<div dir="ltr">Hi Marius,<div><br></div><div>I've followed your howto and managed to get overcloud deployed in HA, thanks. However I cannot login to it (via CLI or Horizon) :</div><div><br></div><div><b>ERROR (Unauthorized): The request you have made requires authentication. (HTTP 401) (Request-ID: req-96310dfa-3d64-4f05-966f-f4d92702e2b1)</b><br></div><div><br></div><div>So I rebooted the controllers and now I cannot login through Provisioning network, seems some openvswitch bridge conf problem, heres my conf:</div><div><br></div><div><div># ip a<br></div><div>1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN </div><div> link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00</div><div> inet <a href="http://127.0.0.1/8">127.0.0.1/8</a> scope host lo</div><div> valid_lft forever preferred_lft forever</div><div> inet6 ::1/128 scope host </div><div> valid_lft forever preferred_lft forever</div><div>2: enp1s0f0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP qlen 1000</div><div> link/ether 7c:a2:3e:fb:25:55 brd ff:ff:ff:ff:ff:ff</div><div> inet <a href="http://192.168.21.60/24">192.168.21.60/24</a> brd 192.168.21.255 scope global dynamic enp1s0f0</div><div> valid_lft 84562sec preferred_lft 84562sec</div><div> inet6 fe80::7ea2:3eff:fefb:2555/64 scope link </div><div> valid_lft forever preferred_lft forever</div><div>3: enp1s0f1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master ovs-system state UP qlen 1000</div><div> link/ether 7c:a2:3e:fb:25:56 brd ff:ff:ff:ff:ff:ff</div><div> inet6 fe80::7ea2:3eff:fefb:2556/64 scope link </div><div> valid_lft forever preferred_lft forever</div><div>4: ovs-system: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN </div><div> link/ether c2:15:45:c8:b3:04 brd ff:ff:ff:ff:ff:ff</div><div>5: br-tun: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN </div><div> link/ether e6:df:8e:fb:f0:42 brd ff:ff:ff:ff:ff:ff</div><div>6: vlan20: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN </div><div> link/ether e6:79:56:5d:07:f2 brd ff:ff:ff:ff:ff:ff</div><div> inet <a href="http://192.168.100.12/24">192.168.100.12/24</a> brd 192.168.100.255 scope global vlan20</div><div> valid_lft forever preferred_lft forever</div><div> inet <a href="http://192.168.100.10/32">192.168.100.10/32</a> brd 192.168.100.255 scope global vlan20</div><div> valid_lft forever preferred_lft forever</div><div> inet6 fe80::e479:56ff:fe5d:7f2/64 scope link </div><div> valid_lft forever preferred_lft forever</div><div>7: vlan40: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN </div><div> link/ether ea:43:69:c3:bf:a2 brd ff:ff:ff:ff:ff:ff</div><div> inet <a href="http://192.168.102.11/24">192.168.102.11/24</a> brd 192.168.102.255 scope global vlan40</div><div> valid_lft forever preferred_lft forever</div><div> inet6 fe80::e843:69ff:fec3:bfa2/64 scope link </div><div> valid_lft forever preferred_lft forever</div><div>8: vlan174: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN </div><div> link/ether 16:bf:9e:e0:9c:e0 brd ff:ff:ff:ff:ff:ff</div><div> inet <a href="http://192.168.174.36/24">192.168.174.36/24</a> brd 192.168.174.255 scope global vlan174</div><div> valid_lft forever preferred_lft forever</div><div> inet <a href="http://192.168.174.35/32">192.168.174.35/32</a> brd 192.168.174.255 scope global vlan174</div><div> valid_lft forever preferred_lft forever</div><div> inet6 fe80::14bf:9eff:fee0:9ce0/64 scope link </div><div> valid_lft forever preferred_lft forever</div><div>9: br-ex: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN </div><div> link/ether 7c:a2:3e:fb:25:56 brd ff:ff:ff:ff:ff:ff</div><div> inet <a href="http://192.168.21.60/24">192.168.21.60/24</a> brd 192.168.21.255 scope global br-ex</div><div> valid_lft forever preferred_lft forever</div><div> inet6 fe80::7ea2:3eff:fefb:2556/64 scope link </div><div> valid_lft forever preferred_lft forever</div><div>10: vlan50: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN </div><div> link/ether da:15:7f:b9:72:4b brd ff:ff:ff:ff:ff:ff</div><div> inet <a href="http://10.0.20.10/24">10.0.20.10/24</a> brd 10.0.20.255 scope global vlan50</div><div> valid_lft forever preferred_lft forever</div><div> inet6 fe80::d815:7fff:feb9:724b/64 scope link </div><div> valid_lft forever preferred_lft forever</div><div>11: vlan30: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN </div><div> link/ether 7a:b3:4d:ad:f1:72 brd ff:ff:ff:ff:ff:ff</div><div> inet <a href="http://192.168.101.11/24">192.168.101.11/24</a> brd 192.168.101.255 scope global vlan30</div><div> valid_lft forever preferred_lft forever</div><div> inet <a href="http://192.168.101.10/32">192.168.101.10/32</a> brd 192.168.101.255 scope global vlan30</div><div> valid_lft forever preferred_lft forever</div><div> inet6 fe80::78b3:4dff:fead:f172/64 scope link </div><div> valid_lft forever preferred_lft forever</div><div>12: br-int: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN </div><div> link/ether b6:88:6b:d7:3a:4c brd ff:ff:ff:ff:ff:ff</div></div><div><br></div><div><br></div><div># ovs-vsctl show<br>3ee4adeb-4a5a-49a6-a16e-1e5f6e22f101<br> Bridge br-ex<br> Port br-ex<br> Interface br-ex<br> type: internal<br> Port "enp1s0f1"<br> Interface "enp1s0f1"<br> Port "vlan40"<br> tag: 40<br> Interface "vlan40"<br> type: internal<br> Port "vlan20"<br> tag: 20<br> Interface "vlan20"<br> type: internal<br> Port phy-br-ex<br> Interface phy-br-ex<br> type: patch<br> options: {peer=int-br-ex}<br> Port "vlan50"<br> tag: 50<br> Interface "vlan50"<br> type: internal<br> Port "vlan30"<br> tag: 30<br> Interface "vlan30"<br> type: internal<br> Port "vlan174"<br> tag: 174<br> Interface "vlan174"<br> type: internal<br> Bridge br-int<br> fail_mode: secure<br> Port br-int<br> Interface br-int<br> type: internal<br> Port patch-tun<br> Interface patch-tun<br> type: patch<br> options: {peer=patch-int}<br> Port int-br-ex<br> Interface int-br-ex<br> type: patch<br> options: {peer=phy-br-ex}<br> Bridge br-tun<br> fail_mode: secure<br> Port "gre-0a00140b"<br> Interface "gre-0a00140b"<br> type: gre<br> options: {df_default="true", in_key=flow, local_ip="10.0.20.10", out_key=flow, remote_ip="10.0.20.11"}<br> Port patch-int<br> Interface patch-int<br> type: patch<br> options: {peer=patch-tun}<br> Port "gre-0a00140d"<br> Interface "gre-0a00140d"<br> type: gre<br> options: {df_default="true", in_key=flow, local_ip="10.0.20.10", out_key=flow, remote_ip="10.0.20.13"}<br> Port "gre-0a00140c"<br> Interface "gre-0a00140c"<br> type: gre<br> options: {df_default="true", in_key=flow, local_ip="10.0.20.10", out_key=flow, remote_ip="10.0.20.12"}<br> Port br-tun<br> Interface br-tun<br> type: internal<br> ovs_version: "2.4.0"<br></div><div><br></div><div>Regards,</div><div>Pedro Sousa</div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Sun, Oct 18, 2015 at 11:13 AM, Marius Cornea <span dir="ltr"><<a href="mailto:marius@remote-lab.net" target="_blank">marius@remote-lab.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi everyone,<br>
<br>
I wrote a blog post about how to deploy a HA with network isolation<br>
overcloud on top of the virtual environment. I tried to provide some<br>
insights into what instack-virt-setup creates and how to use the<br>
network isolation templates in the virtual environment. I hope you<br>
find it useful.<br>
<br>
<a href="https://remote-lab.net/rdo-manager-ha-openstack-deployment/" rel="noreferrer" target="_blank">https://remote-lab.net/rdo-manager-ha-openstack-deployment/</a><br>
<br>
Thanks,<br>
Marius<br>
<br>
_______________________________________________<br>
Rdo-list mailing list<br>
<a href="mailto:Rdo-list@redhat.com">Rdo-list@redhat.com</a><br>
<a href="https://www.redhat.com/mailman/listinfo/rdo-list" rel="noreferrer" target="_blank">https://www.redhat.com/mailman/listinfo/rdo-list</a><br>
<br>
To unsubscribe: <a href="mailto:rdo-list-unsubscribe@redhat.com">rdo-list-unsubscribe@redhat.com</a><br>
</blockquote></div><br></div>