Juniper Openstack

neutron unable to create l3 interface from private subnets once external gateway is set

Bug #1351146 reported by Rahul on 2014-08-01

This bug affects 1 person

	Status	Importance	Assigned to	Milestone
Juniper Openstack	Status tracked in Trunk
R1.1	Fix Committed	High	Rudra Rugge	Juniper Openstack r1.10-fcs
Trunk	Fix Committed	High	Rudra Rugge

Bug Description

From: Rahul Sharma <email address hidden>
Date: Thursday, July 31, 2014 at 11:56 PM
To: Contrail Systems Configuration Team <email address hidden>
Cc: Vedamurthy Ananth Joshi <email address hidden>
Subject: Router Interface add fails

Not sure if Vedu is already tracking this, but I could not get an interface on the l3 router. Do we need any quotas or any other config for this to work?

Build is

2014-07-31 23:52:53.740 ERROR [neutron.api.v2.resource] add_router_interface failed
Traceback (most recent call last):
  File "/usr/lib/python2.7/dist-packages/neutron/api/v2/resource.py", line 84, in resource
    result = method(request=request, **args)
  File "/usr/lib/python2.7/dist-packages/neutron/api/v2/base.py", line 185, in _handle_action
    return getattr(self._plugin, name)(*arg_list, **kwargs)
  File "/usr/lib/python2.7/dist-packages/neutron_plugin_contrail/plugins/opencontrail/contrail_plugin_core.py", line 593, in add_router_interface
    obj_name='add_router_interface')
  File "/usr/lib/python2.7/dist-packages/neutron_plugin_contrail/plugins/opencontrail/contrail_plugin_core.py", line 256, in _raise_contrail_error
    raise error_class(msg=info['message'])
ContrailServiceUnavailableError: The service is unavailable

In neutron plugin in API server:
u'uuid': u'd224913e-0bd0-498a-8594-f7ad712a23d3'}

Notification Message: {u'oper': u'UPDATE',
u'type': u'access-control-list',
u'uuid': u'697c2a23-3085-4aff-9ff8-4ff1ab96ecd0'}

Notification Message: {u'oper': u'UPDATE',
u'type': u'project',
u'uuid': u'3670f215-dd18-46fd-8c0e-aeca9892fcc5'}

<pre>Traceback (most recent call last):
  File "/usr/lib/python2.7/dist-packages/vnc_openstack/neutron_plugin_interface.py", line 846, in plugin_add_router_interface
    subnet_id=subnet_id)
  File "/usr/lib/python2.7/dist-packages/vnc_openstack/neutron_plugin_db.py", line 3110, in add_router_interface
    'name': ''})
  File "/usr/lib/python2.7/dist-packages/vnc_openstack/neutron_plugin_db.py", line 3306, in port_create
    self._raise_contrail_exception(503, exceptions.ResourceExhausted())
  File "/usr/lib/python2.7/dist-packages/vnc_openstack/neutron_plugin_db.py", line 453, in _raise_contrail_exception
    bottle.abort(code, json.dumps(exc_info))
  File "/usr/lib/python2.7/dist-packages/bottle.py", line 2041, in abort
    raise HTTPError(code, text)
HTTPError
</pre>

Tags:

Revision history for this message

Rahul (rahuls) wrote on 2014-08-01:

From: Pedro Marques <email address hidden>
Date: Friday, August 1, 2014 at 1:52 AM
To: Vedamurthy Ananth Joshi <email address hidden>
Cc: Rahul Sharma <email address hidden>, Sachin Bansal <email address hidden>, Contrail Systems Configuration Team <email address hidden>
Subject: Re: Creation of a svc_snat n/w with l3 router

For 1.1 we are supporting neutron router set-gateway to external network (That is how you turn on source-nat).

Pedro.

On Jul 31, 2014, at 1:05 PM, Vedamurthy Ananth Joshi <email address hidden> wrote:

Sachin,
We had this bug for gateway.. https://bugs.launchpad.net/juniperopenstack/+bug/1326220
I see that it is marked fixed. Does it mean gateway is supported now?…Could you please clarify ?

From: Rahul Sharma <email address hidden>
Date: Friday, August 1, 2014 at 1:31 AM
To: Vedamurthy Joshi <email address hidden>, Sachin Bansal <email address hidden>
Cc: Contrail Systems Configuration Team <email address hidden>
Subject: Re: Creation of a svc_snat n/w with l3 router

If we don’t support external gateway then why are we using “router:external” on networks? Do you have a list of what we support and what we don’t as per the Specs/API’s?

External networks (external-net)

List networks
Show network details
Create network
Update network
The external network extension is used to specify whether the network is external or not. This information is used by Layer-3 network (router) extension. External networks are connected to a router's external gateway and host floating IPs.

The external network extension adds the router:external attribute to the network resource.

Table 4.3. Network Attributes
Attribute Type Required CRUD[a] Default Value Validation Constraints Notes
router:external Bool No CRU False { True | False } Specifies whether the network is an external network or not.
[a] C. Use the attribute in create operations.

R. This attribute is returned in response to show and list operations.

U. You can update the value of this attribute.

D. You can delete the value of this attribute.

From: Vedamurthy Ananth Joshi <email address hidden>
Date: Friday, August 1, 2014 at 1:19 AM
To: Rahul Sharma <email address hidden>, Sachin Bansal <email address hidden>
Cc: Contrail Systems Configuration Team <email address hidden>
Subject: Re: Creation of a svc_snat n/w with l3 router

Looks like you are also configuring external gateway.. Per Sachin, we don’t support this.

From: Rahul Sharma <email address hidden>
Date: Friday, August 1, 2014 at 1:04 AM
To: Sachin Bansal <email address hidden>
Cc: Contrail Systems Configuration Team <email address hidden>, Vedamurthy Joshi <email address hidden>
Subject: Creation of a svc_snat n/w with l3 router

Hi Sachin,
Do we have a blue print on our l3 implementation that I can read.

Once I created the l3 router. I see creation of a svc_snat(l3 router uuid) network with a /29 subnet.

I see a port created with name si_(l3 router uuid)-1_left , but I don’t understand what’s SI (service instance?).

The above ports shows that it is attached, but I can’t figure out what device it is attached to. Device owner also comes as None.

-
Rahul

From: Pedro Marques <roque@juniper.net>
Date: Friday, August 1, 2014 at 1:52 AM
To: Vedamurthy Ananth Joshi <vjoshi@juniper.net>
Cc: Rahul Sharma <rahuls@juniper.net>, Sachin Bansal <sbansal@juniper.net>, Contrail Systems Configuration Team <dl-contrail-cfg@juniper.net>
Subject: Re: Creation of a svc_snat n/w with l3 router

For 1.1 we are supporting neutron router set-gateway to external network (That is how you turn on source-nat).

Pedro.

On Jul 31, 2014, at 1:05 PM, Vedamurthy Ananth Joshi <vjoshi@juniper.net> wrote:

Sachin,
We had this bug for gateway.. https://bugs.launchpad.net/juniperopenstack/+bug/1326220 
I see that it is marked fixed. Does it mean gateway is supported now?…Could you please clarify ?

From: Rahul Sharma <rahuls@juniper.net>
Date: Friday, August 1, 2014 at 1:31 AM
To: Vedamurthy Joshi <vjoshi@juniper.net>, Sachin Bansal <sbansal@juniper.net>
Cc: Contrail Systems Configuration Team <dl-contrail-cfg@juniper.net>
Subject: Re: Creation of a svc_snat n/w with l3 router

If we don’t support external gateway then why are we using “router:external” on networks? Do you have a list of what we support and what we don’t as per the Specs/API’s?

External networks (external-net)

The external network extension adds the router:external attribute to the network resource.

Table 4.3. Network Attributes
Attribute	 Type	 Required	 CRUD[a]	 Default Value	 Validation Constraints	 Notes
router:external	Bool	No	CRU	False	{ True | False }	Specifies whether the network is an external network or not.
[a] C. Use the attribute in create operations.

R. This attribute is returned in response to show and list operations.

U. You can update the value of this attribute.

D. You can delete the value of this attribute.

From: Vedamurthy Ananth Joshi <vjoshi@juniper.net>
Date: Friday, August 1, 2014 at 1:19 AM
To: Rahul Sharma <rahuls@juniper.net>, Sachin Bansal <sbansal@juniper.net>
Cc: Contrail Systems Configuration Team <dl-contrail-cfg@juniper.net>
Subject: Re: Creation of a svc_snat n/w with l3 router

Looks like you are also configuring external gateway.. Per Sachin, we don’t support this.

From: Rahul Sharma <rahuls@juniper.net>
Date: Friday, August 1, 2014 at 1:04 AM
To: Sachin Bansal <sbansal@juniper.net>
Cc: Contrail Systems Configuration Team <dl-contrail-cfg@juniper.net>, Vedamurthy Joshi <vjoshi@juniper.net>
Subject: Creation of a svc_snat n/w with l3 router

Hi Sachin,
Do we have a blue print on our l3 implementation that I can read.

Once I created the l3 router. I see creation of a svc_snat(l3 router uuid)  network with a /29 subnet.

I see a port created with name si_(l3 router uuid)-1_left , but I don’t understand what’s SI (service instance?).

The above ports shows that it is attached, but I can’t figure out what device it is attached to. Device owner also comes as None.

-
Rahul

Vedamurthy Joshi (vedujoshi) on 2014-08-01

tags:

added: neutronapi

Vedamurthy Joshi (vedujoshi) on 2014-08-01

information type:

Proprietary → Public

Sachin Bansal (sbansal) on 2014-08-15

Changed in juniperopenstack:
assignee:	Sachin Bansal (sbansal) → Rudra Rugge (rudrarugge)

Nagabhushana R (bhushana) on 2014-08-22

Changed in juniperopenstack:
milestone:	r1.10-fcs → none

Sudheendra Rao (sudheendra-k) on 2014-09-03

tags:

added: releasenote

Revision history for this message

Vedamurthy Joshi (vedujoshi) wrote on 2014-09-05:

Basic snat functionality is working..

tags:

removed: releasenote

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.