Openstack & Neutron DHCP troubleshoot

expert@punkinnovation

Log in to fuel

source it

neutron subnet-list | grep subnet

neutron router-list | grep

ip netns exec qrouter- ifconfig

——————–

grep for vrouters

ssh to vrouter

ssh to compute

Ping across underlay IPs

Check route table

Add static route if needed

root@node-30:~# ping 172.29.7.19
PING 172.29.7.19 (172.29.7.19) 56(84) bytes of data.
^C
--- 172.29.7.19 ping statistics ---
2 packets transmitted, 0 received, 100% packet loss, time 1006ms

root@node-30:~# route add -net 172.29.7.0/24 gw 172.29.0.3

root@node-30:~# ping 172.29.7.19
PING 172.29.7.19 (172.29.7.19) 56(84) bytes of data.
64 bytes from 172.29.7.19: icmp_seq=1 ttl=61 time=0.147 ms
64 bytes from 172.29.7.19: icmp_seq=2 ttl=61 time=0.133 ms

Verify tunnel is up

ovs-vsctl show

Port “gre-ac1d000b”
Interface “gre-ac1d000b”
type: gre
options: {df_default=”false”, in_key=flow, local_ip=”172.29.7.17″, out_key=flow, remote_ip=”172.29.0.11″}

root@node-30:~# ifconfig br-mesh
br-mesh Link encap:Ethernet HWaddr a0:36:9f:35:e8:88
inet addr:172.29.0.11 Bcast:172.29.0.255 Mask:255.255.255.0

root@node-40:~# ovs-vsctl show | grep 0.11
options: {df_default=”false”, in_key=flow, local_ip=”172.29.7.17″, out_key=flow, remote_ip=”172.29.0.11″}
—————

On compute host

nova reboot –hard

Check for DHCP DISCOVER, OFFER, REQUEST, etc.

————–

Check console

nova console-log

Tags: , , ,

Confidence with the CLI

Sourcefire vs Palo Alto UTM Appliances

Unified threat from Sourcefire and Palo Alto Solutions

palo-alto

Version 4.10 from Sourcefire was a stable, robust, competent piece of software. The detection engines performed their duties as expected and IPS/IDS functionality worked as expected.

(more…)

Vendor Sites

Juniper Networks
Cisco
Sourcefire
F5 Networks
Arista Networks
NetApp

Punk Innovation

Legacy Archives