CL110 - ch03s07

Bookmark this page

P 1 2 3 4 5 6 7 8 9 10

Lab: Managing Red Hat OpenStack Platform Networking

In this lab, you will create a tenant network, launch an instance, and view the associated OVN flows for the instance.

Outcomes

You should be able to:

Create a tenant network
Launch an instance
Locate the flows associated with an instance

As the student user on the workstation machine, use the lab command to prepare your system for this exercise.

This command ensures that all resources required for the exercise are present.

[student@workstation ~]$ lab networking-review start

Procedure 3.2. Instructions

As the developer1 user in the production project, create a tenant network named production-network4. Create the production-subnet4 subnet linked to production-network4. Use 192.168.10.0/24 for the subnet range, enable DHCP, and configure a nameserver of 172.25.250.254. Leave all other settings at their default values.

On workstation, open a terminal, then source the /home/student/developer1-production-rc credential file.

[student@workstation ~]$ source ~/developer1-production-rc
[student@workstation ~(developer1-production)]$

Use the openstack network create command to create production-network4.

[student@workstation ~(developer1-production)]$ openstack network create \
> production-network4 -f json
...output omitted...

Create the production-subnet4 subnet, using a subnet range of 192.168.10.0/24.

[student@workstation ~(developer1-production)]$ openstack subnet create \
> --subnet-range 192.168.10.0/24 \
> --dns-nameserver 172.25.250.254 \
> --network production-network4 production-subnet4 -f json
{
  "allocation_pools": [
    {
      "start": "192.168.10.2",
      "end": "192.168.10.254"
    }
  ],
  "cidr": "192.168.10.0/24",
  "created_at": "2020-07-19T04:48:20Z",
  "description": "",
  "dns_nameservers": [
    "172.25.250.254"
  ],
  "enable_dhcp": true,
  "gateway_ip": "192.168.10.1",
  "host_routes": [],
  "id": "47c9ae55-ba00-46b0-b0dc-6b3194565009",
  "ip_version": 4,
  "ipv6_address_mode": null,
  "ipv6_ra_mode": null,
  "location": {
    "cloud": "",
    "region_name": "regionOne",
    "zone": null,
    "project": {
      "id": "bc0dcd6db76f435385723a784e7dbdd0",
      "name": "production",
      "domain_id": null,
      "domain_name": "Example"
    }
  },
  "name": "production-subnet4",
  "network_id": "d237edce-12bf-4afc-a2f2-1b1383421db1",
...output omitted...

Create an instance named production-server4 using the settings in the following table.

Option	Value
Image	rhel8
flavor	default
network	production-network4
keypair	example-keypair

Launch an instance named production-server4 using the settings in the table above.

[student@workstation ~(developer1-production)]$ openstack server create \
> --image rhel8 \
> --flavor default \
> --key-name example-keypair \
> --nic net-id=production-network4 \
> --wait production-server4 -f json
...output omitted...
  "addresses": "production-network4=192.168.10.8",
  "adminPass": "orkTUcc667uj",
  "config_drive": "",
  "created": "2020-07-19T04:54:22Z",
  "flavor": "default (8ff1eecb-15b4-4f32-bb99-4dec999a78c7)",
  "hostId": "33ba37e44be088ead61e5b71358f4ea612e613933779475e67aa7126",
  "id": "382e851d-7964-4f73-b58b-d8f285c4b1c6",
  "image": "rhel8 (b33fca9a-3c85-40b3-86bf-466eeaccbf6b)",
  "key_name": "example-keypair",
  "name": "production-server4",
  "progress": 0,
  "project_id": "bc0dcd6db76f435385723a784e7dbdd0",
  "properties": "",
  "security_groups": "name='default'",
  "status": "ACTIVE",
...output omitted...

Determine the MAC address and compute node of production-server4.

Source the /home/student/operator1-production-rc credential file.

[student@workstation ~(developer1-production)]$ source ~/operator1-production-rc
[student@workstation ~(operator1-production)]$

Use the openstack server show command to determine the compute node hosting production-server4.

[student@workstation ~(operator1-production)]$ openstack server show \
> production-server4 -f json
{
  "OS-DCF:diskConfig": "MANUAL",
  "OS-EXT-AZ:availability_zone": "nova",
  "OS-EXT-SRV-ATTR:host": "compute1.overcloud.example.com",
  "OS-EXT-SRV-ATTR:hypervisor_hostname": "compute1.overcloud.example.com",
  "OS-EXT-SRV-ATTR:instance_name": "instance-00000001",
  "OS-EXT-STS:power_state": "Running",
  "OS-EXT-STS:task_state": null,
  "OS-EXT-STS:vm_state": "active",
...output omitted...

Use the openstack port list command to determine the MAC address of production-server4.

[student@workstation ~(operator1-production)]$ openstack port list \
> --server production-server4 -f json
[
  {
    "ID": "2f8440ec-7221-48f4-9f84-80b2fa6f232a",
    "Name": "",
    "MAC Address": "fa:16:3e:7b:05:f6",
    "Fixed IP Addresses": [
      {
        "subnet_id": "47c9ae55-ba00-46b0-b0dc-6b3194565009",
        "ip_address": "192.168.10.8"
      }
    ],
    "Status": "ACTIVE"
  }
]

Log on to the compute node hosting production-server4, and use the ovs-ofctl dump-flows command to view the flows created specifically for the instance. Locate the first rules that allow DHCP requests (UDP source port 68) and ARP requests.

Log on to the appropriate compute node as heat-admin, then become root.

[student@workstation ~(operator1-production)]$ ssh heat-admin@compute1
[heat-admin@compute1 ~]$ sudo -i
[root@compute1 ~]#

Run the ovs-ofctl dump-flows br-int command, and filter the results by the MAC address of production-server4. Log out when finished.

[root@compute1 ~]# ovs-ofctl dump-flows br-int \
> | grep 'fa:16:3e:7b:05:f6'
...output omitted...
 cookie=0x652d4f6e, duration=22922.787s, table=9, n_packets=4, n_bytes=1334, idle_age=22878, priority=90,udp,reg14=0x2,metadata=0x7,dl_src=fa:16:3e:7b:05:f6,nw_src=0.0.0.0,
nw_dst=255.255.255.255,tp_src=68,tp_dst=67 actions=resubmit(,10)
...output omitted...
 cookie=0x4d40f324, duration=22922.784s, table=10, n_packets=140, n_bytes=5880, idle_age=667, priority=90,arp,reg14=0x2,metadata=0x7,dl_src=fa:16:3e:7b:05:f6, arp_spa=192.168.10.8,arp_sha=fa:16:3e:7b:05:f6 actions=resubmit(,11)
...output omitted...

Evaluation

Grade your work by running the lab command from your workstation machine. Correct any reported failures and rerun the script until successful.

[student@workstation ~]$ lab networking-review grade

Finish

On the workstation machine, use the lab command to complete this exercise. This is important to ensure that resources from previous exercises do not impact upcoming exercises.

[student@workstation ~]$ lab networking-review finish

This concludes the lab.

Discuss Red Hat OpenStack Administration I: Core Operations for Domain Operators

Go to community

Red Hat OpenStack Administration I: Core Operations for Domain Operators (CL110)

Haley_Ruccio

1 sie 2023

Learn to operate a Red Hat® OpenStack Platform private cloud and manage domain resources to secure and deploy modern, scalable cloud applications, networks and storageRed Hat OpenStack Administration I: Core Operations for Domain Operators (CL110) teaches you how to operate and manage a production Red Hat OpenStack Platform (RHOSP) single-site overcloud. You will learn how to create secure project environments in which to provision resources and manage security privileges that cloud users need to deploy scalable cloud applications. You will learn about OpenShift integration with load balancers, identity management, monitoring, proxies, and storage. You will also develop more troubleshooting and Day 2 operations skills in this course.This course is based on Red Hat OpenStack Platform 16.1.Course content summaryStudents in the Red Hat OpenStack Administration I: Core Operations for Domain Operators (CL110) course will focus on performing both routine and specialized tasks that are necessary to manage a production OpenStack overcloud domain. Students will manage OpenStack using both web-based and command-line interfaces. Essential skills covered in the course include the following:Launch instances to satisfy various use case examples.Manage domains, projects, users, roles, and quota in a multitenant environment.Manage networks, subnets, routers, and floating IP addresses.Manage instance security with group rules and access keys.Create and manage block, object and shared storage within OpenStack.Perform instance launch customization with cloud-init.Deploy scalable applications using stack templates.Audience for this courseThis course is designed for cloud users who deploy application instances and stacks, domain operators who manage resources and security for cloud users, and any other cloud personnel interested in, or responsible for, maintaining applications on private or hybrid OpenStack clouds. Any cloud persona, or personnel with roles that include performing technology evaluation, should attend this course to learn RHOSP operation and application deployment methods.Prerequisites for this courseBecome a Red Hat Certified System Administrator (RHCSA) or demonstrate equivalent experienceIf you are not a RHCSA, you can take a skill assessment to gauge your level of knowledge.

Welcome to the Red Hat OpenStack Administration I (CL110) group in the Red Hat Learning Community!

Syed

31 lip 2023

We are excited to launch a space dedicated to the Red Hat Training course CL110! To gain the most value from this group - click the "Join Group" button in the upper right hand corner of the group home page.We encourage group members to collaborate in this group to discuss topics, ask questions, share best practices and tips, provide course feedback, and share their accomplishments as it relates to CL110.Read more about Red Hat OpenStack Administration I: Core Operations for Domain Operators here.

Revision: cl110-16.1-4c76154