I am setting up replica of my real-world deployment in terms of networks
within single instance of OpenStack. For that I have to create 3
networks (1 for each tier): web, middleware, db.
I have created those networks successfully then I've added the routers
between respective networks, yet my web tier can't reach middleware and
middleware can't reach DB using those private nets.
I have created a separate "public" network to which all those nets can
be routed (so that I can access VMs directly). This one works just fine.
Most details provided in gist:
To simplify: this time around I've used dashboard to create network
infrastructure. So procedure I've followed:
- created each network (front, mid, db, public) with according subnet.
- created routers "bridging" specific pairs of network, e.g.:
gbfrontmid_router is connecting front tier (web) and mid tier
- for each tier created secgroup with corresponding rules
- created VMs for each tier assigned to specific private network with
specific secgroups applied
- checked that default secgroup seems to be allowing everything in (see
pinging from systest-front to systest-mid (on 10.10/16 IPs) fails so
far. Same goes for pings from mid to db etc.
what am I missing? Why traffic from one private net can't reach another?
Anything needs to be added to configuration?
Web Systems Administrator
Confidence is what you have before you understand the problem
When in trouble when in doubt run in circles scream and shout
Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Post to : email@example.com
Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack