VMware Cloud Community
Raza0073
Contributor
Contributor
‎12-14-2016 01:16 PM
Jump to solution

how to setup CLI client on vmware openstack

I need to add a network and trying to follow the following direction which uses the cli for part of the steps but it doesn't explain how to setup a cli connection to vmware openstack.

VMware Integrated OpenStack – Adding Networks - YouTube

I did setup a new ubuntu VM and downloaded admin-openrc.sh config file from dashboard and when try to run "nova list" I get the following error

raza@osc:~$ nova list

No handlers could be found for logger "keystoneauth.identity.generic.base"

ERROR (SSLError): SSL exception connecting to https://vmopenstack:5000/v3/auth/tokens: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:590)

Please let me know what I am doing wrong.

Thank you

Reply
0 Kudos
1 Solution

Accepted Solutions
VirtuallyMikeB
Expert
Expert
‎12-14-2016 02:05 PM
Jump to solution

Follow this if you're using self-signed certificates: http://blogs.vmware.com/openstack/prepare-a-linux-vm-for-managing-openstack/


----------------------------------------- Please consider marking this answer "correct" or "helpful" if you found it useful (you'll get points too). Mike Brown VMware, Cisco Data Center, and NetApp dude Sr. Systems Engineer michael.b.brown3@gmail.com Twitter: @VirtuallyMikeB Blog: http://VirtuallyMikeBrown.com LinkedIn: http://LinkedIn.com/in/michaelbbrown

View solution in original post

Reply
0 Kudos
9 Replies
VirtuallyMikeB
Expert
Expert
‎12-14-2016 02:05 PM
Jump to solution

Follow this if you're using self-signed certificates: http://blogs.vmware.com/openstack/prepare-a-linux-vm-for-managing-openstack/


----------------------------------------- Please consider marking this answer "correct" or "helpful" if you found it useful (you'll get points too). Mike Brown VMware, Cisco Data Center, and NetApp dude Sr. Systems Engineer michael.b.brown3@gmail.com Twitter: @VirtuallyMikeB Blog: http://VirtuallyMikeBrown.com LinkedIn: http://LinkedIn.com/in/michaelbbrown
Reply
0 Kudos
Raza0073
Contributor
Contributor
‎12-19-2016 01:37 PM
Jump to solution

When I create a external network why router:external is False even I have tired to set True but it stay false?

raza@osc:~$ neutron net-create EXTNET --tenant-id admin --router:external=True --provider:physical_network dvportgroup-153 --provider:network_type portgroup

Created a new network:

+---------------------------+--------------------------------------+

| Field                     | Value                                |

+---------------------------+--------------------------------------+

| admin_state_up            | True                                 |

| created_at                | 2016-12-19T13:25:41                  |

| description               |                                      |

| id                        | a2fdae60-7707-4f55-8d71-ab6c99355903 |

| name                      | EXTNET                               |

| port_security_enabled     | True                                 |

| provider:network_type     | portgroup                            |

| provider:physical_network | dvportgroup-153                      |

| provider:segmentation_id  | 0                                    |

| router:external           | False                                |

| shared                    | False                                |

| status                    | ACTIVE                               |

| subnets                   |                                      |

| tags                      |                                      |

| tenant_id                 | admin                                |

| updated_at                | 2016-12-19T13:25:41                  |

+---------------------------+--------------------------------------+

Reply
0 Kudos
lserpietri
Enthusiast
Enthusiast
‎12-20-2016 09:10 AM
Jump to solution

Hi!

don't specify --router:external=True, use just --router:external

Hope this helps!

Reply
0 Kudos
Raza0073
Contributor
Contributor
‎12-20-2016 09:13 AM
Jump to solution

still same

neutron net-create EXTNET --tenant-id admin --router:external --provider:physical_network dvportgroup-153 --provider:network_type portgroup

Created a new network:

+---------------------------+--------------------------------------+

| Field                     | Value                                |

+---------------------------+--------------------------------------+

| admin_state_up            | True                                 |

| created_at                | 2016-12-20T09:09:45                  |

| description               |                                      |

| id                        | 1b439d28-ed27-4cd0-a96d-66be66aa1699 |

| name                      | EXTNET                               |

| port_security_enabled     | True                                 |

| provider:network_type     | portgroup                            |

| provider:physical_network | dvportgroup-153                      |

| provider:segmentation_id  | 0                                    |

| router:external           | False                                |

| shared                    | False                                |

| status                    | ACTIVE                               |

| subnets                   |                                      |

| tags                      |                                      |

| tenant_id                 | admin                                |

| updated_at                | 2016-12-20T09:09:45                  |

+---------------------------+--------------------------------------+

Reply
0 Kudos
jbrowne
VMware Employee
VMware Employee
‎12-20-2016 01:20 PM
Jump to solution

Can you try the following :

neutron net-create EXTNET --provider:network_type=portgroup --provider:physical_network=dvportgroup-153 --router:external=True 

Think you are missing the '=' for the "--provider:network_type" and the "--provider:physical_network"

Reply
0 Kudos
Raza0073
Contributor
Contributor
‎12-20-2016 01:29 PM
Jump to solution

still same result:

raza@osc:~$ neutron net-create EXTNET --provider:network_type=portgroup --provider:physical_network=dvportgroup-153 --router:external=True

Created a new network:

+---------------------------+--------------------------------------+

| Field                     | Value                                |

+---------------------------+--------------------------------------+

| admin_state_up            | True                                 |

| created_at                | 2016-12-20T13:25:43                  |

| description               |                                      |

| id                        | 1e081872-a3ce-4a8b-a9f8-943583eb7c07 |

| name                      | EXTNET                               |

| port_security_enabled     | True                                 |

| provider:network_type     | portgroup                            |

| provider:physical_network | dvportgroup-153                      |

| provider:segmentation_id  | 0                                    |

| router:external           | False                                |

| shared                    | False                                |

| status                    | ACTIVE                               |

| subnets                   |                                      |

| tags                      |                                      |

| tenant_id                 | 23726325200e42d2a6fab50b97cc16fc     |

| updated_at                | 2016-12-20T13:25:43                  |

+---------------------------+--------------------------------------+

Reply
0 Kudos
Raza0073
Contributor
Contributor
‎12-20-2016 02:57 PM
Jump to solution

debug output... not sure if this will have...

raza@osc:~$ neutron net-create EXTNET --debug --provider:network_type=portgroup --provider:physical_network=dvportgroup-153 --router:external=True

DEBUG: stevedore.extension found extension EntryPoint.parse('v2token = keystoneauth1.loading._plugins.identity.v2:Token')

DEBUG: stevedore.extension found extension EntryPoint.parse('admin_token = keystoneauth1.loading._plugins.admin_token:AdminToken')

DEBUG: stevedore.extension found extension EntryPoint.parse('v3oidcauthcode = keystoneauth1.loading._plugins.identity.v3:OpenIDConnectAuthorizationCode')

DEBUG: stevedore.extension found extension EntryPoint.parse('v2password = keystoneauth1.loading._plugins.identity.v2:Password')

DEBUG: stevedore.extension found extension EntryPoint.parse('v3password = keystoneauth1.loading._plugins.identity.v3:Password')

DEBUG: stevedore.extension found extension EntryPoint.parse('v3oidcpassword = keystoneauth1.loading._plugins.identity.v3:OpenIDConnectPassword')

DEBUG: stevedore.extension found extension EntryPoint.parse('token = keystoneauth1.loading._plugins.identity.generic:Token')

DEBUG: stevedore.extension found extension EntryPoint.parse('v3token = keystoneauth1.loading._plugins.identity.v3:Token')

DEBUG: stevedore.extension found extension EntryPoint.parse('password = keystoneauth1.loading._plugins.identity.generic:Password')

DEBUG: stevedore.extension found extension EntryPoint.parse('table = cliff.formatters.table:TableFormatter')

DEBUG: stevedore.extension found extension EntryPoint.parse('json = cliff.formatters.json_format:JSONFormatter')

DEBUG: stevedore.extension found extension EntryPoint.parse('shell = cliff.formatters.shell:ShellFormatter')

DEBUG: stevedore.extension found extension EntryPoint.parse('value = cliff.formatters.value:ValueFormatter')

DEBUG: stevedore.extension found extension EntryPoint.parse('yaml = cliff.formatters.yaml_format:YAMLFormatter')

DEBUG: neutronclient.neutron.v2_0.network.CreateNetwork run(Namespace(admin_state=True, availability_zone_hints=None, columns=[], dns_domain=None, formatter='table', max_wid                                             th=0, name=u'EXTNET', noindent=False, prefix='', provider:network_type=u'portgroup', provider:physical_network=u'dvportgroup-153', provider:segmentation_id=None, qos_policy=                                             None, request_format='json', tenant_id=None, variables=[]))

DEBUG: keystoneauth.session REQ: curl -g -i --cacert "/home/raza/vio.pem" -X GET https://vmopenstack:5000/v3 -H "Accept: application/json" -H "User-Agent: keystoneauth1/2.4.                                             1 python-requests/2.9.1 CPython/2.7.12"

DEBUG: keystoneauth.session RESP: [200] Content-Length: 251 Vary: X-Auth-Token Server: Apache/2.4.7 (Ubuntu) Date: Tue, 20 Dec 2016 14:51:08 GMT X-Openstack-Request-Id: req-                                             c5407813-1a84-43ac-885c-35edc8679f81 Content-Type: application/json X-Distribution: Ubuntu

RESP BODY: {"version": {"status": "stable", "updated": "2016-04-04T00:00:00Z", "media-types": [{"base": "application/json", "type": "application/vnd.openstack.identity-v3+js                                             on"}], "id": "v3.6", "links": [{"href": "https://vmopenstack:5000/v3/", "rel": "self"}]}}

DEBUG: keystoneauth.identity.v3.base Making authentication request to https://vmopenstack:5000/v3/auth/tokens

DEBUG: keystoneauth.identity.v3.base Making authentication request to https://vmopenstack:5000/v3/auth/tokens

DEBUG: keystoneauth.identity.v3.base Making authentication request to https://vmopenstack:5000/v3/auth/tokens

DEBUG: keystoneauth.identity.v3.base Making authentication request to https://vmopenstack:5000/v3/auth/tokens

DEBUG: keystoneauth.identity.v3.base Making authentication request to https://vmopenstack:5000/v3/auth/tokens

DEBUG: keystoneauth.identity.v3.base Making authentication request to https://vmopenstack:5000/v3/auth/tokens

DEBUG: keystoneauth.session REQ: curl -g -i --cacert "/home/raza/vio.pem" -X POST https://vmopenstack:9696/v2.0/networks.json -H "User-Agent: python-neutronclient" -H "Conte                                             nt-Type: application/json" -H "Accept: application/json" -H "X-Auth-Token: {SHA1}f52d5f2aaa4c5f4f49a3b5ae4c6e334e3e65e89d" -d '{"network": {"router:external": "True", "provi                                             der:network_type": "portgroup", "name": "EXTNET", "provider:physical_network": "dvportgroup-153", "admin_state_up": true}}'

DEBUG: keystoneauth.session RESP: [201] Date: Tue, 20 Dec 2016 14:51:20 GMT Content-Length: 481 Content-Type: application/json; charset=UTF-8 X-Openstack-Request-Id: req-b9494e15-f9da-4916-952b-bc9671d1913b

RESP BODY: {"network": {"status": "ACTIVE", "subnets": [], "name": "EXTNET", "provider:physical_network": "dvportgroup-153", "admin_state_up": true, "tenant_id": "23726325200e42d2a6fab50b97cc16fc", "created_at": "2016-12-20T14:51:20", "tags": [], "updated_at": "2016-12-20T14:51:20", "provider:network_type": "portgroup", "router:external": false, "shared": false, "port_security_enabled": true, "provider:segmentation_id": 0, "id": "ad3364b5-5854-49aa-8c7d-c7c50a81df3c", "description": ""}}

Created a new network:

+---------------------------+--------------------------------------+

| Field                     | Value                                |

+---------------------------+--------------------------------------+

| admin_state_up            | True                                 |

| created_at                | 2016-12-20T14:51:20                  |

| description               |                                      |

| id                        | ad3364b5-5854-49aa-8c7d-c7c50a81df3c |

| name                      | EXTNET                               |

| port_security_enabled     | True                                 |

| provider:network_type     | portgroup                            |

| provider:physical_network | dvportgroup-153                      |

| provider:segmentation_id  | 0                                    |

| router:external           | False                                |

| shared                    | False                                |

| status                    | ACTIVE                               |

| subnets                   |                                      |

| tags                      |                                      |

| tenant_id                 | 23726325200e42d2a6fab50b97cc16fc     |

| updated_at                | 2016-12-20T14:51:20                  |

+---------------------------+--------------------------------------+

Reply
0 Kudos
lserpietri
Enthusiast
Enthusiast
‎12-21-2016 01:14 AM
Jump to solution

uhm, probably unrelated but which network provider are you using? NSX or DVS?

Reply
0 Kudos
Raza0073
Contributor
Contributor
‎12-21-2016 10:03 AM
Jump to solution

DVS

Reply
0 Kudos