diff --git a/playbooks/hosts/fed-cloud10.cloud.fedoraproject.org.yml b/playbooks/hosts/fed-cloud10.cloud.fedoraproject.org.yml index 2e159688ed..c54a70f853 100644 --- a/playbooks/hosts/fed-cloud10.cloud.fedoraproject.org.yml +++ b/playbooks/hosts/fed-cloud10.cloud.fedoraproject.org.yml @@ -77,6 +77,59 @@ - service: name=messagebus state=started enabled=yes - service: name=openstack-nova-compute state=started enabled=yes + # http://docs.openstack.org/icehouse/install-guide/install/yum/content/neutron-ml2-compute-node.html + - sysctl: name=net.ipv4.conf.all.rp_filter value=0 state=present sysctl_set=yes reload=yes + - sysctl: name=net.ipv4.conf.default.rp_filter value=0 state=present sysctl_set=yes reload=yes + + - name: install the Networking components + action: yum state=present pkg={{ item }} + with_items: + - openstack-neutron-ml2 + - openstack-neutron-openvswitch + + - command: openstack-config --set /etc/neutron/neutron.conf DEFAULT auth_strategy keystone + - command: openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_uri http://{{controller_private_ip}}:5000 + - command: openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_host {{controller_private_ip}} + - command: openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_protocol http + - command: openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_port 35357 + - command: openstack-config --set /etc/neutron/neutron.conf keystone_authtoken admin_user neutron + - command: openstack-config --set /etc/neutron/neutron.conf keystone_authtoken admin_tenant_name service + - command: openstack-config --set /etc/neutron/neutron.conf keystone_authtoken admin_password {{NEUTRON_PASS}} + + - command: openstack-config --set /etc/neutron/neutron.conf DEFAULT rpc_backend neutron.openstack.common.rpc.impl_qpid + - command: openstack-config --set /etc/neutron/neutron.conf DEFAULT qpid_hostname {{controller_private_ip}} + + # uncomment if you want to debug compute instance + #- command: openstack-config --set /etc/neutron/neutron.conf DEFAULT verbose True + - command: openstack-config --set /etc/neutron/neutron.conf DEFAULT core_plugin ml2 + - command: openstack-config --set /etc/neutron/neutron.conf DEFAULT service_plugins router + + - command: openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 type_drivers local,flat,gre + - command: openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 tenant_network_types gre + - command: openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 mechanism_drivers openvswitch + - command: openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2_type_gre tunnel_id_ranges 1:1000 + - command: openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ovs local_ip {{compute_private_ip}} + - command: openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ovs tunnel_type gre + - command: openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ovs enable_tunneling True + - command: openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup firewall_driver neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver + - command: openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup enable_security_group True + + - service: name=openvswitch state=started enabled=yes + - command: ovs-vsctl --may-exist add-br br-int + + - command: openstack-config --set /etc/nova/nova.conf DEFAULT network_api_class nova.network.neutronv2.api.API + - command: openstack-config --set /etc/nova/nova.conf DEFAULT neutron_url http://{{controller_private_ip}}:9696 + - command: openstack-config --set /etc/nova/nova.conf DEFAULT neutron_auth_strategy keystone + - command: openstack-config --set /etc/nova/nova.conf DEFAULT neutron_admin_tenant_name service + - command: openstack-config --set /etc/nova/nova.conf DEFAULT neutron_admin_username neutron + - command: openstack-config --set /etc/nova/nova.conf DEFAULT neutron_admin_password {{NEUTRON_PASS}} + - command: openstack-config --set /etc/nova/nova.conf DEFAULT neutron_admin_auth_url http://{{controller_private_ip}}:35357/v2.0 + - command: openstack-config --set /etc/nova/nova.conf DEFAULT linuxnet_interface_driver nova.network.linux_net.LinuxOVSInterfaceDriver + - command: openstack-config --set /etc/nova/nova.conf DEFAULT firewall_driver nova.virt.firewall.NoopFirewallDriver + - command: openstack-config --set /etc/nova/nova.conf DEFAULT security_group_api neutron + + - file: src=plugins/ml2/ml2_conf.ini dest=/etc/neutron/plugin.ini state=link + handlers: - include: "{{ handlers }}/restart_services.yml" - include: "{{ handlers }}/semanage.yml"