zeming-coder
diff --git a/‎OPS-Mitaka-OVS-Ubuntu/scripts/com1-2-osv-provider.sh‎
Lines changed: 1 addition & 1 deletion b/‎OPS-Mitaka-OVS-Ubuntu/scripts/com1-2-osv-provider.sh‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎OPS-Mitaka-OVS-Ubuntu/scripts/com1-2-ovs.sh‎
Lines changed: 267 additions & 0 deletions b/‎OPS-Mitaka-OVS-Ubuntu/scripts/com1-2-ovs.sh‎
Lines changed: 267 additions & 0 deletions
diff --git a/‎OPS-Mitaka-OVS-Ubuntu/scripts/ctl-6-neutron-OVS-selfservice.sh‎
Lines changed: 1 addition & 1 deletion b/‎OPS-Mitaka-OVS-Ubuntu/scripts/ctl-6-neutron-OVS-selfservice.sh‎
Lines changed: 1 addition & 1 deletion
@@ -217,7 +217,7 @@ ops_edit $ovsfile ovs bridge_mappings external:br-ex
 
 # [securitygroup] section
 # ops_edit $ovsfile securitygroup firewall_driver \
-    neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
+#    neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
 
 echocolor "Reset service nova-compute,openvswitch_agent"
 sleep 5
 
@@ -0,0 +1,267 @@
+#!/bin/bash -ex
+#
+
+source config.cfg
+source functions.sh
+
+apt-get -y install python-pip
+pip install \
+    https://pypi.python.org/packages/source/c/crudini/crudini-0.7.tar.gz
+
+#
+
+cat << EOF >> /etc/sysctl.conf
+net.ipv4.conf.all.rp_filter=0
+net.ipv4.conf.default.rp_filter=0
+net.bridge.bridge-nf-call-iptables=1
+net.bridge.bridge-nf-call-ip6tables=1
+EOF
+
+echocolor "Install python openstack client"
+apt-get -y install python-openstackclient
+
+echocolor "Install and config NTP"
+sleep 3
+
+
+apt-get -y install chrony
+ntpfile=/etc/chrony/chrony.conf
+cp $ntpfile $ntpfile.orig
+
+sed -i "s/server 0.debian.pool.ntp.org offline minpoll 8/ \
+server $CTL_MGNT_IP iburst/g" $ntpfile
+
+
+sed -i 's/server 1.debian.pool.ntp.org offline minpoll 8/ \
+# server 1.debian.pool.ntp.org offline minpoll 8/g' $ntpfile
+
+sed -i 's/server 2.debian.pool.ntp.org offline minpoll 8/ \
+# server 2.debian.pool.ntp.org offline minpoll 8/g' $ntpfile
+
+sed -i 's/server 3.debian.pool.ntp.org offline minpoll 8/ \
+# server 3.debian.pool.ntp.org offline minpoll 8/g' $ntpfile
+
+
+sleep 5
+echocolor "Installl package for NOVA"
+
+apt-get -y install nova-compute
+# echo "libguestfs-tools libguestfs/update-appliance boolean true" \
+#    | debconf-set-selections
+# apt-get -y install libguestfs-tools sysfsutils guestfsd python-guestfs
+
+# Fix KVM bug when injecting password
+# update-guestfs-appliance
+# chmod 0644 /boot/vmlinuz*
+# usermod -a -G kvm root
+
+
+echocolor "Configuring in nova.conf"
+sleep 5
+########
+#/* Backup nova.conf
+nova_com=/etc/nova/nova.conf
+test -f $nova_com.orig || cp $nova_com $nova_com.orig
+
+## [DEFAULT] Section
+ops_edit $nova_com DEFAULT rpc_backend rabbit
+ops_edit $nova_com DEFAULT auth_strategy keystone
+ops_edit $nova_com DEFAULT my_ip $COM1_MGNT_IP
+ops_edit $nova_com DEFAULT use_neutron  True
+ops_edit $nova_com DEFAULT \
+    firewall_driver nova.virt.firewall.NoopFirewallDriver
+#ops_edit $nova_com DEFAULT \
+#	linuxnet_interface_driver nova.network.linux_net.LinuxOVSInterfaceDriver
+    
+# ops_edit $nova_com DEFAULT network_api_class nova.network.neutronv2.api.API
+# ops_edit $nova_com DEFAULT security_group_api neutron
+
+
+# ops_edit $nova_com DEFAULT enable_instance_password True
+
+## [oslo_messaging_rabbit] section
+ops_edit $nova_com oslo_messaging_rabbit rabbit_host $CTL_MGNT_IP
+ops_edit $nova_com oslo_messaging_rabbit rabbit_userid openstack
+ops_edit $nova_com oslo_messaging_rabbit rabbit_password $RABBIT_PASS
+
+
+## [keystone_authtoken] section
+ops_edit $nova_com keystone_authtoken auth_uri http://$CTL_MGNT_IP:5000
+ops_edit $nova_com keystone_authtoken auth_url http://$CTL_MGNT_IP:35357
+ops_edit $nova_com keystone_authtoken memcached_servers $CTL_MGNT_IP:11211
+ops_edit $nova_com keystone_authtoken auth_type password
+ops_edit $nova_com keystone_authtoken project_domain_name default
+ops_edit $nova_com keystone_authtoken user_domain_name default
+ops_edit $nova_com keystone_authtoken project_name service
+ops_edit $nova_com keystone_authtoken username nova
+ops_edit $nova_com keystone_authtoken password $NOVA_PASS
+
+## [vnc] section
+ops_edit $nova_com vnc enabled True
+ops_edit $nova_com vnc vncserver_listen 0.0.0.0
+ops_edit $nova_com vnc vncserver_proxyclient_address \$my_ip
+ops_edit $nova_com vnc vncserver_proxyclient_address \$my_ip
+ops_edit $nova_com vnc \
+    novncproxy_base_url http://$CTL_EXT_IP:6080/vnc_auto.html
+
+
+## [glance] section
+ops_edit $nova_com glance api_servers http://$CTL_MGNT_IP:9292
+
+
+## [oslo_concurrency] section
+ops_edit $nova_com oslo_concurrency lock_path /var/lib/nova/tmp
+
+## [neutron] section
+ops_edit $nova_com neutron url http://$CTL_MGNT_IP:9696
+ops_edit $nova_com neutron auth_url http://$CTL_MGNT_IP:35357
+ops_edit $nova_com neutron auth_type password
+ops_edit $nova_com neutron project_domain_name default
+ops_edit $nova_com neutron user_domain_name default
+ops_edit $nova_com neutron region_name RegionOne
+ops_edit $nova_com neutron project_name service
+ops_edit $nova_com neutron username neutron
+ops_edit $nova_com neutron password $NEUTRON_PASS
+
+echocolor "Restart nova-compute"
+sleep 5
+service nova-compute restart
+
+# Remove default nova db
+rm /var/lib/nova/nova.sqlite
+
+echocolor "Install openvswitch-agent (neutron) on COMPUTE NODE"
+sleep 5
+
+apt-get -y install neutron-server neutron-plugin-ml2 \
+neutron-openvswitch-agent python-neutronclient ipset
+
+
+echocolor "Config file neutron.conf"
+neutron_com=/etc/neutron/neutron.conf
+test -f $neutron_com.orig || cp $neutron_com $neutron_com.orig
+
+## [DEFAULT] section
+ops_edit $neutron_com DEFAULT core_plugin ml2
+ops_edit $neutron_com DEFAULT rpc_backend rabbit
+ops_edit $neutron_com DEFAULT auth_strategy keystone
+ops_edit $neutron_com DEFAULT service_plugins router
+
+## [keystone_authtoken] section
+ops_edit $neutron_com keystone_authtoken auth_uri http://$CTL_MGNT_IP:5000
+ops_edit $neutron_com keystone_authtoken auth_url http://$CTL_MGNT_IP:35357
+ops_edit $neutron_com keystone_authtoken memcached_servers $CTL_MGNT_IP:11211
+ops_edit $neutron_com keystone_authtoken auth_type password
+ops_edit $neutron_com keystone_authtoken project_domain_name default
+ops_edit $neutron_com keystone_authtoken user_domain_name default
+ops_edit $neutron_com keystone_authtoken project_name service
+ops_edit $neutron_com keystone_authtoken username neutron
+ops_edit $neutron_com keystone_authtoken password $NEUTRON_PASS
+
+
+## [database] section
+ops_del $neutron_com database connection
+
+## [oslo_messaging_rabbit] section
+ops_edit $neutron_com oslo_messaging_rabbit rabbit_host $CTL_MGNT_IP
+ops_edit $neutron_com oslo_messaging_rabbit rabbit_userid openstack
+ops_edit $neutron_com oslo_messaging_rabbit rabbit_password $RABBIT_PASS
+
+######## Backup configuration of ML2 ##################"
+echocolor "Configuring ML2"
+sleep 7
+
+ml2_com=/etc/neutron/plugins/ml2/ml2_conf.ini
+test -f $ml2_com.orig || cp $ml2_com $ml2_com.orig
+
+## [ml2] section
+ops_edit $ml2_com ml2 type_drivers flat,vlan
+ops_edit $ml2_com ml2 tenant_network_types 
+ops_edit $ml2_com ml2 mechanism_drivers openvswitch
+ops_edit $ml2_com ml2 extension_drivers port_security
+
+
+## [ml2_type_flat] section
+ops_edit $ml2_com ml2_type_flat flat_networks external
+
+## [ml2_type_gre] section
+ops_edit $ml2_com ml2_type_gre tunnel_id_ranges 300:400
+
+## [ml2_type_vxlan] section
+# ops_edit $ml2_com ml2_type_vxlan vni_ranges 201:300
+
+
+## [ml2_type_vlan] section
+ops_edit $ml2_com ml2_type_vlan network_vlan_ranges external
+
+## [securitygroup] section
+ops_edit $ml2_com securitygroup enable_ipset True
+ops_edit $ml2_com securitygroup firewall_driver \
+    neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
+
+ops_edit $ml2_com securitygroup enable_security_group True
+    
+
+echocolor "Configuring openvswitch_agent"
+sleep 5
+ovsfile=/etc/neutron/plugins/ml2/openvswitch_agent.ini
+test -f $ovsfile.orig || cp $ovsfile $ovsfile.orig
+
+## [agent] section
+ops_edit $ovsfile agent tunnel_types gre
+ops_edit $ovsfile agent l2_population True
+
+## [ovs] section
+ops_edit $ovsfile ovs local_ip $CTL_MGNT_IP
+ops_edit $ovsfile ovs bridge_mappings external:br-ex
+
+# [securitygroup] section
+ops_edit $ovsfile securitygroup firewall_driver \
+   neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
+
+echocolor "Reset service nova-compute,openvswitch_agent"
+sleep 5
+service neutron-openvswitch-agent restart
+
+echocolor "Config IP address for br-ex"
+ifaces=/etc/network/interfaces
+test -f $ifaces.orig1 || cp $ifaces $ifaces.orig1
+rm $ifaces
+cat << EOF > $ifaces
+# The loopback network interface
+auto lo
+iface lo inet loopback
+
+# The primary network interface
+auto br-ex
+iface br-ex inet static
+address $COM1_EXT_IP
+netmask $NETMASK_ADD_EXT
+gateway $GATEWAY_IP_EXT
+dns-nameservers 8.8.8.8
+
+auto eth1
+iface eth1 inet manual
+   up ifconfig \$IFACE 0.0.0.0 up
+   up ip link set \$IFACE promisc on
+   down ip link set \$IFACE promisc off
+   down ifconfig \$IFACE down
+
+auto eth0
+iface eth0 inet static
+address $COM1_MGNT_IP
+netmask $NETMASK_ADD_MGNT
+EOF
+
+
+echocolor "Config br-int and br-ex for OpenvSwitch"
+sleep 5
+# ovs-vsctl add-br br-int
+ovs-vsctl add-br br-ex
+ovs-vsctl add-port br-ex eth1
+
+echocolor "Finished install NEUTRON on CONTROLLER"
+
+sleep 5
+echocolor "Reboot SERVER"
+init 6
@@ -216,7 +216,7 @@ sleep 5
 echocolor "Config IP address for br-ex"
 
 ifaces=/etc/network/interfaces
-test -f $ifaces.orig1 || cp $ifaces $ifaces.orig1
+test -f $ifaces.orig || cp $ifaces $ifaces.orig
 rm $ifaces
 cat << EOF > $ifaces
 # The loopback network interface