neutron net-create ext-net --router:external --provider:physical_network externa

l --provider:network_type flat
neutron subnet-create ext-net --allocation-pool start=10.184.48.121,end=10.184.4
8.123 --gateway=10.184.48.1 --enable_dhcp=False 10.184.48.0/24
GRANT ALL PRIVILEGES ON heat.* TO 'heat'@'localhost' IDENTIFIED BY 'heat_dbpass'
;
GRANT ALL PRIVILEGES ON heat.* TO 'heat'@'%' IDENTIFIED BY 'heat_dbpass';
openstack endpoint create --publicurl http://10.184.48.132:8004/v1/%\(tenant_id\
)s --internalurl http://10.184.48.132:8004/v1/%\(tenant_id\)s --adminurl http://
10.184.48.132:8004/v1/%\(tenant_id\)s --region regionOne orchestration
openstack endpoint create --publicurl http://10.184.48.132:8000/v1 --internalurl
http://10.184.48.132:8000/v1 --adminurl http://10.184.48.132:8000/v1 --region r
egionOne cloudformation
heat-keystone-setup-domain --stack-user-domain-name heat_user_domain --stack-do
main-admin heat_domain_admin --stack-domain-admin-password heat_pass
heat_template_version: 2013-05-23
description: Simple template to deploy a single compute instance
resources:
my_instance:
type: OS::Nova::Server
properties:
image:Cirros
flavor: m1.tiny
neutron net-create Extnet --provider:network_type flat --provider:physical_netwo
rk External --router:external --shared
neutron subnet-create --name Externalsubnet --gateway 10.184.48.1 Extnet 10.184.
48.0/24 --enable_dhcp False --allocation-pool start=10.184.48.121,end=10.148.48.
123 --gateway 10.148.48.1
ovs-vsctl add-br br-eth0
ovs-vsctl add-port br-eth0 eth0
ifconfig eth0 0
ifconfig br-eth0 10.184.48.177 netmask 255.255.255.0
route add default gw 10.184.48.1 br-eth0
route del default gw 10.184.48.1 eth0
ip link set br-eth0 promisc on
ip link add proxy-br-eth1 type veth peer name eth1-br-proxy
ip link add proxy-br-ex type veth peer name ex-br-proxy
ovs-vsctl add-br br-eth1
ovs-vsctl add-br br-ex
ovs-vsctl add-port br-eth1 eth1-br-proxy
ovs-vsctl add-port br-ex ex-br-proxy
ovs-vsctl add-port br-eth0 proxy-br-eth1
ovs-vsctl add-port br-eth0 proxy-br-ex
ip link set eth1-br-proxy up promisc on
ip link set ex-br-proxy up promisc on
ip link set proxy-br-eth1 up promisc on
ip link set proxy-br-ex up promisc on

ovs-vsctl add-port br-ex phy-br-ex

ovs-vsctl set interface phy-br-ex type=patch
ovs-vsctl add-port br-eth1 phy-br-eth1
ovs-vsctl set interface phy-br-eth1 type=patch
ovs-vsctl add-port br-int int-br-ex
ovs-vsctl set interface int-br-ex type=patch
ovs-vsctl add-port br-int int-br-eth1
ovs-vsctl set interface int-br-eth1 type=patch
ovs-vsctl
ovs-vsctl
ovs-vsctl
ovs-vsctl

set
set
set
set

interface
interface
interface
interface

phy-br-ex options:peer=int-br-ex
phy-br-eth1 options:peer=int-br-eth1
int-br-ex options:peer=phy-br-ex
int-br-eth1 options:peer=phy-br-eth1

====================================================
installation of openstack in boss
====================================================
apt-get install -y rabbitmq-server
rabbitmqctl change_password guest rabbit
apt-get install -y mysql-server python-mysqldb
vi /etc/mysql/my.cnf
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
bind-address = 0.0.0.0
[mysqld]
...
default-storage-engine = innodb
innodb_file_per_table
collation-server = utf8_general_ci
init-connect = 'SET NAMES utf8'
character-set-server = utf8
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
service mysql restart
apt-get install -y ntp vlan bridge-utils
vi /etc/sysctl.conf
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
net.ipv4.ip_forward=1
net.ipv4.conf.all.rp_filter=0
net.ipv4.conf.default.rp_filter=0
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
sysctl -p
apt-get install -y keystone

mysql -u root -p
CREATE DATABASE keystone;
GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY 'keystone_dbp
ass';
quit
vi /etc/keystone/keystone.conf
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
connection = mysql://keystone:keystone_dbpass@10.184.48.177/keystone
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
service keystone restart
keystone-manage db_sync
export OS_SERVICE_TOKEN=ADMIN
export OS_SERVICE_ENDPOINT=http://10.184.48.177:35357/v2.0
keystone
keystone
keystone
keystone
keystone

tenant-create --name=admin --description="Admin Tenant"

tenant-create --name=service --description="Service Tenant"
user-create --name=admin --pass=ADMIN --email=admin@example.com
role-create --name=admin
user-role-add --user=admin --tenant=admin --role=admin

keystone service-create --name=keystone --type=identity --description="Keystone

Identity Service"
keystone endpoint-create --service=keystone --publicurl=http://10.184.48.177:500
0/v2.0 --internalurl=http://10.184.48.177:5000/v2.0 --adminurl=http://10.184.48.
177:35357/v2.0
unset OS_SERVICE_TOKEN
unset OS_SERVICE_ENDPOINT
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
export OS_USERNAME=admin
export OS_PASSWORD=ADMIN
export OS_TENANT_NAME=admin
export OS_AUTH_URL=http://10.184.48.177:35357/v2.0
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
source creds
keystone token-get
keystone user-list
apt-get install -y glance
mysql -u root -p
CREATE DATABASE glance;
GRANT ALL ON glance.* TO 'glance'@'%' IDENTIFIED BY 'glance_dbpass';

quit;
keystone user-create --name=glance --pass=glance_pass --email=glance@example.com
keystone user-role-add --user=glance --tenant=service --role=admin
keystone service-create --name=glance --type=image --description="Glance Image S
ervice"
keystone endpoint-create --service=glance --publicurl=http://10.184.48.177:9292
--internalurl=http://10.184.48.177:9292 --adminurl=http://10.184.48.177:9292
vi /etc/glance/glance-api.conf
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
rabbit_password = rabbit
# sqlite_db = /var/lib/glance/glance.sqlite
connection = mysql://glance:glance_dbpass@10.184.48.177/glance
[keystone_authtoken]
identity_uri = http://10.184.48.177:35357
admin_tenant_name = service
admin_user = glance
admin_password = glance_pass
[paste_deploy]
flavor = keystone
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
vi /etc/glance/glance-registry.conf
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
rabbit_password = rabbit
# sqlite_db = /var/lib/glance/glance.sqlite
connection = mysql://glance:glance_dbpass@10.184.48.177/glance
[keystone_authtoken]
identity_uri = http://10.184.48.177:35357
admin_tenant_name = service
admin_user = glance
admin_password = glance_pass
[paste_deploy]
flavor = keystone
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
service glance-api restart
service glance-registry restart
glance-manage db_sync
glance image-create --name Cirros --is-public true --container-format bare --dis
k-format qcow2 --location https://launchpad.net/cirros/trunk/0.3.0/+download/cir
ros-0.3.0-x86_64-disk.img
glance image-list

apt-get install -y nova-api nova-cert nova-conductor nova-consoleauth nova-novnc

proxy nova-scheduler python-novaclient nova-compute nova-console
apt-get --purge remove nova-api nova-cert nova-conductor nova-consoleauth novanovncproxy nova-scheduler nova-compute nova-console
mysql -u root -p
CREATE DATABASE nova;
GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'%' IDENTIFIED BY 'nova_dbpass';
quit;
keystone user-create --name=nova --pass=nova_pass --email=nova@example.com
keystone user-role-add --user=nova --tenant=service --role=admin
keystone service-create --name=nova --type=compute --description="OpenStack Comp
ute"
keystone endpoint-create --service=nova --publicurl=http://10.184.48.177:8774/v2
/%\(tenant_id\)s --internalurl=http://10.184.48.177:8774/v2/%\(tenant_id\)s --ad
minurl=http://10.184.48.177:8774/v2/%\(tenant_id\)s
vi /etc/nova/nova.conf
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[DEFAULT]
dhcpbridge_flagfile=/etc/nova/nova.conf
dhcpbridge=/usr/bin/nova-dhcpbridge
logdir=/var/log/nova
state_path=/var/lib/nova
lock_path=/var/lock/nova
force_dhcp_release=True
libvirt_use_virtio_for_bridges=True
verbose=True
ec2_private_dns_show_ip=True
api_paste_config=/etc/nova/api-paste.ini
enabled_apis=ec2,osapi_compute,metadata
rpc_backend = rabbit
auth_strategy = keystone
my_ip = 10.184.48.177
vnc_enabled = True
vncserver_listen = 10.184.48.177
vncserver_proxyclient_address = 10.184.48.177
novncproxy_base_url = http://10.184.48.177:6080/vnc_auto.html
network_api_class = nova.network.neutronv2.api.API
security_group_api = neutron
linuxnet_interface_driver = nova.network.linux_net.LinuxOVSInterfaceDriver
firewall_driver = nova.virt.firewall.NoopFirewallDriver
scheduler_default_filters=AllHostsFilter
[database]
connection = mysql://nova:nova_dbpass@10.184.48.177/nova
[oslo_messaging_rabbit]
rabbit_host = 127.0.0.1
rabbit_password = rabbit
[keystone_authtoken]
auth_uri = http://10.184.48.177:5000
auth_url = http://10.184.48.177:35357
auth_plugin = password
project_domain_id = default

user_domain_id = default
project_name = service
username = nova
password = nova_pass
[glance]
host = 10.184.48.177
[oslo_concurrency]
lock_path = /var/lock/nova
[neutron]
service_metadata_proxy = True
metadata_proxy_shared_secret = openstack
url = http://10.184.48.177:9696
auth_strategy = keystone
admin_auth_url = http://10.184.48.177:35357/v2.0
admin_tenant_name = service
admin_username = neutron
admin_password = neutron_pass
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
nova-manage db sync
service nova-api restart ;service nova-cert restart; service nova-consoleauth re
start ;service nova-scheduler restart;service nova-conductor restart; service no
va-novncproxy restart; service nova-compute restart; service nova-console restar
t
nova-manage service list
nova list
apt-get install -y neutron-server neutron-plugin-openvswitch neutron-plugin-open
vswitch-agent neutron-common neutron-dhcp-agent neutron-l3-agent neutron-metadat
a-agent openvswitch-switch
mysql -u root -p
CREATE DATABASE neutron;
GRANT ALL ON neutron.* TO 'neutron'@'%' IDENTIFIED BY 'neutron_dbpass';
quit;
keystone user-create --name=neutron --pass=neutron_pass --email=neutron@example.
com
keystone service-create --name=neutron --type=network --description="OpenStack N
etworking"
keystone user-role-add --user=neutron --tenant=service --role=admin
keystone endpoint-create --service=neutron --publicurl http://10.184.48.177:9696
--adminurl http://10.184.48.177:9696 --internalurl http://10.184.48.177:9696
vi /etc/neutron/neutron.conf

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[DEFAULT]
......
verbose = True
debug = True
core_plugin = ml2
service_plugins = router
auth_strategy = keystone
allow_overlapping_ips = True
notify_nova_on_port_status_changes = True
notify_nova_on_port_data_changes = True
nova_url = http://10.184.48.177:8774/v2
nova_region_name = regionOne
nova_admin_username = nova
nova_admin_tenant_id = 2cd03b576bcd44599e4fdcd15453b6f0
nova_admin_tenant_name = service
nova_admin_password = nova_pass
nova_admin_auth_url = http://10.184.48.177:35357/v2.0
notification_driver=neutron.openstack.common.notifier.rpc_notifier
rpc_backend=rabbit
[agent]
......
root_helper = sudo /usr/bin/neutron-rootwrap /etc/neutron/rootwrap.conf
[keystone_authtoken]
auth_uri = http://10.184.48.177:35357/v2.0/
auth_url = http://10.184.48.177:35357
auth_plugin = password
project_domain_id = default
user_domain_id = default
project_name = service
username = neutron
password = neutron_pass
[database]
......
connection = mysql://neutron:neutron_dbpass@10.184.48.177/neutron
[nova]
......
auth_url = http://10.184.48.177:35357
auth_plugin = password
project_domain_id = default
user_domain_id = default
region_name = regionOne
project_name = service
username = nova
password = nova_pass
[oslo_concurrency]
......
lock_path = /var/lock/neutron/
[oslo_messaging_rabbit]
......
rabbit_host = localhost
rabbit_userid = guest
rabbit_password = rabbit
rabbit_virtual_host = /

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
vi /etc/neutron/plugins/ml2/ml2_conf.ini
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[ml2]
type_drivers=flat,vlan
tenant_network_types=vlan,flat
mechanism_drivers=openvswitch
[ml2_type_flat]
flat_networks=External
[ml2_type_vlan]
network_vlan_ranges=Intnet1:100:200
[ml2_type_gre]
[ml2_type_vxlan]
[securitygroup]
firewall_driver=neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallD
river
enable_security_group=True
[ovs]
bridge_mappings=External:br-ex,Intnet1:br-eth1

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

vi /etc/neutron/metadata_agent.ini

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[DEFAULT]
auth_url = http://10.184.48.177:5000/v2.0
auth_region = RegionOne
admin_tenant_name = service
admin_user = neutron
admin_password = neutron_pass
metadata_proxy_shared_secret = openstack
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
vi /etc/neutron/dhcp_agent.ini
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[DEFAULT]
interface_driver = neutron.agent.linux.interface.OVSInterfaceDriver
dhcp_driver = neutron.agent.linux.dhcp.Dnsmasq
use_namespaces = True
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
vi /etc/neutron/l3_agent.ini
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[DEFAULT]
interface_driver = neutron.agent.linux.interface.OVSInterfaceDriver

use_namespaces = True
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

neutron-db-manage --config-file /etc/neutron/neutron.conf --config-file /etc/neu

tron/plugins/ml2/ml2_conf.ini upgrade kilo
su -s /bin/sh -c "neutron-db-manage --config-file /etc/neutron/neutron.conf --co
nfig-file /etc/neutron/plugins/ml2/ml2_conf.ini upgrade kilo" neutron
GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'%' IDENTIFIED BY 'nova_dbpass';
GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'%' IDENTIFIED BY 'cinder_dbpass';
GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'localhost' IDENTIFIED BY 'CINDER_D
BPASS';
keystone user-create --name=cinder --pass=cinder_pass --email=cinder@example.com
keystone service-create --name=cinder --type=volume --description="OpenStack Blo
ck Storage"
keystone user-role-add --user=cinder --tenant=service --role=admin
keystone endpoint-create --service=cinder --publicurl http://10.184.48.132:8776/
v2/%\(tenant_id\)s --adminurl http://10.184.48.132:8776/v2/%\(tenant_id\)s --in
ternalurl http://10.184.48.132:8776/v2/%\(tenant_id\)s
keystone service-create --name=cinder2 --type=volume2 --description="OpenStack B
lock Storage"
keystone endpoint-create --service_id=24d0cb51288149fbb6b63c83501f0f8a --publicu
rl http://10.184.48.132:8776/v2/%\(tenant_id\)s --adminurl http://10.184.48.132:
8776/v2/%\(tenant_id\)s --internalurl http://10.184.48.132:8776/v2/%\(tenant_id
\)s

<devices>
<disk type="file" device="disk">
<driver name="qemu" type="raw" cache="none"/>
<source file="/opt/prapulla_ws/openstack.img"/>
<target bus="virtio" dev="vda"/>
</disk>

7601.17514.101119-1850_x64fre_server_eval_en-us-GRMSXEVAL_EN_DVD.iso

RESERVATION
r-41f2494b
601105805988
default
INSTANCE
i-14ea0344
emi-e6790232
10.184.48.67
10.184.48.67
running boss
0
(nil) m2.2xlarge
2015-09-24T08:53:58.616Z
cluster01
(nil) (nil) (nil) monitoring-disabled
10.184.48.67
10.184.48.67
(nil) (nil) ebs
(nil) (nil) (nil)(nil)
hvm
(nil) (nil) sg-98379836
(nil) (nil) (nil)
BLOCKDEVICE
/dev/sda
vol-d67a7374
2015-09-24T08:53:58.761Z
true
(nil) (nil)
TAG
instance
i-14ea0344
euca:node
10.184.48.152
FLAT_INTERFACE='eth0'
FIXED_RANGE='10.0.0.0/24'

NETWORK_GATEWAY=10.0.0.1
FLOATING_RANGE='10.10.10.0/24'
PUBLIC_NETWORK_GATEWAY=10.10.10.1
ENABLED_SERVICES+=,mysql
ENABLED_SERVICES+=,heat,h-api,h-api-cfn,h-api-cw,h-eng
SCREEN_LOGDIR=/opt/stack/log/
LOGFILE=$SCREEN_LOGDIR/stack.sh.log
API_RATE_LIMIT=False
LIBVIRT_FIREWALL_DRIVER=nova.virt.firewall.NoopFirewallDriver
EXTRA_OPTS=(force_config_drive=true libvirt_images_type=qcow2 force_raw_images=f
alse)