631853551c
Due to the way how OVS handles GRE tunnels it tries to copy DF flag to wrapping GRE packet header, thus making it impossible for packets of more than 1430 bytes size to be transfered through regular interfaces this breaks almost all applications. Thus we are setting dont_fragment option to false and we will also need to make ovs agent set df_inherit flag to this option for OVS versions that support df_inherit flag We will also need to document that user should extend his MTU size to reasonable one according to http://docs.openstack.org/icehouse/install-guide/install/yum/content/neutron-ml2-network-node.html in order to not get performance issues. DocImpact Change-Id: I031351b36f56881f21986b412bfae79fba0e884b Partial-bug: #1402046 |
||
|---|---|---|
| .. | ||
| examples | ||
| lib/puppet | ||
| manifests | ||
| spec | ||
| templates | ||
| .fixtures.yml | ||
| Gemfile | ||
| LICENSE | ||
| Modulefile | ||
| README.md | ||
| Rakefile | ||
README.md
neutron
4.0.0 - 2014.1.0 - Icehouse
Table of Contents
- Overview - What is the neutron module?
- Module Description - What does the module do?
- Setup - Tha basics of getting started with neutron.
- Implementation - An under-the-hood peek at what the module is doing.
- Limitations - OS compatibility, etc.
- Development - Guide for contributing to the module
- Contributors - Those with commits
- Release Notes - Notes on the most recent updates to the module
Overview
The neutron module is a part of Stackforge, an effort by the Openstack infrastructure team to provide continuous integration testing and code review for Openstack and Openstack community projects not part of the core software. The module itself is used to flexibly configure and manage the newtork service for Openstack.
Module Description
The neutron module is an attempt to make Puppet capable of managing the entirety of neutron. This includes manifests to provision such things as keystone endpoints, RPC configurations specific to neutron, database connections, and network driver plugins. Types are shipped as part of the neutron module to assist in manipulation of the Openstack configuration files.
This module is tested in combination with other modules needed to build and leverage an entire Openstack installation. These modules can be found, all pulled together in the openstack module.
Setup
What the neutron module affects:
- Neutron, the network service for Openstack.
Installing neutron
puppet module install puppetlabs/neutron
Beginning with neutron
To utilize the neutron module's functionality you will need to declare multiple resources. The following is a modified excerpt from the openstack module. It provides an example of setting up an Open vSwitch neutron installation. This is not an exhaustive list of all the components needed. We recommend that you consult and understand the openstack module and the core openstack documentation to assist you in understanding the available deployment options.
# enable the neutron service
class { '::neutron':
enabled => true,
bind_host => '127.0.0.1',
rabbit_host => '127.0.0.1',
rabbit_user => 'neutron',
rabbit_password => 'rabbit_secret',
verbose => false,
debug => false,
}
# configure authentication
class { 'neutron::server':
auth_host => '127.0.0.1', # the keystone host address
auth_password => 'keystone_neutron_secret',
sql_connection => 'mysql://neutron:neutron_sql_secret@127.0.0.1/neutron?charset=utf8',
}
# enable the Open VSwitch plugin server
class { 'neutron::plugins::ovs':
tenant_network_type => 'gre',
network_vlan_ranges => 'physnet:1000:2000',
}
Other neutron network drivers include:
- dhcp,
- metadata,
- and l3.
Nova will also need to be configured to connect to the neutron service. Setting up the nova::network::neutron class sets
the network_api_class parameter in nova to use neutron instead of nova-network.
class { 'nova::network::neutron':
neutron_admin_password => 'neutron_admin_secret',
}
The examples directory also provides a quick tutorial on how to use this module.
Implementation
neutron
neutron is a combination of Puppet manifest and ruby code to deliver configuration and extra functionality through types and providers.
Limitations
This module supports the following neutron plugins:
- Open vSwitch
- linuxbridge
- cisco-neutron
The following platforms are supported:
- Ubuntu 12.04 (Precise)
- Debian (Wheezy)
- RHEL 6
- Fedora 18
Development
The puppet-openstack modules follow the Openstack development model. Developer documentation for the entire puppet-openstack project is at:
Contributors
The github contributor graph.
Release Notes
4.0.0
- Stable Icehouse release.
- Added Neutron-Nova interactions support.
- Added external network bridge and interface driver for vpn agent.
- Added support for puppetlabs-mysql 2.2 and greater.
- Added neutron::config to handle additional custom options.
- Added https support to metadata agent.
- Added manage_service paraneter.
- Added quota parameters.
- Added support to configure ovs without installing package.
- Added support for optional haproxy package management.
- Added support to configure plugins by name rather than class name.
- Added multi-worker support.
- Added isolated network support.
- Updated security group option for ml2 plugin.
- Updated packaging changes for Red Hat and Ubuntu systems.
- Updated parameter defaults to track upstream (Icehouse).
- Fixed bug for subnets with empty values.
- Fixed typos and misconfiguration in neutron.conf.
- Fixed max_retries parameter warning.
- Fixed database creation bugs.
3.3.0
- Added neutron_port resource.
- Added external network bridge for vpn agent.
- Changed dhcp_lease_duration to Havana default of 86400
- Fixed VPNaaS installation for Red Hat systems.
- Fixed conflicting symlink.
- Fixed network_vlan_ranges parameter for OVS plugin
3.2.0
- Added write support for dns, allocation pools, and host routes to Neutron router provider.
- Fixed multi-line attribute detection in base Neutron provider.
- Fixed bugs with neutron router gateway id parsing.
3.1.0
- Added VXLAN support.
- Configures security group when using ML2 plugin.
- Ensures installation of ML2 plugin.
- Fixed server deprecated warnings.
- Tuned report and downtime intervals for l2 agent.
- Added support for neutron nvp plugin.
- Ensures linuxbridge dependency is installed on RHEL.
- Improved L3 scheduler support.
- Fixed improper test for tunnel_types param.
- Allows log_dir to be set to false in order to disable file logging.
- Improves consistency with other puppet modules for OpenStack by prefixing database related parameters with database.
- Removed strict checks for vlan_ranges.
- Fixed neutron-metering-agent package for Ubuntu.
- Fixed VPNaaS service name for Ubuntu.
- Fixed FWaaS race condition.
- Fixed ML2 package dependency for Ubuntu.
- Removed erronious check for service_plugins.
- Added support for https auth endpoints.
- Makes haproxy package management optional.
3.0.0
- Major release for OpenStack Havana.
- Renamed project from quantum to neutron.
- Changed the default quota_driver.
- Removed provider setting requirement.
- Fixed file permissions.
- Fixed bug to ensure that keystone endpoint is set before service starts.
- Added database configuration support for Havana.
- Ensured dnsmasq package resource for compatibility with modules that define the same resource
- Added multi-worker support.
- Added metering agent support.
- Added vpnaas agent support.
- Added ml2 plugin support.
- Fixed lbass driver name.
2.2.0
- Improved documentation.
- Added syslog support.
- Added quantum-plugin-cisco package resource.
- Various lint and bug fixes.