接着安装计算节点网络服务:
1.安装组件
yum install openstack-neutron-linuxbridge ebtables ipset2.配置组件
注释:Networking 通用组件的配置包括认证机制、消息队列和插件。
...
)表示默认的配置选项你应该保留。
-
编辑``/etc/neutron/neutron.conf`` 文件并完成如下操作:
-
在``[database]`` 部分,注释所有``connection`` 项,因为计算节点不直接访问数据库。
-
在``[DEFAULT]``部分,配置``RabbitMQ``消息队列访问权限:
[DEFAULT] ... transport_url = rabbit://openstack:RABBIT_PASS@controller
用你在RabbitMQ中为``openstack``选择的密码替换 “RABBIT_PASS”。
-
在 “[DEFAULT]” 和 “[keystone_authtoken]” 部分,配置认证服务访问:
[DEFAULT] ... auth_strategy = keystone [keystone_authtoken] ... auth_uri = http://controller:5000 auth_url = http://controller:35357 memcached_servers = controller:11211 auth_type = password project_domain_name = default user_domain_name = default project_name = service username = neutron password = NEUTRON_PASS
将
NEUTRON_PASS
替换为你在认证服务中为neutron
用户选择的密码。在
[keystone_authtoken]
中注释或者删除其他选项。
-
在
[oslo_concurrency]
部分,配置锁路径:[oslo_concurrency] ... lock_path = /var/lib/neutron/tmp
-
。在“[oslo_messaging_rabbit]”部分,配置 “RabbitMQ” 消息队列的连接:
rpc_backend = rabbit
rabbit_host = 192.168.141.170
rabbit_userid = openstack
rabbit_password = openstack (密码)
修改配置文件:/etc/neutron/plugins/ml2/linuxbridge_agent.ini
-
在``[linux_bridge]``部分,将公共虚拟网络和公共物理网络接口对应起来:
[linux_bridge] physical_interface_mappings = provider:PROVIDER_INTERFACE_NAME
将``PUBLIC_INTERFACE_NAME`` 替换为底层的物理公共网络接口。请查看:ref:environment-networking for more information。
-
在``[vxlan]``部分,禁止VXLAN覆盖网络:
[vxlan] enable_vxlan = False
-
在 ``[securitygroup]``部分,启用安全组并配置 Linux 桥接 iptables 防火墙驱动:
[securitygroup] ... enable_security_group = True firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver
修改配置文件:/etc/nova/nova.conf
在``[neutron]`` 部分,配置访问参数:
[neutron]
...
url = http://controller:9696
auth_url = http://controller:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = NEUTRON_PASS
-
重启计算服务:
# systemctl restart openstack-nova-compute.service
-
启动Linuxbridge代理并配置它开机自启动:
# systemctl enable neutron-linuxbridge-agent.service # systemctl start neutron-linuxbridge-agent.service
获取admin账号权限
source admin
查看neutron-server进程是否正常运行
neutron ext-list +---------------------------+-----------------------------------------------+ | alias | name | +---------------------------+-----------------------------------------------+ | default-subnetpools | Default Subnetpools | | network-ip-availability | Network IP Availability | | network_availability_zone | Network Availability Zone | | auto-allocated-topology | Auto Allocated Topology Services | | ext-gw-mode | Neutron L3 Configurable external gateway mode | | binding | Port Binding | | agent | agent | | subnet_allocation | Subnet Allocation | | l3_agent_scheduler | L3 Agent Scheduler | | tag | Tag support | | external-net | Neutron external network | | net-mtu | Network MTU | | availability_zone | Availability Zone | | quotas | Quota management support | | l3-ha | HA Router extension | | flavors | Neutron Service Flavors | | provider | Provider Network | | multi-provider | Multi Provider Network | | address-scope | Address scope | | extraroute | Neutron Extra Route | | timestamp_core | Time Stamp Fields addition for core resources | | router | Neutron L3 Router | | extra_dhcp_opt | Neutron Extra DHCP opts | | dns-integration | DNS Integration | | security-group | security-group | | dhcp_agent_scheduler | DHCP Agent Scheduler | | router_availability_zone | Router Availability Zone | | rbac-policies | RBAC Policies | | standard-attr-description | standard-attr-description | | port-security | Port Security | | allowed-address-pairs | Allowed Address Pairs | | dvr | Distributed Virtual Router |