Control plane gets modified by overcloud deployment
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Triaged
|
Medium
|
Kevin Carter |
Bug Description
During a Tripleo Rocky deployment with network isolation, after creating the heat stack, the ansible configuration modifies the networking on the nodes. It caused loops and broke the control plane in my latest deployment, but my previous deployments were having various untraceable failures like docker pull failures and endpoint missing or unauthorized which I am recklessly attributing to the same cause.
In my cloud the control plane is always supposed to be on nic1, which goes to an access port tagged on the switch to vlan130. nic2 carries the other traffic via ovs-bridge vlan tagged into a trunk port on the switch.
In my latest deployment the ansible configuration on some nodes added the control plane ip address to the ovs-bridge which is attached to nic2 (there are 2 nics) creating a mess of loops and causing problems with communicating to the director. That was lucky because it clearly indicated there was a problem with the control plane and so I went to investigate - issues with previous failed deployments have left me completely confused because the symptoms were not indicating the real cause.
I remember seeing it written somewhere that the control plane should be on nic1, and I didn't expect overcloud deployment to make changes to that.
Expected behaviour: Overcloud deployment doesn't mess with control plane stuff.
Actual result: Overcloud ip address was added to ovs bridge on a controller node (and possibly others) creating loops.
Steps to reproduce:
It might be hard to force a clear case of this: I ran over 20 deployments all failing in different ways, but configure single-nic-vlans and leaving the control plane under ovs_bridge like this:
params:
- type: ovs_bridge
- ip_netmask:
- ip_netmask: 169.254.169.254/32
- type: interface
environment:
Rocky, tripleo ceph, neutron with open vswitch, network isolation.
Changed in tripleo: | |
milestone: | ussuri-3 → ussuri-rc3 |
Changed in tripleo: | |
milestone: | ussuri-rc3 → victoria-1 |
Changed in tripleo: | |
milestone: | victoria-1 → victoria-3 |
cleaned ip and mac addresses from config