settingsLogin | Registersettings

[Openstack] Dibbler, ipv6_pd_enabled, and Ubuntu.

0 votes

Hey, all. Trying to set up Dibbler/IPv6 prefix delegation on a Newton
Ubuntu cloud. And I admit that I'm being somewhat confused, despite One
Bajillion Pages that seem to touch on this stuff, but not really map out
what needs to happen. (Most of the step-throughs seem to assume
single-box installs a la Devstack, which isn't quite as helpful for
something like this.)

What I'm looking to do (unless someone says "That's stupid," and
suggests a better way):

[External Dibbler] <---> [Neutron Gateway] <---> [Openstack cloud]

As I understand it, I need to set ipv6pdenabled to "true" in the
neutron.conf file -- though I'm not sure if that's on the Neutron API
server, or the Neutron Gateway, itself. Additionally, Ubuntu doesn't
help, because it's not supported by Juju. (At least, as of Newton.)

So:
* Where do I modify the neutron.conf file (API or gateway)?
* How do I tell Openstack about where the Dibbler server is?
* What subnet configuration should I employ?
* What would a typical network creation look like in such a
circumstance?
* Am I missing anything really dumb/stupid?

Thanks kindly,

-Ken


Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Post to : openstack@lists.openstack.org
Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
asked Oct 9, 2017 in openstack by Ken_D'Ambrosio (1,180 points)   1 6 8

2 Responses

0 votes

Hi Ken,

I'm using Newton on Debian Stretch with IPv6 prefix delegation (I'm not
tested it from horizon, only from CLI). The configuration was carried out
following the steps described here: http://www.debug-all.com/?p=187

Alberto


Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Post to : openstack@lists.openstack.org
Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
responded Oct 8, 2017 by Alberto_Molina_Cobal (520 points)   2
0 votes

Hi Ken!

So:

  • Where do I modify the neutron.conf file (API or gateway)?

Here I have ipv6pdenabled = true configured in neutron.conf in controller
node and network node.

According the docs "This tells OpenStack Networking to use the prefix
delegation mechanism for subnet allocation when the user does not provide a
CIDR or subnet pool id when creating a subnet". You will see bellow that on
subnet creation you use --usedefaultsubnetpool. So, I think this
configuration is what make the things work!

  • How do I tell Openstack about where the Dibbler server is?

According the docs <
https://docs.openstack.org/mitaka/networking-guide/config-ipv6.html
Dibbler must be reachable from the network node.

"To use this feature, you need a prefix delegation capable DHCPv6 server
that is reachable from your OpenStack Networking node(s). This could be
software running on the OpenStack Networking node(s) or elsewhere, or a
physical router."

Here Dibbler is running on network node. Beyond that I have a script that
Dibbler runs just after delegate a prefix. This script set a route the the
new network and apply some iptables rules.

  • What subnet configuration should I employ?
  • What would a typical network creation look like in such a circumstance?

You should configure dibbler with a pd-class informing the range and prefix
of ipv6 that you would like to use. For example, you could configure a /56
range with a prefix /64. So, your networks will get a /64 network when
established.

pd-class {
pd-pool 2001:db8:2222::/56
pd-length 64
}

Network creation:

$ neutron net-create my-net

Neutron subnet creation:

$ neutron subnet-create my-net --name my-subnet-ipv6 --ipversion 6
--ipv6
ramode dhcpv6-stateless --ipv6addressmode dhcpv6-stateless
--dns-nameserver 2001:db8::fffe --use
default_subnetpool

Creating router:

$ neutron router-create my-router

Adding a interface:

$ neutron router-interface-add my-router my-subnet-ipv6

After some seconds you could check subnet information. You should see the
network prefix allocated to this subnet.

$ neutron subnet-show my-subnet-ipv6

  • Am I missing anything really dumb/stupid?

You can run a "tail -f " on dibbler log to see if requests are being made.

Thanks kindly,

-Ken

Hope to help!


Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Post to : openstack@lists.openstack.org
Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
responded Oct 9, 2017 by Jorge_Luiz_Correa (900 points)   3 6
...