Fixed wrong conditions for setup ca_file variable in the puppet template
for nsx.ini configuration file.
Change-Id: I795adc24133a1865ba40feb3b74d03d34f13e9e0
Closes-Bug: #1605120
In order to apply timeout for query to the neutron service need to
restart the service nova-api.
Change-Id: Ic0684a3e751352b62d821ad1db811d315b0d553e
Closes-Bug: #1596000
Metadata router need some time to start, if we start neutron-servers on
controllers right after primary-controller thay may fail (unrecoverable
failure). This patch moves neutron-server start to post-deployment stage
giving metadata router to be ready to serve requests.
Remove ruby script that tries to check metadata router status.
Closes-bug: #1587074
Change-Id: I09edb236ed1a71d7a90e5d556e55fe22a67f716c
Without this check neutron server on controller nodes tries to start
before metadata infrastructure gets initialized from task on
primary-controller and terminates with exception.
Change-Id: Ifaa559bb849a9b03e6bd4ecd379091302fc27385
Closes-bug: #1587074
Deleted 'Allocate IP address in management network for NSX metadata
proxy' parameter. Now this is the default behavior when choosing a
management network for "nova metadata api".
If "nsxv metadata proxy" address will be different from openstack
management network - between "nova metadat api" and "nsxv metadata
proxy" will not l3 connectedness.
Change-Id: I7484fbe0fa749e2d2c7a6a8d8ce53d5e55e68ece
Disabling the metadata server initialization for all nodes except the
primary-controller. Otherwise, we may get an error, and the server does
not start.
Change-Id: Ia96062df6180dca6d5d9a372f195f83beca2c8bf
Closes-Bug: #1583267
* Transfer all the settings for the metadata proxy under checkbox "Init
metadata infrastructure"
* Added restrictions to be bound by filling the parameters needs for
metadata proxy
* Changed in puppet manifests for set up metadata settings only if
checkbox "Init metadata infrastructure" in True state
* Changed parameter nsxv_metadata_listen_mgtm to radio/select type.
* Removed 'insecure' parameter for NSXv, 'insecure = false' if ca loaded
and vice versa
* Remove nsxv_insecure from nsxv_smoke test
* Add nsxv_metadata_initializer to enable_plugin
* Change nsxv_metadata_listen_mgmt -> nsxv_metadata_listen in test
Change-Id: I4d40ef909646284f3f7e87705e8d2463f374445d
Deployment on the CI stand fails with an error - the neutron server does
not manage successfully start, need increase check timeout.
Change-Id: Ifefe0c3b7425ddfcfd30c5d8d947575749c913ab
* Script adds restrictions to built-in roles, so they get hidden when
plugin is enabled for environment. Hidden roles: compute, ironic,
cinder, cinder-block-device
Change-Id: I9dfe7ae1abd30f3846740ebc6f102677465282af
LBaaS v2 that Neutron NSX plugin provides:
- TLS support for NSX edges
- certificate management
While here move hardcoded values from manifests into ::nsxv::params
class.
Also some style nits: align fat arrows and equation operators according
to puppet style guide (non-functional change).
DocImpact: update documentation section that shows how to use LBaaS.
Change-Id: Id1d500a6dde2b4a8b6d1fb4120341bb87f0c312a
* Deleted post_deployment tasks
* Added reexecute_on for netron tasks
* Added stop neutron service to apply the new settings
Change-Id: I522b7a25f1c9fec154b6074d610ed81c4a0684d5
Document two options related to nova-api-metadata network configuration.
Edit labels and descriptions in environment_config.yaml. Fix typos.
Change-Id: I0089c7b5ae8ff9fc29bca80829b1c600fb845163
* shared variables moved in class nsxv :: params
* from the module nsxv removed classes that do not use templates or
external files(from directory "files" module)
* hiera calls from classes replaced to parameterized classes
* fix keystone auth url and neutron url for compute-vmware role
* more "cosmetic" fixes
Change-Id: I24da204d8f433439cc6f60501d479c84cd3c21c3
Metadata proxy can accsess to metadata server via:
1) Public network from routed ip(need set ip,netmask,gw)
2) Management network from routed ip(need set ip,netmask,gw)
3) Management network from management ip(automatic allocation)
* Add checkbox to choose route to metadata server via public or
management networks.
* Add checkbox to reservation ip address in management network
for use with NSXv metadata proxy.
Change-Id: I71675dd0871266bf6efcbbbbb2b3d2d49c4944f4
* Adapt tasks for work with "task base" deployment
* Changed [neutron]/timeout in nova.conf to 600s
* Changed in the method of get the cluster moref ID to search for the
name of the cluster in a subfolder
* Added 'reexecute_on: [deploy_changes]' to post_deployment task for
reconfiguration nsx.ini after new compute-vmware node added
* Moved post_deployment from task.yaml to deployment_tasks.yaml
* Disabled getting upsream puppet modules, replaced by the use of
/etc/puppet/modules
* Override "neutron_qos" option to false
Related-Bug: 1560377
Change-Id: Iaf7656660a93011b0766743b1562d461fa694d67
Delete not need overrides for network_metadata and network_scheme
hiera hashes.
Closes-Bug: 1557952
Change-Id: I4b45319ffa95a70f18dbeeb79ffddeef5380ac55
haproxy configuration file for nova-metadata-api service was renamed
from /etc/haproxy/conf.d/060-nova-metadata-api.cfg to
/etc/haproxy/conf.d/050-nova-metadata-api.cfg
Change-Id: I6e28a683bca740c359fcf7827e581333391045c6
* Added get vcenter cluster name from "Vmware" tab
* Added convert cluster name to morefid
* Added public/private key to controller/compute nodes
* Added script, what check and configure neutron, if need
* Added task for connect to controller from compute-vmware via ssh and
execute neutron reconfigure script
* Update documentation
Change-Id: I0dbd6b15fc2cb1efd0de009ee79a27222fe4bab3
* Added "skip" for new primary-* tasks(tasks for primary-controller)
* Added restrictions for hide plugin with neutron and vlan segmentation selected
* Change script to configure neutron haproxy config
* Added refresh_on for openstack-network-neutron-start task
Change-Id: I0a487ec5a81706e853a6ddcceb696fe5f4eaf7f0
Changes hiera override method which used 'inline_template' puppet
functions that return string in US-ASCII encoding to custom puppet
function.
Change-Id: I6385021ace5090206bb4aaa239eda429714d4cd2
Closes-bug: #1519916
* Add simple cloud-init to TinyCoreLinux image (for SSH key integration)
* Rebuild deb with TinyCoreLinux image
* Override hiera data for upload TinyCoreLinux image as 'TestVM-VMDK'
Change-Id: I464840b81a6d16f27de9bb2965762ab3017b2feb
- Introduce new deployment task that will increase server and client
timeouts.
- Default timeout (1m) that is configured by haproxy globally for
backends is not enough when Neutron is used with NSX plugin. For some
actions like router and network creation it takes more that 1 minute
to finish operation. Default value leads to 504 (Gateway timeout) that
neutron command line client receives.
Change-Id: I03fde105a737058e312620e9eb33412902a047e7
Closes-bug: #1508971
* Remove python-nova.deb package and remove manifest that installs it
* Remove manifest that change plugin repository settings
* Change neutron policy for liberty release from vmware plugin
* Change neutron manifests for work on liberty release
Change-Id: If0c64ae24fd63eb733550669e74cfe0cc83756db
* Add deb package provide tiny core linux vmdk image with preinstalled open-vm-tools
* Upload tiny core linux vmdk image to glance
Change-Id: Ie3f9cde2f7ad03381e638184639185be6c626ab1
* Plugin removes restriction on 'Neutron with tunnelling' in cluster
creation wizard
* Plugin ships two .deb packages:
python-vmware-nsx - Neutron NSXv plugin
python-nova - Nova package with NSXv support in nova-compute
https://review.openstack.org/#/c/209372/https://review.openstack.org/#/c/209374/
For build plugin need fpb version 3.
Change-Id: If6ba42abd7aaabca7a02c45718a82c6f8ca1e5a2
Plugin allows to use Neutron with VMware NSX plugin
(https://github.com/stackforge/vmware-nsx)
General plugin workflow:
* Disable nova-network
* Reconfigure nova-compute to use Neutron as network API
* Install neutron-server
* Install custom python-nova package (contains NSXv support for
nova-compute)
Change-Id: Ibfac2c9210208de9171d7406afe30aa96e8c20a3
Andreas Jaeger