OpenStack Dev Server Setup – CentOS

generate a ssh key without password. Copy the pub-key to the kickstart file.

install necessary software

yum install epel
yum install bridge-utils  libvirt qemu-kvm tcpdump wget  yum-plugin-remove-with-leaves nginx mosh tmux virt-install htop 

chkconfig NetworkManager off
chkconfig network on
/etc/init.d/NetworkManager stop
/etc/init.d/network restart

go to your /etc/sysconf/network-scripts/ folder

edit ifcfg-em1 to be something like this

TYPE=Ethernet
NAME=em1
UUID=f6a0f74b-dcaf-4009-ba67-68ecb158e821 ## retain your uuid
DEVICE=em1
ONBOOT=yes
BRIDGE=br-net

create ifcfg-br-net to be something like this

## do not blindly copy/paste . Please update with your real ips. 
TYPE=Bridge
BOOTPROTO=static
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
IPV6INIT=no
IPV6_AUTOCONF=no
IPV6_DEFROUTE=no
IPV6_FAILURE_FATAL=no
NAME=br-net
DEVICE=br-net
ONBOOT=yes
IPADDR=1.1.1.10
PREFIX=24
GATEWAY=1.1.1.1
DNS1=8.8.8.8
DOMAIN=admin0.com
IPV6_PEERDNS=no
IPV6_PEERROUTES=no
IPV6_PRIVACY=no

/etc/init.d/network restart

brctl show

bridge name	bridge id		STP enabled	interfaces
br-net		8000.f01fafe35eb4	no		em1
virbr0		8000.5254002f754a	yes		virbr0-nic

Now lets define the bridges to be used for openstack
Create the following files ( in your current directory )

pxe.xml

<network>
 <ip address="10.11.12.2" netmask="255.255.252.0">
 </ip>
  <name>pxe</name>
  <bridge name='os-pxe' stp='on' delay='0' />
</network>

mgmt.xml

<network>
 <ip address="172.29.236.2" netmask="255.255.252.0">
 </ip>
  <name>mgmt</name>
  <bridge name='os-mgmt' stp='on' delay='0' />
</network>

stor.xml

<network>
 <ip address="172.29.244.2" netmask="255.255.252.0">
 </ip>
  <name>stor</name>
  <bridge name='os-stor' stp='on' delay='0' />
</network>

vlan.xml

<network>
  <name>vlan</name>
  <bridge name='os-vlan' stp='on' delay='0' />
</network>

vxlan.xml

<network>
 <ip address="172.29.240.2" netmask="255.255.252.0">
 </ip>
  <name>vxlan</name>
  <bridge name='os-vxlan' stp='on' delay='0' />
</network>

active the networks

virsh net-define pxe.xml
virsh net-define mgmt.xml
virsh net-define stor.xml
virsh net-define vlan.xml
virsh net-define vxlan.xml

set the networks to auto-start

virsh net-autostart pxe
virsh net-autostart mgmt
virsh net-autostart stor
virsh net-autostart vlan
virsh net-autostart vxlan

start the networks

virsh net-start pxe
virsh net-start mgmt
virsh net-start stor
virsh net-start vlan
virsh net-start vxlan

virsh net-list –all

 Name                 State      Autostart     Persistent
----------------------------------------------------------
 default              active     yes           yes
 mgmt                 active     yes           yes
 pxe                  active     yes           yes
 stor                 active     yes           yes
 vlan                 active     yes           yes
 vxlan                active     yes           yes

brctl show

bridge name	bridge id		STP enabled	interfaces
br-net		8000.f01fafe35eb4	no		em1
os-mgmt		8000.525400b2ef3c	yes		os-mgmt-nic
os-pxe		8000.525400c3d809	yes		os-pxe-nic
os-stor		8000.525400642734	yes		os-stor-nic
os-vlan		8000.525400c69195	yes		os-vlan-nic
os-vxlan	        8000.525400b43511	yes		os-vxlan-nic
virbr0		8000.5254002f754a	yes		virbr0-nic

Now setup VYOS using vnc or virt-manager
Assign the VYOS to the following bridges respectively

  • eth0 => br-net
  • eth1 => os-pxe
  • eth2 => os-mgmt
  • eth3 => os-stor
  • eth4 => os-vlan
  • eth5 => os-vxlan

Sample Vyos Config

## Sashi Dahal 
## For context and background, please visit: https://www.openstackfaq.com/openstack-liberty-private-cloud-howto/
##
## These are actual VYOS commands


## setup your gateway 
set system gateway-address '1.1.1.1'

## setup your public IP addresses

set interfaces ethernet eth0 address '1.1.1.2/24'
set interfaces ethernet eth0 address '1.1.1.3/24'

## this is the pxe/dhcp default gateway address
set interfaces ethernet eth1 address '10.11.12.1/22'

## openstack-ansible  management ip range 
set interfaces ethernet eth2 address '172.29.236.1/22'

## openstack-ansible storage ip range
set interfaces ethernet eth3 address '172.29.244.1/22'

## floating-ip VLANs and IP range
set interfaces ethernet eth4 vif 101 address '192.168.101.1/24'
set interfaces ethernet eth4 vif 102 address '192.168.102.1/24'


## direct attached/dhcp  VLANs and IP range
set interfaces ethernet eth4 vif 201 address '192.168.201.1/24'
set interfaces ethernet eth4 vif 202 address '192.168.202.1/24'


## openstack-ansible vxlan ip range 
set interfaces ethernet eth5 address '172.29.240.1/22'


## 1:1 NAT between internal and public IP 
set nat destination rule 11 destination address '1.1.1.3'
set nat destination rule 11 inbound-interface 'eth0'
set nat destination rule 11 translation address '10.11.12.3'
set nat source rule 11 outbound-interface 'eth0'
set nat source rule 11 source address '10.11.12.3'
set nat source rule 11 translation address '1.1.1.3'

# NAT for the pxe range
set nat source rule 100 outbound-interface 'eth0'
set nat source rule 100 protocol 'all'
set nat source rule 100 source address '10.11.12.0/22'
set nat source rule 100 translation address 'masquerade'

# NAT for the floating-ip range
set nat source rule 101 outbound-interface 'eth0'
set nat source rule 101 protocol 'all'
set nat source rule 101 source address '192.168.101.0/24'
set nat source rule 101 translation address 'masquerade'

# NAT for the direct-attached-dhcp ip range 
set nat source rule 201 outbound-interface 'eth0'
set nat source rule 201 protocol 'all'
set nat source rule 201 source address '192.168.201.0/24'
set nat source rule 201 translation address 'masquerade'

# VYOS acts as a DHCP server for the initial boot 
set service dhcp-server disabled 'false'
set service dhcp-server shared-network-name pxe-pool authoritative 'disable'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 default-router '10.11.12.1'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 dns-server '10.11.12.1'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 lease '86400'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 start 10.11.12.11 stop '10.11.12.99'

set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c11 ip-address '10.11.12.11'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c11 mac-address '52:54:00:11:12:11'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c12 ip-address '10.11.12.12'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c12 mac-address '52:54:00:11:12:12'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c13 ip-address '10.11.12.13'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c13 mac-address '52:54:00:11:12:13'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c14 ip-address '10.11.12.14'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c14 mac-address '52:54:00:11:12:14'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c15 ip-address '10.11.12.15'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c15 mac-address '52:54:00:11:12:15'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c16 ip-address '10.11.12.16'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c16 mac-address '52:54:00:11:12:16'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c17 ip-address '10.11.12.17'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c17 mac-address '52:54:00:11:12:17'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c18 ip-address '10.11.12.18'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c18 mac-address '52:54:00:11:12:18'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c19 ip-address '10.11.12.19'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c19 mac-address '52:54:00:11:12:19'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c20 ip-address '10.11.12.20'
set service dhcp-server shared-network-name pxe-pool subnet 10.11.12.0/22 static-mapping c20 mac-address '52:54:00:11:12:20'


# VYOS also acts as a DNS server ..
set service dns forwarding listen-on 'eth1'
set service dns forwarding name-server '8.8.8.8'
set service dns forwarding name-server '8.8.4.4'

set service ssh port '22'

Setup nginx for making installations local

apt-get install nginx
cd /usr/share/nginx/html
wget http://releases.ubuntu.com/14.04.4/ubuntu-14.04.4-server-amd64.iso
mkdir iso
mount -o loop ubuntu-14.04.4-server-amd64.iso iso
cp -a iso ubuntu
umount iso
rm -rf iso

test if things are working

curl -I http://10.11.12.2/ubuntu/install/filesystem.squashfs

HTTP/1.1 200 OK
Server: nginx/1.4.6 (Ubuntu)
Date: Sun, 13 Mar 2016 00:17:53 GMT
Content-Type: application/octet-stream
Content-Length: 68243456
Last-Modified: Wed, 17 Feb 2016 23:17:40 GMT
Connection: keep-alive
ETag: "56c4ff94-4115000"
Accept-Ranges: bytes

I create 80GB volumes for my test. In your case, you might use files.

lvscan

  ACTIVE            '/dev/cloud/c11' [80.00 GiB] inherit
  ACTIVE            '/dev/cloud/c12' [80.00 GiB] inherit
  ACTIVE            '/dev/cloud/c13' [80.00 GiB] inherit
  ACTIVE            '/dev/cloud/c14' [80.00 GiB] inherit
  ACTIVE            '/dev/cloud/c15' [80.00 GiB] inherit
  ACTIVE            '/dev/cloud/c16' [80.00 GiB] inherit
  ACTIVE            '/dev/cloud/c17' [80.00 GiB] inherit
  ACTIVE            '/dev/cloud/c18' [80.00 GiB] inherit
  ACTIVE            '/dev/cloud/c19' [80.00 GiB] inherit
  ACTIVE            '/dev/cloud/c20' [80.00 GiB] inherit

create /usr/share/nginx/html/ksUbuntu.txt kickstart file

Make sure you copy your ssh keys for yourself, this dev server and deploy-lxc container in there

# Ubuntu Auto Install KickStart File
# Shashi Dahal 
# 

lang en_US
langsupport en_US
keyboard us
timezone Europe/Amsterdam
rootpw admin0.#
user admin0 --fullname "admin0" --password admin0.$
auth  --useshadow  --enablemd5

text
install
network --bootproto=dhcp
url --url http://10.11.12.2/ubuntu/
reboot

bootloader --location=mbr
zerombr yes
clearpart --all --initlabel


part /boot --fstype ext4 --size 250 --asprimary
part pv.01 --size=1 --grow --asprimary
volgroup cloud pv.01
logvol swap --fstype swap --vgname=cloud --size=2048   --name=swap

## i create 3 extra volumes, so that the same could be used to test swift, ceph etc

logvol /disk1 --fstype ext4 --vgname=cloud --size=2048 --name=disk1
logvol /disk2 --fstype ext4 --vgname=cloud --size=2048 --name=disk2
logvol /disk3 --fstype ext4 --vgname=cloud --size=2048 --name=disk3
logvol /    --fstype ext4 --vgname=cloud --size=20480  --name=root --grow

preseed partman-lvm/confirm_nooverwrite         boolean true
preseed partman-auto-lvm/no_boot                boolean true
preseed base-installer/install-recommends       boolean false

d-i live-installer/net-image string http://10.11.12.2/ubuntu/install/filesystem.squashfs


firewall --disabled
skipx

%packages

%post

mkdir /root/.ssh/
cat << EOF >> /root/.ssh/authorized_keys
ssh-rsa shashi@
ssh-rsa root@cloud
ssh-rsa root@deploy
EOF

cat << EOF > /etc/apt/sources.list
deb http://nl.archive.ubuntu.com/ubuntu/ trusty main restricted
deb-src http://nl.archive.ubuntu.com/ubuntu/ trusty main restricted
deb http://nl.archive.ubuntu.com/ubuntu/ trusty-updates main restricted
deb-src http://nl.archive.ubuntu.com/ubuntu/ trusty-updates main restricted
deb http://nl.archive.ubuntu.com/ubuntu/ trusty universe
deb-src http://nl.archive.ubuntu.com/ubuntu/ trusty universe
deb http://nl.archive.ubuntu.com/ubuntu/ trusty-updates universe
deb-src http://nl.archive.ubuntu.com/ubuntu/ trusty-updates universe
deb http://nl.archive.ubuntu.com/ubuntu/ trusty multiverse
deb-src http://nl.archive.ubuntu.com/ubuntu/ trusty multiverse
deb http://nl.archive.ubuntu.com/ubuntu/ trusty-updates multiverse
deb-src http://nl.archive.ubuntu.com/ubuntu/ trusty-updates multiverse
deb http://nl.archive.ubuntu.com/ubuntu/ trusty-backports main restricted universe multiverse
deb-src http://nl.archive.ubuntu.com/ubuntu/ trusty-backports main restricted universe multiverse
deb http://security.ubuntu.com/ubuntu trusty-security main restricted
deb-src http://security.ubuntu.com/ubuntu trusty-security main restricted
deb http://security.ubuntu.com/ubuntu trusty-security universe
deb-src http://security.ubuntu.com/ubuntu trusty-security universe
deb http://security.ubuntu.com/ubuntu trusty-security multiverse
deb-src http://security.ubuntu.com/ubuntu trusty-security multiverse
EOF

apt-get update
apt-get install -y openssh-server curl vim tcpdump wget lvm2 htop lldpd python curl bridge-utils vlan ifenslave lsof ntp ntpdate sudo
apt-get -qq -y autoremove
apt-get clean
update-initramfs -u -v -k all

change the number of hosts you want to create in this loop

create recreate.sh file

#!/bin/bash
## Sashi Dahal
## For context and background, please visit: https://www.openstackfaq.com/openstack-liberty-private-cloud-howto/
##
## change loop based on what resources you have .. 

for i in {11..20}
do
echo "removing c$i .. "
virsh destroy c${i}
sleep 5s
virsh undefine c${i}
sleep 5s

echo "creating c$i .."

virt-install \
--name c${i} \
--ram 4096 \
--disk path=/dev/cloud/c${i} \
--vcpus 4 \
--os-type linux \
--os-variant=ubuntu14.04 \
--mac 52:54:00:11:12:${i} \
--network bridge='os-pxe' --network bridge='os-mgmt' --network bridge='os-stor' --network bridge='os-vlan' --network bridge='os-v
xlan' \
--graphics none --console pty,target_type=serial \
--location 'http://nl.archive.ubuntu.com/ubuntu/dists/trusty/main/installer-amd64/' \
--extra-args 'live-installer/net-image=http://10.11.12.2/ubuntu/install/filesystem.squashfs ks=http://10.11.12.2/ksUbuntu.txt ksd
evice=bootif biosdevname=0 nosplash nomodeset console=ttyS0,115200n8 serial' \
--noautoconsole
sleep 60s
done

if you run recreate.sh, it will now create new VMS everytime .. keeping the IPs the same for you that start with 10.11.12.x ..

run the script to create some vms.

Add this to your /etc/hosts

10.11.12.11 c11x
10.11.12.12 c12x
10.11.12.13 c13x
10.11.12.14 c14x
10.11.12.15 c15x
10.11.12.16 c16x
10.11.12.17 c17x
10.11.12.18 c18x
10.11.12.19 c19x
10.11.12.20 c20x

172.29.236.11 c11
172.29.236.12 c12
172.29.236.13 c13
172.29.236.14 c14
172.29.236.15 c15
172.29.236.16 c16
172.29.236.17 c17
172.29.236.18 c18
172.29.236.19 c19
172.29.236.20 c20

If you created any VMS using the recreate.sh script, they might be in shut-off state after installation is done

you just need to do virsh start c11  ; virsh start c12 etc

if everything is properly done,  you should now be able to ping them using ping c11x  c12x etc

add this to your /root/.ssh/config

host c*
   StrictHostKeyChecking no
   UserKnownHostsFile=/dev/null

Now lets create the hostname template file

create file called hostname_loop

#!/bin/bash
# Shashi Dahal

hostname HOST
echo HOST  > /etc/hostname
perl -pi -e 's/kickseed/HOST/g' /etc/hosts

create another file called interfaces_loop

# Network
auto lo
iface lo inet loopback

auto eth0
iface eth0 inet dhcp

auto eth1
iface eth1 inet manual

auto eth2
iface eth2 inet manual

auto eth3
iface eth3 inet manual

auto eth4
iface eth4 inet manual

auto br-mgmt
iface br-mgmt inet static
 bridge_stp off
 bridge_waitport 0
 bridge_fd 0
 bridge_ports eth1
 address 172.29.236.IPADDR
 netmask 255.255.252.0

auto br-vxlan
iface br-vxlan inet static
 bridge_stp off
 bridge_waitport 0
 bridge_fd 0
 bridge_ports eth4
 address 172.29.240.IPADDR
 netmask 255.255.252.0

auto br-storage
iface br-storage inet static
 bridge_stp off
 bridge_waitport 0
 bridge_fd 0
 bridge_ports eth2
 address 172.29.244.IPADDR
 netmask 255.255.252.0


auto br-vlan
iface br-vlan inet manual
 bridge_stp off
 bridge_waitport 0
 bridge_fd 0
 bridge_ports eth3

Now lets play with some loops

for i in {11..20}; do  cat hostname_loop | sed "s/HOST/c$i/g" > hostname.$i; done
for i in {11..20}; do  cat interfaces_loop | sed "s/IPADDR/$i/g" > interfaces.$i; done

you will have files like hostname.11  and interfaces.11  in your folder

assuming that all your VMS are up, lets copy over the files

more loops:

for i in {11..17}; do  scp hostname.$i  c${i}x:/root/hostname.sh; done
for i in {11..20}; do scp interfaces.$i c${i}x:/etc/network/interfaces; done

login to a few to check if all is fine, and then activate them

for i in {11..20}; do  ssh c${i}x  bash /root/hostname.sh; ssh c${i}x reboot; done

and wait for all to reboot.

Now after they are up, login to any of the VM and you should be able to ping:

  • 10.11.12.1  , 10.11.12.2
  • 172.29.236.1  , 172.29.236.2
  • 172.29.240.1  , 172.29.240.2
  • 172.29.244.1  , 172.29.244.2

With this, you get re-usable infrastructure all the time.

 

About The Author

Support for the documentation and for OpenStack is provided on irc.oftc.net IRC on #openstack and #openstack-ansible channels via username: admin1