API ho tsoa ho likarolo tse ling (mohlala, kopo ea ho fana ka tlhaiso-leseling, jj.)
Li-plugins ke likarolo / li-module tsa plug-in tse bitsoang nakong ea likopo tsa API - ke hore, tlhahiso ea ts'ebeletso e hlaha ka tsona. Li-plugins li arotsoe ka mefuta e 'meli - tšebeletso le motso. E le molao, plugin ea pere e ikarabella haholo bakeng sa ho laola sebaka sa aterese le likhokahano tsa L2 pakeng tsa VM, 'me li-plugins tsa tšebeletso li se li ntse li fana ka ts'ebetso e eketsehileng e kang VPN kapa FW.
Lethathamo la li-plugins tse fumanehang kajeno li ka bonoa ka mohlala
Ho ka ba le li-plugins tse 'maloa tsa litšebeletso, empa ho ka ba le plugin e le' ngoe feela ea pere.
Openstack-neutron-ml2 ke plugin e tloaelehileng ea Openstack. Plugin ena e na le meralo ea modular (ho fapana le ea pele ho eona) mme e lokisa ts'ebeletso ea marang-rang ka bakhanni ba hokahaneng ho eona. Re tla sheba plugin ka boeona hamorao, kaha ha e le hantle e fana ka phetoho eo OpenStack e nang le eona karolong ea marang-rang. Motso oa plugin o ka nkeloa sebaka (mohlala, Contrail Networking e etsa phetoho e joalo).
Tšebeletso ea RPC (rabbitmq-server) - tšebeletso e fanang ka tsamaiso ea mela le ho sebelisana le lits'ebeletso tse ling tsa OpenStack, hammoho le tšebelisano pakeng tsa baemeli ba litšebeletso tsa marang-rang.
Baemeli ba marang-rang - liakhente tse fumanehang sebakeng se seng le se seng, tseo litšebeletso tsa marang-rang li hlophisitsoeng ka tsona.
Ho na le mefuta e mengata ea liakhente.
Moemeli ea ka sehloohong ke L2 moemeli. Mahlahana ana a sebetsa ho e 'ngoe le e' ngoe ea li-hypervisors, ho kenyelletsa le li-node tsa taolo (ka ho toba, ho li-node tsohle tse fanang ka tšebeletso leha e le efe bakeng sa bahiri) 'me mosebetsi oa bona o ka sehloohong ke ho hokahanya mechine ea sebele ho marang-rang a tloaelehileng a L2, hape le ho hlahisa litlhokomeliso ha liketsahalo leha e le life li etsahala ( mohlala tima/nomella boema-kepe).
E latelang, ha ho na moemeli ea bohlokoa haholo L3 moemeli. Ka nako e sa lekanyetsoang, moemeli enoa o sebetsa ka mokhoa o khethehileng ho node ea marang-rang (hangata node ea marang-rang e kopantsoe le node ea taolo) 'me e fana ka tsela pakeng tsa marang-rang a hirileng (ka bobeli pakeng tsa marang-rang a eona le marang-rang a bahiri ba bang,' me e fumaneha ho tsoa linaheng tse ling, ho fana ka sebaka sa marang-rang. NAT, hammoho le tšebeletso ea DHCP). Leha ho le joalo, ha u sebelisa DVR (router e ajoang), tlhokahalo ea plugin ea L3 e boetse e hlaha ho li-compute node.
Moemeli oa L3 o sebelisa libaka tsa mabitso tsa Linux ho fa mohiri e mong le e mong sete ea marang-rang a hae a ikhethileng le ts'ebetso ea li-routers tse tsamaisang sephethephethe le ho fana ka lits'ebeletso tsa heke bakeng sa marang-rang a Layer 2.
polokelongtshedimosetso - database ea li-identifiers tsa marang-rang, li-subnet, likou, matamo, joalo-joalo.
Ebile, Neutron e amohela likopo tsa API ho tsoa ho thehoeng ha mekhatlo efe kapa efe ea marang-rang, e netefatsa kopo, 'me ka RPC (haeba e fihlella plugin kapa moemeli) kapa REST API (haeba e buisana ka SDN) e fetisetsa ho baemeli (ka li-plugins) litaelo tse hlokahalang ho hlophisa tšebeletso e kopiloeng .
Joale a re reteleheleng tekong ea tlhahlobo (kamoo e sebelisoang kateng le hore na ke eng e kenyelelitsoeng ho eona, re tla bona hamorao karolong e sebetsang) 'me re bone moo karolo ka' ngoe e leng teng:
(overcloud) [stack@undercloud ~]$ openstack network agent list
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| ID | Agent Type | Host | Availability Zone | Alive | State | Binary |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| 10495de9-ba4b-41fe-b30a-b90ec3f8728b | Open vSwitch agent | overcloud-novacompute-1.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| 1515ad4a-5972-46c3-af5f-e5446dff7ac7 | L3 agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-l3-agent |
| 322e62ca-1e5a-479e-9a96-4f26d09abdd7 | DHCP agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-dhcp-agent |
| 9c1de2f9-bac5-400e-998d-4360f04fc533 | Open vSwitch agent | overcloud-novacompute-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| d99c5657-851e-4d3c-bef6-f1e3bb1acfb0 | Open vSwitch agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| ff85fae6-5543-45fb-a301-19c57b62d836 | Metadata agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-metadata-agent |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
(overcloud) [stack@undercloud ~]$
Haele hantle, ke sebopeho sohle sa Neutron. Joale ho bohlokoa ho qeta nako e itseng ho ML2 plugin.
Modular Layer 2
Joalokaha ho boletsoe ka holimo, plugin ke plugin e tloaelehileng ea OpenStack mme e na le meralo ea modular.
Moqapi oa plugin ea ML2 o ne a e-na le sebopeho sa monolithic, se neng se sa lumelle, ka mohlala, ho sebelisa motsoako oa theknoloji e 'maloa ho kenyeng e le' ngoe. Ka mohlala, u ne u ke ke ua sebelisa openvswitch le linuxbridge ka nako e le 'ngoe - ebang ke ea pele kapa ea bobeli. Ka lebaka lena, ho entsoe plugin ea ML2 e nang le meaho ea eona.
ML2 e na le likarolo tse peli - mefuta e 'meli ea bakhanni: Bakhanni ba mefuta le Mechanism driver.
Mefuta ea bakhanni etsa qeto ea mahlale a tla sebelisoa ho hlophisa likhokahano tsa marang-rang, mohlala VxLAN, VLAN, GRE. Ka nako e ts'oanang, mokhanni o lumella ho sebelisa mekhoa e fapaneng ea theknoloji. Theknoloji e tloaelehileng ke VxLAN encapsulation bakeng sa marang-rang a holimo le marang-rang a ka ntle a vlan.
Li-driver tsa mefuta li kenyelletsa mefuta e latelang ea marang-rang:
Flat - marang-rang ntle le ho tšoaea
Lisebelisoa tsa VLAN - marang-rang a tšoailoeng
Local - mofuta o ikhethileng oa marang-rang bakeng sa lits'ebetso tse kopaneng (lits'ebetso tse joalo lia hlokahala bakeng sa bahlahisi kapa bakeng sa koetliso)
GRE - koahela marang-rang u sebelisa lithanele tsa GRE
VxLAN - koahela marang-rang u sebelisa lithanele tsa VxLAN
Bakhanni ba mekhoa hlalosa lisebelisoa tse netefatsang tlhophiso ea mahlale a boletsoeng ho mokhanni oa mofuta - mohlala, openvswitch, sr-iov, opendaylight, OVN, joalo-joalo.
Ho latela ts'ebetsong ea mokhanni enoa, ho tla sebelisoa mahlahana a laoloang ke Neutron, kapa likhokahano ho molaoli oa kantle oa SDN li tla sebelisoa, tse hlokomelang litaba tsohle tse amanang le ho hlophisa marang-rang a L2, routing, joalo-joalo.
Mohlala: ha re sebelisa ML2 mmoho le OVS, joale ho kentsoe moemeli oa L2 sebakeng se seng le se seng sa khomphutha se tsamaisang OVS. Leha ho le joalo, haeba re sebelisa, ka mohlala, OVN kapa OpenDayLight, joale taolo ea OVS e tla tlas'a matla a bona - Neutron, ka plugin ea motso, e fana ka litaelo ho molaoli, 'me e se e ntse e etsa seo e se boleletsoeng.
Ha re bueng ka Open vSwitch
Hajoale, e 'ngoe ea likarolo tsa bohlokoa tsa OpenStack ke Open vSwitch.
Ha o kenya OpenStack ntle le morekisi ea eketsehileng oa SDN joalo ka Juniper Contrail kapa Nokia Nuage, OVS ke karolo e ka sehloohong ea marang-rang ea marang-rang a marang-rang, 'me, hammoho le li-iptables, contrack, namespaces, e u lumella ho hlophisa marang-rang a mangata a mangata a holimo. Ka tlhaho, karolo ena e ka nkeloa sebaka, ka mohlala, ha u sebelisa tharollo ea SDN ea motho oa boraro (morekisi).
OVS ke sesebelisoa sa software se bulehileng se etselitsoeng ho sebelisoa libakeng tse fumanehang joalo ka sephethephethe sa sephethephethe.
Hajoale, OVS e na le ts'ebetso e ntle haholo, e kenyelletsang mahlale a kang QoS, LACP, VLAN, VxLAN, GENEVE, OpenFlow, DPDK, joalo-joalo.
Tlhokomeliso: OVS ha e ea qaloa e le sesebelisoa se bonolo bakeng sa lits'ebetso tsa mehala ea mehala e kenelletseng haholo 'me e ne e etselitsoe mesebetsi ea IT e sa hlokeng boholo ba marang-rang joalo ka seva ea WEB kapa seva ea mangolo. Leha ho le joalo, OVS e ntse e ntlafatsoa ka ho eketsehileng 'me ts'ebetsong ea morao-rao ea OVS e ntlafalitse haholo ts'ebetso ea eona le bokhoni ba eona, e leng se lumellang hore e sebelisoe ke basebetsi ba telecom ba nang le mesebetsi e boima haholo, mohlala, ho na le ts'ebetsong ea OVS ka tšehetso ea ho potlakisa DPDK.
Ho na le likarolo tse tharo tsa bohlokoa tsa OVS tseo u hlokang ho li ela hloko:
- Module oa kernel - karolo e fumanehang sebakeng sa kernel e sebetsanang le sephethephethe ho latela melao e amoheloang ho tsoa karolong ea taolo;
- vSwitch daemon (ovs-vswitchd) ke ts'ebetso e qaliloeng sebakeng sa mosebelisi e ikarabellang bakeng sa ho hlophisa module ea kernel - ke hore, e emela ka kotloloho mohopolo oa ts'ebetso ea switch.
- Seva ea database - database ea lehae e fumanehang ho moamoheli e mong le e mong ea tsamaisang OVS, eo tlhophiso e bolokiloeng ho eona. Balaoli ba SDN ba ka buisana ka mojule ona ba sebelisa protocol ea OVSDB.
Sena sohle se tsamaisana le lisebelisoa tsa tlhahlobo le taolo, joalo ka ovs-vsctl, ovs-appctl, ovs-ofctl, jj.
Hajoale, Openstack e sebelisoa haholo ke basebelisi ba mehala ea thelefono ho fetisetsa mesebetsi ea marang-rang ho eona, joalo ka EPC, SBC, HLR, joalo-joalo. Mesebetsi e meng e ka phela ntle le mathata le OVS joalo ka ha e le joalo, empa mohlala, EPC e sebetsana le sephethephethe sa ba ngolisitseng - ebe e feta. palo e kholo ea sephethephethe (hona joale palo ea sephethephethe e fihla ho li-gigabits tse makholo a 'maloa motsotsoana). Ka tlhaho, ho khanna sephethephethe se joalo sebakeng sa kernel (kaha motho ea fetisang litaba a le teng ka ho sa feleng) ha se mohopolo o motle ka ho fetisisa. Ka hona, OVS e atisa ho sebelisoa ka ho feletseng sebakeng sa basebelisi ho sebelisa theknoloji ea ho potlakisa ea DPDK ho fetisetsa sephethephethe ho tloha NIC ho ea sebakeng sa mosebedisi ho feta kernel.
Tlhokomeliso: bakeng sa leru le sebelisoang bakeng sa lits'ebetso tsa telecom, hoa khoneha ho ntša sephethephethe ho tloha node ea compute ho feta OVS ka ho toba ho ea ho lisebelisoa tsa ho fetola. Mekhoa ea SR-IOV le Passthrough e sebelisetsoa morero ona.
See se sebetsa joang sebopehong sa 'nete?
Joale, ha re feteleng pele ho karolo e sebetsang 'me re bone hore na e sebetsa joang ts'ebetsong.
Taba ea pele, a re ke re sebeliseng kopo e bonolo ea Openstack. Kaha ha ke na li-server tse teng bakeng sa liteko, re tla bokella mohlala ho seva se le seng sa 'mele ho tsoa mecheng ea sebele. E, ka tlhaho, tharollo e joalo ha e loketse merero ea khoebo, empa ho bona mohlala oa kamoo marang-rang a sebetsang kateng Openstack, ho kenya joalo ho lekane bakeng sa mahlo. Ho feta moo, ts'ebetso e joalo e thahasellisa le ho feta bakeng sa merero ea koetliso - kaha o ka tšoara sephethephethe, joalo-joalo.
Kaha re hloka feela ho bona karolo ea motheo, re ke ke ra sebelisa marang-rang a 'maloa empa re phahamisa ntho e' ngoe le e 'ngoe re sebelisa marang-rang a mabeli feela,' me marang-rang a bobeli ka mokhoa ona o tla sebelisoa feela bakeng sa ho fumana li-undercloud le seva sa DNS. Re ke ke ra ama marang-rang a kantle hajoale - ena ke sehlooho sa sengoloa se seholo se arohaneng.
Kahoo, a re qaleng ka tatellano. Pele, khopolo e nyenyane. Re tla kenya Openstack re sebelisa TripleO (Openstack ho Openstack). Taba ea mantlha ea TripleO ke hore re kenya Openstack kaofela-in-one (ke hore, sebakeng se le seng), se bitsoang undercloud, ebe re sebelisa bokhoni ba Openstack e kentsoeng ho kenya Openstack e reretsoeng ts'ebetso, e bitsoang overcloud. Undercloud e tla sebelisa bokhoni ba eona ba tlhaho ba ho laola lisebelisoa tsa 'mele (tšepe e se nang letho) - morero oa Ironic - ho fana ka li-hypervisors tse tla phetha mesebetsi ea compute, control, node tsa polokelo. Ka mantsoe a mang, ha re sebelise lisebelisoa tsa mokha oa boraro ho tsamaisa Openstack - re tsamaisa Openstack re sebelisa Openstack. E tla hlaka haholoanyane ha ts'ebetso e ntse e tsoela pele, kahoo re ke ke ra emisa moo ebe re tsoela pele.
Tlhokomeliso: Sehloohong sena, molemong oa ho nolofatsa, ha kea sebelisa ho itšehla thajana ha marang-rang bakeng sa marang-rang a ka hare a Openstack, empa ntho e 'ngoe le e' ngoe e sebelisoa ho sebelisa marang-rang a le mong feela. Leha ho le joalo, ho ba teng kapa ho se be teng ha ho itšehla thajana ha marang-rang ha ho ame ts'ebetso ea motheo ea tharollo - ntho e 'ngoe le e' ngoe e tla sebetsa ka tsela e ts'oanang le ha u sebelisa ho itšehla thajana, empa sephethephethe se tla phalla marang-rang a tšoanang. Bakeng sa ho kenya khoebo, ka tlhaho hoa hlokahala ho sebelisa ho itšehla thajana ho sebelisa li-vlan le li-interfaces tse fapaneng. Ka mohlala, sephethephethe sa tsamaiso ea polokelo ea ceph le sephethephethe sa data ka boeona (ho fihlella mochine ho li-disks, joalo-joalo) ha u arohane sebelisa li-subnet tse fapaneng (Storage management le Storage) 'me sena se u nolofalletsa ho etsa hore tharollo e be le mamello haholoanyane ka ho arola sephethephethe sena, mohlala. , ho pholletsa le likou tse fapaneng, kapa ho sebelisa litlaleho tse fapaneng tsa QoS bakeng sa sephethephethe se fapaneng e le hore sephethephethe sa data se se ke sa pepesa sephethephethe sa matšoao. Tabeng ea rona, ba tla ea marang-rang a tšoanang 'me ha e le hantle sena ha se re behe moeli ka tsela leha e le efe.
Tlhokomeliso: Kaha re tla tsamaisa mechini e fumanehang sebakeng se fumanehang ka har'a mechini ea sebele, re lokela ho qala ka ho etsa hore ho be bonolo ho etsa sehlaha.
U ka sheba hore na virtualization e fumanehang e nolofalitsoe kapa che:
[root@hp-gen9 bormoglotx]# cat /sys/module/kvm_intel/parameters/nested N [root@hp-gen9 bormoglotx]#Haeba u bona tlhaku N, joale re fana ka ts'ehetso bakeng sa ts'ebeliso ea sehlaha ho latela tataiso efe kapa efe eo u e fumanang marang-rang, mohlala. .
Re hloka ho kopanya potoloho e latelang ho tsoa mecheng ea sebele:
Tabeng ea ka, ho hokahanya mechine ea sebele eo e leng karolo ea ho kenngoa ha nako e tlang ('me ke fumane 7 ea eona, empa u ka khona ho feta ka 4 haeba u se na lisebelisoa tse ngata), ke sebelisitse OpenvSwitch. Ke thehile borokho bo le bong ba ovs mme ka hokela metjhini e fumanehang ho eona ka li-port-group. Ho etsa sena, ke thehile faele ea xml ka tsela ena:
[root@hp-gen9 ~]# virsh net-dumpxml ovs-network-1
<network>
<name>ovs-network-1</name>
<uuid>7a2e7de7-fc16-4e00-b1ed-4d190133af67</uuid>
<forward mode='bridge'/>
<bridge name='ovs-br1'/>
<virtualport type='openvswitch'/>
<portgroup name='trunk-1'>
<vlan trunk='yes'>
<tag id='100'/>
<tag id='101'/>
<tag id='102'/>
</vlan>
</portgroup>
<portgroup name='access-100'>
<vlan>
<tag id='100'/>
</vlan>
</portgroup>
<portgroup name='access-101'>
<vlan>
<tag id='101'/>
</vlan>
</portgroup>
</network>Lihlopha tse tharo tsa boema-kepe li phatlalatsoa mona - phihlello e 'meli le kutu e le' ngoe (ea morao-rao e ne e hlokahala bakeng sa seva sa DNS, empa u ka e etsa ntle le eona, kapa u e kenye mochining oa moamoheli - ho sa tsotelehe hore na ke efe e loketseng ho uena). E latelang, re sebelisa template ena, re phatlalatsa ea rona ka virsh net-define:
virsh net-define ovs-network-1.xml
virsh net-start ovs-network-1
virsh net-autostart ovs-network-1 Joale re hlophisa litlhophiso tsa boema-kepe ba hypervisor:
[root@hp-gen9 ~]# cat /etc/sysconfig/network-scripts/ifcfg-ens1f0
TYPE=Ethernet
NAME=ens1f0
DEVICE=ens1f0
TYPE=OVSPort
DEVICETYPE=ovs
OVS_BRIDGE=ovs-br1
ONBOOT=yes
OVS_OPTIONS="trunk=100,101,102"
[root@hp-gen9 ~]
[root@hp-gen9 ~]# cat /etc/sysconfig/network-scripts/ifcfg-ovs-br1
DEVICE=ovs-br1
DEVICETYPE=ovs
TYPE=OVSBridge
BOOTPROTO=static
ONBOOT=yes
IPADDR=192.168.255.200
PREFIX=24
[root@hp-gen9 ~]# Tlhokomeliso: boemong bona, aterese ho port ovs-br1 e ke ke ea fumaneha hobane ha e na tag ea vlan. Ho lokisa sena, o hloka ho fana ka taelo ea sudo ovs-vsctl set port ovs-br1 tag=100. Leha ho le joalo, ka mor'a ho tsosolosa, letšoao lena le tla nyamela (haeba ho na le motho ea tsebang ho etsa hore e lule e le teng, ke tla leboha haholo). Empa sena ha se bohlokoa hakaalo, hobane re tla hloka feela aterese ena nakong ea ho kenya 'me re ke ke ra e hloka ha Openstack e sebelisoa ka botlalo.
Ka mor'a moo, re theha mochine oa undercloud:
virt-install -n undercloud --description "undercloud" --os-type=Linux --os-variant=centos7.0 --ram=8192 --vcpus=8 --disk path=/var/lib/libvirt/images/undercloud.qcow2,bus=virtio,size=40,format=qcow2 --network network:ovs-network-1,model=virtio,portgroup=access-100 --network network:ovs-network-1,model=virtio,portgroup=access-101 --graphics none --location /var/lib/libvirt/boot/CentOS-7-x86_64-Minimal-2003.iso --extra-args console=ttyS0Nakong ea ho kenya, o beha li-parameter tsohle tse hlokahalang, tse kang lebitso la mochine, li-passwords, basebelisi, li-server tsa ntp, joalo-joalo, u ka khona ho lokisa li-port hang-hang, empa ho 'na ka boeena, ka mor'a ho kenya, ho bonolo ho kena mochine ka ho toba. console le ho lokisa lifaele tse hlokahalang. Haeba u se u ntse u e-na le setšoantšo se entsoeng, u ka se sebelisa, kapa ua etsa seo ke se entseng - khoasolla setšoantšo se fokolang sa Centos 7 'me u se sebelise ho kenya VM.
Kamora ho kenya katleho, o lokela ho ba le mochini o hlakileng oo o ka kenyang undercloud ho ona
[root@hp-gen9 bormoglotx]# virsh list
Id Name State
----------------------------------------------------
6 dns-server running
62 undercloud runningNtlha ea pele, kenya lisebelisoa tse hlokahalang bakeng sa ts'ebetso ea ho kenya:
sudo yum update -y
sudo yum install -y net-tools
sudo yum install -y wget
sudo yum install -y ipmitool
Ho kenngoa ha leru
Re theha mosebelisi oa stack, re beha phasewete, re e kenye ho sudoer mme re mo fe bokhoni ba ho phethahatsa litaelo tsa metso ka sudo ntle le ho kenya phasewete:
useradd stack
passwd stack
echo “stack ALL=(root) NOPASSWD:ALL” > /etc/sudoers.d/stack
chmod 0440 /etc/sudoers.d/stackJoale re hlakisa lebitso le felletseng la undercloud faeleng ea mabotho:
vi /etc/hosts
127.0.0.1 undercloud.openstack.rnd localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6Ka mor'a moo, re eketsa polokelo ebe re kenya software eo re e hlokang:
sudo yum install -y https://trunk.rdoproject.org/centos7/current/python2-tripleo-repos-0.0.1-0.20200409224957.8bac392.el7.noarch.rpm
sudo -E tripleo-repos -b queens current
sudo -E tripleo-repos -b queens current ceph
sudo yum install -y python-tripleoclient
sudo yum install -y ceph-ansibleTlhokomeliso: haeba u sa rera ho kenya ceph, ha ho hlokahale hore u kenye litaelo tse amanang le ceph. Ke sebelisitse tokollo ea Queens, empa u ka sebelisa tse ling tseo u li ratang.
Ka mor'a moo, kopitsa faele ea tlhophiso ea undercloud ho stack ea buka ea lapeng ea mosebedisi:
cp /usr/share/instack-undercloud/undercloud.conf.sample ~/undercloud.confHona joale re hloka ho lokisa faele ena, re e lokise ho e kenya.
U hloka ho kenyelletsa mela ena qalong ea faele:
vi undercloud.conf
[DEFAULT]
undercloud_hostname = undercloud.openstack.rnd
local_ip = 192.168.255.1/24
network_gateway = 192.168.255.1
undercloud_public_host = 192.168.255.2
undercloud_admin_host = 192.168.255.3
undercloud_nameservers = 192.168.255.253
generate_service_certificate = false
local_interface = eth0
local_mtu = 1450
network_cidr = 192.168.255.0/24
masquerade = true
masquerade_network = 192.168.255.0/24
dhcp_start = 192.168.255.11
dhcp_end = 192.168.255.50
inspection_iprange = 192.168.255.51,192.168.255.100
scheduler_max_attempts = 10Kahoo, a re ke re hlahlobeng litlhophiso:
undercloud_hostname - lebitso le felletseng la seva sa undercloud, le tlameha ho ts'oana le ho kena ho seva sa DNS
local_ip - aterese ea sebaka sa undercloud mabapi le ho fana ka marang-rang
network_gateway - aterese e tšoanang ea sebaka seo, e tla sebetsa e le monyako oa ho kena lefatšeng le ka ntle nakong ea ho kenya li-node tsa overcloud, e boetse e lumellana le ip ea lehae.
undercloud_public_host - Aterese ea API ea kantle, aterese efe kapa efe ea mahala e tsoang ho netweke ea ho fana e abeloa
undercloud_admin_host Aterese ea kahare ea API, aterese efe kapa efe ea mahala e tsoang ho netweke ea ho fana e abeloa
undercloud_nameservers - Seva ea DNS
hlahisa_service_certificate - mohala ona o bohlokoa haholo mohlaleng oa hona joale, hobane haeba u sa e behe leshano u tla fumana phoso nakong ea ho kenya, bothata bo hlalositsoe ho Red Hat bug tracker.
local_interface sehokelo ho phano ea marang-rang. Sebopeho sena se tla hlophisoa bocha nakong ea ho tsamaisoa ha leru, kahoo o hloka ho ba le li-interfaces tse peli ho undercloud - e 'ngoe bakeng sa ho e fumana, ea bobeli bakeng sa ho fana.
local_mtu — MTU. Kaha re na le laboratori ea liteko mme ke na le MTU ea 1500 ho li-switch tsa OVS, hoa hlokahala ho e beha ho 1450 e le hore lipakete tse kentsoeng VxLAN li ka feta.
network_cidr — netweke ya ho fana
ho pata — o sebelisa NAT ho fihlella marang-rang a kantle
masquerade_network - marang-rang a tla ba NTED
dhcp_start - aterese ea ho qala ea letamo la aterese eo liaterese li tla abeloa ho li-node nakong ea ho tsamaisoa ha overcloud
dhcp_qetellong - aterese ea ho qetela ea letamo la aterese ho tloha moo liaterese li tla abeloa li-node nakong ea ho tsamaisoa ha overcloud
tlhatlhobo_iprange - letamo la liaterese tse hlokahalang bakeng sa ho itlhahloba (ha ea lokela ho kopana le letamo le ka holimo)
scheduler_max_attempts - palo e kholo ea liteko tsa ho kenya overcloud (e tlameha ho ba kholo ho feta kapa e lekanang le palo ea li-node)
Kamora hore faele e hlalosoe, o ka fana ka taelo ea ho deploy undercloud:
openstack undercloud install
Ts'ebetso e nka metsotso e 10 ho isa ho e 30 ho latela tšepe ea hau. Qetellong, o lokela ho bona tlhahiso e kang ena:
vi undercloud.conf
2020-08-13 23:13:12,668 INFO:
#############################################################################
Undercloud install complete.
The file containing this installation's passwords is at
/home/stack/undercloud-passwords.conf.
There is also a stackrc file at /home/stack/stackrc.
These files are needed to interact with the OpenStack services, and should be
secured.
#############################################################################Tlhahiso ena e re u kentse ka katleho undercloud 'me joale u ka hlahloba boemo ba undercloud' me u tsoele pele ho kenya overcloud.
Haeba u sheba tlhahiso ea ifconfig, u tla bona hore ho hlahile sebopeho se secha sa borokho
[stack@undercloud ~]$ ifconfig
br-ctlplane: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 192.168.255.1 netmask 255.255.255.0 broadcast 192.168.255.255
inet6 fe80::5054:ff:fe2c:89e prefixlen 64 scopeid 0x20<link>
ether 52:54:00:2c:08:9e txqueuelen 1000 (Ethernet)
RX packets 14 bytes 1095 (1.0 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 20 bytes 1292 (1.2 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0Ho romelloa ha Overcloud hona joale ho tla etsoa ka sebopeho sena.
Ho tsoa sephethong se ka tlase u ka bona hore re na le lits'ebeletso tsohle sebakeng se le seng:
(undercloud) [stack@undercloud ~]$ openstack host list
+--------------------------+-----------+----------+
| Host Name | Service | Zone |
+--------------------------+-----------+----------+
| undercloud.openstack.rnd | conductor | internal |
| undercloud.openstack.rnd | scheduler | internal |
| undercloud.openstack.rnd | compute | nova |
+--------------------------+-----------+----------+Ka tlase ke tlhophiso ea karolo ea marang-rang ea undercloud:
(undercloud) [stack@undercloud ~]$ python -m json.tool /etc/os-net-config/config.json
{
"network_config": [
{
"addresses": [
{
"ip_netmask": "192.168.255.1/24"
}
],
"members": [
{
"dns_servers": [
"192.168.255.253"
],
"mtu": 1450,
"name": "eth0",
"primary": "true",
"type": "interface"
}
],
"mtu": 1450,
"name": "br-ctlplane",
"ovs_extra": [
"br-set-external-id br-ctlplane bridge-id br-ctlplane"
],
"routes": [],
"type": "ovs_bridge"
}
]
}
(undercloud) [stack@undercloud ~]$Ho kenngoa ha overcloud
Hajoale re na le leru feela, 'me ha re na li-node tse lekaneng tseo maru a tla bokelloa ho tsona. Ka hona, pele ho tsohle, a re ke re sebeliseng mechine eo re e hlokang. Nakong ea ho romelloa, undercloud ka boeona e tla kenya OS le software e hlokahalang mochineng oa overcloud - ke hore, ha ho hlokahale hore re sebelise mochine ka ho feletseng, empa re bōpe disk (kapa li-disks) bakeng sa eona le ho lekanya mekhahlelo ea eona - ke hore. , ha e le hantle, re fumana seva e se nang letho ntle le OS e kentsoeng ho eona.
Ha re ee foldareng ka li-disk tsa mechini ea rona ea sebele 'me re thehe li-disk tsa boholo bo hlokahalang:
cd /var/lib/libvirt/images/
qemu-img create -f qcow2 -o preallocation=metadata control-1.qcow2 60G
qemu-img create -f qcow2 -o preallocation=metadata compute-1.qcow2 60G
qemu-img create -f qcow2 -o preallocation=metadata compute-2.qcow2 60G
qemu-img create -f qcow2 -o preallocation=metadata storage-1.qcow2 160G
qemu-img create -f qcow2 -o preallocation=metadata storage-2.qcow2 160GKaha re sebetsa joalo ka motso, re hloka ho fetola mong'a li-disk tsena hore re se ke ra fumana bothata ka litokelo:
[root@hp-gen9 images]# ls -lh
total 5.8G
drwxr-xr-x. 2 qemu qemu 4.0K Aug 13 16:15 backups
-rw-r--r--. 1 root root 61G Aug 14 03:07 compute-1.qcow2
-rw-r--r--. 1 root root 61G Aug 14 03:07 compute-2.qcow2
-rw-r--r--. 1 root root 61G Aug 14 03:07 control-1.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:03 dns-server.qcow2
-rw-r--r--. 1 root root 161G Aug 14 03:07 storage-1.qcow2
-rw-r--r--. 1 root root 161G Aug 14 03:07 storage-2.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:07 undercloud.qcow2
[root@hp-gen9 images]#
[root@hp-gen9 images]#
[root@hp-gen9 images]# chown qemu:qemu /var/lib/libvirt/images/*qcow2
[root@hp-gen9 images]# ls -lh
total 5.8G
drwxr-xr-x. 2 qemu qemu 4.0K Aug 13 16:15 backups
-rw-r--r--. 1 qemu qemu 61G Aug 14 03:07 compute-1.qcow2
-rw-r--r--. 1 qemu qemu 61G Aug 14 03:07 compute-2.qcow2
-rw-r--r--. 1 qemu qemu 61G Aug 14 03:07 control-1.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:03 dns-server.qcow2
-rw-r--r--. 1 qemu qemu 161G Aug 14 03:07 storage-1.qcow2
-rw-r--r--. 1 qemu qemu 161G Aug 14 03:07 storage-2.qcow2
-rw-------. 1 qemu qemu 41G Aug 14 03:08 undercloud.qcow2
[root@hp-gen9 images]# Tlhokomeliso: haeba u sa rera ho kenya ceph e le hore u ithute eona, joale litaelo ha li bōpe bonyane li-node tse 3 tse nang le bonyane li-disk tse peli, empa ka template li bontša hore ho tla sebelisoa li-disk tsa vda, vdb, joalo-joalo.
E kholo, joale re hloka ho hlalosa mechini ena kaofela:
virt-install --name control-1 --ram 32768 --vcpus 8 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/control-1.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --network network:ovs-network-1,model=virtio,portgroup=trunk-1 --dry-run --print-xml > /tmp/control-1.xml
virt-install --name storage-1 --ram 16384 --vcpus 4 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/storage-1.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/storage-1.xml
virt-install --name storage-2 --ram 16384 --vcpus 4 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/storage-2.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/storage-2.xml
virt-install --name compute-1 --ram 32768 --vcpus 12 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/compute-1.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/compute-1.xml
virt-install --name compute-2 --ram 32768 --vcpus 12 --os-variant centos7.0 --disk path=/var/lib/libvirt/images/compute-2.qcow2,device=disk,bus=virtio,format=qcow2 --noautoconsole --vnc --network network:ovs-network-1,model=virtio,portgroup=access-100 --dry-run --print-xml > /tmp/compute-2.xml Qetellong ho na le taelo -print-xml > /tmp/storage-1.xml, e hlahisang faele ea xml e nang le tlhaloso ea mochine o mong le o mong ho /tmp/ folda; haeba u sa e kenye, u ke ke ua ba teng. khona ho hlwaya metjhini ya sebele.
Joale re hloka ho hlalosa mechini ena kaofela ka virsh:
virsh define --file /tmp/control-1.xml
virsh define --file /tmp/compute-1.xml
virsh define --file /tmp/compute-2.xml
virsh define --file /tmp/storage-1.xml
virsh define --file /tmp/storage-2.xml
[root@hp-gen9 ~]# virsh list --all
Id Name State
----------------------------------------------------
6 dns-server running
64 undercloud running
- compute-1 shut off
- compute-2 shut off
- control-1 shut off
- storage-1 shut off
- storage-2 shut off
[root@hp-gen9 ~]#Hona joale nuance e nyane - tripleO e sebelisa IPMI ho laola li-server nakong ea ho kenya le ho hlahloba.
Introspection ke mokhoa oa ho hlahloba hardware e le hore u fumane mekhahlelo ea eona e hlokahalang bakeng sa ho fana ka li-node. Introspection e etsoa ka ts'ebeliso e makatsang, ts'ebeletso e etselitsoeng ho sebetsa ka li-server tsa tšepe tse se nang letho.
Empa bothata ke bona - ha li-server tsa IPMI tsa hardware li na le kou e arohaneng (kapa kou e arolelanoang, empa sena ha se bohlokoa), joale mechini ea sebele ha e na likou tse joalo. Mona ho tla thuso ea crutch e bitsoang vbmc - sesebelisoa se u lumellang ho etsisa boema-kepe ba IPMI. Nuance ena e lokela ho ela hloko haholo-holo bakeng sa ba batlang ho theha laboratori e joalo ho ESXI hypervisor - ho bua 'nete, ha ke tsebe hore na e na le analogue ea vbmc, kahoo ho bohlokoa ho ipotsa ka taba ena pele o romela ntho e' ngoe le e 'ngoe. .
Kenya vbmc:
yum install yum install python2-virtualbmcHaeba OS ea hau e sa fumane sephutheloana, joale eketsa polokelo:
yum install -y https://www.rdoproject.org/repos/rdo-release.rpmHona joale re theha lisebelisoa. Ntho e 'ngoe le e 'ngoe e mona ke banal ho isa boemong ba ho hlajoa ke lihlong. Joale hoa utloahala hore ha ho na li-server lethathamong la vbmc
[root@hp-gen9 ~]# vbmc list
[root@hp-gen9 ~]# E le hore li hlahe, li tlameha ho phatlalatsoa ka letsoho tjena:
[root@hp-gen9 ~]# vbmc add control-1 --port 7001 --username admin --password admin
[root@hp-gen9 ~]# vbmc add storage-1 --port 7002 --username admin --password admin
[root@hp-gen9 ~]# vbmc add storage-2 --port 7003 --username admin --password admin
[root@hp-gen9 ~]# vbmc add compute-1 --port 7004 --username admin --password admin
[root@hp-gen9 ~]# vbmc add compute-2 --port 7005 --username admin --password admin
[root@hp-gen9 ~]#
[root@hp-gen9 ~]# vbmc list
+-------------+--------+---------+------+
| Domain name | Status | Address | Port |
+-------------+--------+---------+------+
| compute-1 | down | :: | 7004 |
| compute-2 | down | :: | 7005 |
| control-1 | down | :: | 7001 |
| storage-1 | down | :: | 7002 |
| storage-2 | down | :: | 7003 |
+-------------+--------+---------+------+
[root@hp-gen9 ~]#Ke nahana hore syntax ea taelo e hlakile ntle le tlhaloso. Leha ho le joalo, hajoale mananeo ohle a rona a maemong a DOWN. E le hore ba fallele ho boemo ba UP, u hloka ho ba nolofalletsa:
[root@hp-gen9 ~]# vbmc start control-1
2020-08-14 03:15:57,826.826 13149 INFO VirtualBMC [-] Started vBMC instance for domain control-1
[root@hp-gen9 ~]# vbmc start storage-1
2020-08-14 03:15:58,316.316 13149 INFO VirtualBMC [-] Started vBMC instance for domain storage-1
[root@hp-gen9 ~]# vbmc start storage-2
2020-08-14 03:15:58,851.851 13149 INFO VirtualBMC [-] Started vBMC instance for domain storage-2
[root@hp-gen9 ~]# vbmc start compute-1
2020-08-14 03:15:59,307.307 13149 INFO VirtualBMC [-] Started vBMC instance for domain compute-1
[root@hp-gen9 ~]# vbmc start compute-2
2020-08-14 03:15:59,712.712 13149 INFO VirtualBMC [-] Started vBMC instance for domain compute-2
[root@hp-gen9 ~]#
[root@hp-gen9 ~]#
[root@hp-gen9 ~]# vbmc list
+-------------+---------+---------+------+
| Domain name | Status | Address | Port |
+-------------+---------+---------+------+
| compute-1 | running | :: | 7004 |
| compute-2 | running | :: | 7005 |
| control-1 | running | :: | 7001 |
| storage-1 | running | :: | 7002 |
| storage-2 | running | :: | 7003 |
+-------------+---------+---------+------+
[root@hp-gen9 ~]#'Me taba ea ho qetela - o hloka ho lokisa melao ea firewall (kapa e tima ka ho feletseng):
firewall-cmd --zone=public --add-port=7001/udp --permanent
firewall-cmd --zone=public --add-port=7002/udp --permanent
firewall-cmd --zone=public --add-port=7003/udp --permanent
firewall-cmd --zone=public --add-port=7004/udp --permanent
firewall-cmd --zone=public --add-port=7005/udp --permanent
firewall-cmd --reload
Joale ha re ee ho undercloud mme re hlahlobe hore na tsohle lia sebetsa. Aterese ea mochini o amohelang ke 192.168.255.200, ka undercloud re kentse sephutheloana se hlokahalang sa ipmitool nakong ea ho itokisetsa ho romelloa:
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power status
Chassis Power is off
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power on
Chassis Power Control: Up/On
[stack@undercloud ~]$
[root@hp-gen9 ~]# virsh list
Id Name State
----------------------------------------------------
6 dns-server running
64 undercloud running
65 control-1 runningJoalokaha u bona, re atlehile ho qala node ea taolo ka vbmc. Joale ha re e time 'me re tsoele pele:
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power off
Chassis Power Control: Down/Off
[stack@undercloud ~]$ ipmitool -I lanplus -U admin -P admin -H 192.168.255.200 -p 7001 power status
Chassis Power is off
[stack@undercloud ~]$
[root@hp-gen9 ~]# virsh list --all
Id Name State
----------------------------------------------------
6 dns-server running
64 undercloud running
- compute-1 shut off
- compute-2 shut off
- control-1 shut off
- storage-1 shut off
- storage-2 shut off
[root@hp-gen9 ~]#Mohato o latelang ke ho hlahloba li-node tseo overcloud e tla kenngoa ho tsona. Ho etsa sena, re hloka ho lokisa faele ea json e nang le tlhaloso ea li-node tsa rona. Ka kopo hlokomela hore, ho fapana le ho kenya li-server tse se nang letho, faele e bontša sebaka seo vbmc e sebetsang ho sona bakeng sa mochine o mong le o mong.
[root@hp-gen9 ~]# virsh domiflist --domain control-1
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:20:a2:2f
- network ovs-network-1 virtio 52:54:00:3f:87:9f
[root@hp-gen9 ~]# virsh domiflist --domain compute-1
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:98:e9:d6
[root@hp-gen9 ~]# virsh domiflist --domain compute-2
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:6a:ea:be
[root@hp-gen9 ~]# virsh domiflist --domain storage-1
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:79:0b:cb
[root@hp-gen9 ~]# virsh domiflist --domain storage-2
Interface Type Source Model MAC
-------------------------------------------------------
- network ovs-network-1 virtio 52:54:00:a7:fe:27Tlhokomeliso: node ea taolo e na le li-interfaces tse peli, empa tabeng ena sena ha se bohlokoa, ts'ebetsong ena e tla lekana bakeng sa rona.
Hona joale re lokisa faele ea json. Re hloka ho bonts'a aterese ea poppy ea boema-kepe eo ho tla etsoa tokisetso ka eona, liparamente tsa li-node, re li fe mabitso le ho bonts'a mokhoa oa ho fihla ipmi:
{
"nodes":[
{
"mac":[
"52:54:00:20:a2:2f"
],
"cpu":"8",
"memory":"32768",
"disk":"60",
"arch":"x86_64",
"name":"control-1",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7001"
},
{
"mac":[
"52:54:00:79:0b:cb"
],
"cpu":"4",
"memory":"16384",
"disk":"160",
"arch":"x86_64",
"name":"storage-1",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7002"
},
{
"mac":[
"52:54:00:a7:fe:27"
],
"cpu":"4",
"memory":"16384",
"disk":"160",
"arch":"x86_64",
"name":"storage-2",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7003"
},
{
"mac":[
"52:54:00:98:e9:d6"
],
"cpu":"12",
"memory":"32768",
"disk":"60",
"arch":"x86_64",
"name":"compute-1",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7004"
},
{
"mac":[
"52:54:00:6a:ea:be"
],
"cpu":"12",
"memory":"32768",
"disk":"60",
"arch":"x86_64",
"name":"compute-2",
"pm_type":"pxe_ipmitool",
"pm_user":"admin",
"pm_password":"admin",
"pm_addr":"192.168.255.200",
"pm_port":"7005"
}
]
}Hona joale re hloka ho lokisa litšoantšo bakeng sa bohlanya. Ho etsa sena, li jarolle ka wget le ho kenya:
(undercloud) [stack@undercloud ~]$ sudo wget https://images.rdoproject.org/queens/delorean/current-tripleo-rdo/overcloud-full.tar --no-check-certificate
(undercloud) [stack@undercloud ~]$ sudo wget https://images.rdoproject.org/queens/delorean/current-tripleo-rdo/ironic-python-agent.tar --no-check-certificate
(undercloud) [stack@undercloud ~]$ ls -lh
total 1.9G
-rw-r--r--. 1 stack stack 447M Aug 14 10:26 ironic-python-agent.tar
-rw-r--r--. 1 stack stack 1.5G Aug 14 10:26 overcloud-full.tar
-rw-------. 1 stack stack 916 Aug 13 23:10 stackrc
-rw-r--r--. 1 stack stack 15K Aug 13 22:50 undercloud.conf
-rw-------. 1 stack stack 2.0K Aug 13 22:50 undercloud-passwords.conf
(undercloud) [stack@undercloud ~]$ mkdir images/
(undercloud) [stack@undercloud ~]$ tar -xpvf ironic-python-agent.tar -C ~/images/
ironic-python-agent.initramfs
ironic-python-agent.kernel
(undercloud) [stack@undercloud ~]$ tar -xpvf overcloud-full.tar -C ~/images/
overcloud-full.qcow2
overcloud-full.initrd
overcloud-full.vmlinuz
(undercloud) [stack@undercloud ~]$
(undercloud) [stack@undercloud ~]$ ls -lh images/
total 1.9G
-rw-rw-r--. 1 stack stack 441M Aug 12 17:24 ironic-python-agent.initramfs
-rwxr-xr-x. 1 stack stack 6.5M Aug 12 17:24 ironic-python-agent.kernel
-rw-r--r--. 1 stack stack 53M Aug 12 17:14 overcloud-full.initrd
-rw-r--r--. 1 stack stack 1.4G Aug 12 17:18 overcloud-full.qcow2
-rwxr-xr-x. 1 stack stack 6.5M Aug 12 17:14 overcloud-full.vmlinuz
(undercloud) [stack@undercloud ~]$Kenya litšoantšo ho undercloud:
(undercloud) [stack@undercloud ~]$ openstack overcloud image upload --image-path ~/images/
Image "overcloud-full-vmlinuz" was uploaded.
+--------------------------------------+------------------------+-------------+---------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+------------------------+-------------+---------+--------+
| c2553770-3e0f-4750-b46b-138855b5c385 | overcloud-full-vmlinuz | aki | 6761064 | active |
+--------------------------------------+------------------------+-------------+---------+--------+
Image "overcloud-full-initrd" was uploaded.
+--------------------------------------+-----------------------+-------------+----------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+-----------------------+-------------+----------+--------+
| 949984e0-4932-4e71-af43-d67a38c3dc89 | overcloud-full-initrd | ari | 55183045 | active |
+--------------------------------------+-----------------------+-------------+----------+--------+
Image "overcloud-full" was uploaded.
+--------------------------------------+----------------+-------------+------------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+----------------+-------------+------------+--------+
| a2f2096d-c9d7-429a-b866-c7543c02a380 | overcloud-full | qcow2 | 1487475712 | active |
+--------------------------------------+----------------+-------------+------------+--------+
Image "bm-deploy-kernel" was uploaded.
+--------------------------------------+------------------+-------------+---------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+------------------+-------------+---------+--------+
| e413aa78-e38f-404c-bbaf-93e582a8e67f | bm-deploy-kernel | aki | 6761064 | active |
+--------------------------------------+------------------+-------------+---------+--------+
Image "bm-deploy-ramdisk" was uploaded.
+--------------------------------------+-------------------+-------------+-----------+--------+
| ID | Name | Disk Format | Size | Status |
+--------------------------------------+-------------------+-------------+-----------+--------+
| 5cf3aba4-0e50-45d3-929f-27f025dd6ce3 | bm-deploy-ramdisk | ari | 461759376 | active |
+--------------------------------------+-------------------+-------------+-----------+--------+
(undercloud) [stack@undercloud ~]$E netefatsa hore litšoantšo tsohle li kentsoe
(undercloud) [stack@undercloud ~]$ openstack image list
+--------------------------------------+------------------------+--------+
| ID | Name | Status |
+--------------------------------------+------------------------+--------+
| e413aa78-e38f-404c-bbaf-93e582a8e67f | bm-deploy-kernel | active |
| 5cf3aba4-0e50-45d3-929f-27f025dd6ce3 | bm-deploy-ramdisk | active |
| a2f2096d-c9d7-429a-b866-c7543c02a380 | overcloud-full | active |
| 949984e0-4932-4e71-af43-d67a38c3dc89 | overcloud-full-initrd | active |
| c2553770-3e0f-4750-b46b-138855b5c385 | overcloud-full-vmlinuz | active |
+--------------------------------------+------------------------+--------+
(undercloud) [stack@undercloud ~]$Ntho e 'ngoe hape - o hloka ho eketsa seva ea DNS:
(undercloud) [stack@undercloud ~]$ openstack subnet list
+--------------------------------------+-----------------+--------------------------------------+------------------+
| ID | Name | Network | Subnet |
+--------------------------------------+-----------------+--------------------------------------+------------------+
| f45dea46-4066-42aa-a3c4-6f84b8120cab | ctlplane-subnet | 6ca013dc-41c2-42d8-9d69-542afad53392 | 192.168.255.0/24 |
+--------------------------------------+-----------------+--------------------------------------+------------------+
(undercloud) [stack@undercloud ~]$ openstack subnet show f45dea46-4066-42aa-a3c4-6f84b8120cab
+-------------------+-----------------------------------------------------------+
| Field | Value |
+-------------------+-----------------------------------------------------------+
| allocation_pools | 192.168.255.11-192.168.255.50 |
| cidr | 192.168.255.0/24 |
| created_at | 2020-08-13T20:10:37Z |
| description | |
| dns_nameservers | |
| enable_dhcp | True |
| gateway_ip | 192.168.255.1 |
| host_routes | destination='169.254.169.254/32', gateway='192.168.255.1' |
| id | f45dea46-4066-42aa-a3c4-6f84b8120cab |
| ip_version | 4 |
| ipv6_address_mode | None |
| ipv6_ra_mode | None |
| name | ctlplane-subnet |
| network_id | 6ca013dc-41c2-42d8-9d69-542afad53392 |
| prefix_length | None |
| project_id | a844ccfcdb2745b198dde3e1b28c40a3 |
| revision_number | 0 |
| segment_id | None |
| service_types | |
| subnetpool_id | None |
| tags | |
| updated_at | 2020-08-13T20:10:37Z |
+-------------------+-----------------------------------------------------------+
(undercloud) [stack@undercloud ~]$
(undercloud) [stack@undercloud ~]$ neutron subnet-update f45dea46-4066-42aa-a3c4-6f84b8120cab --dns-nameserver 192.168.255.253
neutron CLI is deprecated and will be removed in the future. Use openstack CLI instead.
Updated subnet: f45dea46-4066-42aa-a3c4-6f84b8120cab
(undercloud) [stack@undercloud ~]$Joale re ka fana ka taelo ea ho itlhahloba:
(undercloud) [stack@undercloud ~]$ openstack overcloud node import --introspect --provide inspection.json
Started Mistral Workflow tripleo.baremetal.v1.register_or_update. Execution ID: d57456a3-d8ed-479c-9a90-dff7c752d0ec
Waiting for messages on queue 'tripleo' with no timeout.
5 node(s) successfully moved to the "manageable" state.
Successfully registered node UUID b4b2cf4a-b7ca-4095-af13-cc83be21c4f5
Successfully registered node UUID b89a72a3-6bb7-429a-93bc-48393d225838
Successfully registered node UUID 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e
Successfully registered node UUID bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8
Successfully registered node UUID 766ab623-464c-423d-a529-d9afb69d1167
Waiting for introspection to finish...
Started Mistral Workflow tripleo.baremetal.v1.introspect. Execution ID: 6b4d08ae-94c3-4a10-ab63-7634ec198a79
Waiting for messages on queue 'tripleo' with no timeout.
Introspection of node b89a72a3-6bb7-429a-93bc-48393d225838 completed. Status:SUCCESS. Errors:None
Introspection of node 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e completed. Status:SUCCESS. Errors:None
Introspection of node bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 completed. Status:SUCCESS. Errors:None
Introspection of node 766ab623-464c-423d-a529-d9afb69d1167 completed. Status:SUCCESS. Errors:None
Introspection of node b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 completed. Status:SUCCESS. Errors:None
Successfully introspected 5 node(s).
Started Mistral Workflow tripleo.baremetal.v1.provide. Execution ID: f5594736-edcf-4927-a8a0-2a7bf806a59a
Waiting for messages on queue 'tripleo' with no timeout.
5 node(s) successfully moved to the "available" state.
(undercloud) [stack@undercloud ~]$Joalokaha u ka bona ho tsoa, ntho e 'ngoe le e' ngoe e phethiloe ntle le liphoso. Ha re hlahlobeng hore na li-node tsohle li maemong a teng:
(undercloud) [stack@undercloud ~]$ openstack baremetal node list
+--------------------------------------+-----------+---------------+-------------+--------------------+-------------+
| UUID | Name | Instance UUID | Power State | Provisioning State | Maintenance |
+--------------------------------------+-----------+---------------+-------------+--------------------+-------------+
| b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 | control-1 | None | power off | available | False |
| b89a72a3-6bb7-429a-93bc-48393d225838 | storage-1 | None | power off | available | False |
| 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e | storage-2 | None | power off | available | False |
| bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 | compute-1 | None | power off | available | False |
| 766ab623-464c-423d-a529-d9afb69d1167 | compute-2 | None | power off | available | False |
+--------------------------------------+-----------+---------------+-------------+--------------------+-------------+
(undercloud) [stack@undercloud ~]$ Haeba li-node li le boemong bo fapaneng, hangata bo laoleha, joale ho na le ntho e sa tsamaeeng hantle 'me u lokela ho sheba logong' me u fumane hore na ke hobane'ng ha sena se etsahetse. Hopola hore boemong bona re sebelisa virtualization 'me ho ka ba le likokoana-hloko tse amanang le tšebeliso ea mechine ea sebele kapa vbmc.
E latelang, re hloka ho bonts'a hore na ke node efe e tla etsa mosebetsi ofe - ke hore, bonts'a profil eo node e tla e sebelisa:
(undercloud) [stack@undercloud ~]$ openstack overcloud profiles list
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| Node UUID | Node Name | Provision State | Current Profile | Possible Profiles |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 | control-1 | available | None | |
| b89a72a3-6bb7-429a-93bc-48393d225838 | storage-1 | available | None | |
| 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e | storage-2 | available | None | |
| bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 | compute-1 | available | None | |
| 766ab623-464c-423d-a529-d9afb69d1167 | compute-2 | available | None | |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
(undercloud) [stack@undercloud ~]$ openstack flavor list
+--------------------------------------+---------------+------+------+-----------+-------+-----------+
| ID | Name | RAM | Disk | Ephemeral | VCPUs | Is Public |
+--------------------------------------+---------------+------+------+-----------+-------+-----------+
| 168af640-7f40-42c7-91b2-989abc5c5d8f | swift-storage | 4096 | 40 | 0 | 1 | True |
| 52148d1b-492e-48b4-b5fc-772849dd1b78 | baremetal | 4096 | 40 | 0 | 1 | True |
| 56e66542-ae60-416d-863e-0cb192d01b09 | control | 4096 | 40 | 0 | 1 | True |
| af6796e1-d0c4-4bfe-898c-532be194f7ac | block-storage | 4096 | 40 | 0 | 1 | True |
| e4d50fdd-0034-446b-b72c-9da19b16c2df | compute | 4096 | 40 | 0 | 1 | True |
| fc2e3acf-7fca-4901-9eee-4a4d6ef0265d | ceph-storage | 4096 | 40 | 0 | 1 | True |
+--------------------------------------+---------------+------+------+-----------+-------+-----------+
(undercloud) [stack@undercloud ~]$Hlalosa profil bakeng sa node ka 'ngoe:
openstack baremetal node set --property capabilities='profile:control,boot_option:local' b4b2cf4a-b7ca-4095-af13-cc83be21c4f5
openstack baremetal node set --property capabilities='profile:ceph-storage,boot_option:local' b89a72a3-6bb7-429a-93bc-48393d225838
openstack baremetal node set --property capabilities='profile:ceph-storage,boot_option:local' 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e
openstack baremetal node set --property capabilities='profile:compute,boot_option:local' bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8
openstack baremetal node set --property capabilities='profile:compute,boot_option:local' 766ab623-464c-423d-a529-d9afb69d1167A re hlahlobeng hore na re entse tsohle ka nepo:
(undercloud) [stack@undercloud ~]$ openstack overcloud profiles list
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| Node UUID | Node Name | Provision State | Current Profile | Possible Profiles |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
| b4b2cf4a-b7ca-4095-af13-cc83be21c4f5 | control-1 | available | control | |
| b89a72a3-6bb7-429a-93bc-48393d225838 | storage-1 | available | ceph-storage | |
| 20a16cc0-e0ce-4d88-8f17-eb0ce7b4d69e | storage-2 | available | ceph-storage | |
| bfc1eb98-a17a-4a70-b0b6-6c0db0eac8e8 | compute-1 | available | compute | |
| 766ab623-464c-423d-a529-d9afb69d1167 | compute-2 | available | compute | |
+--------------------------------------+-----------+-----------------+-----------------+-------------------+
(undercloud) [stack@undercloud ~]$Haeba tsohle li nepahetse, re fana ka taelo ea ho tsamaisa overcloud:
openstack overcloud deploy --templates --control-scale 1 --compute-scale 2 --ceph-storage-scale 2 --control-flavor control --compute-flavor compute --ceph-storage-flavor ceph-storage --libvirt-type qemuHo kenyeletsoa ha 'nete, litempele tse ikhethileng li tla sebelisoa ka tlhaho, molemong oa rona sena se tla thatafatsa ts'ebetso, kaha phetoho e' ngoe le e 'ngoe ho template e tla tlameha ho hlalosoa. Joalokaha ho ngotsoe pejana, esita le ho kenya mochine o bonolo ho tla lekana hore re bone kamoo ho sebetsang kateng.
Tlhokomeliso: --libvirt-type qemu variable ea hlokahala tabeng ena, kaha re tla sebelisa nested virtualization. Ho seng joalo, u ke ke ua khona ho tsamaisa mechini ea sebele.
Hona joale u na le hoo e ka bang hora, kapa mohlomong ho feta (ho itšetlehile ka bokhoni ba hardware) 'me u ka tšepa feela hore ka mor'a nako ena u tla bona molaetsa o latelang:
2020-08-14 08:39:21Z [overcloud]: CREATE_COMPLETE Stack CREATE completed successfully
Stack overcloud CREATE_COMPLETE
Host 192.168.255.21 not found in /home/stack/.ssh/known_hosts
Started Mistral Workflow tripleo.deployment.v1.get_horizon_url. Execution ID: fcb996cd-6a19-482b-b755-2ca0c08069a9
Overcloud Endpoint: http://192.168.255.21:5000/
Overcloud Horizon Dashboard URL: http://192.168.255.21:80/dashboard
Overcloud rc file: /home/stack/overcloudrc
Overcloud Deployed
(undercloud) [stack@undercloud ~]$Joale u na le mofuta o felletseng oa openstack, oo u ka ithutang ho ona, ho etsa liteko, jj.
Ha re hlahlobeng hore na tsohle li sebetsa hantle. Ka har'a pokello ea libuka tsa lapeng ho na le lifaele tse peli - stackrc e le 'ngoe (bakeng sa ho laola undercloud) le ea bobeli overcloudrc (bakeng sa ho laola overcloud). Lifaele tsena li tlameha ho hlalosoa e le mohloli, kaha li na le tlhaiso-leseling e hlokahalang bakeng sa netefatso.
(undercloud) [stack@undercloud ~]$ openstack server list
+--------------------------------------+-------------------------+--------+-------------------------+----------------+--------------+
| ID | Name | Status | Networks | Image | Flavor |
+--------------------------------------+-------------------------+--------+-------------------------+----------------+--------------+
| fd7d36f4-ce87-4b9a-93b0-add2957792de | overcloud-controller-0 | ACTIVE | ctlplane=192.168.255.15 | overcloud-full | control |
| edc77778-8972-475e-a541-ff40eb944197 | overcloud-novacompute-1 | ACTIVE | ctlplane=192.168.255.26 | overcloud-full | compute |
| 5448ce01-f05f-47ca-950a-ced14892c0d4 | overcloud-cephstorage-1 | ACTIVE | ctlplane=192.168.255.34 | overcloud-full | ceph-storage |
| ce6d862f-4bdf-4ba3-b711-7217915364d7 | overcloud-novacompute-0 | ACTIVE | ctlplane=192.168.255.19 | overcloud-full | compute |
| e4507bd5-6f96-4b12-9cc0-6924709da59e | overcloud-cephstorage-0 | ACTIVE | ctlplane=192.168.255.44 | overcloud-full | ceph-storage |
+--------------------------------------+-------------------------+--------+-------------------------+----------------+--------------+
(undercloud) [stack@undercloud ~]$
(undercloud) [stack@undercloud ~]$ source overcloudrc
(overcloud) [stack@undercloud ~]$
(overcloud) [stack@undercloud ~]$ openstack project list
+----------------------------------+---------+
| ID | Name |
+----------------------------------+---------+
| 4eed7d0f06544625857d51cd77c5bd4c | admin |
| ee1c68758bde41eaa9912c81dc67dad8 | service |
+----------------------------------+---------+
(overcloud) [stack@undercloud ~]$
(overcloud) [stack@undercloud ~]$
(overcloud) [stack@undercloud ~]$ openstack network agent list
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| ID | Agent Type | Host | Availability Zone | Alive | State | Binary |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
| 10495de9-ba4b-41fe-b30a-b90ec3f8728b | Open vSwitch agent | overcloud-novacompute-1.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| 1515ad4a-5972-46c3-af5f-e5446dff7ac7 | L3 agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-l3-agent |
| 322e62ca-1e5a-479e-9a96-4f26d09abdd7 | DHCP agent | overcloud-controller-0.localdomain | nova | :-) | UP | neutron-dhcp-agent |
| 9c1de2f9-bac5-400e-998d-4360f04fc533 | Open vSwitch agent | overcloud-novacompute-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| d99c5657-851e-4d3c-bef6-f1e3bb1acfb0 | Open vSwitch agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-openvswitch-agent |
| ff85fae6-5543-45fb-a301-19c57b62d836 | Metadata agent | overcloud-controller-0.localdomain | None | :-) | UP | neutron-metadata-agent |
+--------------------------------------+--------------------+-------------------------------------+-------------------+-------+-------+---------------------------+
(overcloud) [stack@undercloud ~]$Kenyelletso ea ka e ntse e hloka ho ts'oaroa ha nyane - ho eketsa tsela ho molaoli, kaha mochini oo ke sebetsang ka ona o ho marang-rang a fapaneng. Ho etsa sena, e-ea ho laola-1 tlas'a akhaonto ea mocheso-admin 'me u ngolise tsela
(undercloud) [stack@undercloud ~]$ ssh [email protected]
Last login: Fri Aug 14 09:47:40 2020 from 192.168.255.1
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ip route add 10.169.0.0/16 via 192.168.255.254Joale, u ka ea sebakeng se haufi. Lintlha tsohle - liaterese, ho kena le password - li ka faeleng /home/stack/overcloudrc. Setšoantšo sa ho qetela se shebahala tjena:
Tseleng, ha re kenya, liaterese tsa mochine li fanoe ka DHCP 'me, joalokaha u bona, li fanoa "ka tšohanyetso". U ka hlalosa ka ho hlaka ka har'a template hore na ke aterese efe e lokelang ho hokelloa ho mochine ofe nakong ea ho romelloa, haeba u e hloka.
Sephethephethe se phalla joang lipakeng tsa mechini e sebetsang?
Sehloohong sena re tla sheba likhetho tse tharo bakeng sa sephethephethe se fetang
- Mechini e 'meli ho hypervisor e le' ngoe ho netweke e le 'ngoe ea L2
- Mechini e 'meli ho li-hypervisors tse fapaneng marang-rang a tšoanang a L2
- Mechini e 'meli marang-rang a fapaneng (root-network rooting)
Linyeoe tse nang le phihlello ea lefats'e le kantle ka marang-rang a kantle, ho sebelisa liaterese tse phaphametseng, hammoho le ho tsamaisa litsamaiso, re tla nahana ka nako e tlang, hajoale re tla tsepamisa maikutlo ho sephethephethe sa kahare.
Ho hlahloba, ha re hlophiseng setšoantšo se latelang:
Re thehile mechini e 4 ea sebele - 3 ho netweke e le 'ngoe ea L2 - net-1, le e 1 hape ho net-2 netweke.
(overcloud) [stack@undercloud ~]$ nova list --tenant 5e18ce8ec9594e00b155485f19895e6c
+--------------------------------------+------+----------------------------------+--------+------------+-------------+-----------------+
| ID | Name | Tenant ID | Status | Task State | Power State | Networks |
+--------------------------------------+------+----------------------------------+--------+------------+-------------+-----------------+
| f53b37b5-2204-46cc-aef0-dba84bf970c0 | vm-1 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-1=10.0.1.85 |
| fc8b6722-0231-49b0-b2fa-041115bef34a | vm-2 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-1=10.0.1.88 |
| 3cd74455-b9b7-467a-abe3-bd6ff765c83c | vm-3 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-1=10.0.1.90 |
| 7e836338-6772-46b0-9950-f7f06dbe91a8 | vm-4 | 5e18ce8ec9594e00b155485f19895e6c | ACTIVE | - | Running | net-2=10.0.2.8 |
+--------------------------------------+------+----------------------------------+--------+------------+-------------+-----------------+
(overcloud) [stack@undercloud ~]$ Ha re boneng hore na mechini e entsoeng e fumaneha ho li-hypervisors life:
(overcloud) [stack@undercloud ~]$ nova show f53b37b5-2204-46cc-aef0-dba84bf970c0 | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-1 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-0.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000001 |(overcloud) [stack@undercloud ~]$ nova show fc8b6722-0231-49b0-b2fa-041115bef34a | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-2 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-1.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000002 |(overcloud) [stack@undercloud ~]$ nova show 3cd74455-b9b7-467a-abe3-bd6ff765c83c | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-3 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-0.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000003 |(overcloud) [stack@undercloud ~]$ nova show 7e836338-6772-46b0-9950-f7f06dbe91a8 | egrep "hypervisor_hostname|instance_name|hostname"
| OS-EXT-SRV-ATTR:hostname | vm-4 |
| OS-EXT-SRV-ATTR:hypervisor_hostname | overcloud-novacompute-1.localdomain |
| OS-EXT-SRV-ATTR:instance_name | instance-00000004 |
(overcloud) [stack@undercloud ~]$
Mechini ea vm-1 le vm-3 e fumaneha compute-0, mechini ea vm-2 le vm-4 e fumaneha node compute-1.
Ntle le moo, ho entsoe router ea nnete ho thusa ho tsamaisa marang-rang a boletsoeng:
(overcloud) [stack@undercloud ~]$ openstack router list --project 5e18ce8ec9594e00b155485f19895e6c
+--------------------------------------+----------+--------+-------+-------------+-------+----------------------------------+
| ID | Name | Status | State | Distributed | HA | Project |
+--------------------------------------+----------+--------+-------+-------------+-------+----------------------------------+
| 0a4d2420-4b9c-46bd-aec1-86a1ef299abe | router-1 | ACTIVE | UP | False | False | 5e18ce8ec9594e00b155485f19895e6c |
+--------------------------------------+----------+--------+-------+-------------+-------+----------------------------------+
(overcloud) [stack@undercloud ~]$ Router e na le likou tse peli tse fumanehang, tse sebetsang joalo ka liheke tsa marang-rang:
(overcloud) [stack@undercloud ~]$ openstack router show 0a4d2420-4b9c-46bd-aec1-86a1ef299abe | grep interface
| interfaces_info | [{"subnet_id": "2529ad1a-6b97-49cd-8515-cbdcbe5e3daa", "ip_address": "10.0.1.254", "port_id": "0c52b15f-8fcc-4801-bf52-7dacc72a5201"}, {"subnet_id": "335552dd-b35b-456b-9df0-5aac36a3ca13", "ip_address": "10.0.2.254", "port_id": "92fa49b5-5406-499f-ab8d-ddf28cc1a76c"}] |
(overcloud) [stack@undercloud ~]$ Empa pele re sheba hore na sephethephethe se phalla joang, a re shebeng seo re nang le sona hona joale ho node ea taolo (eo hape e leng node ea marang-rang) le ho compute node. Ha re qale ka node ea compute.
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-vsctl show
[heat-admin@overcloud-novacompute-0 ~]$ sudo sudo ovs-appctl dpif/show
system@ovs-system: hit:3 missed:3
br-ex:
br-ex 65534/1: (internal)
phy-br-ex 1/none: (patch: peer=int-br-ex)
br-int:
br-int 65534/2: (internal)
int-br-ex 1/none: (patch: peer=phy-br-ex)
patch-tun 2/none: (patch: peer=patch-int)
br-tun:
br-tun 65534/3: (internal)
patch-int 1/none: (patch: peer=patch-tun)
vxlan-c0a8ff0f 3/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.15)
vxlan-c0a8ff1a 2/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.26)
[heat-admin@overcloud-novacompute-0 ~]$Hajoale, node e na le marokho a mararo a ovs - br-int, br-tun, br-ex. Pakeng tsa bona, joalo ka ha re bona, ho na le sete ea li-interfaces. Bakeng sa ho utloisisa habonolo, a re lokiseng lihokelo tsena tsohle setšoantšong 'me re bone se etsahalang.
Ha u sheba liaterese tseo li-tunnel tsa VxLAN li phahamisitsoeng ho tsona, ho ka bonoa hore kotopo e le 'ngoe e phahamisetsoa ho compute-1 (192.168.255.26), kotopo ea bobeli e shebahala ho laola-1 (192.168.255.15). Empa ntho e thahasellisang ka ho fetisisa ke hore br-ex ha e na li-interfaces tsa 'mele,' me ha u sheba hore na ke phallo efe e lokiselitsoeng, u ka bona hore borokho bona bo ka theola sephethephethe hona joale.
[heat-admin@overcloud-novacompute-0 ~]$ ifconfig eth0
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 192.168.255.19 netmask 255.255.255.0 broadcast 192.168.255.255
inet6 fe80::5054:ff:fe6a:eabe prefixlen 64 scopeid 0x20<link>
ether 52:54:00:6a:ea:be txqueuelen 1000 (Ethernet)
RX packets 2909669 bytes 4608201000 (4.2 GiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1821057 bytes 349198520 (333.0 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
[heat-admin@overcloud-novacompute-0 ~]$ Joalo ka ha u bona ho tsoa ho sephetho, aterese e kentsoe ka kotloloho ho koung ea 'mele, eseng ho sebopeho sa borokho.
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-ex
port VLAN MAC Age
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl dump-flows br-ex
cookie=0x9169eae8f7fe5bb2, duration=216686.864s, table=0, n_packets=303, n_bytes=26035, priority=2,in_port="phy-br-ex" actions=drop
cookie=0x9169eae8f7fe5bb2, duration=216686.887s, table=0, n_packets=0, n_bytes=0, priority=0 actions=NORMAL
[heat-admin@overcloud-novacompute-0 ~]$
Ho ea ka molao oa pele, ntho e 'ngoe le e' ngoe e tsoang ho phy-br-ex port e tlameha ho lahloa.
Haele hantle, ha ho na moo sephethe-phethe se ka kenang borokhong bona ntle le ho tsoa ho sehokelo sena (sehokelo se nang le br-int), 'me ho latela marotholi, sephethephethe sa BUM se se se kene borokhong.
Ke hore, sephethephethe se ka tloha sebakeng sena feela ka kotopo ea VxLAN mme ha ho letho le leng. Leha ho le joalo, ha u bulela DVR, boemo bo tla fetoha, empa re tla sebetsana le seo ka nako e 'ngoe. Ha u sebelisa marang-rang ho itšehla thajana, mohlala ho sebelisa li-vlans, u ke ke ua ba le sebopeho se le seng sa L3 ho vlan 0, empa li-interfaces tse 'maloa. Leha ho le joalo, sephethephethe sa VxLAN se tla siea node ka tsela e ts'oanang, empa hape se kentsoe ka mofuta o itseng oa vlan e inehetseng.
Re hlophisitse node ea compute, ha re feteleng sebakeng sa taolo.
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl dpif/show
system@ovs-system: hit:930491 missed:825
br-ex:
br-ex 65534/1: (internal)
eth0 1/2: (system)
phy-br-ex 2/none: (patch: peer=int-br-ex)
br-int:
br-int 65534/3: (internal)
int-br-ex 1/none: (patch: peer=phy-br-ex)
patch-tun 2/none: (patch: peer=patch-int)
br-tun:
br-tun 65534/4: (internal)
patch-int 1/none: (patch: peer=patch-tun)
vxlan-c0a8ff13 3/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.19)
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$Ha e le hantle, re ka bolela hore ntho e 'ngoe le e' ngoe e tšoana, empa aterese ea IP ha e sa le sebopeho sa 'mele empa e le borokho bo tloaelehileng. Sena se etsoa hobane boema-kepe bona ke boema-kepe boo sephethephethe se tla tsoa ka sona ho ea kantle ho naha.
[heat-admin@overcloud-controller-0 ~]$ ifconfig br-ex
br-ex: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 192.168.255.15 netmask 255.255.255.0 broadcast 192.168.255.255
inet6 fe80::5054:ff:fe20:a22f prefixlen 64 scopeid 0x20<link>
ether 52:54:00:20:a2:2f txqueuelen 1000 (Ethernet)
RX packets 803859 bytes 1732616116 (1.6 GiB)
RX errors 0 dropped 63 overruns 0 frame 0
TX packets 808475 bytes 121652156 (116.0 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl fdb/show br-ex
port VLAN MAC Age
3 100 28:c0:da:00:4d:d3 35
1 0 28:c0:da:00:4d:d3 35
1 0 52:54:00:98:e9:d6 0
LOCAL 0 52:54:00:20:a2:2f 0
1 0 52:54:00:2c:08:9e 0
3 100 52:54:00:20:a2:2f 0
1 0 52:54:00:6a:ea:be 0
[heat-admin@overcloud-controller-0 ~]$ Kou ena e tlameletsoe borokhong ba br-ex mme kaha ha ho na li-tag tsa vlan ho eona, boema-kepe bona ke boema-kepe ba trunk boo bohle ba vlans ba lumelloang ho bona, joale sephethephethe se tsoela ka ntle ntle le tag, joalo ka ha ho bonts'itsoe ke vlan-id 0 in the tlhahiso ka holimo.
Ntho e 'ngoe le e' ngoe ka nako eo e tšoana le node ea compute - marokho a tšoanang, lithanele tse tšoanang tse eang ho li-compute node tse peli.
Re ke ke ra nahana ka li-node tsa polokelo sehloohong sena, empa bakeng sa kutloisiso hoa hlokahala ho bolela hore karolo ea marang-rang ea li-node tsena ke banal ho isa boemong ba ho hlajoa ke lihlong. Tabeng ea rona, ho na le boema-kepe bo le bong feela (eth0) bo nang le aterese ea IP e abetsoeng ho eona 'me ke eona. Ha ho na lithanele tsa VxLAN, marokho a likotopo, joalo-joalo - ha ho na li-ovs ho hang, kaha ha ho na ntlha ho eona. Ha o sebelisa marang-rang a itšehla thajana, node ena e tla ba le li-interfaces tse peli (likou tsa 'mele, bodny, kapa li-vlans tse peli feela - ha ho tsotellehe - ho itšetlehile ka seo u se batlang) - e' ngoe bakeng sa tsamaiso, ea bobeli bakeng sa sephethephethe (ho ngolla VM disk. , ho bala ho tsoa ho disk, joalo-joalo)
Re ile ra nahana hore na re na le eng ka li-node ha ho se na litšebeletso leha e le life. Joale ha re qaleng mechini e 4 ea sebele 'me re bone hore na morero o hlalositsoeng ka holimo o fetoha joang - re lokela ho ba le likou, li-routers tsa sebele, joalo-joalo.
Ho fihlela joale marang-rang a rona a shebahala tjena:
Re na le mechini e 'meli ea sebele sebakeng se seng le se seng sa khomphutha. Ho sebelisa compute-0 e le mohlala, ha re boneng hore na tsohle li kenyelelitsoe joang.
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh list
Id Name State
----------------------------------------------------
1 instance-00000001 running
3 instance-00000003 running
[heat-admin@overcloud-novacompute-0 ~]$ Mochini o na le sebopeho se le seng feela - tap95d96a75-a0:
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000001
Interface Type Source Model MAC
-------------------------------------------------------
tap95d96a75-a0 bridge qbr95d96a75-a0 virtio fa:16:3e:44:98:20
[heat-admin@overcloud-novacompute-0 ~]$
Sebopeho sena se shebahala ka har'a borokho ba linux:
[heat-admin@overcloud-novacompute-0 ~]$ sudo brctl show
bridge name bridge id STP enabled interfaces
docker0 8000.0242904c92a8 no
qbr5bd37136-47 8000.5e4e05841423 no qvb5bd37136-47
tap5bd37136-47
qbr95d96a75-a0 8000.de076cb850f6 no qvb95d96a75-a0
tap95d96a75-a0
[heat-admin@overcloud-novacompute-0 ~]$ Joalokaha u bona ho tsoa ho sephetho, ho na le li-interfaces tse peli feela borokhong - tap95d96a75-a0 le qvb95d96a75-a0.
Mona ho bohlokoa ho lula hanyane ka mefuta ea lisebelisoa tsa marang-rang ho OpenStack:
vtap - sehokelo se hokahaneng le mohlala (VM)
qbr - Linux borokho
qvb le qvo - vEth pair e hokahaneng le borokho ba Linux le borokho ba Open vSwitch
br-int, br-tun, br-vlan - Open vSwitch marokho
patch-, int-br-, phy-br- - Open vSwitch patch interfaces e kopanyang marokho
qg, qr, ha, fg, sg - Bula likou tsa vSwitch tse sebelisoang ke lisebelisoa tse fumanehang ho hokela ho OVS
Joalokaha u utloisisa, haeba re e-na le kou ea qvb95d96a75-a0 borokhong, e leng vEth pair, joale kae-kae ho na le molekane oa eona, eo ka ho utloahalang e lokelang ho bitsoa qvo95d96a75-a0. Ha re shebeng hore na ke likou life tse ho OVS.
[heat-admin@overcloud-novacompute-0 ~]$ sudo sudo ovs-appctl dpif/show
system@ovs-system: hit:526 missed:91
br-ex:
br-ex 65534/1: (internal)
phy-br-ex 1/none: (patch: peer=int-br-ex)
br-int:
br-int 65534/2: (internal)
int-br-ex 1/none: (patch: peer=phy-br-ex)
patch-tun 2/none: (patch: peer=patch-int)
qvo5bd37136-47 6/6: (system)
qvo95d96a75-a0 3/5: (system)
br-tun:
br-tun 65534/3: (internal)
patch-int 1/none: (patch: peer=patch-tun)
vxlan-c0a8ff0f 3/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.15)
vxlan-c0a8ff1a 2/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.26)
[heat-admin@overcloud-novacompute-0 ~]$ Joalokaha re bona, boema-kepe bo ho br-int. Br-int e sebetsa e le sesebelisoa se felisang likou tsa mochini tse fumanehang. Ntle le qvo95d96a75-a0, boema-kepe qvo5bd37136-47 bo bonahala tlhahisong. Ena ke kou ea mochine oa bobeli oa sebele. Ka lebaka leo, setšoantšo sa rona se shebahala tjena:
Potso e lokelang ho khahla 'mali ea mametseng hang-hang - borokho ba linux ke bofe lipakeng tsa boema-kepe ba mochini le boema-kepe ba OVS? 'Nete ke hore ho sireletsa mochine, lihlopha tsa tšireletso li sebelisoa, tseo e seng letho ho feta iptables. OVS ha e sebetse ka li-iptables, kahoo "crutch" ena e ile ea qaptjoa. Leha ho le joalo, e se e felloa ke nako - e nkeloa sebaka ke conntrack ho litokollo tse ncha.
Ke hore, qetellong, moralo o shebahala tjena:
Mechini e 'meli ho hypervisor e le' ngoe ho netweke e le 'ngoe ea L2
Kaha li-VM tsena tse peli li fumaneha marang-rang a tšoanang a L2 le ho hypervisor e le 'ngoe, sephethephethe pakeng tsa bona se tla phalla ka mokhoa o utloahalang sebakeng sa heno ka br-int, kaha mechine ka bobeli e tla ba VLAN e tšoanang:
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000001
Interface Type Source Model MAC
-------------------------------------------------------
tap95d96a75-a0 bridge qbr95d96a75-a0 virtio fa:16:3e:44:98:20
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000003
Interface Type Source Model MAC
-------------------------------------------------------
tap5bd37136-47 bridge qbr5bd37136-47 virtio fa:16:3e:83:ad:a4
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-int
port VLAN MAC Age
6 1 fa:16:3e:83:ad:a4 0
3 1 fa:16:3e:44:98:20 0
[heat-admin@overcloud-novacompute-0 ~]$ Mechini e 'meli ho li-hypervisors tse fapaneng marang-rang a tšoanang a L2
Joale ha re boneng hore na sephethephethe se tla tsamaea joang lipakeng tsa mechini e 'meli ho netweke e le 'ngoe ea L2, empa e fumaneha ho li-hypervisors tse fapaneng. Ho bua 'nete, ha ho letho le tla fetoha haholo, sephethephethe feela pakeng tsa li-hypervisors se tla feta ka har'a kotopo ea vxlan. A re hlahlobeng mohlala.
Liaterese tsa mechini e teng moo re tla shebella sephethephethe:
[heat-admin@overcloud-novacompute-0 ~]$ sudo virsh domiflist instance-00000001
Interface Type Source Model MAC
-------------------------------------------------------
tap95d96a75-a0 bridge qbr95d96a75-a0 virtio fa:16:3e:44:98:20
[heat-admin@overcloud-novacompute-0 ~]$
[heat-admin@overcloud-novacompute-1 ~]$ sudo virsh domiflist instance-00000002
Interface Type Source Model MAC
-------------------------------------------------------
tape7e23f1b-07 bridge qbre7e23f1b-07 virtio fa:16:3e:72:ad:53
[heat-admin@overcloud-novacompute-1 ~]$ Re sheba tafole ea ho fetisa ka br-int ho compute-0:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:72:ad:53
2 1 fa:16:3e:72:ad:53 1
[heat-admin@overcloud-novacompute-0 ~]Sephethephethe se lokela ho ea boema-kepe ba 2 - ha re boneng hore na ke boema-kepe ba mofuta ofe:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:7e:7f:28:1f:bd:54
2(patch-tun): addr:0a:bd:07:69:58:d9
3(qvo95d96a75-a0): addr:ea:50:9a:3d:69:58
6(qvo5bd37136-47): addr:9a:d1:03:50:3d:96
LOCAL(br-int): addr:1a:0f:53:97:b1:49
[heat-admin@overcloud-novacompute-0 ~]$Ena ke patch-tun - ke hore, sebopeho sa br-tun. Ha re boneng se etsahalang ka sephutheloana sa br-tun:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl dump-flows br-tun | grep fa:16:3e:72:ad:53
cookie=0x8759a56536b67a8e, duration=1387.959s, table=20, n_packets=1460, n_bytes=138880, hard_timeout=300, idle_age=0, hard_age=0, priority=1,vlan_tci=0x0001/0x0fff,dl_dst=fa:16:3e:72:ad:53 actions=load:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[],output:2
[heat-admin@overcloud-novacompute-0 ~]$ Pakete e phuthetsoe ka VxLAN 'me e romelloa ho port 2. Ha re boneng hore na port 2 e lebisa hokae:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl show br-tun | grep addr
1(patch-int): addr:b2:d1:f8:21:96:66
2(vxlan-c0a8ff1a): addr:be:64:1f:75:78:a7
3(vxlan-c0a8ff0f): addr:76:6f:b9:3c:3f:1c
LOCAL(br-tun): addr:a2:5b:6d:4f:94:47
[heat-admin@overcloud-novacompute-0 ~]$Ena ke kotopo ea vxlan ho compute-1:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl dpif/show | egrep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/4: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.19, remote_ip=192.168.255.26)
[heat-admin@overcloud-novacompute-0 ~]$Ha re ee ho compute-1 'me re bone se etsahalang kamora moo ka sephutheloana:
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-appctl fdb/show br-int | egrep fa:16:3e:44:98:20
2 1 fa:16:3e:44:98:20 1
[heat-admin@overcloud-novacompute-1 ~]$ Mac e ka har'a tafole ea ho fetisa br-int ho compute-1, 'me joalo ka ha ho ka bonoa ho tsoa tlhahiso e kaholimo, e bonahala ka port 2, e leng kou e lebang br-tun:
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:8a:d7:f9:ad:8c:1d
2(patch-tun): addr:46:cc:40:bd:20:da
3(qvoe7e23f1b-07): addr:12:78:2e:34:6a:c7
4(qvo3210e8ec-c0): addr:7a:5f:59:75:40:85
LOCAL(br-int): addr:e2:27:b2:ed:14:46Joale, rea bona hore ho br-int ho compute-1 ho na le poppy ea ho ea:
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-appctl fdb/show br-int | egrep fa:16:3e:72:ad:53
3 1 fa:16:3e:72:ad:53 0
[heat-admin@overcloud-novacompute-1 ~]$ Ka mantsoe a mang, pakete e amoheloang e tla fofela ho port 3, eo ka mor'a eona ho seng ho ntse ho e-na le mohlala oa mochine-00000003.
Botle ba ho kenya Openstack bakeng sa ho ithuta ka lisebelisoa tsa sebele ke hore re ka khona ho hapa sephethephethe pakeng tsa li-hypervisors le ho bona se etsahalang ka eona. Sena ke seo re tla se etsa hona joale, tsamaisa tcpdump boema-kepeng ba vnet ho ea compute-0:
[root@hp-gen9 bormoglotx]# tcpdump -vvv -i vnet3
tcpdump: listening on vnet3, link-type EN10MB (Ethernet), capture size 262144 bytes
*****************omitted*******************
04:39:04.583459 IP (tos 0x0, ttl 64, id 16868, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.19.39096 > 192.168.255.26.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 64, id 8012, offset 0, flags [DF], proto ICMP (1), length 84)
10.0.1.85 > 10.0.1.88: ICMP echo request, id 5634, seq 16, length 64
04:39:04.584449 IP (tos 0x0, ttl 64, id 35181, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.26.speedtrace-disc > 192.168.255.19.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 64, id 59124, offset 0, flags [none], proto ICMP (1), length 84)
10.0.1.88 > 10.0.1.85: ICMP echo reply, id 5634, seq 16, length 64
*****************omitted*******************Mohala oa pele o bontša hore Patek ho tloha atereseng ea 10.0.1.85 o ea atereseng ea 10.0.1.88 (sephethephethe sa ICMP), 'me e phuthetsoe ka pakete ea VxLAN e nang le vni 22 mme pakete e tsoa ho moamoheli 192.168.255.19 (compute-0) ho amohela 192.168.255.26 .1 ( khomphutha-XNUMX). Re ka hlahloba hore na VNI e lumellana le e boletsoeng ho li-ovs.
Ha re khutleleng moleng ona actions=load:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[],output:2. 0x16 ke vni tsamaisong ea linomoro tsa hexadecimal. Ha re fetoleng nomoro ena ho sistimi ea 16:
16 = 6*16^0+1*16^1 = 6+16 = 22Ke hore, vni e lumellana le 'nete.
Mohala oa bobeli o bonts'a sephethephethe sa ho khutla, hantle, ha ho na thuso ho e hlalosa, ntho e 'ngoe le e' ngoe e hlakile moo.
Mechini e 'meli marang-rang a fapaneng (inter-network routing)
Nyeoe ea ho qetela ea kajeno ke ho tsamaisa marang-rang ka har'a projeke e le 'ngoe ho sebelisa router e fumanehang. Re ntse re nahana ka nyeoe e se nang DVR (re tla e sheba sehloohong se seng), kahoo ho tsamaisa ho etsahala ho node ea marang-rang. Tabeng ea rona, node ea marang-rang ha e behoe sebakeng se arohaneng 'me e fumaneha sebakeng sa taolo.
Taba ea pele, a re boneng hore routing ea sebetsa:
$ ping 10.0.2.8
PING 10.0.2.8 (10.0.2.8): 56 data bytes
64 bytes from 10.0.2.8: seq=0 ttl=63 time=7.727 ms
64 bytes from 10.0.2.8: seq=1 ttl=63 time=3.832 ms
^C
--- 10.0.2.8 ping statistics ---
2 packets transmitted, 2 packets received, 0% packet loss
round-trip min/avg/max = 3.832/5.779/7.727 msKaha tabeng ena pakete e tlameha ho ea hekeng 'me e fetisetsoe moo, re hloka ho fumana aterese ea MAC ea heke, eo re shebang tafole ea ARP ka mohlala:
$ arp
host-10-0-1-254.openstacklocal (10.0.1.254) at fa:16:3e:c4:64:70 [ether] on eth0
host-10-0-1-1.openstacklocal (10.0.1.1) at fa:16:3e:e6:2c:5c [ether] on eth0
host-10-0-1-90.openstacklocal (10.0.1.90) at fa:16:3e:83:ad:a4 [ether] on eth0
host-10-0-1-88.openstacklocal (10.0.1.88) at fa:16:3e:72:ad:53 [ether] on eth0Joale ha re boneng hore na sephethephethe se nang le moo se eang teng (10.0.1.254) fa:16:3e:c4:64:70 se lokela ho romeloa hokae:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-appctl fdb/show br-int | egrep fa:16:3e:c4:64:70
2 1 fa:16:3e:c4:64:70 0
[heat-admin@overcloud-novacompute-0 ~]$ Ha re shebeng moo port 2 e lebisang teng:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:7e:7f:28:1f:bd:54
2(patch-tun): addr:0a:bd:07:69:58:d9
3(qvo95d96a75-a0): addr:ea:50:9a:3d:69:58
6(qvo5bd37136-47): addr:9a:d1:03:50:3d:96
LOCAL(br-int): addr:1a:0f:53:97:b1:49
[heat-admin@overcloud-novacompute-0 ~]$ Ntho e ngoe le e ngoe e ea utloahala, sephethephethe se ea br-tun. Ha re boneng hore na e tla phutheloa ka kotopo efe ea vxlan:
[heat-admin@overcloud-novacompute-0 ~]$ sudo ovs-ofctl dump-flows br-tun | grep fa:16:3e:c4:64:70
cookie=0x8759a56536b67a8e, duration=3514.566s, table=20, n_packets=3368, n_bytes=317072, hard_timeout=300, idle_age=0, hard_age=0, priority=1,vlan_tci=0x0001/0x0fff,dl_dst=fa:16:3e:c4:64:70 actions=load:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[],output:3
[heat-admin@overcloud-novacompute-0 ~]$ Boema-kepe ba boraro ke kotopo ea vxlan:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-tun | grep addr
1(patch-int): addr:a2:69:00:c5:fa:ba
2(vxlan-c0a8ff1a): addr:86:f0:ce:d0:e8:ea
3(vxlan-c0a8ff13): addr:72:aa:73:2c:2e:5b
LOCAL(br-tun): addr:a6:cb:cd:72:1c:45
[heat-admin@overcloud-controller-0 ~]$ E shebang node ea taolo:
[heat-admin@overcloud-controller-0 ~]$ sudo sudo ovs-appctl dpif/show | grep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$ Sephethephethe se fihletse node ea taolo, kahoo re hloka ho ea ho eona re bone hore na ho tsamaea ho tla etsahala joang.
Ha u ntse u hopola, node ea taolo ka hare e ne e shebahala e tšoana hantle le node ea compute - marokho a mararo a tšoanang, feela br-ex e ne e e-na le kou ea 'mele eo node e neng e ka romela sephethephethe ka ntle. Ho theoa ha maemo ho fetotse tlhophiso ho li-compute node - borokho ba linux, li-iptables le li-interfaces li kenyellelitsoe ho li-node. Ho thehoa ha marang-rang le router ea sebele le eona e siile letšoao la eona ho tlhophiso ea node ea taolo.
Kahoo, ho hlakile hore aterese ea heke ea MAC e tlameha ho ba tafoleng ea ho fetisa br-int sebakeng sa taolo. Ha re hlahlobeng hore na e teng le hore na e shebile kae:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:c4:64:70
5 1 fa:16:3e:c4:64:70 1
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:2e:58:b6:db:d5:de
2(patch-tun): addr:06:41:90:f0:9e:56
3(tapca25a97e-64): addr:fa:16:3e:e6:2c:5c
4(tap22015e46-0b): addr:fa:16:3e:76:c2:11
5(qr-0c52b15f-8f): addr:fa:16:3e:c4:64:70
6(qr-92fa49b5-54): addr:fa:16:3e:80:13:72
LOCAL(br-int): addr:06:de:5d:ed:44:44
[heat-admin@overcloud-controller-0 ~]$ Mac e bonahala ho tloha koung qr-0c52b15f-8f. Haeba re khutlela lethathamong la likou tse fumanehang ho Openstack, mofuta ona oa boema-kepe o sebelisoa ho hokahanya lisebelisoa tse fapaneng tse fumanehang ho OVS. Ho bua ka nepo, qr ke boema-kepe ho router ea sebele, e emeloang e le sebaka sa mabitso.
Ha re bone hore na libaka tsa mabitso li hokae ho seva:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns
qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe (id: 2)
qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638 (id: 1)
qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 (id: 0)
[heat-admin@overcloud-controller-0 ~]$ Likopi tse ka bang tharo. Empa ho ahlola ka mabitso, u ka hakanya morero oa e mong le e mong oa bona. Re tla khutlela maemong a ID 0 le 1 hamorao, joale re thahasella namespace qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe ip route
10.0.1.0/24 dev qr-0c52b15f-8f proto kernel scope link src 10.0.1.254
10.0.2.0/24 dev qr-92fa49b5-54 proto kernel scope link src 10.0.2.254
[heat-admin@overcloud-controller-0 ~]$ Sebaka sena sa mabitso se na le tse peli tse ka hare tseo re li entseng pejana. Boema-kepe ka bobeli bo kenyellelitsoe ho br-int. Ha re hlahlobeng aterese ea mac ea boema-kepe qr-0c52b15f-8f, kaha sephethephethe, ho ahlola ka aterese ea mac, se ile sa leba sebopeho sena.
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe ifconfig qr-0c52b15f-8f
qr-0c52b15f-8f: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 10.0.1.254 netmask 255.255.255.0 broadcast 10.0.1.255
inet6 fe80::f816:3eff:fec4:6470 prefixlen 64 scopeid 0x20<link>
ether fa:16:3e:c4:64:70 txqueuelen 1000 (Ethernet)
RX packets 5356 bytes 427305 (417.2 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 5195 bytes 490603 (479.1 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
[heat-admin@overcloud-controller-0 ~]$ Ke hore, tabeng ena, ntho e 'ngoe le e' ngoe e sebetsa ho ea ka melao ea ho tsamaisa maemo. Kaha sephethephethe se reretsoe ho amohela 10.0.2.8, se tlameha ho tsoa ka sebopeho sa bobeli sa qr-92fa49b5-54 ebe se feta kotopo ea vxlan ho ea compute node:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe arp
Address HWtype HWaddress Flags Mask Iface
10.0.1.88 ether fa:16:3e:72:ad:53 C qr-0c52b15f-8f
10.0.1.90 ether fa:16:3e:83:ad:a4 C qr-0c52b15f-8f
10.0.2.8 ether fa:16:3e:6c:ad:9c C qr-92fa49b5-54
10.0.2.42 ether fa:16:3e:f5:0b:29 C qr-92fa49b5-54
10.0.1.85 ether fa:16:3e:44:98:20 C qr-0c52b15f-8f
[heat-admin@overcloud-controller-0 ~]$ Ntho e 'ngoe le e 'ngoe e utloahala, ha ho makatse. Ha re boneng moo aterese ea poppy ea moamoheli 10.0.2.8 e hlahang ho br-int:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:6c:ad:9c
2 2 fa:16:3e:6c:ad:9c 1
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:2e:58:b6:db:d5:de
2(patch-tun): addr:06:41:90:f0:9e:56
3(tapca25a97e-64): addr:fa:16:3e:e6:2c:5c
4(tap22015e46-0b): addr:fa:16:3e:76:c2:11
5(qr-0c52b15f-8f): addr:fa:16:3e:c4:64:70
6(qr-92fa49b5-54): addr:fa:16:3e:80:13:72
LOCAL(br-int): addr:06:de:5d:ed:44:44
[heat-admin@overcloud-controller-0 ~]$ Joalo ka ha ho lebelletsoe, sephethephethe se ea br-tun, ha re boneng hore na sephethephethe se ea ho kotopo efe e latelang:
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl dump-flows br-tun | grep fa:16:3e:6c:ad:9c
cookie=0x2ab04bf27114410e, duration=5346.829s, table=20, n_packets=5248, n_bytes=498512, hard_timeout=300, idle_age=0, hard_age=0, priority=1,vlan_tci=0x0002/0x0fff,dl_dst=fa:16:3e:6c:ad:9c actions=load:0->NXM_OF_VLAN_TCI[],load:0x63->NXM_NX_TUN_ID[],output:2
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo ovs-ofctl show br-tun | grep addr
1(patch-int): addr:a2:69:00:c5:fa:ba
2(vxlan-c0a8ff1a): addr:86:f0:ce:d0:e8:ea
3(vxlan-c0a8ff13): addr:72:aa:73:2c:2e:5b
LOCAL(br-tun): addr:a6:cb:cd:72:1c:45
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-controller-0 ~]$ sudo sudo ovs-appctl dpif/show | grep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$ Sephethephethe se kena ka har'a kotopo ho etsa compute-1. Hantle, ho compute-1 ntho e 'ngoe le e' ngoe e bonolo - ho tloha br-tun sephutheloana se ea ho br-int 'me ho tloha moo ho ea ho sebopeho sa mochine:
[heat-admin@overcloud-controller-0 ~]$ sudo sudo ovs-appctl dpif/show | grep vxlan-c0a8ff1a
vxlan-c0a8ff1a 2/5: (vxlan: egress_pkt_mark=0, key=flow, local_ip=192.168.255.15, remote_ip=192.168.255.26)
[heat-admin@overcloud-controller-0 ~]$
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-appctl fdb/show br-int | grep fa:16:3e:6c:ad:9c
4 2 fa:16:3e:6c:ad:9c 1
[heat-admin@overcloud-novacompute-1 ~]$ sudo ovs-ofctl show br-int | grep addr
1(int-br-ex): addr:8a:d7:f9:ad:8c:1d
2(patch-tun): addr:46:cc:40:bd:20:da
3(qvoe7e23f1b-07): addr:12:78:2e:34:6a:c7
4(qvo3210e8ec-c0): addr:7a:5f:59:75:40:85
LOCAL(br-int): addr:e2:27:b2:ed:14:46
[heat-admin@overcloud-novacompute-1 ~]$ Ha re hlahlobeng hore na ehlile sena ke sebopeho se nepahetseng:
[heat-admin@overcloud-novacompute-1 ~]$ brctl show
bridge name bridge id STP enabled interfaces
docker0 8000.02429c001e1c no
qbr3210e8ec-c0 8000.ea27f45358be no qvb3210e8ec-c0
tap3210e8ec-c0
qbre7e23f1b-07 8000.b26ac0eded8a no qvbe7e23f1b-07
tape7e23f1b-07
[heat-admin@overcloud-novacompute-1 ~]$
[heat-admin@overcloud-novacompute-1 ~]$ sudo virsh domiflist instance-00000004
Interface Type Source Model MAC
-------------------------------------------------------
tap3210e8ec-c0 bridge qbr3210e8ec-c0 virtio fa:16:3e:6c:ad:9c
[heat-admin@overcloud-novacompute-1 ~]$
Ha e le hantle, re ile ra feta har'a sephutheloana. Ke nahana hore u hlokometse hore sephethephethe se ile sa feta lithapong tse fapaneng tsa vxlan 'me sa tsoa ka li-VNI tse fapaneng. A re boneng hore na ke VNI ea mofuta ofe, ka mor'a moo re tla bokella lahla boema-kepeng ba taolo ea node 'me re etse bonnete ba hore sephethephethe se phalla hantle feela joalokaha se hlalositsoe ka holimo.
Kahoo, kotopo ea compute-0 e na le liketso tse latelang=mojaro:0->NXM_OF_VLAN_TCI[],load:0x16->NXM_NX_TUN_ID[],output:3. Ha re fetoleng 0x16 ho sistimi ea linomoro tsa decimal:
0x16 = 6*16^0+1*16^1 = 6+16 = 22Tonelo eo u lokelang ho e kopanya-1 e na le VNI:actions=load:0->NXM_OF_VLAN_TCI[],mojaro:0x63->NXM_NX_TUN_ID[],output:2. Ha re fetoleng 0x63 ho sistimi ea linomoro tsa decimal:
0x63 = 3*16^0+6*16^1 = 3+96 = 99Joale, ha re shebeng thotobolo:
[root@hp-gen9 bormoglotx]# tcpdump -vvv -i vnet4
tcpdump: listening on vnet4, link-type EN10MB (Ethernet), capture size 262144 bytes
*****************omitted*******************
04:35:18.709949 IP (tos 0x0, ttl 64, id 48650, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.19.41591 > 192.168.255.15.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 64, id 49042, offset 0, flags [DF], proto ICMP (1), length 84)
10.0.1.85 > 10.0.2.8: ICMP echo request, id 5378, seq 9, length 64
04:35:18.710159 IP (tos 0x0, ttl 64, id 23360, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.15.38983 > 192.168.255.26.4789: [no cksum] VXLAN, flags [I] (0x08), vni 99
IP (tos 0x0, ttl 63, id 49042, offset 0, flags [DF], proto ICMP (1), length 84)
10.0.1.85 > 10.0.2.8: ICMP echo request, id 5378, seq 9, length 64
04:35:18.711292 IP (tos 0x0, ttl 64, id 43596, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.26.42588 > 192.168.255.15.4789: [no cksum] VXLAN, flags [I] (0x08), vni 99
IP (tos 0x0, ttl 64, id 55103, offset 0, flags [none], proto ICMP (1), length 84)
10.0.2.8 > 10.0.1.85: ICMP echo reply, id 5378, seq 9, length 64
04:35:18.711531 IP (tos 0x0, ttl 64, id 8555, offset 0, flags [DF], proto UDP (17), length 134)
192.168.255.15.38983 > 192.168.255.19.4789: [no cksum] VXLAN, flags [I] (0x08), vni 22
IP (tos 0x0, ttl 63, id 55103, offset 0, flags [none], proto ICMP (1), length 84)
10.0.2.8 > 10.0.1.85: ICMP echo reply, id 5378, seq 9, length 64
*****************omitted*******************Pakete ea pele ke pakete ea vxlan e tsoang ho moamoheli 192.168.255.19 (compute-0) ho amohela 192.168.255.15 (taolo-1) e nang le vni 22, eo ka hare ho eona pakete ea ICMP e phuthetsoeng ho tloha ho moamoheli 10.0.1.85 ho amohela 10.0.2.8. Joalokaha re balile ka holimo, vni e bapisa seo re se boneng tlhahisong.
Pakete ea bobeli ke pakete ea vxlan e tsoang ho moamoheli 192.168.255.15 (taolo-1) ho amohela 192.168.255.26 (compute-1) e nang le vni 99, ka hare ho eona pakete ea ICMP e phuthetsoe ho tloha ho moamoheli 10.0.1.85 ho amohela 10.0.2.8. Joalokaha re balile ka holimo, vni e bapisa seo re se boneng tlhahisong.
Lipakete tse peli tse latelang ke sephethephethe sa ho khutla ho tloha 10.0.2.8 eseng 10.0.1.85.
Ke hore, qetellong re fumane leano le latelang la node ea taolo:
Ho bonahala eka ho joalo? Re lebetse ka libaka tse peli tsa mabitso:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns
qrouter-0a4d2420-4b9c-46bd-aec1-86a1ef299abe (id: 2)
qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638 (id: 1)
qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 (id: 0)
[heat-admin@overcloud-controller-0 ~]$ Ha re ntse re bua ka meralo ea sethala sa leru, ho ka ba molemo haeba mechine e amohela liaterese ka bo eona ho tsoa ho seva sa DHCP. Tsena ke li-server tse peli tsa DHCP bakeng sa marang-rang a rona a mabeli 10.0.1.0/24 le 10.0.2.0/24.
A re hlahlobeng hore na sena ke ’nete. Ho na le aterese e le 'ngoe feela sebakeng sena sa mabitso - 10.0.1.1 - aterese ea seva ea DHCP ka boeona, hape e kenyelelitsoe ho br-int:
[heat-admin@overcloud-controller-0 ~]$ sudo ip netns exec qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 ifconfig
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1000 (Local Loopback)
RX packets 1 bytes 28 (28.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1 bytes 28 (28.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
tapca25a97e-64: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1450
inet 10.0.1.1 netmask 255.255.255.0 broadcast 10.0.1.255
inet6 fe80::f816:3eff:fee6:2c5c prefixlen 64 scopeid 0x20<link>
ether fa:16:3e:e6:2c:5c txqueuelen 1000 (Ethernet)
RX packets 129 bytes 9372 (9.1 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 49 bytes 6154 (6.0 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0Ha re boneng hore na lits'ebetso tse nang le qdhcp-67a3798c-32c0-4c18-8502-2531247e3cc2 ka mabitso a tsona sebakeng sa taolo:
[heat-admin@overcloud-controller-0 ~]$ ps -aux | egrep qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638
root 640420 0.0 0.0 4220 348 ? Ss 11:31 0:00 dumb-init --single-child -- ip netns exec qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638 /usr/sbin/dnsmasq -k --no-hosts --no-resolv --pid-file=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/pid --dhcp-hostsfile=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/host --addn-hosts=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/addn_hosts --dhcp-optsfile=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/opts --dhcp-leasefile=/var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/leases --dhcp-match=set:ipxe,175 --local-service --bind-dynamic --dhcp-range=set:subnet-335552dd-b35b-456b-9df0-5aac36a3ca13,10.0.2.0,static,255.255.255.0,86400s --dhcp-option-force=option:mtu,1450 --dhcp-lease-max=256 --conf-file= --domain=openstacklocal
heat-ad+ 951620 0.0 0.0 112944 980 pts/0 S+ 18:50 0:00 grep -E --color=auto qdhcp-7d541e74-1c36-4e1d-a7c4-0968c8dbc638
[heat-admin@overcloud-controller-0 ~]$ Ho na le ts'ebetso e joalo 'me e ipapisitse le tlhaiso-leseling e hlahisitsoeng kaholimo, re ka etsa mohlala, ho bona seo re se renteng hajoale:
[heat-admin@overcloud-controller-0 ~]$ cat /var/lib/neutron/dhcp/7d541e74-1c36-4e1d-a7c4-0968c8dbc638/leases
1597492111 fa:16:3e:6c:ad:9c 10.0.2.8 host-10-0-2-8 01:fa:16:3e:6c:ad:9c
1597491115 fa:16:3e:76:c2:11 10.0.2.1 host-10-0-2-1 *
[heat-admin@overcloud-controller-0 ~]$Ka lebaka leo, re fumana litšebeletso tse latelang sebakeng sa taolo:
Leha ho le joalo, hopola - ena ke mechine e 4 feela, marang-rang a 2 a ka hare le router e le 'ngoe feela ... router e ajoang e ile ea tima, 'me qetellong Ka mor'a moo, ho ne ho e-na le node e le' ngoe feela ea ho laola bencheng ea teko (bakeng sa ho mamellana ha phoso ho tlameha ho ba le quorum ea li-node tse tharo). Hoa utloahala hore khoebong ntho e 'ngoe le e' ngoe e "nyane" e rarahane ho feta, empa mohlaleng ona o bonolo re utloisisa hore na e lokela ho sebetsa joang - hore na u na le mabitso a 3 kapa 300 ke 'nete ea bohlokoa, empa ho ea ka pono ea ts'ebetso ea bohle. sebopeho, ha ho letho le tla fetoha haholo ... le hoja ho fihlela u sa khone ho kenya SDN ea barekisi. Empa eo ke pale e fapaneng ka ho felletseng.
Ke tšepa hore e ne e thahasellisa. Haeba u na le maikutlo / litlatsetso, kapa kae-kae ke buile leshano (ke motho 'me maikutlo a ka a tla lula a le teng) - ngola se hlokang ho lokisoa / ho eketsoa - re tla lokisa / eketsa tsohle.
Qetellong, ke rata ho bua mantsoe a seng makae mabapi le ho bapisa Openstack (ka bobeli vanilla le morekisi) le tharollo ea leru e tsoang ho VMWare - Ke 'nile ka botsoa potso ena hangata lilemong tse' maloa tse fetileng, 'me, ho bua 'nete, ke e se e khathetse ke eona, empa leha ho le joalo. Ka maikutlo a ka, ho thata haholo ho bapisa litharollo tsena tse peli, empa ka sebele re ka re ho na le mefokolo ho tharollo ka bobeli le ha u khetha tharollo e le 'ngoe u lokela ho lekanya melemo le boiketlo.
Haeba OpenStack e le tharollo e tsamaisoang ke sechaba, joale VMWare e na le tokelo ea ho etsa feela seo e se batlang (bala - se nang le phaello bakeng sa eona) 'me sena sea utloahala - hobane ke k'hamphani ea khoebo e sebelisetsoang ho etsa chelete ho bareki ba eona. Empa ho na le e le 'ngoe e kholo le e mafura EMPA - o ka theoha OpenStack, mohlala ho Nokia, mme ka litšenyehelo tse nyane ho fetola tharollo ho tloha, mohlala, Juniper (Contrail Cloud), empa ha ho na monyetla oa hore u ka theoha VMWare. . Ho 'na, litharollo tsena tse peli li shebahala tjena - Openstack (morekisi) ke cage e bonolo eo u kentsoeng ho eona, empa u na le senotlolo' me u ka tloha ka nako leha e le efe. VMWare ke lesaka la khauta, mong'a lona o na le senotlolo sa lesaka 'me le tla u bitsa chelete e ngata.
Ha ke khothaletse sehlahisoa sa pele kapa sa bobeli - u khetha seo u se hlokang. Empa haeba ke ne ke e-na le khetho e joalo, ke ne ke tla khetha litharollo ka bobeli - VMWare bakeng sa leru la IT (meroalo e tlaase, tsamaiso e bonolo), OpenStack ho tsoa ho morekisi e mong (Nokia le Juniper li fana ka tharollo e ntle haholo ea turnkey) - bakeng sa leru la Telecom. Ke ne nke ke ka sebelisa Openstack bakeng sa IT e hloekileng - e tšoana le ho thunya lirobele ka kanono, empa ha ke bone li-contraindications tsa ho e sebelisa ntle le ho hloka mosebetsi. Leha ho le joalo, ho sebelisa VMWare ho telecom ho tšoana le ho hula lejoe le pshatlehileng ka Ford Raptor - e ntle ho tsoa ka ntle, empa mokhanni o tlameha ho nka maeto a 10 ho e-na le e le 'ngoe.
Ka maikutlo a ka, bothata bo boholo ka ho fetisisa ba VMWare ke ho koala ha eona ka ho feletseng - k'hamphani e ke ke ea u fa boitsebiso leha e le bofe mabapi le hore na e sebetsa joang, mohlala, vSAN kapa se ka har'a kernel ea hypervisor - ha e na phaello bakeng sa eona - ke hore, u tla le ka mohla u se ke ua ba setsebi ho VMWare - ntle le tšehetso ea barekisi, u tla timetsoa (hangata ke kopana le litsebi tsa VMWare tse tsielehileng ke lipotso tse sa reng letho). Ho 'na, VMWare e reka koloi e notletsoeng - e, u ka ba le litsebi tse ka fetolang lebanta la nako, empa ke ea u rekisitseng tharollo ena feela ea ka bulang hood. Ka bonna, ha ke rate litharollo tseo ke sa khoneng ho kena ho tsona. U tla re u ka 'na ua se ke ua tlameha ho kena tlas'a hood. E, sena se ka khoneha, empa ke tla u sheba ha u hloka ho bokella mosebetsi o moholo ka marung ho tloha ho 20-30 mechine ea sebele, marang-rang a 40-50, halofo ea eona e batla ho ea ka ntle, 'me halofo ea bobeli e kopa Ho potlakisa SR-IOV, ho seng joalo u tla hloka tse ling tse 'maloa tsa likoloi tsena - ho seng joalo ts'ebetso e ke ke ea lekana.
Ho na le lintlha tse ling, ka hona, ke uena feela ea ka khethang hore na u khetha eng, 'me ka ho fetisisa, u tla ikarabella bakeng sa khetho ea hau. Ena ke maikutlo a ka feela - motho ea boneng le ho ama bonyane lihlahisoa tse 4 - Nokia, Juniper, Red Hat le VMWare. Ke hore, ke na le seo nka se bapisang le sona.
Source: www.habr.com