diff --git a/ansible/roles/neutron/tasks/config.yml b/ansible/roles/neutron/tasks/config.yml index 9c285b5..10d5b5a 100644 --- a/ansible/roles/neutron/tasks/config.yml +++ b/ansible/roles/neutron/tasks/config.yml @@ -3,8 +3,8 @@ sysctl: name={{ item.name }} value={{ item.value }} sysctl_set=yes with_items: - { name: "net.ipv4.ip_forward", value: 1} - - { name: "net.ipv4.conf.all.rp_filter", value: 0} - - { name: "net.ipv4.conf.default.rp_filter", value: 0} +# - { name: "net.ipv4.conf.all.rp_filter", value: 0} +# - { name: "net.ipv4.conf.default.rp_filter", value: 0} when: - set_sysctl | bool - inventory_hostname in groups['neutron-l3-agent'] diff --git a/ansible/roles/nova/tasks/config.yml b/ansible/roles/nova/tasks/config.yml index 8841635..7bd998e 100644 --- a/ansible/roles/nova/tasks/config.yml +++ b/ansible/roles/nova/tasks/config.yml @@ -4,8 +4,8 @@ with_items: - { name: "net.bridge.bridge-nf-call-iptables", value: 1} - { name: "net.bridge.bridge-nf-call-ip6tables", value: 1} - - { name: "net.ipv4.conf.all.rp_filter", value: 0} - - { name: "net.ipv4.conf.default.rp_filter", value: 0} +# - { name: "net.ipv4.conf.all.rp_filter", value: 0} +# - { name: "net.ipv4.conf.default.rp_filter", value: 0} when: - set_sysctl | bool - inventory_hostname in groups['compute']
With this, and the other haproxy stuff, it seems to generate configs now.
These checks/sets need to be disabled for genconfig.
diff --git a/ansible/ roles/neutron/ tasks/config. yml b/ansible/ roles/neutron/ tasks/config. yml roles/neutron/ tasks/config. yml roles/neutron/ tasks/config. yml ip_forward" , value: 1} conf.all. rp_filter" , value: 0} conf.default. rp_filter" , value: 0} conf.all. rp_filter" , value: 0} conf.default. rp_filter" , value: 0} 'neutron- l3-agent' ] roles/nova/ tasks/config. yml b/ansible/ roles/nova/ tasks/config. yml roles/nova/ tasks/config. yml roles/nova/ tasks/config. yml bridge- nf-call- iptables" , value: 1} bridge- nf-call- ip6tables" , value: 1} conf.all. rp_filter" , value: 0} conf.default. rp_filter" , value: 0} conf.all. rp_filter" , value: 0} conf.default. rp_filter" , value: 0}
index 9c285b5..10d5b5a 100644
--- a/ansible/
+++ b/ansible/
@@ -3,8 +3,8 @@
sysctl: name={{ item.name }} value={{ item.value }} sysctl_set=yes
with_items:
- { name: "net.ipv4.
- - { name: "net.ipv4.
- - { name: "net.ipv4.
+# - { name: "net.ipv4.
+# - { name: "net.ipv4.
when:
- set_sysctl | bool
- inventory_hostname in groups[
diff --git a/ansible/
index 8841635..7bd998e 100644
--- a/ansible/
+++ b/ansible/
@@ -4,8 +4,8 @@
with_items:
- { name: "net.bridge.
- { name: "net.bridge.
- - { name: "net.ipv4.
- - { name: "net.ipv4.
+# - { name: "net.ipv4.
+# - { name: "net.ipv4.
when:
- set_sysctl | bool
- inventory_hostname in groups['compute']
With this, and the other haproxy stuff, it seems to generate configs now.
These checks/sets need to be disabled for genconfig.