1 heat_template_version: 2016-10-14
4 OpenStack Neutron Server configured with Puppet
9 description: Mapping of service_name -> network name. Typically set
10 via parameter_defaults in the resource registry. This
11 mapping overrides those in ServiceNetMapDefaults.
18 description: Mapping of service endpoint -> protocol. Typically set
19 via parameter_defaults in the resource registry.
24 Sets the number of API and RPC workers for the Neutron service. The
25 default value results in the configuration being left unset and a
26 system-dependent default will be chosen (usually the number of
27 processors). Please note that this can result in a large number of
28 processes and memory consumption on systems with a large core count. On
29 such systems it is recommended that a non-default value be selected that
30 matches the load requirements.
33 description: The password for the neutron service and db account, used by neutron agents.
36 NeutronAllowL3AgentFailover:
38 description: Allow automatic l3-agent failover
43 Whether to enable HA for virtual routers. While the default value is
44 'false', L3 HA will be automatically enabled if the number of nodes hosting
45 controller configurations and DVR is disabled.
48 description: The password for the nova service and db account, used by nova-api.
52 description: Enable Neutron DVR.
58 description: Keystone region for endpoint
59 MonitoringSubscriptionNeutronServer:
60 default: 'overcloud-neutron-server'
62 NeutronApiLoggingSource:
65 tag: openstack.neutron.api
66 path: /var/log/neutron/server.log
69 Under normal conditions, this should not be overridden manually and is
70 set at deployment time. The default value is present to allow the
71 template to be used in environments that do not override it.
78 type: ./neutron-base.yaml
80 ServiceNetMap: {get_param: ServiceNetMap}
81 DefaultPasswords: {get_param: DefaultPasswords}
82 EndpointMap: {get_param: EndpointMap}
90 - get_param: ControllerCount
93 - get_param: NeutronEnableDVR
98 description: Role data for the Neutron Server agent service.
100 service_name: neutron_api
101 monitoring_subscription: {get_param: MonitoringSubscriptionNeutronServer}
102 logging_source: {get_param: NeutronApiLoggingSource}
107 - get_attr: [NeutronBase, role_data, config_settings]
108 - neutron::server::database_connection:
111 - - {get_param: [EndpointMap, MysqlInternal, protocol]}
113 - {get_param: NeutronPassword}
115 - {get_param: [EndpointMap, MysqlInternal, host]}
117 neutron::keystone::authtoken::auth_uri: {get_param: [EndpointMap, KeystoneInternal, uri] }
118 neutron::keystone::authtoken::auth_url: {get_param: [EndpointMap, KeystoneAdmin, uri_no_suffix]}
119 neutron::server::api_workers: {get_param: NeutronWorkers}
120 neutron::server::rpc_workers: {get_param: NeutronWorkers}
121 neutron::server::allow_automatic_l3agent_failover: {get_param: NeutronAllowL3AgentFailover}
122 neutron::server::l3_ha: {if: ["auto_enable_l3_ha", true, {get_param: NeutronL3HA}]}
123 neutron::keystone::authtoken::password: {get_param: NeutronPassword}
125 neutron::server::notifications::nova_url: { get_param: [ EndpointMap, NovaInternal, uri ] }
126 neutron::server::notifications::auth_url: { get_param: [ EndpointMap, KeystoneV3Admin, uri ] }
127 neutron::server::notifications::tenant_name: 'service'
128 neutron::server::notifications::project_name: 'service'
129 neutron::server::notifications::password: {get_param: NovaPassword}
130 neutron::keystone::authtoken::project_name: 'service'
131 neutron::server::sync_db: true
132 neutron::db::mysql::password: {get_param: NeutronPassword}
133 neutron::db::mysql::user: neutron
134 neutron::db::mysql::host: {get_param: [EndpointMap, MysqlInternal, host_nobrackets]}
135 neutron::db::mysql::dbname: ovs_neutron
136 neutron::db::mysql::allowed_hosts:
138 - "%{hiera('mysql_bind_host')}"
139 tripleo.neutron_server.firewall_rules:
140 '114 neutron server':
144 '118 neutron vxlan networks':
149 neutron::server::router_distributed: {get_param: NeutronEnableDVR}
150 # NOTE: bind IP is found in Heat replacing the network name with the local node IP
151 # for the given network; replacement examples (eg. for internal_api):
153 # internal_api_uri -> [IP]
154 # internal_api_subnet - > IP/CIDR
155 neutron::bind_host: {get_param: [ServiceNetMap, NeutronApiNetwork]}
157 include tripleo::profile::base::neutron::server
158 service_config_settings:
160 neutron::keystone::auth::tenant: 'service'
161 neutron::keystone::auth::public_url: {get_param: [EndpointMap, NeutronPublic, uri]}
162 neutron::keystone::auth::internal_url: { get_param: [ EndpointMap, NeutronInternal, uri ] }
163 neutron::keystone::auth::admin_url: { get_param: [ EndpointMap, NeutronAdmin, uri ] }
164 neutron::keystone::auth::password: {get_param: NeutronPassword}
165 neutron::keystone::auth::region: {get_param: KeystoneRegion}