blob: b8e1ea8fc2977daab7dbfd3f96e4a8b42cc9d6ee (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
|
---
# The purpose of this file is to define all of the NetworkLinks (i.e. layer 1
# devices) and Networks (i.e. layer 3 configurations).
#
# The following is reference configuration for Intel hosted POD17
# https://wiki.opnfv.org/display/pharos/Intel+POD17
# +--------+------------+-----------------------------------+-----------+----------+----------------+
# | | | | | | |
# +--------+------------+-----------------------------------+-----------+----------+----------------+
# |IF0 1G | dmz | OoB & OAM (default route) | VLAN 170 | untagged | 10.10.170.0/24 |
# |IF1 1G | admin | PXE boot network | VLAN 171 | untagged | 10.10.171.0/24 |
# |IF2 10G | private | Underlay Calico and OVS overlay | VLAN 172 | untagged | 10.10.172.0/24 |
# | | management | Management (unused for now) | VLAN 174 | tagged | 10.10.174.0/24 |
# |IF3 10G | storage | Storage network | VLAN 173 | untagged | 10.10.173.0/24 |
# | | public | Public network for VMs | VLAN 1173 | tagged | 10.10.175.0/24 |
# +--------+------------+-----------------------------------+-----------+----------+----------------+
#
# For standard Airship/OPNFV deployments, you should not need to modify the
# number of NetworkLinks and Networks in this file. Only the IP addresses and
# CIDRs should need editing.
#
# The general Drydock documentation contains additional details, exmaples
# and how-tos on working with Drydock/YAMLs in more generic way and enabling
# custom/additional features not represented here (such as bonded networks).
# See https://airship-drydock.readthedocs.io/en/latest/topology.html#defining-networking
schema: 'drydock/NetworkLink/v1'
metadata:
schema: 'metadata/Document/v1'
name: oob
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
# MaaS doesn't own this network like it does the others,
# so the noconfig label is specified.
labels:
noconfig: enabled
bonding:
mode: disabled
mtu: 1500
linkspeed: auto
trunking:
mode: disabled
default_network: oob
allowed_networks:
- oob
...
---
schema: 'drydock/Network/v1'
metadata:
schema: 'metadata/Document/v1'
name: oob
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
# NEWSITE-CHANGEME: Update with the site's out-of-band CIDR
cidr: 10.10.170.0/24
routes:
# NEWSITE-CHANGEME: Update with the site's out-of-band gateway IP
- subnet: '0.0.0.0/0'
gateway: 10.10.170.1
metric: 100
...
---
schema: 'drydock/NetworkLink/v1'
metadata:
schema: 'metadata/Document/v1'
name: dmz
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
bonding:
mode: disabled
mtu: 1500
linkspeed: auto
trunking:
mode: disabled
default_network: dmz
allowed_networks:
- dmz
...
---
schema: 'drydock/Network/v1'
metadata:
schema: 'metadata/Document/v1'
name: dmz
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
# NEWSITE-CHANGEME: Update with the site's DMZ network CIDR
cidr: 10.10.170.0/24
routes:
- subnet: 0.0.0.0/0
# NEWSITE-CHANGEME: Set the DMZ network gateway IP address
# NOTE: This serves as the site's default route.
gateway: 10.10.170.1
metric: 100
ranges:
# NEWSITE-CHANGEME: Exclude any reserved IPs for the lab.
- type: reserved
start: 10.10.171.1
end: 10.10.171.19
# NEWSITE-CHANGEME: Update static range that will be used for the nodes.
# See minimum range required for the nodes in baremetal/nodes.yaml.
- type: static
start: 10.10.170.20
end: 10.10.170.39
dns:
# NEWSITE-CHANGEME: FQDN for bare metal nodes.
# Choose FQDN according to the node FQDN naming conventions at the top of
# this document.
domain: intel-pod17.opnfv.org
# List of upstream DNS forwards. Verify you can reach them from your
# environment. If so, you should not need to change them.
# TODO: This should be populated via substitution from common-addresses
servers: '8.8.8.8,8.8.4.4'
...
---
schema: 'drydock/NetworkLink/v1'
metadata:
schema: 'metadata/Document/v1'
name: admin
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
bonding:
mode: disabled
mtu: 1500
linkspeed: auto
trunking:
mode: disabled
default_network: admin
allowed_networks:
- admin
...
---
schema: 'drydock/Network/v1'
metadata:
schema: 'metadata/Document/v1'
name: admin
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
# NEWSITE-CHANGEME: Update with the site's PXE network CIDR
# NOTE: The CIDR minimum size = (number of nodes * 2) + 10
cidr: 10.10.171.0/24
routes:
- subnet: 0.0.0.0/0
# NEWSITE-CHANGEME: Set the Admin network gateway IP address
gateway: 10.10.171.1
metric: 100
# NOTE: The DHCP addresses are used when nodes perform a PXE boot
# (DHCP address gets assigned), and when a node is commissioning in MaaS
# (also uses DHCP to get its IP address). However, when MaaS installs the
# operating system ("Deploying/Deployed" states), it will write a static IP
# assignment to /etc/network/interfaces[.d] with IPs from the "static"
# subnet defined here.
ranges:
# NEWSITE-CHANGEME: Exclude any reserved IPs for the lab.
- type: reserved
start: 10.10.171.1
end: 10.10.171.19
# NEWSITE-CHANGEME: Update to the first half of the remaining range after
# excluding the reserved IPs.
- type: static
start: 10.10.171.20
end: 10.10.171.39
# NEWSITE-CHANGEME: Update to the second half of the remaining range after
# excluding the reserved IPs.
- type: dhcp
start: 10.10.171.40
end: 10.10.171.79
dns:
# NEWSITE-CHANGEME: FQDN for bare metal nodes.
# Choose FQDN according to the node FQDN naming conventions at the top of
# this document.
domain: intel-pod17.opnfv.org
# NEWSITE-CHANGEME: Use MAAS VIP as the DNS server.
# MAAS has inbuilt DNS server and Debian mirror that allows nodes to be
# deployed without requiring routed/internet access for the Admin/PXE interface.
# See data.vip.maas_vip in networks/common-addresses.yaml.
# TODO: This should be populated via substitution from common-addresses
servers: '10.10.171.100'
...
---
schema: 'drydock/NetworkLink/v1'
metadata:
schema: 'metadata/Document/v1'
name: data1
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
bonding:
mode: disabled
# NEWSITE-CHANGEME: Ensure the network switches in the environment are
# configured for this MTU or greater.
mtu: 1500
linkspeed: auto
trunking:
mode: 802.1q
allowed_networks:
- private
- management
...
---
schema: 'drydock/Network/v1'
metadata:
schema: 'metadata/Document/v1'
name: private
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
# NEWSITE-CHANGEME: Set the VLAN ID which the Private network is on
# use '0' if the vlan is untagged
vlan: '0'
mtu: 1500
# NEWSITE-CHANGEME: Set the CIDR for the Private network
# NOTE: The CIDR minimum size = number of nodes + 10
cidr: 10.10.172.0/24
ranges:
# NEWSITE-CHANGEME: Update to the remaining range excluding (if any)
# reserved IPs.
- type: static
start: 10.10.172.1
end: 10.10.172.19
...
---
schema: 'drydock/Network/v1'
metadata:
schema: 'metadata/Document/v1'
name: management
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
# NEWSITE-CHANGEME: Set the VLAN ID which the Management network is on
vlan: '174'
mtu: 1500
# NEWSITE-CHANGEME: Set the CIDR for the Management network
# NOTE: The CIDR minimum size = number of nodes + 10
cidr: 10.10.174.0/24
ranges:
# NEWSITE-CHANGEME: Update to the remaining range excluding (if any)
# reserved IPs.
- type: static
start: 10.10.174.1
end: 10.23.21.19
...
---
schema: 'drydock/NetworkLink/v1'
metadata:
schema: 'metadata/Document/v1'
name: data2
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
bonding:
mode: disabled
# NEWSITE-CHANGEME: Ensure the network switches in the environment are
# configured for this MTU or greater.
mtu: 1500
linkspeed: auto
trunking:
mode: 802.1q
default_network: storage
allowed_networks:
- storage
- public
...
---
schema: 'drydock/Network/v1'
metadata:
schema: 'metadata/Document/v1'
name: storage
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
# NEWSITE-CHANGEME: Set the VLAN ID which the Storage network is on
# use '0' if the vlan is untagged
vlan: '0'
# NEWSITE-CHANGEME: Ensure the network switches in the environment are
# configured for this MTU or greater.
mtu: 1500
# NEWSITE-CHANGEME: Set the CIDR for the Storage network
# NOTE: The CIDR minimum size = number of nodes + 10
cidr: 10.10.173.0/24
ranges:
# NEWSITE-CHANGEME: Update to the remaining range excludin (if any)
# reserved IPs.
- type: static
start: 10.10.173.1
end: 10.10.173.19
...
---
# The public network for OpenStack VMs.
# NOTE: Only interface 'ens785f1.1173' will be setup, no IPs assigned to hosts
schema: 'drydock/Network/v1'
metadata:
schema: 'metadata/Document/v1'
name: public
layeringDefinition:
abstract: false
layer: site
storagePolicy: cleartext
data:
# NEWSITE-CHANGEME: Set the VLAN ID which the Public network is on
vlan: '1173'
# NEWSITE-CHANGEME: Ensure the network switches in the environment are
# configured for this MTU or greater.
mtu: 1500
# NEWSITE-CHANGEME: Set the CIDR for the Public network
cidr: 10.10.175.0/24
...
|
