- The networking-hyperv plugin[1] was retired because the Winstackers
project was retired.
- The ncs plugin was already removed[2]
- The cisco_nexues plugin still exists but the networking-cisco project
is no longer maintained and has not been updated for 5 years[3].
[1] https://github.com/openstack-archive/networking-hyperv
[2] 31e4880299
[3] https://opendev.org/x/networking-cisco
Change-Id: Ide554b21cfb029cd863a348dc13ef5328ac83906
Currently, neutron_350.py is using parsed output of `facter -p` in
prescript_000.py which is actually not working fine in terms of getting
the ip of a interface.
This patch is using netifaces python library instead to get the ip
address which is much easier to use and reliable.
Note that netifaces was already a requirement in packstack so it's
included in requirements.txt and as package requirement.
Change-Id: Id4d2b4ca814129c485f491ed91bb6bb99e462114
Resolves: rhbz#1734354
We had a very old hacking version, so we should update it to the
same version as other projects are using. The update also required
additional changes to the Python code to fix new errors and
warnings.
Change-Id: Ic511513057581841fe2230b69a2a413ec0981f15
FWaaS is being retired upstream during Victoria release, so we need to
remove it from packstack options.
[1] https://review.opendev.org/#/c/735829/
Change-Id: I9808793db64f9e4ad6d2af818d52378f04d03456
There is a typo in the message that appears when an answerfile is
generated using PackStack CLI. I removed an extra "O" from "chosen" &
capitalized the project name Neutron.
Change-Id: I0d6062c4c1491014d7fbdc07693be2f9cf847232
Closes-Bug: 1711363
It will be removed in the Train cycle and commits are
up to remove it from puppet-neutron [1].
[1] https://review.opendev.org/#/c/658801/
Change-Id: I3ffd7de708b228e1a28ba7b08ad9138cc715c533
Firewall v1 driver was deprecated long ago and
is now removed in [1], let's switch to firewall v2
driver.
[1] https://review.openstack.org/#/c/616410/
Change-Id: Ic995a392075133dd1fba9e417e07149dc1cb4863
This patch is changing the default driver used in Packstack from
ML2/OVS to ML2/OVN. It also flips jobs running with OVS to OVN and
viceversa while keeping the lbaas scenario with OVS.
Also, the encapsulation used by default changes from vxlan to
geneve.
Change-Id: I0abfdb1de66730101a27ca3a949f056b50fc9c98
Signed-off-by: Daniel Alvarez <dalvarez@redhat.com>
The new Puppet version does not recognize dots in hiera key names,
so we need to replace them with underscores.
Change-Id: I6642d5963a598151dedbbbd957449bb317ceaa59
Replace deprecated 'auth_uri' with 'www_authenticate_uri'
Deprecated 'auth_uri' parameter is being removed from
puppet modules in [1].
In Swift 'auth_uri' is still not deprecated, it's being
deprecated in [2], so that can be taken care later.
For Sahara use ::sahara::keystone::authtoken class to configure
keystone parameters as the one specified in '::sahara' are deprecated
for removal.
[1] https://review.openstack.org/#/q/topic:remove-auth-uri
[2] https://review.openstack.org/#/c/621138/
Co-Authored-By: Javier Pena <jpena@redhat.com>
Change-Id: I68edd9225b44938dc6c275bf464d0e328e814848
[1] removed some deprecated parameters in puppet-neutron. Some of
them are still being used by Packstack, so let's remove them.
[1] - https://review.openstack.org/575976
Change-Id: I4b4beac2f4061689056c399e05d9dd5c6689e82f
Review [1] added some tests which requires "qos" and "trunk"
plugins to be enabled, so add these to the neutron service_plugins.
Also add "qos" to extension_drivers required by "qos" service
plugin.
[1] https://review.openstack.org/#/c/479995/
Change-Id: I30dc3bfc6b63060521ae035e8e0d9a06d9f15d5a
In the last OpenStack cycles Open Virtual Networking has
quickly evolved, improving in features and maturity. This
patch adds support to OVN as ml2 plugin so that packstack
users can evaluate it easily.
Change-Id: Ifaa1e93923e1b1bcc9458331bbe0c163053c695d
During the Ocata cycle, some changes to puppet-nova have affected
Ironic deployments (e.g. [1]).
[1] https://review.openstack.org/391569
Change-Id: I4197cec11137bc838a64fb40ee0221bb848c5a0c
In previous releases neutron L3 agent was configured statically
to manage only br-ex as provider network. This way of configuring
neutron is being deprecated in neutron and it has been removed
from puppet-neutron in https://review.openstack.org/#/c/423625/.
This patch changes neutron configuration to a new mode where a
single L3 agent is able to manage multiple provider networks.
To implement it, a new parameter CONFIG_NEUTRON_OVS_EXTERNAL_PHYSNET
has been introduced. Default configuration has been modify to preserve the
existing behavior, creating a public network attached to br-ex bridge.
Change-Id: I71677a5d456ec8748e36f2191f247c96fa578d7d
1) Remove sriov_agent_required
The sriov agent is enabled by default since Mitaka and this
configuration option has been removed from the upstream modules.
It had previous been deprecated by
I01bdda6df995f3b09fc55e6b1a016246b68eea26 and was removed in
Ib7c36e1a74a1e301f306bcfb884449bbedd1ef70
2) Add cell v2 setup
Nova has added cell v2 as a requirement for Ocata so we need to ensure
it properly gets setup as part of the install. This includes passing the
nova amqp information to the mysql service setup.
3) Remove enable_v1 and enable_v2 lbaas params
The enable_v1 and enable_v2 params were deprecated upstream in
I1c032c53b61face152bb37dfac4646db11403e4e and removed in
Ibad528ad783355236c384d037fe3ffb7d484538f.
Change-Id: I15c0568a92acb2c6a545692e96d8ab9260dbf564
In the last cycle, some changes have been done in the fwaas project
that requires changes in packstack.
- FIREWALL service_provider is required
- Now l3 agent loads fwaas via extension mechanism.
- A new version fwaasv2 exist whis is not used yet, so version 1 is specified.
Change-Id: I0c826333fb695e0fffc340f2fca806a29e2fde6e
Review https://review.openstack.org/#/c/374229/ fixed some
issues for lbaasv2 but some more changes are needed to make
it work properly.
Change-Id: Ia727748498c81cf0e5c1e9fe1afd771ed0c44767
The lbaas service was moved to use lbaasv2 in https://review.openstack.org/360352.
However, some additional fixes are needed to make it work.
To ensure lbaas is working after future changes, it is now enabled
as part of scenario002.
Change-Id: I050c831041262636f07ad616bca6acaaff42ed37
Facter converts to '_' the some characters that are used for
interface names such as ':' for network interface aliases.
The neutron plugin was having problems while using facter
information. Fixes bug: rhbz#1335595
Change-Id: I3a55100e16f4d586d3504c4b7b04f1858ff94480
https://review.openstack.org/307403 added a regression in LinuxBridge
support, as it always used the ovs_type variable, which was only
set when OVS was used.
Change-Id: I80da8d999ece2fd4c5a4f7ad801d56236a30664e
Closes-Bug: #1597653
Previously, Packstack created many individual manifest files from
smaller snippets (templates), and executed them following a certain
order. This is sub-optimal, since it forces code duplication and goes
against the Puppet design of running a single manifest.
This patch refactors the manifest execution, following these principles:
- Only 3 templates used, so max 3 Puppet executions on a host: controller
manifest, network node manifest, compute node manifest.
- The previous snippets are now part of the Packstack Puppet module, and
included as needed by the controller/network/compute manifests. This
concept is similar to the one used by the puppet-openstack-integration
project [1].
- The remaining Python code is left untouched, so we can keep complete
compatibility with previous answer files.
- Redis HA support has been removed, as this was the only service with
HA enabled and didn't fit the general purpose of Packstack.
[1] - https://github.com/openstack/puppet-openstack-integration
Change-Id: I87591be0fce98079c85c5c12ad76ea7115fb9c75
neutron server requires service_providers when lbaas or vpnaas are
enabled. Currently, those parameters are only added as part of the
agent configurations, so neutron server fails to run when agent is
not co-located with controller in packstack.
This patch adds service_providers as part of the neutron-server
configuratio.
Change-Id: I74e0360d2d47485544b7f0e9bd6d34e48826ef0d
Resolves: rhbz#1340804
In Mitaka, a new openflow based firewall_driver has been added in
https://review.openstack.org/#/c/249337/. As part of this changes,
now it's required to configure firewall_driver in plugin.ini to
enable the driver based on iptables.
This patch configures firewall_driver in plugin.ini and
openvswitch_agent.ini files for iptables driver.
Change-Id: I966a0d3677b5ac057c4844817db4a681c69301cb
Closes-Bug: 1570437
Packstack currently configures the same set of OVS switches in network and compute
nodes. In some topologies neutron requires different OVS bridges in different nodes.
as br-ex only in network nodes and br-provider in all nodes for provider networks
or br-vlan for vlan-based tenant networks.
This patch add an additional parameter to packstack:
- CONFIG_NEUTRON_OVS_BRIDGE_COMPUTE
Which must be used to specify the list of bridges that must be created in the
compute nodes. Interfaces will be connected to these switches as specified in
CONFIG_NEUTRON_OVS_BRIDGE_IFACES parameter and mappings added as declared in
CONFIG_NEUTRON_OVS_BRIDGE_MAPPINGS.
Closes-Bug: 1569360
Change-Id: I647ffc1e9bd2ced1be994997e097e3b641964b64
Commit 51fb0c5200 changed the OVS
bridge creation to only happen in network nodes. This breaks setups
with VLAN tenant networks, where a bridge is required in compute
nodes.
This patch fixes this, and also creates bridges when using VLAN
networking. Depending on the configuration, it may create an unneeded
bridge in compute nodes for the external network, if both are
configured, e.g. br-ex for external traffic and br-vlan for tenant
networking. This should be handled in a separate patch, since there
is currently no way to distinguish which bridge is needed in compute
nodes and which one is not.
This fixes bz#1325637
Change-Id: Ia6e982943db0af5465f9e18261e2803a22a0ace0
Comma-separated list of subnets (for example,
192.168.10.0/24,192.168.11.0/24) used for sending tunneling packets.
This is used to configure IP filtering to accept tunneling packets
from these subnets instead of specific IP addresses of peer nodes.
This is useful when you add existing nodes to EXCLUDE_SERVERS
because, in this case, packstack cannot modify the IP filtering of
the existing nodes.
Change-Id: I230774e0dce76a1a48ee68e715e8824670f8c7a3
The OVS bridges were created in compute nodes when they should not.
Only network nodes should have them.
Change-Id: I44e6d60b5349dd79d8d689cba6c039acf1b3b8a5
Previously packstack was constructing type drivers configuration from
CONFIG_NEUTRON_ML2_TENANT_NETWORK_TYPES instead of TYPE_DRIVERS.
Resolves: rhbz#1181131
Change-Id: Ia518d450c98fe97507d08c6bed307ee245ea8119
This provides Neutron VPN as a Service feature.
It's off by default, use answer file or interactive
option to enable it.
Co-Authored-By: Martin Mágr <mmagr@redhat.com>
Change-Id: Idee35212ebdcb9ba76df12c2d085ad4fa970b463
Comment in iptables should point to correct ipaddress of tunnel interface
on the remote host.
Change-Id: Iabcfb6059ca7f0e10c11353217ddacbb0a77f31c
Closes-Bug: rhbz#1230010
- This patch configures plugins by names rather than python classes
Change-Id: Ia7255738f52d347b91c2f8740ea82c2de2dc5fc1
Fixes: rhbz#1058221
Signed-off-by: Gael Chamoulaud <gchamoul@redhat.com>
With patch https://review.openstack.org/#/c/200877/ lbaas/fwaas
packages will be installed in ::neutron class and it's not necessary
to set up whole agents/services on the api node.
Change-Id: I89c32cd69d3ad06ed04460ded64deb7faeec3712
Closes-Bug: rhbz#1233149
We need to get ipadresses of interfaces in CONFIG_NEUTRON_OVS_TUNNEL_IF
to correctly set firewall rules for tunnels.
ClosesBug: rhbz#1215638
Change-Id: I6235ba847e6e411d4487c45a7c5ff27d4a37c655
Users can now use Packstack generated CA or provide Subordinate CA to packstack
to sign certificates used by OpenStack.
Resolves: rhbz#1163866
Change-Id: Idd89dbb7f197a194fd87576be6d95a75d059231e
This patch implements translation from CIDR to interface name,
which should allow deployments to heretogenous infrastructure.
Package openstack-packstack-puppet will need new require,
which is rubygem-ippaddress.
Workaround for rhbz#1200604
Change-Id: Id27881f616781e5a24a1bdb1e169915b7619eebd
We should support ipv6 or ipv4 only installation and we should
set firewall according to ip version.
Resolves-Bug: rhbz#1185652
Change-Id: I7bacf81373a6e0567e0c3fdebacf47cd5c683ad2