apparmor profile blocks operation of haproxy loadbalancer updates
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Neutron Gateway Charm |
Fix Released
|
Medium
|
James Page | ||
neutron-lbaas (Ubuntu) |
Invalid
|
Medium
|
Unassigned |
Bug Description
Juju 3.2.7, current 18.02 charms. Deployed an OpenStack cloud including Neutron and LBaaS.
Made a fresh set of 3 instances, assigned floating IPS to all 3. Made a security group to allow port 80 in.
Made a fresh load balancer, listener, tcp based healthcheck. Used nc on all 3 instances to listen on port 80.
Connected to the load balancer floating IP on port 80, immediately discoonects me - there's no backends listening.
Initial haproxy status:
root@neut001:~# echo 'show stat;show table' | socat stdio /var/lib/
# pxname,
171808be-
(no backends)
Restarted neutron-
root@neut001:~# echo 'show stat;show table' | socat stdio /var/lib/
# pxname,
171808be-
7ef8ab16-
7ef8ab16-
7ef8ab16-
7ef8ab16-
(all 3 backends)
After restarting the service, all the traffic passes perfectly. The only thing I did was restart the service - I suspect there's some kind of race condition where we need to restart the services after the config is changed.
Changed in charm-neutron-gateway: | |
status: | New → In Progress |
Changed in charm-neutron-gateway: | |
milestone: | none → 18.05 |
summary: |
- lbaas load balancer does not forward traffic unless agent restarted + apparmor profile blocks operation of haproxy loadbalancer updates |
This is an underlying neutron-lbaas issue - however we'll need details of the openstack release deployed including specific package versions for neutron- lbaasv2- agent please!