Jenkins [Wed, 17 Jun 2015 20:18:41 +0000 (20:18 +0000)]
Merge "Remove NO_SIGNAL from puppet role templates"
Jenkins [Wed, 17 Jun 2015 19:55:50 +0000 (19:55 +0000)]
Merge "Adds horizon to pacemaker when puppet-pacemaker is enabled"
Jenkins [Wed, 17 Jun 2015 19:43:59 +0000 (19:43 +0000)]
Merge "Fix Redis bind setting to use redis_network"
Jenkins [Wed, 17 Jun 2015 18:46:59 +0000 (18:46 +0000)]
Merge "Allow control of hostname formatting"
Jenkins [Wed, 17 Jun 2015 18:38:22 +0000 (18:38 +0000)]
Merge "Add $hostname.localdomain alias to /etc/hosts"
Jenkins [Wed, 17 Jun 2015 18:36:42 +0000 (18:36 +0000)]
Merge "Remove unused EnablePacemaker param from templates"
Steven Hardy [Mon, 15 Jun 2015 09:13:07 +0000 (05:13 -0400)]
Allow control of hostname formatting
Currently, we use the heat default server names, which results in some
fairly unreadable hostnames due to the level of nesting in the templates.
e.g ov-sszdbj5rdne-0-bhseh65edxv6-Controller-zoqc6tlypbdp
Instead, we allow the user to specify a format string per role, defaulted
to a string which formats the name e.g <stackname>-controller-<index>
e.g overcloud-controller-0
Optionally additional hostname components (not replaced by heat) could be
added, such that deployment time customization of hostnames via firstboot
scripts (e.g cloud-init) may be possible.
Should anyone wish to maintain the old heat-generated names, they can pass
an empty string via these parameters, which heat will treat as if no "name"
property was provided to OS::Nova::Server.
Change-Id: I1730caa0c2256f970da22ab21fa3aa1549b3f90b
Dan Prince [Tue, 9 Jun 2015 17:51:04 +0000 (13:51 -0400)]
Configurable vlan_id's for isolated networks
This patch adds parameters to configure the various
vlan IDs to all of the bond-with-vlans and single-nic-vlans
network config templates.
Change-Id: Ia6196735927777b73879e8086568f8a435597c6c
Jenkins [Tue, 16 Jun 2015 07:50:28 +0000 (07:50 +0000)]
Merge "Add BondInterfaceOvsOptions parameter"
Jenkins [Tue, 16 Jun 2015 07:50:19 +0000 (07:50 +0000)]
Merge "network/config storage role fixes"
Jenkins [Tue, 16 Jun 2015 07:49:41 +0000 (07:49 +0000)]
Merge "Flexible IP allocations for isolated nets"
Jenkins [Tue, 16 Jun 2015 07:48:06 +0000 (07:48 +0000)]
Merge "Add support for isolating swift storage nets"
Jenkins [Tue, 16 Jun 2015 07:47:36 +0000 (07:47 +0000)]
Merge "Remove external bridge from Compute nodes"
Giulio Fidente [Mon, 15 Jun 2015 16:26:03 +0000 (18:26 +0200)]
Add $hostname.localdomain alias to /etc/hosts
We want to make sure to be able to resolve the default domain
suffix (.localdomain) appended when no domain option is passed by
the dhcp server.
Change-Id: I33111e91b502f57da442e5745de2217bd6d2d882
Dan Prince [Fri, 12 Jun 2015 18:05:19 +0000 (14:05 -0400)]
Flexible IP allocations for isolated nets
This patch adds new '<net name>AllocationPool' parameters
to all of the isolated network nested stacks so that users
can easily control the allocation ranges on these networks.
Change-Id: I44b564831446c62e3489a69d992e0fb1f642b085
Giulio Fidente [Fri, 12 Jun 2015 09:52:55 +0000 (11:52 +0200)]
Fix Redis bind setting to use redis_network
The Redis bind host should be set from [1] template.
1. https://github.com/openstack/tripleo-heat-templates/blob/master/puppet/controller-puppet.yaml#L985
Change-Id: I8713db1a7ad739692817921248edcc6b0e819ade
marios [Thu, 4 Jun 2015 09:02:16 +0000 (12:02 +0300)]
Adds horizon to pacemaker when puppet-pacemaker is enabled
Adds the horizon (httpd) service as pacemaker resource
Also adds a default for the horizon::django_session_engine [1]
which was previously unconfigured. Also adds a server-status.conf
for httpd/pacemaker [2]
[1] https://docs.djangoproject.com/en/dev/topics/http/sessions/#using-cached-sessions
[2] https://github.com/beekhof/osp-ha-deploy/blob/master/pcmk/horizon.scenario#L72
Change-Id: I320837dfecf3241355e8a3345d0ff271592da491
Dan Sneddon [Thu, 11 Jun 2015 22:44:05 +0000 (15:44 -0700)]
Remove external bridge from Compute nodes
This change modifies overcloud-resource-registry-puppet.yaml to
use net-config-noop.yaml as the default os-net-config template
for compute nodes. The current default of net-config-bridge.yaml
will set up a br-ex on the compute nodes. Since we are not using
DVR that is not needed.
Change-Id: I4e149a4f5a6d19e94e8c0245f52677f92f22d3ec
Dan Prince [Wed, 10 Jun 2015 23:47:41 +0000 (19:47 -0400)]
Isolate network traffic for Nova VNC proxy
This patch makes it possible to configure the isolated network
for the Nova vnc proxy client.
Change-Id: I462dfaea94e5fe9cb260ba91a42433a250f07984
Dan Prince [Fri, 5 Jun 2015 02:47:15 +0000 (22:47 -0400)]
Add support for isolating swift storage nets
This patch updates the Puppet Swift storage role
so that it supports network isolation. By default
all traffic still flows on the ctlplane network
but if network isolation is enabled then network
traffic will flow over the configured storage_mgmt
network interface.
This patch also fixes a few critical issues with
the swift storage role that prevented it from
working:
- oac_data for the swift devices was overriding the
data provided in the swift_devices_and_proxy
hieradata file.
- the role was missing declarations to load hieradata
files for swift_devices_and_proxy and all_nodes
- The required snmpd settings were not getting set
correctly in the 'object' hiera data file.
With all of these changes the Swift storage role
works correctly with and without network isolation.
Change-Id: I541abb2604380f603bba91ad88e54783ee450a8f
Dan Prince [Tue, 9 Jun 2015 17:30:17 +0000 (13:30 -0400)]
Add BondInterfaceOvsOptions parameter
This patch adds a new BondInterfaceOvsOptions to the
bond-with-vlans network config templates. This can
be used to configure things like LACP or the bonding mode
via a nested stack heat parameter.
The patch also removes the hard coded ovs_options relating
to both bond-with-vlans and single-nic-with-vlans configurations
which do not actually require this setting to be hard coded
because by default OVS trunks vlan ports automatically.
Change-Id: I3effbccba8ed7ed28d6ba715e5709275d4e7f984
Dan Prince [Thu, 4 Jun 2015 02:08:50 +0000 (22:08 -0400)]
network/config storage role fixes
None of the storage roles have Heat parameters for the bridge
name. Instead of wiring in Heat parameters for bridge name
this patch hard codes the bridge name for the storage roles
to 'br-storage'.
This functionally fixes the network config scripts for each
of the storage roles.
For the single-nic-vlans storage roles we also remove
the 'bond1' reference which was also incorrectly specified.
Change-Id: I460d1a17e44ee49e960117ec85edd3ae25894333
Jenkins [Tue, 9 Jun 2015 07:55:13 +0000 (07:55 +0000)]
Merge "Enable use of coordination_url in ceilometer"
Jenkins [Tue, 9 Jun 2015 07:15:33 +0000 (07:15 +0000)]
Merge "Add Redis as a Pacemaker resource"
Jenkins [Mon, 8 Jun 2015 15:31:29 +0000 (15:31 +0000)]
Merge "Enable NetApp Backends in Cinder"
Steve Baker [Mon, 4 May 2015 23:25:40 +0000 (11:25 +1200)]
Config & deployments to update overcloud packages
This change adds config and deployment resources to trigger package
updates on nodes. The deployments are triggered by doing a stack-update
and setting one of the parameters to a unique value.
The intent is that rolling update will be controlled by setting
breakpoints on all of the UpdateDeployment resources inside the
role resource groups.
Change-Id: I56bbf944ecd6cbdbf116021b8a53f9f9111c134f
Yanis Guenane [Tue, 26 May 2015 14:38:59 +0000 (16:38 +0200)]
Update mongodb implementation to reflect master
Two PR have been merged upstream that let use improve our current
implementation :
* service_manage[1]
* conn string has namevar[2]
[1] https://github.com/puppetlabs/puppetlabs-mongodb/pull/198
[2] https://github.com/puppetlabs/puppetlabs-mongodb/pull/200
Change-Id: Ia2247348a9e0292b5fcbc65ea1e41e6bc7c477fa
Yanis Guenane [Thu, 9 Apr 2015 10:24:53 +0000 (12:24 +0200)]
Enable use of coordination_url in ceilometer
Since t-h-t can now deploy a Redis cluster, we can rely on it as the
tooz backend for high availability.
Change-Id: If045a273388aa2e725b6de624e09aa9c85248cc4
Yanis Guenane [Wed, 13 May 2015 11:02:47 +0000 (13:02 +0200)]
Add Redis as a Pacemaker resource
Change-Id: I731b408f24da01c1bc897bfffe8fd4d5638932ed
Jenkins [Fri, 5 Jun 2015 15:24:46 +0000 (15:24 +0000)]
Merge "Fix list of type_drivers for ML2 plugin"
Jenkins [Fri, 5 Jun 2015 15:23:50 +0000 (15:23 +0000)]
Merge "Wire Neutron VLAN ranges param as array to puppet"
Ryan Hefner [Tue, 12 May 2015 17:52:43 +0000 (13:52 -0400)]
Enable NetApp Backends in Cinder
Enables support for configuring Cinder with a NetApp backend.
This change adds all relevant parameters for:
- Clustered Data ONTAP (NFS, iSCSI, FC)
- Data ONTAP 7-Mode (NFS, iSCSI, FC)
- E-Series (iSCSI)
Change-Id: If6c6e511ef2d26c4794e3b37c61e5318485ff4db
Giulio Fidente [Tue, 2 Jun 2015 06:21:13 +0000 (08:21 +0200)]
Fix list of type_drivers for ML2 plugin
The list of drivers loaded by the ML2 plugin does not have to
match the list of tenant_network_types, this will make ML2 load
the flat, gre, vxlan and vlan drivers so that the provider
networks can be of flat (default) and vlan type as well.
Change-Id: I0b74f86acf5c1ff644deb46c0a1d14129c1882d4
Giulio Fidente [Tue, 2 Jun 2015 12:32:55 +0000 (08:32 -0400)]
Wire Neutron VLAN ranges param as array to puppet
Turns NeutronNetworkVLANRanges into a list and makes it consumable by
neutron::plugins::ml2::network_vlan_ranges as an array. Previously
usage of vlans was impossible due to puppet-neutron failing to
join() network_vlan_ranges.
Also fixes wiring of network_vlan_ranges on computes and adds a
sample environment file to test use of vlans for tenant networks.
Change-Id: I8725cdb9591dd8d0b7125fdacbefdc9138703266
Dan Prince [Thu, 4 Jun 2015 02:01:36 +0000 (22:01 -0400)]
Isolate the Ceph storage and storage_mgmt nets
This patch updates the Ceph configuration for the puppet
implementation so that it isolates the Ceph traffic
for the public and cluster interfaces. By default public traffic
runs on the "storage" network and the cluster traffic runs on the
"storage mgmt" network.
If network isolation is not enabled then the default
ctlplane address's will be used for both the public and
cluster interfaces.
Change-Id: I791244d72c8f42142d9de99e0cf0acdca19e62b0
Dan Prince [Mon, 1 Jun 2015 14:37:35 +0000 (10:37 -0400)]
configure pacemaker VIPs for isolated networks
This patch updates the overcloud pacemaker role manifest so
that it optionally configures VIPs on isolated networks if
they are enabled.
Change-Id: I6123ee622abe4d8d7b5f76cf9bac43acd80c1f64
Dan Prince [Mon, 1 Jun 2015 14:26:38 +0000 (10:26 -0400)]
Set glance_api_servers for cinder
This patch updates the hiera configuration for the Cinder API so
that we set glance_api_servers. By default Cinder constructs
a glance URL based on $my_ip (the local IP of the machine)
which may not be correct if you are running Glance on a non-default
internal network.
By setting glance_api_servers to the same thing we already
use for Nova we make Cinder contact the correct Glance URL
regardless of the network settings.
Change-Id: I1c56eb585ddfdc9989a8b55bc1bac819802f7794
Dan Prince [Mon, 1 Jun 2015 14:18:10 +0000 (10:18 -0400)]
puppet controller role: per service VIP settings
This patch refactors the puppet controller role so that it
makes use of per service VIP settings for each service.
Previously the VIP for the ctlplane was hard wired to
many of the controller service. With this patch we have
the ability to isolate traffic for services which
made use of the ctlplane and public VIPs for their
settings.
The implementation includes:
* stops the use of the VirtualIP and PublicVirtualIP within the
controller role. These parameters have now been replaced with
per service heat parameters for the controller nested stack which
are determined via VipMap based on per service settings in the heat
environment.
* All VIP configuration is now moved into puppet/vip-config.yaml.
This made sense so we could deprecate the use of the VirtualIP
and PublicVirtualIP settings above.
* The puppet manifests for the controller were cleaned up for several
to use Hiera directly instead of constructing URLs based on the
static controller and public network VIPs. This improvement
was something we wanted to do anyways and made the implementation
cleaner.
Change-Id: I9b9a15be67f74bec97366408f7047acfd6ea0ec6
Jenkins [Thu, 4 Jun 2015 14:01:37 +0000 (14:01 +0000)]
Merge "horizon/keystone api should use internal_api NW"
Jenkins [Thu, 4 Jun 2015 13:38:22 +0000 (13:38 +0000)]
Merge "Add virtual IPs for split out networks"
Jenkins [Thu, 4 Jun 2015 13:37:05 +0000 (13:37 +0000)]
Merge "Add PortName to ports stacks"
Jenkins [Thu, 4 Jun 2015 13:36:51 +0000 (13:36 +0000)]
Merge "Combine Heat API networks into single net"
Jenkins [Thu, 4 Jun 2015 13:33:00 +0000 (13:33 +0000)]
Merge "Make all-nodes Ip networks configurable"
Jenkins [Thu, 4 Jun 2015 13:32:37 +0000 (13:32 +0000)]
Merge "Wire ServiceNetMap as a top level parameter"
Jenkins [Thu, 4 Jun 2015 12:20:42 +0000 (12:20 +0000)]
Merge "Pass NeutronEnableTunnelling to controllers"
Jenkins [Thu, 4 Jun 2015 12:20:35 +0000 (12:20 +0000)]
Merge "Set VXLAN tunnels range to match GRE range"
Jenkins [Thu, 4 Jun 2015 10:38:24 +0000 (10:38 +0000)]
Merge "Wire Neutron allow_automatic_l3agent_failover param to module"
Giulio Fidente [Tue, 2 Jun 2015 08:13:29 +0000 (04:13 -0400)]
Pass NeutronEnableTunnelling to controllers
We forgot to pass NeutronEnableTunnelling param to controllers
(passed only to computes), making it unusable.
Change-Id: I74756732deabd1c7ba9039832ea169fd322a569f
Giulio Fidente [Mon, 1 Jun 2015 16:50:43 +0000 (12:50 -0400)]
Set VXLAN tunnels range to match GRE range
Change-Id: I16d259055fe4cd22541cd7abd7a26c71bbbaf292
Jenkins [Wed, 3 Jun 2015 15:03:54 +0000 (15:03 +0000)]
Merge "os-net-config templates to configure vlans"
Steven Hardy [Wed, 13 May 2015 21:08:12 +0000 (17:08 -0400)]
Remove NO_SIGNAL from puppet role templates
Currently we use NO_SIGNAL on both the NetworkConfig and subsequent config
deploying the data associated with the role. This means there is a risk that
should the NetworkConfig do anything interruptive (os-net-config can do
interface renaming based on discovery data for example) the role configuration
config could fail, and we'd never know until some later error occurs.
Additionally, we need to be sure that the heiradata deployed by each of the role
specicific configs is actually in-place before proceeding with any of the cluster
configuration - atm this works due to the inherent delays involved deploying to
bare-metal, but there's still a theoretical race if very fast deployment backends
(I'm thinking containers, e.g lxc backend to nova or something) were used instead.
Essentially, we should never be using NO_SIGNAL unless we want to ignore failure,
which AFAICT is not the case in this instance.
Change-Id: I0dbbcc87fb8df8e6bc4775c39fa616b0d0713464
Jenkins [Wed, 3 Jun 2015 13:57:43 +0000 (13:57 +0000)]
Merge "Reuse the undercloud service passwords as db passwords."
Dan Prince [Mon, 1 Jun 2015 13:36:46 +0000 (09:36 -0400)]
horizon/keystone api should use internal_api NW
As most of the OpenStack services are automatically bound
to the public virtual IP already we don't need to set
the default network for Horizon and Keystone to the 'external'
network. These should probably default to the internal_api
network like the rest of the OpenStack services...
Change-Id: I04cf64568c2fc7bb8a821b0de5ba56aa90158e2d
Dan Prince [Thu, 28 May 2015 02:27:32 +0000 (22:27 -0400)]
Add virtual IPs for split out networks
This patch adds VIPs for the internal_api, storage,
and storage management networks.
For puppet these are persisted into a local vip-config
hieradata file which is then used by puppet-tripleo's
loadbalancer module to apply per-service VIP settings.
Change-Id: I909c3bdc9d17a8e15351f4797287769e3f76c849
Dan Prince [Fri, 29 May 2015 16:07:44 +0000 (12:07 -0400)]
Add PortName to ports stacks
For VIP ports we set an explicit name on the ports. This
patch adds an optional PortName parameter to the ports
objects which can be used to specify a name.
Change-Id: Iad0f5e4cfc31a931dbb574d9e589570125e9465c
Dan Prince [Thu, 28 May 2015 20:49:54 +0000 (16:49 -0400)]
Combine Heat API networks into single net
We probably don't need to split out separate networks
for Heat CFN and Cloudwatch. Just having a single network
for Heat API in the overcloud is probably fine.
Change-Id: I917b314e01227af72129645c9b72ad8e54f07865
Dan Prince [Wed, 27 May 2015 13:52:56 +0000 (09:52 -0400)]
Make all-nodes Ip networks configurable
This patch adds a new NetIpListMap abstraction which we can use
to make the all-nodes-config IP list network assignments
configurable. Ip address lists for all overcloud services
which require IPs were added to all-nodes-config so
that puppet manifests can be directly supplied the
correct network list for each service.
Change-Id: I209f2b4f97a4bb78648c54813dad8615770bcf1a
Dan Prince [Tue, 2 Jun 2015 14:33:01 +0000 (10:33 -0400)]
Wire ServiceNetMap as a top level parameter
This patch makes ServiceNetMap a top level parameter.
This is helpful to tools like Tuskar which don't support Heat
environments that contain both a resource_registry and default_parameters.
ServiceNetMap will in fact be utilized at the top level in some of
the VIP related patches that follow.
Change-Id: I375063dacf5f3fc68e6df93e11c3e88f48aa3c3a
Giulio Fidente [Tue, 2 Jun 2015 02:51:08 +0000 (04:51 +0200)]
Wire Neutron allow_automatic_l3agent_failover param to module
Change-Id: Ibd1581ebb87ed02f3840000e90025a2a371019aa
Dan Prince [Mon, 1 Jun 2015 19:13:46 +0000 (15:13 -0400)]
os-net-config templates to configure vlans
This patch adds 5 new role templates to help configure
a vlans on top for each of the overcloud roles. This
patch adds vlans on top of a single NIC attached to
the control plane network (already used for provisioning).
The patch also includes an environment file to
enable configuration of vlans by simply sourcing this file.
Change-Id: Ibc40e452dec9b372ff10442aab2bddaf382b0a2f
Jenkins [Mon, 1 Jun 2015 11:56:57 +0000 (11:56 +0000)]
Merge "post-deploy hook for rhel registration"
Jenkins [Mon, 1 Jun 2015 07:57:05 +0000 (07:57 +0000)]
Merge "Neutron: Remove hiera lookup to controller_host"
Jenkins [Mon, 1 Jun 2015 07:45:26 +0000 (07:45 +0000)]
Merge "Add Heat as a Pacemaker resource"
Jenkins [Mon, 1 Jun 2015 07:43:10 +0000 (07:43 +0000)]
Merge "Add Ceilometer as a Pacemaker resource"
Yanis Guenane [Sun, 31 May 2015 20:26:35 +0000 (22:26 +0200)]
Neutron: Remove hiera lookup to controller_host
With current effort of creating isolated networks, the controller_host
hiera variable does not exist anymore. Hence we remove it else the
lookup will fail.
The hiera binding neutron::agents::ml2::ovs::local_ip has been written
in another review[1]
[1] I1dc11987b4ea3c37775b14fbdddb75588499e9bb
Change-Id: I12777c512d379210e5cddb5e683be4d79808fa2c
Jenkins [Fri, 29 May 2015 21:21:39 +0000 (21:21 +0000)]
Merge "Map Mysql to isolated networks"
Jenkins [Fri, 29 May 2015 21:19:47 +0000 (21:19 +0000)]
Merge "Use heat inputs for network port settings"
Yanis Guenane [Wed, 27 May 2015 13:10:32 +0000 (15:10 +0200)]
Add Heat as a Pacemaker resource
Change-Id: I1c8fc6beacc8352ad2aabe44ff20614ac52c1795
Yanis Guenane [Wed, 27 May 2015 10:14:47 +0000 (12:14 +0200)]
Add Ceilometer as a Pacemaker resource
Change-Id: I1243b68506f37d6b78807c03948874ae100fef65
Giulio Fidente [Wed, 27 May 2015 02:22:17 +0000 (22:22 -0400)]
Add Nova as Pacemaker resource
Constraints based on vncproxy are commented due to it not starting
with websockify < 0.6, see [1]
1. http://lists.openstack.org/pipermail/openstack-dev/2014-October/048535.html
Co-Authored-By: Jiri Stransky <jistr@redhat.com>
Change-Id: Ie51014bf563920d2e75c5e38942bc42ddc2a3939
marios [Wed, 29 Apr 2015 15:39:15 +0000 (18:39 +0300)]
Adds neutron-server and agents as pacemaker resources
Adds neutron-server, neutron-l3-agent, neutron-dhcp-agent,
neutron-openvswitch-agent and neutron-metadata-agent as
pacemaker resources.
Change-Id: I4dcc6f56db4c27a2a4f627fa8303cbeb2bd563d4
Dan Prince [Thu, 28 May 2015 14:44:26 +0000 (10:44 -0400)]
Map Mysql to isolated networks
This change adds parameters to specify which networks the MySQL
service will use. If the internal_api network exists the MySQL
service will bind to the IP address on that network, otherwise
the services will default to the IP on the Undercloud 'ctlplane'
network.
This patch also drop the old 'controller_host' variable from
the puppet controller template since it is no longer in use.
Change-Id: I4fba2c957f7db47e916bc269fb4bd32ccc99bd4c
Dan Prince [Thu, 28 May 2015 14:35:56 +0000 (10:35 -0400)]
Use heat inputs for network port settings
This patch updates the controller and compute roles
so that we use get_input in the software configuration
instead of calling get_attr/get_param there.
Change-Id: I1dc11987b4ea3c37775b14fbdddb75588499e9bb
Jenkins [Thu, 28 May 2015 13:44:31 +0000 (13:44 +0000)]
Merge "Fix colocation order to match ref-arch"
Jenkins [Thu, 28 May 2015 12:20:39 +0000 (12:20 +0000)]
Merge "Add Memcache as a Pacemaker resource"
Jenkins [Thu, 28 May 2015 12:03:11 +0000 (12:03 +0000)]
Merge "Add a keystone-cinder-api constraint"
Jenkins [Thu, 28 May 2015 12:02:33 +0000 (12:02 +0000)]
Merge "Add keystone-glance-registry constraint"
Jenkins [Thu, 28 May 2015 11:37:37 +0000 (11:37 +0000)]
Merge "Use the proper parameter to set --master"
Jenkins [Wed, 27 May 2015 20:01:59 +0000 (20:01 +0000)]
Merge "Map Horizon, Redis, Rabbit, memcached to isolated nets"
Jenkins [Wed, 27 May 2015 20:01:53 +0000 (20:01 +0000)]
Merge "Map Swift services to isolated networks"
Jenkins [Wed, 27 May 2015 20:01:46 +0000 (20:01 +0000)]
Merge "Map Nova services to isolated networks"
Jenkins [Wed, 27 May 2015 20:01:40 +0000 (20:01 +0000)]
Merge "Map Heat services to isolated networks"
Jenkins [Wed, 27 May 2015 20:01:33 +0000 (20:01 +0000)]
Merge "Map Neutron services to isolated networks"
Jenkins [Wed, 27 May 2015 20:01:27 +0000 (20:01 +0000)]
Merge "Map Keystone services to isolated networks"
Jenkins [Wed, 27 May 2015 20:01:19 +0000 (20:01 +0000)]
Merge "Map Glance services to isolated networks"
Yanis Guenane [Wed, 27 May 2015 14:04:10 +0000 (16:04 +0200)]
Fix colocation order to match ref-arch
Fixes the colocation order between glance-api and glance-registry to
match the ref-arch[1]
[1]
https://github.com/beekhof/osp-ha-deploy/blob/master/pcmk/glance.scenario#L108
Change-Id: I40f35afedb3333d97c8b689538bb80a90a66afe8
Yanis Guenane [Wed, 27 May 2015 13:45:37 +0000 (15:45 +0200)]
Add keystone-glance-registry constraint
Make sure the keystone service starts before the glance-registry one.
Change-Id: Ia81df13682bf556a39cc36520def48105ee3e27d
Yanis Guenane [Wed, 27 May 2015 13:39:22 +0000 (15:39 +0200)]
Add a keystone-cinder-api constraint
Make sure the keystone service starts before the cinder-api one.
Change-Id: I21549c066afcf051e52fc4bba4fae2f34ad2ba4b
Yanis Guenane [Wed, 27 May 2015 12:46:19 +0000 (14:46 +0200)]
Use the proper parameter to set --master
The interface for pcmk_resource offers the parameter master_params to set
--master during the resource creation.
Change-Id: I6fa769f14a6248b371810af3ba6819a1f9ed9442
Yanis Guenane [Mon, 4 May 2015 15:35:09 +0000 (17:35 +0200)]
Add Memcache as a Pacemaker resource
Depends-On: I7b992450176595a89dba9fe2eccf619af2645d6b
Change-Id: I30cebb6d3a8670f49587bedaf51af18a87a8d24c
Jenkins [Wed, 27 May 2015 09:38:45 +0000 (09:38 +0000)]
Merge "Reuse the various service passwords as db passwords."
Jenkins [Wed, 27 May 2015 08:43:15 +0000 (08:43 +0000)]
Merge "Map Cinder services to isolated networks"
Dan Sneddon [Wed, 27 May 2015 08:42:49 +0000 (01:42 -0700)]
Map Horizon, Redis, Rabbit, memcached to isolated nets
This change adds parameters to select the networks for Horizon,
Redis, Rabbit MQ, and memcached services. Horizon is often used for
administration from outside the cloud, so if the external network
exists, Horizon will bind to that IP, otherwise it will default to
the Undercloud 'ctlplane' network. Redis, Rabbit MQ, and memcached
will bind to IPs on the internal_api network if it exists, else
they will default to the 'ctlplane' network as well. Any of these
network assignments can be overridden with an environment file.
Change-Id: Ie0aa46b4a3c00d3826866796b4ec3b14f71f987c
Jenkins [Wed, 27 May 2015 08:42:36 +0000 (08:42 +0000)]
Merge "Map Ceilometer services to isolated networks"
Dan Sneddon [Wed, 27 May 2015 08:33:48 +0000 (01:33 -0700)]
Map Swift services to isolated networks
This change adds paramters to specify which networks the Swift API
services will use. If the storage network exists, it will be used
for the Swift API, otherwise the Undercloud 'ctlplane' network will
be used. If the storage_mgmt network exists, it will be used for
the back-end storage services, otherwise the 'ctlplane' will be
used by default.
Change-Id: I1d5e966a16416c52935c22efe2d4783cd2192c32
Dan Sneddon [Wed, 27 May 2015 01:57:49 +0000 (18:57 -0700)]
Map Nova services to isolated networks
This change adds parameters to specify which networks the Nova API and
metadata services will use. If the internal_api network exists, it will be
used for the bind IP for Nova API and metadata servers, otherwise the
Undercloud 'ctlplane' IP will be used by default.
Change-Id: Ie420274c7fba80abf9cf2b599431acc47e28fc7a
Dan Sneddon [Wed, 27 May 2015 01:49:24 +0000 (18:49 -0700)]
Map Heat services to isolated networks
This change adds parameters to specify which networks the Heat services
will use. If the internal_api network exists, the Heat API, Heat Cloud
Formations, and Heat Cloudwatch services will bind to the IP address on
that network, otherwise the services will default to the IP on the
Undercloud 'ctlplane' network.
Change-Id: I5febe1b9071600b43fa76c6cf415db83cad472ab
Jenkins [Wed, 27 May 2015 06:53:33 +0000 (06:53 +0000)]
Merge "Add Keystone as Pacemaker resource"
Dan Sneddon [Wed, 27 May 2015 01:46:13 +0000 (18:46 -0700)]
Map Neutron services to isolated networks
This change adds parameters to specify which network the Neutron API should
use. If the internal_api network exists, Neutron will bind to the IP on that
network, otherwise the Undercloud 'ctlplane' network will be used. The
network that the Neutron API is bound to can be overridden in an environment
file.
Change-Id: I11bcebba3a22e8850095250a2ddfaf972339476b
Dan Sneddon [Wed, 27 May 2015 00:54:01 +0000 (17:54 -0700)]
Map Keystone services to isolated networks
This change adds parameters to specify which networks the Keystone API
services will use. If the external network exists, Keystone will bind to
the IP on that network for the public API, otherwise it will default to
the IP on the Undercloud 'ctlplane' network. If the internal_api network
exists it will be used for the Keystone Admin API, otherwise it will
default to the 'ctlplane' IP. The networks these APIs are bound to can
be overridden in an environment file.
Change-Id: I6694ef6ca3b9b7afbde5d4f9d173723b9ce71b20