iOSS

オープンソースをもっと身近なものに

Posted on by hagix9


RedHatがOpenStackをインストールするためにPuppetを利用したツールを作成していますのでそれを使ってみました。
注意としてはnova.confの中身が何故かqemuだったのでkvmに変更するところが一番の注意感もしれません。

Ubuntuでインストールする場合は自分で作ったスクリプトでインストールしてます。
どんなのか知りたい方はGithubでhagistackで検索してみてください。
使い方はIPとホスト名を変更すれば動くはずです。
他の難しいスクリプトと違ってbashでsed使ってるくらいなので何してるかは全部わかるはずです。
またそのうちちゃんとドキュメントにします。

Packstackは、OpenStackの他にもNagios、NRPEのインストールと設定も行なってくれます。
OpenStackのコンポーネントとしてはGlance、Cinder、Nova、Horizon、Swiftが対象です。
Heat、Ceilometer、Quantumは今のところまだ未対応です。
Swiftのインストールツールはあんまりなさそう?

また、今回はオールインワンしか試してませんが複数IPを記述しておくとマルチノードでもインストールできます。
OpenStackを手動でインストールすると結構めんどくさいのでこういったツールが増えるのは非常に嬉しいです。

DevStackが定番みたいな感じでしたが15分くらい前に動いてたものが動かないとかそんなんもあったので。。
まあ開発向けでマスターを利用した場合の話ではありますけど。

今までとっかかりにくいとかUbuntu?なにそれ知らないとかいう人でOpenStackをCentOSやRHEL6で動かしたい人はとりあえずインストールして利用してみましょう。


環境

検証した環境は、NIC一枚でサーバ一つだけですので皆さんの場合はもっといい環境でやれるはずなのでここで動いたってことは動くでしょう。
Packstackを動かすサーバはSL6.3で行いました。
UbuntuだとPupetがうまく動かないです。
Puppetが動くのはインストール先のサーバなのであんまり関係なさそうなんですけど。
OpenStackをインストールするサーバはCentOS6.4で行いました。
用意としては
①IPアドレスを固定(ブリッジなどはしなくても問題ありません。)
②HOSTSを記述(多分必要はなし)
③VGにcinder-volumesを用意(作成しなくてもツール側で何とかすることも可能です。まあ用意しておいたほうが)
④iptablesとSELinuxは止めてました。最初からそうしてたので必須かどうかはわからないです。

ツールのダウンロード

cd /usr/local/src
git clone git://github.com/redhat-openstack/packstack.git

コンフィグファイルをジェネレート

cd packstack/bin
./packstack --gen-answer-file=/usr/local/src/ans.txt

コンフィグファイルを設定
NICは一枚なので関連するところは全部eth0にしました。
CONFIG_NOVA_NETWORK_FLOATRANGEは外部ネットワークと同じIPセグメントを設定してください。
リポジトリの設定も必要です。
EPELをnからyに変更しGrizzlyのリポジトリを設定します。
CONFIG_USE_EPEL=y
CONFIG_REPO=http://repos.fedorapeople.org/repos/openstack/openstack-grizzly/epel-6/
あとは、各IPアドレスを自分の環境に合わせるくらいです。

vi /usr/local/src/ans.txt
[general]

# Set to 'y' if you would like Packstack to install Glance
CONFIG_GLANCE_INSTALL=y

# Set to 'y' if you would like Packstack to install Cinder
CONFIG_CINDER_INSTALL=y

# Set to 'y' if you would like Packstack to install Nova
CONFIG_NOVA_INSTALL=y

# Set to 'y' if you would like Packstack to install Horizon
CONFIG_HORIZON_INSTALL=y

# Set to 'y' if you would like Packstack to install Swift
CONFIG_SWIFT_INSTALL=n

# Set to 'y' if you would like Packstack to install the OpenStack
# Client packages. An admin "rc" file will also be installed
CONFIG_CLIENT_INSTALL=y

# Comma separated list of NTP servers. Leave plain if Packstack
# should not install ntpd on instances.
CONFIG_NTP_SERVERS=

# Set to 'y' if you would like Packstack to install Nagios to monitor
# openstack hosts
CONFIG_NAGIOS_INSTALL=y

# Path to a Public key to install on servers. If a usable key has not
# been installed on the remote servers the user will be prompted for a
# password and this key will be installed so the password will not be
# required again
CONFIG_SSH_KEY=/root/.ssh/id_rsa.pub

# The IP address of the server on which to install MySQL
CONFIG_MYSQL_HOST=192.168.10.60

# Username for the MySQL admin user
CONFIG_MYSQL_USER=nova

# Password for the MySQL admin user
CONFIG_MYSQL_PW=password

# The IP address of the server on which to install the QPID service
CONFIG_QPID_HOST=192.168.10.60

# The IP address of the server on which to install Keystone
CONFIG_KEYSTONE_HOST=192.168.10.60

# The password to use for the Keystone to access DB
CONFIG_KEYSTONE_DB_PW=password

# The token to use for the Keystone service api
CONFIG_KEYSTONE_ADMIN_TOKEN=ADMIN

# The password to use for the Keystone admin user
CONFIG_KEYSTONE_ADMIN_PW=secrete

# The IP address of the server on which to install Glance
CONFIG_GLANCE_HOST=192.168.10.60

# The password to use for the Glance to access DB
CONFIG_GLANCE_DB_PW=password

# The password to use for the Glance to authenticate with Keystone
CONFIG_GLANCE_KS_PW=glance

# The IP address of the server on which to install Cinder
CONFIG_CINDER_HOST=192.168.10.60

# The password to use for the Cinder to access DB
CONFIG_CINDER_DB_PW=password

# The password to use for the Cinder to authenticate with Keystone
CONFIG_CINDER_KS_PW=cinder

# Create Cinder's volumes group. This should only be done for testing
# on a proof-of-concept installation of Cinder.  This will create a
# file-backed volume group and is not suitable for production usage.
CONFIG_CINDER_VOLUMES_CREATE=n

# Cinder's volumes group size
CONFIG_CINDER_VOLUMES_SIZE=20G

# The IP address of the server on which to install the Nova API
# service
CONFIG_NOVA_API_HOST=192.168.10.60

# The IP address of the server on which to install the Nova Cert
# service
CONFIG_NOVA_CERT_HOST=192.168.10.60

# The IP address of the server on which to install the Nova VNC proxy
CONFIG_NOVA_VNCPROXY_HOST=192.168.10.60

# A comma separated list of IP addresses on which to install the Nova
# Compute services
CONFIG_NOVA_COMPUTE_HOSTS=192.168.10.60

# Private interface for Flat DHCP on the Nova compute servers
CONFIG_NOVA_COMPUTE_PRIVIF=eth0

# The IP address of the server on which to install the Nova Network
# service
CONFIG_NOVA_NETWORK_HOST=192.168.10.60

# The IP address of the server on which to install the Nova Conductor
# service
CONFIG_NOVA_CONDUCTOR_HOST=192.168.10.60

# The password to use for the Nova to access DB
CONFIG_NOVA_DB_PW=password

# The password to use for the Nova to authenticate with Keystone
CONFIG_NOVA_KS_PW=nova

# Public interface on the Nova network server
CONFIG_NOVA_NETWORK_PUBIF=eth0

# Private interface for Flat DHCP on the Nova network server
CONFIG_NOVA_NETWORK_PRIVIF=eth0

# IP Range for Flat DHCP
CONFIG_NOVA_NETWORK_FIXEDRANGE=10.10.10.0/24

# IP Range for Floating IP's
CONFIG_NOVA_NETWORK_FLOATRANGE=192.168.10.112/28

# Automatically assign a floating IP to new instances
CONFIG_NOVA_NETWORK_AUTOASSIGNFLOATINGIP=n

# The IP address of the server on which to install the Nova Scheduler
# service
CONFIG_NOVA_SCHED_HOST=192.168.10.60

# The overcommitment ratio for virtual to physical CPUs. Set to 1.0
# to disable CPU overcommitment
CONFIG_NOVA_SCHED_CPU_ALLOC_RATIO=16.0

# The overcommitment ratio for virtual to physical RAM. Set to 1.0 to
# disable RAM overcommitment
CONFIG_NOVA_SCHED_RAM_ALLOC_RATIO=1.5

# The IP address of the server on which to install the OpenStack
# client packages. An admin "rc" file will also be installed
CONFIG_OSCLIENT_HOST=192.168.10.60

# The IP address of the server on which to install Horizon
CONFIG_HORIZON_HOST=192.168.10.60

# To set up Horizon communication over https set this to "y"
CONFIG_HORIZON_SSL=n

# PEM encoded certificate to be used for ssl on the https server,
# leave blank if one should be generated, this certificate should not
# require a passphrase
CONFIG_SSL_CERT=

# Keyfile corresponding to the certificate if one was entered
CONFIG_SSL_KEY=

# The IP address on which to install the Swift proxy service
CONFIG_SWIFT_PROXY_HOSTS=192.168.10.60

# The password to use for the Swift to authenticate with Keystone
CONFIG_SWIFT_KS_PW=23518f0fcc174cd0

# A comma separated list of IP addresses on which to install the
# Swift Storage services, each entry should take the format
# <ipaddress>[/dev], for example 127.0.0.1/vdb will install /dev/vdb
# on 127.0.0.1 as a swift storage device(packstack does not create the
# filesystem, you must do this first), if /dev is omitted Packstack
# will create a loopback device for a test setup
CONFIG_SWIFT_STORAGE_HOSTS=192.168.10.60

# Number of swift storage zones, this number MUST be no bigger than
# the number of storage devices configured
CONFIG_SWIFT_STORAGE_ZONES=1

# Number of swift storage replicas, this number MUST be no bigger
# than the number of storage zones configured
CONFIG_SWIFT_STORAGE_REPLICAS=1

# FileSystem type for storage nodes
CONFIG_SWIFT_STORAGE_FSTYPE=ext4

# To subscribe each server to EPEL enter "y"
CONFIG_USE_EPEL=y

# A comma separated list of URLs to any additional yum repositories
# to install
CONFIG_REPO=http://repos.fedorapeople.org/repos/openstack/openstack-grizzly/epel-6/

# To subscribe each server with Red Hat subscription manager, include
# this with CONFIG_RH_PW
CONFIG_RH_USER=

# To subscribe each server with Red Hat subscription manager, include
# this with CONFIG_RH_USER
CONFIG_RH_PW=

# To subscribe each server to Red Hat Enterprise Linux 6 Server Beta
# channel (only needed for Preview versions of RHOS) enter "y"
CONFIG_RH_BETA_REPO=n

# To subscribe each server with RHN Satellite,fill Satellite's URL
# here. Note that either satellite's username/password or activtion
# key has to be provided/
CONFIG_SATELLITE_URL=

# Username to access RHN Satellite
CONFIG_SATELLITE_USER=

# Password to access RHN Satellite
CONFIG_SATELLITE_PW=

# Activation key for subscription to RHN Satellite
CONFIG_SATELLITE_AKEY=

# Specify a path or URL to a SSL CA certificate to use
CONFIG_SATELLITE_CACERT=

# If required specify the profile name that should be used as an
# identifier for the system in RHN Satellite
CONFIG_SATELLITE_PROFILE=

# Comma separated list of flags passed to rhnreg_ks. Valid flags are:
# novirtinfo, norhnsd, nopackages
CONFIG_SATELLITE_FLAGS=

# Specify a HTTP proxy to use with RHN Satellite
CONFIG_SATELLITE_PROXY=

# Specify a username to use with an authenticated HTTP proxy
CONFIG_SATELLITE_PROXY_USER=

# Specify a password to use with an authenticated HTTP proxy.
CONFIG_SATELLITE_PROXY_PW=

# The IP address of the server on which to install the Nagios server
CONFIG_NAGIOS_HOST=192.168.10.60

# The password of the nagiosadmin user on the Nagios server
CONFIG_NAGIOS_PW=nagios

インストール
あとは、コマンドを実行して待ってるだけでOpenStackがインストールされます。

./pacstack --answer-file=/usr/local/src/ans.txt

OpenStackを利用
インストール後にOpenStackを利用してみましょう。

サーバへログインして環境変数を読み込み

ssh hogehoge
. keystonerc_admin

各コマンドをちょっと使ってみましょう

[root@stack01 ~(keystone_admin)]# nova-manage service list
Binary           Host                                 Zone             Status     State Updated_At
nova-consoleauth stack01                              internal         enabled    :-)   2013-03-22 18:45:56
nova-scheduler   stack01                              internal         enabled    :-)   2013-03-22 18:45:57
nova-network     stack01                              internal         enabled    :-)   2013-03-22 18:45:50
nova-cert        stack01                              internal         enabled    :-)   2013-03-22 18:45:56
nova-conductor   stack01                              internal         enabled    :-)   2013-03-22 18:45:56
nova-compute     stack01                              nova             enabled    :-)   2013-03-22 18:45:56
[root@stack01 ~]# nova list
ERROR: You must provide a username via either --os-username or env[OS_USERNAME]
[root@stack01 ~]# . ./keystonerc_admin 
[root@stack01 ~(keystone_admin)]# nova list

[root@stack01 ~(keystone_admin)]# nova floating-ip-bulk-list
+------------+----------------+---------------+------+-----------+
| project_id | address        | instance_uuid | pool | interface |
+------------+----------------+---------------+------+-----------+
| None       | 192.168.10.113 | None          | nova | eth0      |
| None       | 192.168.10.114 | None          | nova | eth0      |
| None       | 192.168.10.115 | None          | nova | eth0      |
| None       | 192.168.10.116 | None          | nova | eth0      |
| None       | 192.168.10.117 | None          | nova | eth0      |
| None       | 192.168.10.118 | None          | nova | eth0      |
| None       | 192.168.10.119 | None          | nova | eth0      |
| None       | 192.168.10.120 | None          | nova | eth0      |
| None       | 192.168.10.121 | None          | nova | eth0      |
| None       | 192.168.10.122 | None          | nova | eth0      |
| None       | 192.168.10.123 | None          | nova | eth0      |
| None       | 192.168.10.124 | None          | nova | eth0      |
| None       | 192.168.10.125 | None          | nova | eth0      |
| None       | 192.168.10.126 | None          | nova | eth0      |
+------------+----------------+---------------+------+-----------+
[root@stack01 ~(keystone_admin)]# nova network-list
+----+-------------+---------------+
| ID | Label       | Cidr          |
+----+-------------+---------------+
| 1  | novanetwork | 10.10.10.0/24 |
+----+-------------+---------------+
[root@stack01 ~(keystone_admin)]# nova keypair-list

[root@stack01 ~(keystone_admin)]# keystone tenant-list
+----------------------------------+----------+---------+
|                id                |   name   | enabled |
+----------------------------------+----------+---------+
| c7fb4f90eeef406695a7851cf2badcab |  admin   |   True  |
| 701af79cabdb472ebbde0bc0eb876335 | services |   True  |
+----------------------------------+----------+---------+
[root@stack01 ~(keystone_admin)]# keystone user-list
+----------------------------------+--------+---------+------------------+
|                id                |  name  | enabled |      email       |
+----------------------------------+--------+---------+------------------+
| fe8a3990fa5842e881e2cf03fe141dff | admin  |   True  |  test@test.com   |
| 059f5d595c6f4efda094860104f4f519 | cinder |   True  | cinder@localhost |
| f92249cf86bc486194942db8ed35a3ab | glance |   True  | glance@localhost |
| 5fe0e88b435648e2b2b1be76c470581e |  nova  |   True  |  nova@localhost  |
+----------------------------------+--------+---------+------------------+
[root@stack01 ~(keystone_admin)]# glance image-list
[root@stack01 ~(keystone_admin)]# cinder list

Cinderで追加ディスクを作れるかも確認してみます。

[root@stack01 ~(keystone_admin)]# cinder create --display_name cinder_test 1
+---------------------+--------------------------------------+
|       Property      |                Value                 |
+---------------------+--------------------------------------+
|     attachments     |                  []                  |
|  availability_zone  |                 nova                 |
|       bootable      |                false                 |
|      created_at     |      2013-03-22T18:12:31.966232      |
| display_description |                 None                 |
|     display_name    |             cinder_test              |
|          id         | 7ead2d80-26d1-49d8-9b4a-5142e235302d |
|       metadata      |                  {}                  |
|         size        |                  1                   |
|     snapshot_id     |                 None                 |
|     source_volid    |                 None                 |
|        status       |               creating               |
|     volume_type     |                 None                 |
+---------------------+--------------------------------------+
[root@stack01 ~(keystone_admin)]# cinder list
+--------------------------------------+-----------+--------------+------+-------------+----------+-------------+
|                  ID                  |   Status  | Display Name | Size | Volume Type | Bootable | Attached to |
+--------------------------------------+-----------+--------------+------+-------------+----------+-------------+
| 7ead2d80-26d1-49d8-9b4a-5142e235302d | available | cinder_test  |  1   |     None    |  false   |             |
+--------------------------------------+-----------+--------------+------+-------------+----------+-------------+
[root@stack01 ~(keystone_admin)]# cinder delete 7ead2d80-26d1-49d8-9b4a-5142e235302d
[root@stack01 ~(keystone_admin)]# cinder list

インスタンスにログインするためのキーペアを作成ます。

[root@stack01 ~(keystone_admin)]# nova keypair-add mykey > mykey
[root@stack01 ~(keystone_admin)]# sudo chmod 600 mykey
[root@stack01 ~(keystone_admin)]# nova keypair-list
+-------+-------------------------------------------------+
| Name  | Fingerprint                                     |
+-------+-------------------------------------------------+
| mykey | 40:82:9a:26:05:88:1e:6a:91:cd:17:77:e7:f1:85:1d |
+-------+-------------------------------------------------+

インスタンス用にUbuntuのイメージをダウンロードしてGlanceでOpenStackに登録します。


[root@stack01 ~(keystone_admin)]# curl -O http://cloud-images.ubuntu.com/releases/13.04/beta-1/ubuntu-13.04-beta1-server-cloudimg-amd64-disk1.img
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 218M 100 218M 0 0 3198k 0 0:01:09 0:01:09 --:--:-- 3339k
[root@stack01 ~(keystone_admin)]# glance image-create --name="Ubuntu_13.04_LTS" --is-public=true --container-format=ovf --disk-format=qcow2 < ubuntu-13.04-beta1-server-cloudimg-amd64-disk1.img +------------------+--------------------------------------+ | Property | Value | +------------------+--------------------------------------+ | checksum | b5f78671806557c737fa756a397e13f4 | | container_format | ovf | | created_at | 2013-03-22T18:23:33 | | deleted | False | | deleted_at | None | | disk_format | qcow2 | | id | a7f35b38-f58f-48dc-9fd2-7444cb9e43a3 | | is_public | True | | min_disk | 0 | | min_ram | 0 | | name | Ubuntu_13.04_LTS | | owner | c7fb4f90eeef406695a7851cf2badcab | | protected | False | | size | 229048320 | | status | active | | updated_at | 2013-03-22T18:23:36 | +------------------+--------------------------------------+ [root@stack01 ~(keystone_admin)]# glance image-list +--------------------------------------+------------------+-------------+------------------+-----------+--------+ | ID | Name | Disk Format | Container Format | Size | Status | +--------------------------------------+------------------+-------------+------------------+-----------+--------+ | a7f35b38-f58f-48dc-9fd2-7444cb9e43a3 | Ubuntu_13.04_LTS | qcow2 | ovf | 229048320 | active | +--------------------------------------+------------------+-------------+------------------+-----------+--------+ [/bash] 登録したイメージでインスタンスを起動します。 [bash] [root@stack01 ~(keystone_admin)]# nova image-list +--------------------------------------+------------------+--------+--------+ | ID | Name | Status | Server | +--------------------------------------+------------------+--------+--------+ | a7f35b38-f58f-48dc-9fd2-7444cb9e43a3 | Ubuntu_13.04_LTS | ACTIVE | | +--------------------------------------+------------------+--------+--------+ [root@stack01 ~(keystone_admin)]# nova flavor-list +----+-----------+-----------+------+-----------+------+-------+-------------+-----------+-------------+ | ID | Name | Memory_MB | Disk | Ephemeral | Swap | VCPUs | RXTX_Factor | Is_Public | extra_specs | +----+-----------+-----------+------+-----------+------+-------+-------------+-----------+-------------+ | 1 | m1.tiny | 512 | 0 | 0 | | 1 | 1.0 | True | {} | | 2 | m1.small | 2048 | 20 | 0 | | 1 | 1.0 | True | {} | | 3 | m1.medium | 4096 | 40 | 0 | | 2 | 1.0 | True | {} | | 4 | m1.large | 8192 | 80 | 0 | | 4 | 1.0 | True | {} | | 5 | m1.xlarge | 16384 | 160 | 0 | | 8 | 1.0 | True | {} | +----+-----------+-----------+------+-----------+------+-------+-------------+-----------+-------------+ [root@stack01 ~(keystone_admin)]# nova boot --flavor 1 --image Ubuntu_13.04_LTS ubuntu1304_001 --key_name mykey +-------------------------------------+--------------------------------------+ | Property | Value | +-------------------------------------+--------------------------------------+ | OS-EXT-STS:task_state | scheduling | | image | Ubuntu_13.04_LTS | | OS-EXT-STS:vm_state | building | | OS-EXT-SRV-ATTR:instance_name | instance-00000001 | | flavor | m1.tiny | | id | a643d31e-6de2-4d20-82ad-f2a4f526f796 | | security_groups | [{u'name': u'default'}] | | user_id | fe8a3990fa5842e881e2cf03fe141dff | | OS-DCF:diskConfig | MANUAL | | accessIPv4 | | | accessIPv6 | | | progress | 0 | | OS-EXT-STS:power_state | 0 | | OS-EXT-AZ:availability_zone | None | | config_drive | | | status | BUILD | | updated | 2013-03-22T18:26:20Z | | hostId | | | OS-EXT-SRV-ATTR:host | None | | key_name | mykey | | OS-EXT-SRV-ATTR:hypervisor_hostname | None | | name | ubuntu1304_001 | | adminPass | D9xVMAT8qEbU | | tenant_id | c7fb4f90eeef406695a7851cf2badcab | | created | 2013-03-22T18:26:19Z | | metadata | {} | +-------------------------------------+--------------------------------------+ +--------------------------------------+----------------+--------+------------------------+ | ID | Name | Status | Networks | +--------------------------------------+----------------+--------+------------------------+ | a1a8a53e-7b34-4369-b003-632e5740471d | ubuntu1304_001 | ACTIVE | novanetwork=10.10.10.3 | +--------------------------------------+----------------+--------+------------------------+ [/bash] インスタンスが出来上がったのでログインしてみましょう。 [bash] [root@stack01 ~(keystone_admin)]# ssh -i /root/mykey ubuntu@10.10.10.3 The authenticity of host '10.10.10.3 (10.10.10.3)' can't be established. RSA key fingerprint is 40:c1:20:d3:22:a5:9c:92:ac:b3:65:21:8b:a5:f0:12. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added '10.10.10.3' (RSA) to the list of known hosts. The programs included with the Ubuntu system are free software; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright. Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. Welcome to Ubuntu Raring Ringtail (development branch) (GNU/Linux 3.8.0-12-generic x86_64) * Documentation: https://help.ubuntu.com/ System information as of Fri Mar 22 18:55:17 UTC 2013 System load: 0.47 Processes: 71 Usage of /: 35.2% of 1.93GB Users logged in: 0 Memory usage: 9% IP address for eth0: 10.10.10.3 Swap usage: 0% Graph this data and manage this system at https://landscape.canonical.com/ Get cloud support with Ubuntu Advantage Cloud Guest: http://www.ubuntu.com/business/services/cloud Use Juju to deploy your cloud instances and workloads: https://juju.ubuntu.com/#cloud-raring 0 packages can be updated. 0 updates are security updates. ubuntu@ubuntu1304-001:~$ ping yahoo.co.jp PING yahoo.co.jp (124.83.187.140) 56(84) bytes of data. From 10.10.10.1: icmp_seq=2 Redirect Host(New nexthop: 192.168.10.1) From 10.10.10.1 icmp_seq=2 Redirect Host^C --- yahoo.co.jp ping statistics --- 10 packets transmitted, 0 received, +1 errors, 100% packet loss, time 9057ms [/bash] むむむ、疎通不能だ。セキュリティグループのせいなのかな。 関係ない気がしますけどとりあえず追加して見ました。 [bash] [root@stack01 ~(keystone_admin)]# nova secgroup-add-rule default icmp -1 -1 0.0.0.0/0 +-------------+-----------+---------+-----------+--------------+ | IP Protocol | From Port | To Port | IP Range | Source Group | +-------------+-----------+---------+-----------+--------------+ | icmp | -1 | -1 | 0.0.0.0/0 | | +-------------+-----------+---------+-----------+--------------+ [root@stack01 ~(keystone_admin)]# nova secgroup-add-rule default tcp 22 22 0.0.0.0/0 +-------------+-----------+---------+-----------+--------------+ | IP Protocol | From Port | To Port | IP Range | Source Group | +-------------+-----------+---------+-----------+--------------+ | tcp | 22 | 22 | 0.0.0.0/0 | | +-------------+-----------+---------+-----------+--------------+ [root@stack01 ~(keystone_admin)]# nova secgroup-list +---------+-------------+ | Name | Description | +---------+-------------+ | default | default | +---------+-------------+ [root@stack01 ~(keystone_admin)]# nova secgroup-list-rules default +-------------+-----------+---------+-----------+--------------+ | IP Protocol | From Port | To Port | IP Range | Source Group | +-------------+-----------+---------+-----------+--------------+ | icmp | -1 | -1 | 0.0.0.0/0 | | | tcp | 22 | 22 | 0.0.0.0/0 | | +-------------+-----------+---------+-----------+--------------+ [/bash] やっぱり変わらない。名前解決はできてるのになんで。 まあ、ネストじゃなかったら大丈夫なんでしょう。気にしないことにします。 また今度仮想じゃない環境で確認したら報告します。 試した人いたらまた教えてくれても嬉しいです。 [bash] ubuntu@ubuntu1304-001:~$ host yahoo.co.jp yahoo.co.jp has address 124.83.187.140 yahoo.co.jp has address 203.216.243.240 yahoo.co.jp mail is handled by 10 mx5.mail.yahoo.co.jp. yahoo.co.jp mail is handled by 10 mx1.mail.yahoo.co.jp. yahoo.co.jp mail is handled by 10 mx2.mail.yahoo.co.jp. yahoo.co.jp mail is handled by 10 mx3.mail.yahoo.co.jp. [/bash] あとは、GUIで設定できるHorizonやNagiosにもログインできますので試してみましょう。 http://サーバのIP/horizon でHorizonに接続できます。ユーザはadmin、パスワードはsecreteです。 これは最初のインストールの時のコンフィグで設定できます。 http://サーバのIP/nagios でNagiosにログインできます。ユーザはnagiosadmin、パスワードはnagiosです。 これも最初のインストールの時のコンフィグで設定できます。 外部へ出ていけないのはまた調査します。 自分でインストールした場合は問題なかったのでなんか設定が違うのかもしれませんのとネストな環境で無かったら多分大丈夫でしょうということです。 以上です。

Posted on by hagix9 | Posted in 未分類


コメントを残す

メールアドレスが公開されることはありません。