Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-formulas / opencontrail / 13cda440ffe74a4384ecc076a05b109c8b27071c / . / README.rst
blob: 901848dfe49c714f1e74d2ec211abb1050ef9ccd [file] [log] [blame]
Aleš Komáreka3314b22017-04-11 13:46:06 +0200[diff] [blame]1====================
2OpenContrail Formula
3====================
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]4
Jakub Pavlik01fe5372016-05-20 11:23:28 +0200[diff] [blame]5Contrail Controller is an open, standards-based software solution that
6delivers network virtualization and service automation for federated cloud
7networks. It provides self-service provisioning, improves network
8troubleshooting and diagnostics, and enables service chaining for dynamic
9application environments across enterprise virtual private cloud (VPC),
10managed Infrastructure as a Service (IaaS), and Networks Functions
11Virtualization (NFV) use cases.
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]12
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]13
Petr Michalec579e64d2017-03-24 12:54:29 +0100[diff] [blame]14Package source
15==============
Aleš Komáreka3314b22017-04-11 13:46:06 +0200[diff] [blame]16
Petr Michalec579e64d2017-03-24 12:54:29 +0100[diff] [blame]17Formula support OpenContrail as well as Juniper Contrail package repository in the backend.
18
19Differences withing the configuration and state run are controlled by
20``opencontrail.common.vendor: [opencontrail|juniper]`` pillar attribute.
21
22Default value is set to ``opencontrail``.
23
24Juniper releases tested with this formula:
25 - 3.0.2.x
26
27To use Juniper Contrail repository as a source of packages override pillar as in this example:
28
29.. code-block:: yaml
30
31 opencontrail:
32 common:
33 vendor: juniper
34
35
Aleš Komáreka3314b22017-04-11 13:46:06 +0200[diff] [blame]36Sample Pillars
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]37==============
38
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]39Controller nodes
40----------------
41
42There are several scenarios for OpenContrail control plane.
43
44All-in-one single
45~~~~~~~~~~~~~~~~~
46
47Config, control, analytics, database, web -- altogether on one node.
48
49.. code-block:: yaml
50
51 opencontrail:
52 common:
53 version: 2.2
54 source:
55 engine: pkg
56 address: http://mirror.robotice.cz/contrail-havana/
57 identity:
58 engine: keystone
59 host: 127.0.0.1
60 port: 35357
61 token: token
62 password: password
63 network:
64 engine: neutron
65 host: 127.0.0.1
66 port: 9696
67 config:
68 version: 2.2
69 enabled: true
70 network:
71 engine: neutron
72 host: 127.0.0.1
73 port: 9696
74 discovery:
75 host: 127.0.0.1
76 analytics:
77 host: 127.0.0.1
78 bind:
79 address: 127.0.0.1
80 message_queue:
81 engine: rabbitmq
82 host: 127.0.0.1
83 port: 5672
84 database:
85 members:
86 - host: 127.0.0.1
87 port: 9160
88 cache:
Jakub Pavlikd1a059e2016-07-13 23:08:33 +0200[diff] [blame]89 members:
90 - host: 127.0.0.1
91 port: 11211
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]92 identity:
93 engine: keystone
94 version: '2.0'
95 region: RegionOne
96 host: 127.0.0.1
97 port: 35357
98 user: admin
99 password: password
100 token: token
101 tenant: admin
102 members:
103 - host: 127.0.0.1
104 id: 1
Dmitry Stremkovskiy841fee32017-09-01 18:08:41 +0300[diff] [blame]105 rootlogger: "INFO, CONSOLE"
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]106 control:
107 version: 2.2
108 enabled: true
109 bind:
110 address: 127.0.0.1
111 discovery:
112 host: 127.0.0.1
113 master:
114 host: 127.0.0.1
115 members:
116 - host: 127.0.0.1
117 id: 1
118 collector:
119 version: 2.2
120 enabled: true
121 bind:
122 address: 127.0.0.1
123 master:
124 host: 127.0.0.1
125 discovery:
126 host: 127.0.0.1
127 data_ttl: 2
128 database:
129 members:
130 - host: 127.0.0.1
131 port: 9160
132 database:
133 version: 2.2
134 cassandra:
135 version: 2
136 enabled: true
137 minimum_disk: 10
138 name: 'Contrail'
139 original_token: 0
Dmitry Stremkovskiy2a079c72017-07-12 23:11:18 +0300[diff] [blame]140 compaction_throughput_mb_per_sec: 16
Dmitry Stremkovskiy71b310a2017-08-11 20:39:11 +0300[diff] [blame]141 concurrent_compactors: 1
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]142 data_dirs:
143 - /var/lib/cassandra
144 id: 1
145 discovery:
146 host: 127.0.0.1
147 bind:
148 host: 127.0.0.1
149 port: 9042
150 rpc_port: 9160
151 members:
152 - host: 127.0.0.1
153 id: 1
154 web:
155 version: 2.2
156 enabled: True
157 bind:
158 address: 127.0.0.1
159 analytics:
160 host: 127.0.0.1
161 master:
162 host: 127.0.0.1
163 cache:
164 engine: redis
165 host: 127.0.0.1
166 port: 6379
167 members:
168 - host: 127.0.0.1
169 id: 1
170 identity:
171 engine: keystone
172 version: '2.0'
173 host: 127.0.0.1
174 port: 35357
175 user: admin
176 password: password
177 token: token
178 tenant: admin
179
180
181All-in-one cluster
182~~~~~~~~~~~~~~~~~~
183
Jakub Pavlik01fe5372016-05-20 11:23:28 +0200[diff] [blame]184Config, control, analytics, database, web -- altogether, clustered on multiple
185nodes.
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]186
187.. code-block:: yaml
188
189 opencontrail:
190 common:
191 version: 2.2
192 source:
193 engine: pkg
194 address: http://mirror.robotice.cz/contrail-havana/
195 identity:
196 engine: keystone
197 host: 127.0.0.1
198 port: 35357
199 token: token
200 password: password
201 network:
202 engine: neutron
203 host: 127.0.0.1
204 port: 9696
205 config:
206 version: 2.2
207 enabled: true
208 network:
209 engine: neutron
210 host: 127.0.0.1
211 port: 9696
212 discovery:
213 host: 127.0.0.1
214 analytics:
215 host: 127.0.0.1
216 bind:
217 address: 127.0.0.1
218 message_queue:
219 engine: rabbitmq
220 host: 127.0.0.1
221 port: 5672
222 database:
223 members:
224 - host: 127.0.0.1
225 port: 9160
226 - host: 127.0.0.1
227 port: 9160
228 - host: 127.0.0.1
229 port: 9160
230 cache:
Jakub Pavlikd1a059e2016-07-13 23:08:33 +0200[diff] [blame]231 members:
232 - host: 127.0.0.1
233 port: 11211
234 - host: 127.0.0.1
235 port: 11211
236 - host: 127.0.0.1
237 port: 11211
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]238 identity:
239 engine: keystone
240 version: '2.0'
241 region: RegionOne
242 host: 127.0.0.1
243 port: 35357
244 user: admin
245 password: password
246 token: token
247 tenant: admin
248 members:
249 - host: 127.0.0.1
250 id: 1
251 - host: 127.0.0.1
252 id: 2
253 - host: 127.0.0.1
254 id: 3
255 control:
256 version: 2.2
257 enabled: true
258 bind:
259 address: 127.0.0.1
260 discovery:
261 host: 127.0.0.1
262 master:
263 host: 127.0.0.1
264 members:
265 - host: 127.0.0.1
266 id: 1
267 - host: 127.0.0.1
268 id: 2
269 - host: 127.0.0.1
270 id: 3
271 collector:
272 version: 2.2
273 enabled: true
274 bind:
275 address: 127.0.0.1
276 master:
277 host: 127.0.0.1
278 discovery:
279 host: 127.0.0.1
280 data_ttl: 1
281 database:
282 members:
283 - host: 127.0.0.1
284 port: 9160
285 - host: 127.0.0.1
286 port: 9160
287 - host: 127.0.0.1
288 port: 9160
289 database:
290 version: 2.2
291 cassandra:
292 version: 2
293 enabled: true
294 name: 'Contrail'
295 minimum_disk: 10
296 original_token: 0
297 data_dirs:
298 - /var/lib/cassandra
299 id: 1
300 discovery:
301 host: 127.0.0.1
302 bind:
303 host: 127.0.0.1
304 port: 9042
305 rpc_port: 9160
306 members:
307 - host: 127.0.0.1
308 id: 1
309 - host: 127.0.0.1
310 id: 2
311 - host: 127.0.0.1
312 id: 3
313 web:
314 version: 2.2
315 enabled: True
316 bind:
317 address: 127.0.0.1
318 master:
319 host: 127.0.0.1
320 analytics:
321 host: 127.0.0.1
322 cache:
323 engine: redis
324 host: 127.0.0.1
325 port: 6379
326 members:
327 - host: 127.0.0.1
328 id: 1
329 - host: 127.0.0.1
330 id: 2
331 - host: 127.0.0.1
332 id: 3
333 identity:
334 engine: keystone
335 version: '2.0'
336 host: 127.0.0.1
337 port: 35357
338 user: admin
339 password: password
340 token: token
341 tenant: admin
342
343
344Separated analytics from control and config
345~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
346
347Config, control, database, web.
348
349.. code-block:: yaml
350
351 opencontrail:
352 common:
353 version: 2.2
354 identity:
355 engine: keystone
356 host: 127.0.0.1
357 port: 35357
358 token: token
359 password: password
360 network:
361 engine: neutron
362 host: 127.0.0.1
363 port: 9696
364 config:
365 version: 2.2
366 enabled: true
367 network:
368 engine: neutron
369 host: 127.0.0.1
370 port: 9696
371 discovery:
372 host: 127.0.0.1
373 analytics:
374 host: 127.0.0.1
375 bind:
376 address: 127.0.0.1
377 message_queue:
378 engine: rabbitmq
379 host: 127.0.0.1
380 port: 5672
381 database:
382 members:
383 - host: 127.0.0.1
384 port: 9160
385 - host: 127.0.0.1
386 port: 9160
387 - host: 127.0.0.1
388 port: 9160
389 cache:
Jakub Pavlikd1a059e2016-07-13 23:08:33 +0200[diff] [blame]390 members:
391 - host: 127.0.0.1
392 port: 11211
393 - host: 127.0.0.1
394 port: 11211
395 - host: 127.0.0.1
396 port: 11211
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]397 identity:
398 engine: keystone
399 version: '2.0'
400 region: RegionOne
401 host: 127.0.0.1
402 port: 35357
403 user: admin
404 password: password
405 token: token
406 tenant: admin
407 members:
408 - host: 127.0.0.1
409 id: 1
410 - host: 127.0.0.1
411 id: 2
412 - host: 127.0.0.1
413 id: 3
414 control:
415 version: 2.2
416 enabled: true
417 bind:
418 address: 127.0.0.1
419 discovery:
420 host: 127.0.0.1
421 master:
422 host: 127.0.0.1
423 members:
424 - host: 127.0.0.1
425 id: 1
426 - host: 127.0.0.1
427 id: 2
428 - host: 127.0.0.1
429 id: 3
430 database:
431 version: 127.0.0.1
432 cassandra:
433 version: 2
434 enabled: true
435 name: 'Contrail'
436 minimum_disk: 10
437 original_token: 0
438 data_dirs:
439 - /var/lib/cassandra
440 id: 1
441 discovery:
442 host: 127.0.0.1
443 bind:
444 host: 127.0.0.1
445 port: 9042
446 rpc_port: 9160
447 members:
448 - host: 127.0.0.1
449 id: 1
450 - host: 127.0.0.1
451 id: 2
452 - host: 127.0.0.1
453 id: 3
454 web:
455 version: 2.2
456 enabled: True
457 bind:
458 address: 127.0.0.1
459 analytics:
460 host: 127.0.0.1
461 master:
462 host: 127.0.0.1
463 cache:
464 engine: redis
465 host: 127.0.0.1
466 port: 6379
467 members:
468 - host: 127.0.0.1
469 id: 1
470 - host: 127.0.0.1
471 id: 2
472 - host: 127.0.0.1
473 id: 3
474 identity:
475 engine: keystone
476 version: '2.0'
477 host: 127.0.0.1
478 port: 35357
479 user: admin
480 password: password
481 token: token
482 tenant: admin
483
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]484Analytic nodes
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]485
486Analytics and database on an analytic node(s)
487
488.. code-block:: yaml
489
490 opencontrail:
491 common:
492 version: 2.2
493 identity:
494 engine: keystone
495 host: 127.0.0.1
496 port: 35357
497 token: token
498 password: password
499 network:
500 engine: neutron
501 host: 127.0.0.1
502 port: 9696
503 collector:
504 version: 2.2
505 enabled: true
506 bind:
507 address: 127.0.0.1
508 master:
509 host: 127.0.0.1
510 discovery:
511 host: 127.0.0.1
512 data_ttl: 1
513 database:
514 members:
515 - host: 127.0.0.1
516 port: 9160
517 - host: 127.0.0.1
518 port: 9160
519 - host: 127.0.0.1
520 port: 9160
521 database:
522 version: 2.2
523 cassandra:
524 version: 2
525 enabled: true
526 name: 'Contrail'
527 minimum_disk: 10
528 original_token: 0
529 data_dirs:
530 - /var/lib/cassandra
531 id: 1
532 discovery:
533 host: 127.0.0.1
534 bind:
535 host: 127.0.0.1
536 port: 9042
537 rpc_port: 9160
538 members:
539 - host: 127.0.0.1
540 id: 1
541 - host: 127.0.0.1
542 id: 2
543 - host: 127.0.0.1
544 id: 3
545
546
547Compute nodes
Aleš Komáreka3314b22017-04-11 13:46:06 +0200[diff] [blame]548-------------
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]549
550Vrouter configuration on a compute node(s)
551
552.. code-block:: yaml
553
554 opencontrail:
555 common:
556 version: 2.2
557 identity:
558 engine: keystone
559 host: 127.0.0.1
560 port: 35357
561 token: token
562 password: password
563 network:
564 engine: neutron
565 host: 127.0.0.1
566 port: 9696
567 compute:
568 version: 2.2
569 enabled: True
Dmitry Stremkovskiy0cb5c562017-07-26 00:32:51 +0300[diff] [blame]570 hostname: node-12.domain.tld
Jiri Konecny463dee52016-03-03 11:08:46 +0100[diff] [blame]571 discovery:
572 host: 127.0.0.1
573 interface:
574 address: 127.0.0.1
575 dev: eth0
576 gateway: 127.0.0.1
577 mask: /24
578 dns: 127.0.0.1
579 mtu: 9000
580
Petr Jediný5f3008a2017-07-31 15:04:05 +0200[diff] [blame]581
582Compute nodes with gateway_mode
583-------------------------------
584
585Gateway mode: can be server/ vcpe (default is none)
586
587.. code-block:: yaml
588
589 opencontrail:
590 compute:
591 gateway_mode: server
592
Vasyl Saienkob10b7202017-09-05 14:19:03 +0300[diff] [blame]593TSN nodes
594---------
595
596Configure TSN nodes
597
598.. code-block:: yaml
599
600 opencontrail:
601 compute:
602 enabled: true
603 tor:
604 enabled: true
605 bind:
606 port: 8086
607 agent:
608 tor01:
609 id: 0
610 port: 6632
611 host: 127.0.0.1
612 address: 127.0.0.1
613
Petr Jediný5f3008a2017-07-31 15:04:05 +0200[diff] [blame]614
Andreyeff77ac2017-08-25 12:14:06 -0500[diff] [blame]615Set up metadata secret for the Vrouter
Petr Jedinýfe51c6a2017-09-05 18:30:31 +0200[diff] [blame]616--------------------------------------
Andreyeff77ac2017-08-25 12:14:06 -0500[diff] [blame]617
Petr Jedinýfe51c6a2017-09-05 18:30:31 +0200[diff] [blame]618In order to get cloud-init within the instance to properly fetch
Andreyeff77ac2017-08-25 12:14:06 -0500[diff] [blame]619instance metadata, metadata_proxy_secret in the Vrouter agent config
620should match the value in nova.conf. The administrator should define
621it in the pillar:
622
623.. code-block:: yaml
624
625 opencontrail:
626 compute:
627 metadata:
628 secret: opencontrail
629
Petr Jedinýfe51c6a2017-09-05 18:30:31 +0200[diff] [blame]630Add auth info for Barbican on compute nodes
631-------------------------------------------
632
633.. code-block:: yaml
634
635 opencontrail:
636 compute:
637 lbaas:
638 enabled: true
639 secret_manager:
640 engine: barbican
641 identity:
642 user: admin
643 password: "supersecretpassword123"
644 tenant: admin
645
646
Jakub Pavlik735005f2016-02-26 15:54:53 +0100[diff] [blame]647Keystone v3
Aleš Komáreka3314b22017-04-11 13:46:06 +0200[diff] [blame]648-----------
Jakub Pavlik735005f2016-02-26 15:54:53 +0100[diff] [blame]649
Jakub Pavlik01fe5372016-05-20 11:23:28 +0200[diff] [blame]650To enable support for keystone v3 in opencontrail, there must be defined
651version for config and web role.
Jakub Pavlik735005f2016-02-26 15:54:53 +0100[diff] [blame]652
653.. code-block:: yaml
654
655 opencontrail:
656 config:
657 version: 2.2
658 enabled: true
659 ...
660 identity:
661 engine: keystone
662 version: '3'
663 ...
664
665 opencontrail:
666 web:
667 version: 2.2
668 enabled: true
669 ...
670 identity:
671 engine: keystone
672 version: '3'
673 ...
674
marco10cc2212016-04-03 14:21:54 +0200[diff] [blame]675Without Keystone
676----------------
677
678.. code-block:: yaml
679
680 opencontrail:
681 ...
682 common:
683 ...
684 identity:
685 engine: none
686 token: none
687 password: none
688 ...
689 config:
690 ...
691 identity:
692 engine: none
693 password: none
694 token: none
695 ...
696 web:
697 ...
698 identity:
699 engine: none
700 password: none
701 token: none
702 ...
marcof5461712016-04-04 20:49:36 +0200[diff] [blame]703
Aleš Komáreka3314b22017-04-11 13:46:06 +0200[diff] [blame]704Kubernetes support
705------------------
706
marcof5461712016-04-04 20:49:36 +0200[diff] [blame]707Kubernetes vrouter nodes
marcof5461712016-04-04 20:49:36 +0200[diff] [blame]708
709Vrouter configuration on a kubernetes node(s)
710
711.. code-block:: yaml
712
713 opencontrail:
714 ...
715 compute:
716 engine: kubernetes
717 ...
718
Jakub Pavlik0d1f67e2016-11-30 10:04:13 +0100[diff] [blame]719vRouter with separated control plane
Jakub Pavlik0d1f67e2016-11-30 10:04:13 +0100[diff] [blame]720
721Separate XMPP traffic from dataplane interface.
722
723.. code-block:: yaml
724
725 opencontrail:
726 compute:
727 bind:
728 address: 172.16.0.50
729 ...
730
Petr Jediný439fab32017-07-10 14:33:09 +0200[diff] [blame]731Override RPF default in Contrail API
732------------------------------------
733
734From MCP1.1 with OpenContrail >= 3.1.1 you can override RPF default for newly
735created virtual networks. This can be useful for usecases like running
736Calico and K8S in overlay. The `override_rpf_default_by` has valid values
737`disable`, `enable`. If not defined, the configuration fallbacks to Contrail
738default - currently `enable`.
739
740.. code-block:: yaml
741
742 opencontrail:
743 ...
744 config:
745 override_rpf_default_by: 'disable'
746 ...
747
748
Jakub Pavlik6d90f362016-04-19 20:34:37 +0200[diff] [blame]749Disable Contrail API authentication
750-----------------------------------
751
Petr Jediný78e6f422017-06-01 13:24:49 +0200[diff] [blame]752Contrail version must >= 3.0. It is useful especially for Keystone v3.
Jakub Pavlik6d90f362016-04-19 20:34:37 +0200[diff] [blame]753
754.. code-block:: yaml
755
756 opencontrail:
757 ...
758 config:
759 multi_tenancy: false
760 ...
761
Petr Jediný78e6f422017-06-01 13:24:49 +0200[diff] [blame]762Switch from on demand to periodic keystone sync
763-----------------------------------------------
764
765This can be useful when you want to sync projects from OpenStack to Contrail
766automatically. The period of sync is 60s.
767
768.. code-block:: yaml
769
770 opencontrail:
771 ...
772 config:
773 identity:
774 sync_on_demand: false
775 ...
776
marco2502e052016-05-31 22:53:54 +0200[diff] [blame]777Cassandra listen interface
Petr Jedinýffbe2082017-03-07 00:56:47 +0100[diff] [blame]778--------------------------
marco2502e052016-05-31 22:53:54 +0200[diff] [blame]779
780.. code-block:: yaml
Vasyl Saienkob10b7202017-09-05 14:19:03 +0300[diff] [blame]781
marco2502e052016-05-31 22:53:54 +0200[diff] [blame]782 database:
783 ....
784 bind:
785 interface: eth0
786 port: 9042
787 rpc_port: 9160
788 ....
Jakub Pavlik6d90f362016-04-19 20:34:37 +0200[diff] [blame]789
Petr Jedinýffbe2082017-03-07 00:56:47 +0100[diff] [blame]790OpenContrail WebUI version >= 3.1.1
791-----------------------------------
Petr Jediný78e6f422017-06-01 13:24:49 +0200[diff] [blame]792For OpenContrail version >= 3.1.1 and Cassandra >= 2.1 we should override WebUI's cassandra port from 9160 to 9042.
Petr Jedinýffbe2082017-03-07 00:56:47 +0100[diff] [blame]793
794For appropriate node at class level:
795
796.. code-block:: yaml
Aleš Komáreka3314b22017-04-11 13:46:06 +0200[diff] [blame]797
Petr Jedinýffbe2082017-03-07 00:56:47 +0100[diff] [blame]798 opencontrail:
799 ....
800 web:
801 database:
802 port: 9042
803 ....
804
805
Jakub Pavlik9a4de012016-12-14 13:23:55 +0100[diff] [blame]806RabbitMQ HA hosts
807------------------
808
809.. code-block:: yaml
810
811 opencontrail:
812 config:
813 message_queue:
814 engine: rabbitmq
815 members:
816 - host: 10.0.16.1
817 - host: 10.0.16.2
818 - host: 10.0.16.3
819 port: 5672
820
821.. code-block:: yaml
822
823 database:
824 ....
825 bind:
826 interface: eth0
827 port: 9042
828 rpc_port: 9160
829 ....
830
Jakub Pavlike3590062017-02-20 23:32:57 +0100[diff] [blame]831DPDK vRouter
832-------------
833
834.. code-block:: yaml
835
836 opencontrail:
837 compute:
838 dpdk:
839 enabled: true
Jakub Pavlik54761d82017-03-08 11:22:37 +0100[diff] [blame]840 taskset: "0x0000003C00003C"
841 socket_mem: "1024,1024"
Jakub Pavlike3590062017-02-20 23:32:57 +0100[diff] [blame]842 interface:
843 mac_address: 90:e2:ba:7c:22:e1
844 pci: 0000:81:00.1
845 ...
846
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]847Contrail client
848---------------
849
850Basic parameters with identity and host configs
851
Petr Jediný78e6f422017-06-01 13:24:49 +0200[diff] [blame]852.. code-block:: yaml
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]853
854 opencontrail:
855 client:
856 identity:
857 user: admin
858 project: admin
859 password: adminpass
860 host: keystone_host
861 config:
862 host: contrail_api_host
863 port: contrail_api_ort
864
865Enforcing virtual routers
866
Petr Jediný78e6f422017-06-01 13:24:49 +0200[diff] [blame]867.. code-block:: yaml
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]868
869 opencontrail:
870 client:
871 ...
872 virtual_router:
873 cmp01:
874 ip_address: 172.16.0.11
875 dpdk_enabled: True
876 cmp02:
877 ip_address: 172.16.0.12
878 dpdk_enabled: True
879
Pavel Svimbersky13cda442017-09-14 14:46:13 +0200[diff] [blame^]880Enforcing global vrouter config
881
882.. code-block:: yaml
883
884 opencontrail:
885 client:
886 ...
887 global_vrouter_config:
888 name: global-vrouter-config
889 parent_type: global-system-config
890 encap_priority: "MPLSoUDP,MPLSoGRE"
891 vxlan_vn_id_mode: automatic
892 fq_names:
893 - 'default-global-system-config'
894 - 'default-global-vrouter-config'
895
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]896Enforcing control nodes
897
Petr Jediný78e6f422017-06-01 13:24:49 +0200[diff] [blame]898.. code-block:: yaml
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]899
900 opencontrail:
901 client:
902 ...
903 bgp_router:
904 ntw01:
905 type: control-node
906 ip_address: 172.16.0.11
907 nwt02:
908 type: control-node
909 ip_address: 172.16.0.12
910 nwt03:
911 type: control-node
912 ip_address: 172.16.0.13
913
914
915Enforcing edge BGP routers
916
Petr Jediný78e6f422017-06-01 13:24:49 +0200[diff] [blame]917.. code-block:: yaml
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]918
919 opencontrail:
920 client:
921 ...
922 bgp_router:
923 mx01:
924 type: router
925 ip_address: 172.16.0.21
926 asn: 64512
927 mx02:
928 type: router
929 ip_address: 172.16.0.22
930 asn: 64512
931
932Enforcing config nodes
933
Petr Jediný78e6f422017-06-01 13:24:49 +0200[diff] [blame]934.. code-block:: yaml
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]935
936 opencontrail:
937 client:
938 ...
939 config_node:
940 ctl01:
941 ip_address: 172.16.0.21
942 ctl02:
943 ip_address: 172.16.0.22
944
945Enforcing database nodes
946
Petr Jediný78e6f422017-06-01 13:24:49 +0200[diff] [blame]947.. code-block:: yaml
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]948
949 opencontrail:
950 client:
951 ...
952 database_node:
953 ntw01:
954 ip_address: 172.16.0.21
955 ntw02:
956 ip_address: 172.16.0.22
957
958Enforcing analytics nodes
959
Petr Jediný78e6f422017-06-01 13:24:49 +0200[diff] [blame]960.. code-block:: yaml
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]961
962 opencontrail:
963 client:
964 ...
965 analytics_node:
966 nal01:
967 ip_address: 172.16.0.31
968 nal02:
969 ip_address: 172.16.0.32
970
Petr Jediný5f3efe32017-05-26 17:55:09 +0200[diff] [blame]971Enforcing Link Local Services
972
973.. code-block:: yaml
974
975 opencontrail:
976 client:
977 ...
978 linklocal_service:
979 # example with dns name address (only one permited)
980 meta1:
981 lls_ip: 10.0.0.23
982 lls_port: 80
983 ipf_addresses: "meta.example.com"
984 ipf_port: 80
985 # example with multiple ip addresses
986 meta2:
987 lls_ip: 10.0.0.23
988 lls_port: 80
989 ipf_addresses:
990 - 10.10.10.10
991 - 10.20.20.20
992 - 10.30.30.30
993 ipf_port: 80
994 # example with one ip address
995 meta3:
996 lls_ip: 10.0.0.23
997 lls_port: 80
998 ipf_addresses:
999 - 10.10.10.10
1000 ipf_port: 80
1001 # example with name override
1002 lls_meta4:
1003 name: meta4
1004 lls_ip: 10.0.0.23
1005 lls_port: 80
1006 ipf_addresses:
1007 - 10.10.10.10
1008 ipf_port: 80
1009
Vasyl Saienkob10b7202017-09-05 14:19:03 +0300[diff] [blame]1010Enforcing physical routers
1011
1012.. code-block:: yaml
1013
1014 opencontrail:
1015 client:
1016 ...
1017 physical_router:
1018 router1:
1019 name: router1
1020 dataplane_ip: 1.2.3.4
1021 management_ip: 1.2.3.4
1022 vendor_name: ovs
1023 product_name: ovs
1024 agents:
1025 - tsn0-0
1026 - tsn0
1027
1028Enforcing physical/logical interfaces for routers
1029
1030
1031.. code-block:: yaml
1032
1033 opencontrail
1034 client:
1035 ...
1036 physical_router:
1037 router1:
1038 ...
1039 interface:
1040 port1:
1041 name: port1
1042 logical_interface:
1043 port1_l:
1044 name: 'port1.0'
1045 vlan_tag: 0
1046 interface_type: L2
1047 virtual_machine_interface:
1048 port1_port:
1049 name: port1_port
1050 ip_address: 192.168.90.107
1051 mac_address: '2e:92:a8:af:c2:21'
1052 security_group: 'default'
1053 virtual_network: 'virtual-network'
1054
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]1055
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]1056Usage
1057=====
1058
1059Basic installation
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]1060------------------
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]1061
1062Add control BGP
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]1063
1064.. code-block:: bash
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]1065
1066 python /etc/contrail/provision_control.py --api_server_ip 192.168.1.11 --api_server_port 8082 --host_name network1.contrail.domain.com --host_ip 192.168.1.11 --router_asn 64512
1067
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]1068Install compute node
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]1069
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]1070.. code-block:: bash
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]1071
1072 yum install contrail-vrouter contrail-openstack-vrouter
1073
1074 salt-call state.sls nova,opencontrail
1075
1076Add virtual router
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]1077
Ales Komarekad46d2e2017-03-09 17:16:38 +0100[diff] [blame]1078.. code-block:: bash
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]1079
1080 python /etc/contrail/provision_vrouter.py --host_name hostnode1.intra.domain.com --host_ip 10.0.100.101 --api_server_ip 10.0.100.30 --oper add --admin_user admin --admin_password cloudlab --admin_tenant_name admin
1081
1082 /etc/sysconfig/network-scripts/ifcfg-bond0 -- comment GATEWAY,NETMASK,IPADDR
1083
1084 reboot
1085
Aleš Komáreka3314b22017-04-11 13:46:06 +0200[diff] [blame]1086Debugging
1087---------
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]1088
1089Display vhost XMPP connection status
1090
1091You should see the correct controller_ip and state should be established.
1092
1093 http://<compute-node>:8085/Snh_AgentXmppConnectionStatusReq?
1094
1095Display vrouter interface status
1096
1097When vrf_name = ---ERROR--- then something goes wrong
1098
1099 http://<compute-node>:8085/Snh_ItfReq?name=
1100
1101Display IF MAP table
1102
Vasyl Saienkob10b7202017-09-05 14:19:03 +0300[diff] [blame]1103Look for neighbours, if VM has 2, it's ok
Filip Pytloun27930402015-10-06 16:28:32 +0200[diff] [blame]1104
1105 http://<control-node>:8083/Snh_IFMapTableShowReq?table_name=
1106
1107Trace XMPP requests
1108
1109 http://<compute-node>:8085/Snh_SandeshTraceRequest?x=XmppMessageTrace
1110
Filip Pytlounf6b79d42017-02-02 13:02:03 +0100[diff] [blame]1111
1112Documentation and Bugs
1113======================
1114
1115To learn how to install and update salt-formulas, consult the documentation
1116available online at:
1117
1118 http://salt-formulas.readthedocs.io/
1119
1120In the unfortunate event that bugs are discovered, they should be reported to
1121the appropriate issue tracker. Use Github issue tracker for specific salt
1122formula:
1123
1124 https://github.com/salt-formulas/salt-formula-opencontrail/issues
1125
1126For feature requests, bug reports or blueprints affecting entire ecosystem,
1127use Launchpad salt-formulas project:
1128
1129 https://launchpad.net/salt-formulas
1130
1131You can also join salt-formulas-users team and subscribe to mailing list:
1132
1133 https://launchpad.net/~salt-formulas-users
1134
1135Developers wishing to work on the salt-formulas projects should always base
1136their work on master branch and submit pull request against specific formula.
1137
1138 https://github.com/salt-formulas/salt-formula-opencontrail
1139
1140Any questions or feedback is always welcome so feel free to join our IRC
1141channel:
1142
1143 #salt-formulas @ irc.freenode.net