aboutsummaryrefslogtreecommitdiffstats
path: root/network
AgeCommit message (Collapse)AuthorFilesLines
2017-05-03Restrict nova migration ssh tunnelOliver Walsh1-0/+1
Specify the allowed networks for migration ssh tunneling. bp tripleo-cold-migration Change-Id: Iab022bdfb655e3c52fecebf416e75c9e981072ab Depends-on: Idb56acd1e1ecb5a5fd4d942969be428cc9cbe293
2017-04-21Merge "Add network_data.yaml to encapsulate list of networks for j2"Jenkins2-26/+17
2017-04-03Merge "Qpid dispatch router composable role"Jenkins1-0/+1
2017-03-31Remove EC2 endpoint from EndpointMapJuan Antonio Osorio Robles2-83/+0
We are removing this in favor of just using the keystone uri and appending /ec2tokens Change-Id: Idab78d61f3931818aa91faad2d68c1fe20f68db6
2017-03-29Qpid dispatch router composable roleJohn Eckersberg1-0/+1
Note: since it replaces rabbitmq, in order to aim for the smallest amount of changes the service_name is called 'rabbitmq' so all the other services do not need additional logic to use qdr. Depends-On: Idecbbabdd4f06a37ff0cfb34dc23732b1176a608 Change-Id: I27f01d2570fa32de91ffe1991dc873cdf2293dbc
2017-03-05Add network_data.yaml to encapsulate list of networks for j2Steven Hardy2-26/+17
This moves the hard-coded networks from the default environment, and provides the first step towards enabling composable networks. Co-Author: Dan Sneddon <dsneddon@redhat.com> Partial-Bug: #1633090 Depends-On: I9f818912bd8e2a3220e41c8ccbbab3d9063b4d72 Change-Id: I7793b8badede5450b05437c84d9b40c28de7546b
2017-02-25Merge "Don't assume default network names in net_ip*map"Jenkins2-43/+177
2017-02-17Don't assume default network names in net_ip*mapSteven Hardy2-43/+177
This needs to handle a ServiceNetMap containing non-default network names when they are overridden via the *NetName parameters. Closes-Bug: #1651541 Change-Id: I95d808444642a37612a495e822e50449a7e7da63
2017-02-10adding Congress SupportDan Radez3-0/+256
Depends-On: Ic74ccd5fa7b3b04ca810416e5160463252f17474 Implements: blueprint congress-service-integration Change-Id: Ie60540c340c0eb71ff376aba65507a8bb3e909b6 Signed-off-by: Dan Radez <dradez@redhat.com>
2017-02-09Adding Tacker SupportDan Radez3-0/+256
Depends-On: Ide0e60f3b7a3733788af4337c1c39b4a956c876f Depends-On: I3d6bbc05644e840395f87333ec80e3b844f69903 Depends-On: Idf6abcb7fe766546cb362ad4afe54f4bccd9c994 Implements: blueprint tacker-service-integration Change-Id: Ibddc81561f6e6ba671bd01a9251c57d3ad67ba8c Signed-off-by: Dan Radez <dradez@redhat.com>
2017-02-09Merge "Re-organizes Contrail services to the correct roles"Jenkins3-0/+2404
2017-02-08Re-organizes Contrail services to the correct rolesMichael Henkel3-0/+2404
In current setup some Contrail services belong to the wrong roles. The Contrail control plane can be impacted if the Analytics database has problems. Change-Id: I0d57a2324c38b5b20cc687c6217a7a364941f7e6 Depends-On: Id0dd35b95c5fe9d0fcc1e16c4b7d6cc601f10818 Closes-Bug: #1659560
2017-02-03Merge "Configure VNC Server listen address through t-h-t"Jenkins1-0/+1
2017-02-01Add more explicit messagae to build_endpoint_map's check optionJuan Antonio Osorio Robles1-2/+3
This will hopefully help developers know what to do if their patch fails this verification. Change-Id: I01fe9ca30295c6264affdbdb773b039a744289ea
2017-02-01Configure VNC Server listen address through t-h-tJuan Antonio Osorio Robles1-0/+1
This adds an entry for libvirt (which is used by the VNC server) on which we can tell it via t-h-t on which IP address to listen on. Change-Id: Ie377c09734e9f6170daa519aed69c53fc67c366b Related-Bug: #1660099
2017-01-25Merge "Add Octavia API service definitions"Jenkins3-0/+256
2017-01-25Merge "Add ec2-api service"Jenkins3-0/+257
2017-01-24Add ec2-api serviceSven Anderson3-0/+257
This change adds the ec2api service using the tripleo::profile::base::nova::ec2api profile. The deprecated nova-cert service is not supported, and therefore the RegisterImage action is not supported either. Change-Id: I2510fd4ed935d8423216fff9ce3adf2d69c9c804 Depends-On: If4b091e1ca02f43aa9c65392baf8ceea007b7cfb
2017-01-24pacemaker remote profile supportMichele Baldessari1-0/+1
This adds a pacemaker_remote puppet service so that an operator can automatically deploy pacemaker-remote on nodes of his choice. Change-Id: I9678606b3de9b9f4c03014b33c1dd27fcba67513 Depends-On: I581552dfa64160e2f82f6a9b8f2ae521c3d6da8d Depends-On: I92953afcc7d536d387381f08164cae8b52f41605
2017-01-20Merge "Make ServiceNetMap support custom network names"Jenkins1-12/+52
2017-01-19Merge "Adds etcd composable service"Jenkins1-0/+1
2017-01-19Merge "Add entry in serviceNetMap for Nova Placement"Jenkins3-23/+21
2017-01-19Make ServiceNetMap support custom network namesSteven Hardy1-12/+52
The rework to support custom roles moved the service net map into a nested stack, but the logic it contains fails to consider operators may override the network names via *NetName parameters. So add a map_replace of the ServiceNetMapDefaults so we maintain the existing default service->network assignments, even when the network name is changed. Note that operators will still be expected to pass any ServiceNetMap overrides with the "new" network name, e.g whatever *NetName specifies, otherwise I think environment files could get very confusing. Change-Id: I52018e19428e11d26650f0ea6ccee3ae02494ff8 Partial-Bug: #1651541
2017-01-19Adds etcd composable serviceFeng Pan1-0/+1
etcd is used by networking-vpp ML2 driver as the messaging mechanism. This patch adds etcd service which can be used by other services. Implements: blueprint fdio-integration-tripleo Depends-on: Idaa3e3deddf9be3d278e90b569466c2717e2d517 Change-Id: I8ae1e2c9b0c3d6f448e1da712100938d011289f5 Signed-off-by: Feng Pan <fpan@redhat.com>
2017-01-19Add entry in serviceNetMap for Nova PlacementJuan Antonio Osorio Robles3-23/+21
This is needed for t-h-t to autogenerate the hostnames and the vip entries in hiera. It also takes it into use in the endpoint map. Change-Id: Id0d34c7c3939ee81126ffd26d0658c0a87805a44
2017-01-18Add Octavia API service definitionsBrent Eagles3-0/+256
Introduce basic configuration support for Octavia API service. Change-Id: I8816725ed65039af4b7d45392a2823395e81e51c Depends-On: I77783029797be4fb488c6e743c51d228eba9c474 Partially-Implements: blueprint octavia-service-integration
2017-01-18set -e in run-os-net-config.shSteve Baker1-1/+5
This runs run-os-net-config.sh with set -e except for ping and os-net-config --detailed-exit-codes which are expected to return non-zero values. Change-Id: Iffe00a97612ccb1c79ed037ce93f6c2e685164d9
2017-01-18Merge "Remove Glance Registry service"Jenkins3-88/+0
2017-01-17Nova Placement API composable serviceEmilien Macchi2-0/+267
Add support to deploy Nova Placement API service in TripleO. Change-Id: Ie41ebc362a0695c8f55419e231100c63007405ed
2017-01-16Remove Glance Registry serviceEmilien Macchi3-88/+0
Glance registry is not required for the v2 of the API and there are plans to deprecate it in the glance community. Let's remove v1 support since it has been deprecated for a while in Glance. Depends-On: I77db1e1789fba0fb8ac014d6d1f8f5a8ae98ae84 Co-Authored: Flavio Percoco <flaper87@gmail.com> Change-Id: I0cd722e8c5a43fd19336e23a7fada71c257a8e2d
2017-01-11Fix protocol for ZaqarWebsockets endpointJuan Antonio Osorio Robles1-0/+1
We needed to set the 'ws' protocol so we would get the correct endpoint map generated when using build_endpoint_map.py Change-Id: I6f2cfce058a803f1925c4e22f9791d0117a6c0e3
2017-01-11Make build_endpoint_map.py output an ocata versioned templateJuan Antonio Osorio Robles1-1/+1
the version it was using was 2015-04-30, but we should be using ocata instead. Change-Id: I3eca2f235b3623f08e9cd6b7c2eafe0959b2fb3c
2017-01-06Template and role support for the undercloudDan Prince1-1/+3
Add a new roles data YAML file and environment to help create the undercloud via t-h-t. Partially-implements: blueprint heat-undercloud Change-Id: I36df7fa86c2ff40026d59f02248af529a4a81861
2017-01-03Merge "Bump template version for all templates to "ocata""Jenkins77-77/+77
2016-12-23Merge "Split OVN northd and ml2 plugin"Jenkins1-0/+1
2016-12-23Bump template version for all templates to "ocata"Steven Hardy77-77/+77
Heat now supports release name aliases, so we can replace the inconsistent mix of date related versions with one consistent version that aligns with the supported version of heat for this t-h-t branch. This should also help new users who sometimes copy/paste old templates and discover intrinsic functions in the t-h-t docs don't work because their template version is too old. Change-Id: Ib415e7290fea27447460baa280291492df197e54
2016-12-23Merge "Add network_config_hook interface to run-os-net-config.sh"Jenkins1-0/+6
2016-12-22Merge "Use ws instead of http for Zaqar websocket endpoints"Jenkins1-3/+3
2016-12-22Add network_config_hook interface to run-os-net-config.shJames Slagle1-0/+6
run-os-net-config.sh only allows for limited customization of the network configuration in config.json. Namely, it only customizes the bridge_name and interface_name. This will likely not be sufficient for all use cases. This patch adds a generic network_config_hook bash function that will be called if it is defined. The function is an entry point for deployers to write custom code to further influence run-os-net-config.sh. A possible alternative approach would be to pass the server resource into the NetworkConfig template. That would allow running arbitrary SoftwareDeployments on the server before NetworkDeployment is executed. However, the interface of NetworkDeployment is likely still not as flexible as this approach as the inputs are hardcoded in the role template files (role.role.j2.yaml), which are not meant to be modified by deployers. The immediate use case for this work is using os-net-config in our multinode CI jobs where we need to create vxlan tunnels between the nodes and we need to know the local private IP of each node for the tunnel endpoint. As the IP is different for each node, it's not a parameter we could specify in the templates. Change-Id: I26d0ebdaba6fcd3fe885e41ed234eb79a2405228 Implements: blueprint multinode-ci-os-net-config
2016-12-22Merge "Add a per service bootstrap node variable"Jenkins1-0/+17
2016-12-21Add a per service bootstrap node variableMichele Baldessari1-0/+17
In order to call commands that need to be run on a single node, we create a new per-service variable that will contain the first node of each role containing the service. Change-Id: I03e8685f939e8ae1fcd8b16883b559615042505d Partial-Bug: #1615983
2016-12-21Merge "net-conf: make bridge and interface name optional"Jenkins1-5/+5
2016-12-20Use ws instead of http for Zaqar websocket endpointsDan Prince1-3/+3
This patch updates the endpoint map for Zaqar websockets so that we use ws (or wss for SSL) instead of the http varients. This should help resolve protocol issues when trying to make connections to the websocket API. Change-Id: Iea88d1e30299cb621424740a39d498defa371ca4
2016-12-19Split OVN northd and ml2 pluginSteven Hardy1-0/+1
This allows us to take advantage of the composable roles hiera settings to connect the plugin to the northd/ovndb API without needing to hard-code the IP of the node running the service. Change-Id: I2508d48f81c1819ae3521fff271c0bdc50724604 Depends-On: I9af7bd837c340c3df016fc7ad4238b2941ba7a95 Closes-Bug: #1634171
2016-12-17net-conf: make bridge and interface name optionalDan Prince1-5/+5
Update the run-os-net-config.sh so that we make the bridge_name and interface_name parameters (supplied by the SoftwareConfig) optional. This allows operators to create custom network templates to be used on roles other than compute and controller which appear to be the only two roles which set bridge_name and interface_name parameters. Change-Id: I8997cf8177c1bf0e1f19de5f93dc4e81da1a951f
2016-12-15Add ZaqarApiNetwork to the service net mapDan Prince1-0/+1
Without this Zaqar API will fail to run due to a missing bind IP address in the config file. Change-Id: Icd0a6e85b7455e89f37f05399146d5e743359da8 Closes-bug: #1650307
2016-12-02Add NIC config for compute role for DVR with multiple NICsDan Sneddon1-0/+162
This change adds a NIC config to the multiple-nics sample NIC config templates for a compute node running DVR. In order for DVR to work on the compute nodes, they must share an external bridge with the controllers. All of the other sample NIC configs already have an external bridge (defaults to 'br-ex'), but the multiple-nics compute role does not, so now the compute-dvr.yaml NIC template will demonstrate DVR with multiple NICs. Change-Id: I80fe2e5842a67984e1d4d8aa295c7607c4f340ad
2016-12-02Merge "Composable Zaqar services"Jenkins2-0/+510
2016-11-28Apply os-net-config with a script instead of elementDan Prince28-1664/+1742
Wire in os-net-config via a normal script heat deployment, which has the following advantages: 1. Improved error path, currently o-a-c deployments don't report any errors, thus hang and eventually the deployment times out 2. It's far more hackable from a deployer perspective, e.g it's much easier to change the os-net-config options or include a mapping file 3. Reduces our dependencies on o-a-c (it's only os-net-config and hiera which requires it), although the script does currently still use oac to get the metadata IP. 4. May enable passing os-net-config yaml via a json parameter in future, reducing the need for resource_registry mappings (although we'll have to support that for backwards compatibility) The script used is based directly on 20-os-net-config (from t-i-e at cf94c5e, we can probably improve this now that we have an error path, but for this initial commit it's a straight copy other than the changes to replace o-a-c for rendering the json config file. Co-Authored-By: Steven Hardy <shardy@redhat.com> Change-Id: I0ed08332cfc49a579de2e83960f0d8047690b97a
2016-11-27Merge "Cleanup some inline comments in network/config"Jenkins7-20/+0