H3C SeerEngine-DC User manual

H3C SeerEngine-DC Controller

Converged OpenStack Plug-Ins Installation Guide

New H3C Technologies Co., Ltd.

http://www.h3c.com

Document version: 5W701-20210702

No part of this manual may be reproduced or transmitted in any form or by any means without prior written

consent of New H3C Technologies Co., Ltd.

Trademarks

Except for the trademarks of New H3C Technologies Co., Ltd., any trademarks that may be mentioned in this

document are the property of their respective owners.

Notice

The information in this document is subject to change without notice. All contents in this document, including

statements, information, and recommendations, are believed to be accurate, but they are presented without

warranty of any kind, express or implied. H3C shall not be liable for technical or editorial errors or omissions

contained herein.

Preface

This installation guide describes the procedures for installing and removing the SeerEngine-DC

OpenStack converged plug-ins.

This preface includes the following topics about the documentation:

•

Audience.

•

Conventions.

•

Documentation feedback.

Audience

This documentation is intended for:

•

Network planners.

•

Field technical support and servicing engineers.

•

Network administrators working.

Conventions

The following information describes the conventions used in the documentation.

GUI conventions

Convention

Description

Boldface Window names, button names, field names, and menu items are in Boldface. For

example, the New User window opens; click OK.

> Multi-level menus are separated by angle brackets. For example, File > Create >

Folder.

Symbols

Convention

Description

WARNING! An alert that calls attention to important information that if not understood or followed

can result in personal injury.

CAUTION:

An alert that calls attention to important information that if not understood or followed

can result in data loss, data corruption, or damage to hardware or software.

IMPORTANT:

An alert that calls attention to essential information.

NOTE:

An alert that contains additional or supplementary information.

TIP:

An alert that provides helpful information.

Documentation feedback

You can e-mail your comments about product documentation to info@h3c.com.

We appreciate your comments.

Contents

Overview ·······································································································1

SeerEngine-DC Neutron plug-ins ······················································································································1

SeerEngine-DC Neutron security plug-ins·········································································································1

Preparing for installation················································································2

Hardware requirements······································································································································2

Software requirements·······································································································································2

Deploying OpenStack by using Kolla Ansible ················································3

Preprovisioning basic SeerEngine-DC settings··············································4

Installing OpenStack plug-ins ········································································5

Setting up the basic environment·······················································································································5

Installing the SeerEngine-DC Neutron plug-ins ·································································································6

Obtaining the SeerEngine-DC Neutron plug-in installation package ·························································6

Installing the SeerEngine-DC Neutron plug-ins on the OpenStack control node·······································6

Parameters and fields································································································································9

Upgrading the SeerEngine-DC Neutron plug-ins·····························································································13

Installing the SeerEngine-DC Neutron security plug-in on OpenStack····························································13

Installing the security plug-in on the controller node················································································13

Upgrading the SeerEngine-DC Neutron security plug-in ·········································································23

(Optional.) Configuring the metadata service for network nodes··················24

FAQ·············································································································25

The Python tools cannot be installed using the yum command when a proxy server is used for Internet access.

What should I do?············································································································································25

After the plug-ins are installed successfully, what should I do if the controller fails to interconnect with the cloud

platform?··························································································································································25

Overview

This document describes how to install OpenStack plug-ins for interoperability with OpenStack cloud

platforms. Then SeerEngine-DC can process requests from the OpenStack cloud platforms.

OpenStack plug-ins include SeerEngine-DC Neutron plug-ins, Nova patch, openvswitch-agent patch,

and DHCP failover components.

SeerEngine-DC Neutron plug-ins

Neutron is a type of OpenStack services used to manage all virtual networking infrastructures (VNIs)

in an OpenStack environment. It provides virtual network services to the devices managed by

OpenStack computing services.

SeerEngine-DC Neutron plug-ins are developed for the SeerEngine-DC controller based on the

OpenStack framework.

The SeerEngine-DC Neutron plug-ins allow deployment of the network configuration obtained from

OpenStack through REST APIs on the SeerEngine-DC controller, including tenants' networks,

subnets, routers, and ports.

CAUTION:

To avoid service interruptions, do not modify the

settings issued by the cloud platform on the

controller

, such as the virtual link layer network, vRouter, and vSubnet settings after the plug-ins

connect to the OpenStack cloud platform.

SeerEngine-DC Neutron security plug-ins

SeerEngine-DC Neutron security plug-ins are developed for the SeerEngine-DC controller based on

the OpenStack framework. SeerEngine-DC Neutron security plug-ins can obtain security

configuration from OpenStack through REST APIs and synchronize the configuration to the

SeerEngine-DC controllers. They can obtain settings for the tenants' FW, LB, or VPN.

Preparing for installation

Hardware requirements

Table 1 shows the hardware requirements for installing the SeerEngine-DC Neutron plug-ins on a

server or virtual machine.

Table 1 Hardware requirements

CPU Memory size Disk space

Single-core and multicore

CPUs 2 GB and above 5 GB and above

Software requirements

Table 2 shows the software requirements for installing the SeerEngine-DC Neutron plug-ins.

Table 2 Software requirements

Item Supported versions

OpenStack deployed by using

Kolla-Ansible

•OpenStack Ocata

•OpenStack Pike

•OpenStack Queens

•OpenStack Rocky

•OpenStack Stein

IMPORTANT:

Before you install the OpenStack plug

-ins, make sure the following requirements are met:

•

Your system has a reliable Internet connection.

•

OpenStack has been deployed correctly. Verify that the /etc/hosts

file on all nodes has the host

name-IP address mappings, and the OpenStack Neutron extension services (Neutron-FWaas,

Neutron-VPNaas, or Neutron-LBaas) have been deployed. For the deployment procedure, see

the installation guide for the specific OpenStack version on the OpenStack official website.

NOTE:

•

The SeerEngine-DC Neutron security plug-in does not support OpenStack Stein.

•

For the installation of converged version of SeerEngine_DC plug-ins

(SeerEngine_DC_PLUGIN-version-py2.7.egg), see H3C SeerEngine-DC OpenStack

Converged Plug-Ins Installation Guide.

Deploying OpenStack by using Kolla

Ansible

Before installing the plug-ins, deploy OpenStack by using Kolla Ansible first. For the OpenStack

deployment procedure, see the installation guide for the specific OpenStack version on the

OpenStack official website.

Preprovisioning basic SeerEngine-DC

settings

This procedure preprovisions only basic SeerEngine-DC settings. For the configuration in a specific

scenario, see the SeerEngine-DC configuration guide for that scenario.

Table 3 Preprovisioning basic SeerEngine-DC settings

Item Configuration directory

Fabrics Provision > Network Design > Fabrics

VDS Tenants > Common Network Settings > Virtual Distributed

Switches

IP address pool Provision > Inventory > IP Address Pools

VNID pools (VLANs, VXLANs, and

VLAN-VXLAN mappings)

Provision > Inventory > VNID Pools > VLANs

Provision > Inventory > VNID Pools> VXLANs

Provision > Inventory > VNID Pools > VLAN-VXLAN

Mappings

Add access devices and border devices to

a fabric Provision > Network Design > Fabrics

L4-L7 device, physical resource pool, and

template

Provision > Inventory > Devices > L4-L7 Device

Provision > Inventory > Devices > L4-L7 Physical

Resource Pools

Border gateway Tenants > Common Network Settings > Gateway

Domains and hosts Provision > Network Design > Domains

Provision > Network Design > Domains > Hosts

Interoperability with OpenStack

Virtual Networking > OpenStack

NOTE:

•Make sure the cloud platform name (case sensitive)

is the same as the value for the cloud_region_name

parameter in the ml2_conf.ini file of the Neutron

plug-in.

•Make the VNI range is the same as the VXLAN VNI

range on the cloud platform.

Installing OpenStack plug-ins

The SeerEngine-DC Neutron plug-ins can be installed on different OpenStack versions. The

installation package varies by OpenStack version. However, you can use the same procedure to

install the Neutron plug-ins on different OpenStack versions. This document uses OpenStack Ocata

as an example.

The SeerEngine-DC Neutron plug-ins are installed on the OpenStack control node.

Setting up the basic environment

Before installing SeerEngine-DC Neutron plug-ins on the OpenStack control node, set up the basic

environment on the node.

To set up the basic environment:

1. Update the software source list, and then download and install the Python tools.

The following uses commands on a CentOS operating system as an example.

[root@localhost ~]# yum clean all

[root@localhost ~]# yum makecache

[root@localhost ~]# yum install –y python-pip python-setuptools

2. Install runlike.

[root@localhost ~]# pip install runlike

3. Log in to the controller node and edit the /etc/hosts file. Add the following information to the file.

IP and name mappings of all hosts in this OpenStack environment. To obtain this

information, access the SeerEngine-DC controller and select Provision > Domains >

Hosts.

IP and name mappings of all leaf, spine, and border devices in this scenario. To obtain this

information, access the SeerEngine-DC controller and select Provision > Inventory >

Devices.

[root@localhost ~]# vim /etc/hosts

127.0.0.1 localhost

::1 localhost localhost.localdomain localhost6 localhost6.localdomain6

99.0.83.75 controller

99.0.83.76 compute1

99.0.83.77 compute2

99.0.83.78 nfs-server

99.0.83.79 compute3

99.0.83.74 compute4

4. Install websocket-client on the controller node. Make sure the version is 0.56.

[root@localhost ~]# yum install –y python-websocket-client

Installing the SeerEngine-DC Neutron plug-ins

Obtaining the SeerEngine-DC Neutron plug-in installation

package

The SeerEngine-DC Neutron plug-ins are included in the SeerEngine-DC OpenStack package.

Obtain the SeerEngine-DC OpenStack package of the required version and then save the package

to the target installation directory on the server or virtual machine.

Alternatively, transfer the installation package to the target installation directory through a file transfer

protocol such as FTP, TFTP, or SCP. Use the binary transfer mode to prevent the software package

from being corrupted during transit.

Installing the SeerEngine-DC Neutron plug-ins on the

OpenStack control node

1. Generate the startup script for the neutron-server container.

[root@localhost ~]# runlike neutron_server>docker-neutron-server.sh

2. Modify the neutron.conf configuration file.

a. Use the vi editor to open the neutron.conf configuration file.

[root@localhost ~]# vi /etc/kolla/neutron-server/neutron.conf

b. Press Ito switch to the insert mode, and modify the configuration file. For information about

the parameters, see "neutron.conf."

[DEFAULT]

core_plugin = ml2

service_plugins = h3c_l3_router,qos,h3c_vpc_connection,h3c_port_forwarding

[service_providers]

service_provider=VPC_CONNECTION:H3C:networking_h3c.vpc_connection.h3c_vpc_conn

ection_driver.H3CVpcConnectionDriver:default

[qos]

notification_drivers = message_queue,qos_h3c

IMPORTANT:

For

the Pike plug-ins, if deployment of firewall policies and rules takes a long time, you can

change firewall in the value of the service_plugins parameter to fwaas_h3c.

For Ocata plug-ins:

[DEFAULT]

core_plugin = ml2

service_plugins =

h3c_vcfplugin.l3_router.h3c_l3_router_plugin.H3CL3RouterPlugin,firewall,neutro

n_lbaas.services.loadbalancer.plugin.LoadBalancerPluginv2,vpnaas,qos

[service_providers]

service_provider=FIREWALL:H3C:h3c_vcfplugin.fw.h3c_fwplugin_driver.H3CFwaasDri

ver:default

service_provider=LOADBALANCERV2:H3C:h3c_vcfplugin.lb.h3c_lbplugin_driver_v2.H3

CLbaasv2PluginDriver:default

service_provider=VPN:H3C:h3c_vcfplugin.vpn.h3c_vpnplugin_driver.H3CVpnPluginDr

iver:default

Table of contents

Other H3C Controllers manuals

H3C

H3C WX User manual

H3C

H3C WX3510E User manual

H3C

H3C OpenStack SeerEngine-DC User manual

H3C

H3C WX5004 User manual

H3C

H3C WX Series Installation manual

H3C

H3C WBC580 G2 User manual

H3C

H3C WX5002 User manual

H3C

H3C WX3500H series User manual

H3C

H3C WX3000H series User manual

H3C

H3C VCF User manual

H3C

H3C LS8M1WCMA0-OVS User manual

Popular Controllers manuals by other brands

Digiplex

Digiplex DGP-848 Programming guide

YASKAWA

YASKAWA SGM series user manual

Sinope

Sinope Calypso RM3500ZB installation guide

Isimet

Isimet DLA Series Style 2 Installation, Operations, Start-up and Maintenance Instructions

LSIS

LSIS sv-ip5a user manual

Airflow

Airflow Uno hab Installation and operating instructions

ABB

ABB ACS580-01 drives Hardware manual

Panasonic

Panasonic GM1 Series Reference manual

Emerson

Emerson SW93 owner's manual

AutoAqua

AutoAqua Smart ATO micro SATO-120P manual

Panasonic

Panasonic FP? Positioning Unit RTEX Technical manual

Alpha IP

Alpha IP MIOB 21001 manual

Siemens

Siemens OpenAir GMA 1 Series Mounting instructions

Surecom

Surecom SR-629 user manual

Regulus

Regulus SRS1 T Installation and operation manual

3M MicroTouch EX113 reference guide

KUHN

KUHN TKS user manual

S&C

S&C PMH Instructions for operation