<div dir="ltr"><div><div><div><div>Hello guys,<br><br></div>I'm trying to add a second external network to my openstack. I followed the documentation, created a new router and set the new gateway. I can't ping my external gateway from my router namespace  and I can ping this gateway from my server. <br><br></div>I kept comparing the configuration of my new external gateway (which doesn't work in neutron) and my oldest one (which keeps working) and noticed that when I set a gateway to my router this creates a port with a name that bigins with qg. Normally this port has to be assigned to the external bridge (in my case it should be the new external bridge br-eth2). BUT what I saw is that this port qg-xxx is mapped instead to the br-int. <br><br></div>For more explanation please see my confs and some command outputs:<br><br><br>[root@OScontroller templates(keystone_admin)]# neutron net-external-list<br>+--------------------------------------+-------------------+------------------------------------------------------+<br>| id                                   | name              | subnets                                              |<br>+--------------------------------------+-------------------+------------------------------------------------------+<br>| 59c6f54f-26e3-4360-8a05-1a63285c846c | public            | 6744a5b3-1a33-42ae-8ae7-1467ebdc1b13 <a href="http://192.168.5.0/24">192.168.5.0/24</a>  |<br>| 7ee9f199-2c22-42a9-a6af-1b06c2d62a35 | ruckus_management | cba357ee-f9a7-49f3-89e4-9f5d864747cd <a href="http://192.168.31.0/24">192.168.31.0/24</a> |<br>+--------------------------------------+-------------------+------------------------------------------------------+<br><br><br><br><br><br><br><br></div>****this router with its gateway are working***<br><div><div><br>[root@OScontroller templates(keystone_admin)]# ip netns exec qrouter-e8243f85-4c56-47bd-a1ee-40724a861dc6 ip a<br>1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN<br>    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00<br>    inet <a href="http://127.0.0.1/8">127.0.0.1/8</a> scope host lo<br>       valid_lft forever preferred_lft forever<br>    inet6 ::1/128 scope host<br>       valid_lft forever preferred_lft forever<br>25: qr-2b96e8b6-38: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN<br>    link/ether fa:16:3e:b5:54:4d brd ff:ff:ff:ff:ff:ff<br>    inet <a href="http://10.0.0.1/24">10.0.0.1/24</a> brd 10.0.0.255 scope global qr-2b96e8b6-38<br>       valid_lft forever preferred_lft forever<br>    inet6 fe80::f816:3eff:feb5:544d/64 scope link<br>       valid_lft forever preferred_lft forever<br>26: qr-9e50bd2e-fa: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN<br>    link/ether fa:16:3e:fc:06:9b brd ff:ff:ff:ff:ff:ff<br>    inet <a href="http://20.0.0.1/24">20.0.0.1/24</a> brd 20.0.0.255 scope global qr-9e50bd2e-fa<br>       valid_lft forever preferred_lft forever<br>    inet6 fe80::f816:3eff:fefc:69b/64 scope link<br>       valid_lft forever preferred_lft forever<br>27: qg-cd45a565-0b: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN<br>    link/ether fa:16:3e:20:81:60 brd ff:ff:ff:ff:ff:ff<br>    inet <a href="http://192.168.5.100/24">192.168.5.100/24</a> brd 192.168.5.255 scope global qg-cd45a565-0b<br>       valid_lft forever preferred_lft forever<br>    inet <a href="http://192.168.5.101/32">192.168.5.101/32</a> brd 192.168.5.101 scope global qg-cd45a565-0b<br>       valid_lft forever preferred_lft forever<br>    inet <a href="http://192.168.5.103/32">192.168.5.103/32</a> brd 192.168.5.103 scope global qg-cd45a565-0b<br>       valid_lft forever preferred_lft forever<br>    inet6 fe80::f816:3eff:fe20:8160/64 scope link<br>       valid_lft forever preferred_lft forever<br><br><br><br><br><br><br></div><div>************* this is the new router and gateway that I configured and they are not working<br>[root@OScontroller templates(keystone_admin)]# ip netns exec qrouter-b3c51abb-4a14-4af2-ae72-b41e7cba4e84 ip a<br>1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN<br>    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00<br>    inet <a href="http://127.0.0.1/8">127.0.0.1/8</a> scope host lo<br>       valid_lft forever preferred_lft forever<br>    inet6 ::1/128 scope host<br>       valid_lft forever preferred_lft forever<br>38: qg-6406f3e3-72: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN<br>    link/ether fa:16:3e:63:48:64 brd ff:ff:ff:ff:ff:ff<br>    inet <a href="http://192.168.31.70/24">192.168.31.70/24</a> brd 192.168.31.255 scope global qg-6406f3e3-72<br>       valid_lft forever preferred_lft forever<br>    inet6 fe80::f816:3eff:fe63:4864/64 scope link<br>       valid_lft forever preferred_lft forever<br><br><br><br><br>[root@OScontroller templates(keystone_admin)]# ovs-vsctl show<br>9b3e4cc7-6761-483e-a538-1a132734d1a5<br>    Bridge br-tun<br>        Port br-tun<br>            Interface br-tun<br>                type: internal<br>        Port "vxlan-c0a80523"<br>            Interface "vxlan-c0a80523"<br>                type: vxlan<br>                options: {df_default="true", in_key=flow, local_ip="192.168.5.34", out_key=flow, remote_ip="192.168.5.35"}<br>        Port patch-int<br>            Interface patch-int<br>                type: patch<br>                options: {peer=patch-tun}<br>    Bridge "br-eth2"<br>        Port "phy-br-eth2"<br>            Interface "phy-br-eth2"<br>                type: patch<br>                options: {peer="int-br-eth2"}<br>        Port "eth2"<br>            Interface "eth2"<br>        Port "br-eth2"<br>            Interface "br-eth2"<br>                type: internal<br>    Bridge br-int<br>        fail_mode: secure<br>        Port "qr-9e50bd2e-fa"<br>            tag: 1<br>            Interface "qr-9e50bd2e-fa"<br>                type: internal<br>        Port "tap61f76964-85"<br>            tag: 1<br>            Interface "tap61f76964-85"<br>                type: internal<br>        Port "qvo0952a802-99"<br>            tag: 2<br>            Interface "qvo0952a802-99"<br>        Port "qvo5cc221dc-e8"<br>            tag: 1<br>            Interface "qvo5cc221dc-e8"<br>        Port "tap599b2f77-21"<br>            tag: 4095<br>            Interface "tap599b2f77-21"<br>                type: internal<br>        Port "tapa383b7ae-99"<br>            tag: 2<br>            Interface "tapa383b7ae-99"<br>                type: internal<br>        Port "tapbea1a763-0b"<br>            tag: 2<br>            Interface "tapbea1a763-0b"<br>                type: internal<br>        Port "qr-2b96e8b6-38"<br>            tag: 2<br>            Interface "qr-2b96e8b6-38"<br>                type: internal<br>        Port int-br-ex<br>            Interface int-br-ex<br>                type: patch<br>                options: {peer=phy-br-ex}<br>        Port "qg-6406f3e3-72"<br>            tag: 9<br>            Interface "qg-6406f3e3-72"<br>                type: internal<br>        Port patch-tun<br>            Interface patch-tun<br>                type: patch<br>                options: {peer=patch-int}<br>        Port "int-br-eth2"<br>            Interface "int-br-eth2"<br>                type: patch<br>                options: {peer="phy-br-eth2"}<br>        Port br-int<br>            Interface br-int<br>                type: internal<br>    Bridge br-ex<br>        Port "qg-cd45a565-0b"<br>            Interface "qg-cd45a565-0b"<br>                type: internal<br>        Port br-ex<br>            Interface br-ex<br>                type: internal<br>        Port "eth0"<br>            Interface "eth0"<br>        Port phy-br-ex<br>            Interface phy-br-ex<br>                type: patch<br>                options: {peer=int-br-ex}<br>    ovs_version: "2.3.1"<br>[root@OScontroller templates(keystone_admin)]#<br><br></div><div><br><br><div>************************fichiers de conf*********************<br></div><br>[root@OScontroller neutron]#  cat l3_agent.ini | grep -v ^# | grep -v ^$<br>[DEFAULT]<br>debug = False<br>interface_driver =neutron.agent.linux.<div>interface.OVSInterfaceDriver<br>use_namespaces = True<br>gateway_external_network_id =<br>handle_internal_only_routers = True<br>external_network_bridge =<br>metadata_port = 9697<br>send_arp_for_ha = 3<br>periodic_interval = 40<br>periodic_fuzzy_delay = 5<br>enable_metadata_proxy = True<br>router_delete_namespaces = False<br>agent_mode = legacy<br>allow_automatic_l3agent_failover=False<br><br><br><br>root@OScontroller neutron]# cat plugin.ini | grep -v ^# | grep -v ^$<br>[ml2]<br>type_drivers = vxlan<br>tenant_network_types = vxlan<br>mechanism_drivers =openvswitch<br>[ml2_type_flat]<br>[ml2_type_vlan]<br>[ml2_type_gre]<br>[ml2_type_vxlan]<br>vni_ranges =10:100<br>vxlan_group =224.0.0.1<br>[securitygroup]<br>enable_security_group = True<br><br><br>[root@OScontroller openvswitch]# cat ovs_neutron_plugin.ini | grep -v ^# | grep -v ^$<br>[ovs]<br>enable_tunneling = True<br>integration_bridge = br-int<br>tunnel_bridge = br-tun<br>local_ip =192.168.5.34<br>network_vlan_ranges = physnet1,physnet2<br>bridge_mappings =physnet1:br-ex,physnet2:br-eth2<br>[agent]<br>polling_interval = 2<br>tunnel_types =vxlan<br>vxlan_udp_port =4789<br>l2_population = False<br>arp_responder = False<br>enable_distributed_routing = False<br>[securitygroup]<br>firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver<br><br><br>[root@OScontroller network-scripts]# cat ifcfg-eth0<br>NAME=eth0<br>UUID=1b3a9854-df55-43cf-a9b8-21c1a9cc1e5b<br>DEVICE=eth0<br>HWADDR=44:1e:a1:75:ea:d6<br>DEVICETYPE=ovs<br>OVS_BRIDGE=br-ex<br>ONBOOT=yes<br>TYPE=OVSPort<br>NM_CONTROLLED=yes<br><br><br>[root@OScontroller network-scripts]# cat ifcfg-eth2<br>NAME=eth2<br>DEVICE=eth2<br>HWADDR=44:1e:a1:75:ea:d2<br>DEVICETYPE=ovs<br>OVS_BRIDGE=br-eth2<br>ONBOOT=yes<br>TYPE=OVSPort<br>NM_CONTROLLED=yes<br><br><br>[root@OScontroller network-scripts]# cat ifcfg-br-eth2<br>DEVICE=br-eth2<br>DEVICETYPE=ovs<br>TYPE=OVSBridge<br>BOOTPROTO=static<br>IPADDR=192.168.31.34<br>NETMASK=255.255.255.0<br>ONBOOT=yes<br>GATEWAY=192.168.31.1<br>DNS1=8.8.8.8<br><br><br>[root@OScontroller network-scripts]# cat ifcfg-br-ex<br>DEVICE=br-ex<br>DEVICETYPE=ovs<br>TYPE=OVSBridge<br>BOOTPROTO=static<br>IPADDR=192.168.5.34<br>NETMASK=255.255.255.0<br>ONBOOT=yes<br>GATEWAY=192.168.5.1<br>DNS1=8.8.8.8<br>DNS2=192.168.5.1<br></div><br><br></div><div>Thank you for your help,<br></div><div>Sara<br></div><div><br><br><br></div></div></div>