创建instance_tenant_id_requires_admin_privileges
创建实例的时候报如下错误,不知如何解决?控制节点日志没报错:
[root@controller nova]# grep -i 'error' *.log
2015-05-14 11:15:36.428 6103 ERROR nova.scheduler.utils [req-ceb13406-3e1a-4607-9a08-a9e056aeacf2 None] [instance: 050b9439-d7f7-4358-999e-fffddce77051] Error from last host: computer1 (node computer1): [u'Traceback (most recent call last):n', u' File "/usr/lib/python2.7/site-packages/nova/compute/manager.py", line 2033, in _do_build_and_run_instancen filter_properties)n', u' File "/usr/lib/python2.7/site-packages/nova/compute/manager.py", line 2164, in _build_and_run_instancen instance_uuid=instance.uuid, reason=six.text_type(e))n', u"RescheduledException: Build of instance 050b9439-d7f7-4358-999e-fffddce77051 was re-scheduled: Specifying 'tenant_id' other than authenticated tenant in request requires admin privilegesn"]
2015-05-14 11:15:36.433 6103 INFO oslo.messaging._drivers.impl_rabbit [req-ceb13406-3e1a-4607-9a08-a9e056aeacf2 ] Connecting to AMQP server on 172.18.7.248:5672
2015-05-14 11:15:36.455 6103 INFO oslo.messaging._drivers.impl_rabbit [req-ceb13406-3e1a-4607-9a08-a9e056aeacf2 ] Connected to AMQP server on 172.18.7.248:5672
2015-05-14 11:15:36.487 6103 WARNING nova.scheduler.driver [req-ceb13406-3e1a-4607-9a08-a9e056aeacf2 None] [instance: 050b9439-d7f7-4358-999e-fffddce77051] NoValidHost exception with message: 'No valid host was found.'
2015-05-14 11:15:36.488 6103 WARNING nova.scheduler.driver [req-ceb13406-3e1a-4607-9a08-a9e056aeacf2 None] [instance: 050b9439-d7f7-4358-999e-fffddce77051] Setting instance to ERROR state.
计算节点日志:
[root@computer1 nova]# grep -i 'error' *.log
nova-compute.log:2015-05-12 02:32:06.064 22928 ERROR nova.network.neutronv2.api [-] [instance: 1ede19de-c103-4d60-8e00-3f783583423b] Neutron error creating port on network 4511a0dc-966c-46ec-99e1-418d4a3589b0
nova-compute.log:2015-05-12 02:32:06.064 22928 TRACE nova.network.neutronv2.api [instance: 1ede19de-c103-4d60-8e00-3f783583423b] exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 02:32:06.067 22928 ERROR nova.compute.manager [-] Instance failed network setup after 1 attempt(s)
nova-compute.log:2015-05-12 02:32:06.067 22928 TRACE nova.compute.manager exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 02:32:06.787 22928 ERROR nova.compute.manager [-] [instance: 1ede19de-c103-4d60-8e00-3f783583423b] Instance failed to spawn
nova-compute.log:2015-05-12 02:32:06.787 22928 TRACE nova.compute.manager [instance: 1ede19de-c103-4d60-8e00-3f783583423b] exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:00:55.447 22928 ERROR nova.network.neutronv2.api [-] [instance: 7c730977-c6b5-4f33-9a72-5b68bbce8a9c] Neutron error creating port on network 4511a0dc-966c-46ec-99e1-418d4a3589b0
nova-compute.log:2015-05-12 04:00:55.447 22928 TRACE nova.network.neutronv2.api [instance: 7c730977-c6b5-4f33-9a72-5b68bbce8a9c] exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:00:55.451 22928 ERROR nova.compute.manager [-] Instance failed network setup after 1 attempt(s)
nova-compute.log:2015-05-12 04:00:55.451 22928 TRACE nova.compute.manager exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:00:55.970 22928 ERROR nova.compute.manager [-] [instance: 7c730977-c6b5-4f33-9a72-5b68bbce8a9c] Instance failed to spawn
nova-compute.log:2015-05-12 04:00:55.970 22928 TRACE nova.compute.manager [instance: 7c730977-c6b5-4f33-9a72-5b68bbce8a9c] exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:03:56.917 22928 ERROR nova.network.neutronv2.api [-] [instance: 6f23ebde-32fa-4f56-b1d7-71ba24d341de] Neutron error creating port on network 4511a0dc-966c-46ec-99e1-418d4a3589b0
nova-compute.log:2015-05-12 04:03:56.917 22928 TRACE nova.network.neutronv2.api [instance: 6f23ebde-32fa-4f56-b1d7-71ba24d341de] exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:03:56.919 22928 ERROR nova.compute.manager [-] Instance failed network setup after 1 attempt(s)
nova-compute.log:2015-05-12 04:03:56.919 22928 TRACE nova.compute.manager exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:03:57.675 22928 ERROR nova.compute.manager [-] [instance: 6f23ebde-32fa-4f56-b1d7-71ba24d341de] Instance failed to spawn
keystone的list都是没问题的:
[root@svr248 openstack]# keystone tenant-list
+----------------------------------+---------+---------+
| id | name | enabled |
+----------------------------------+---------+---------+
| e19b357e67294cca8799379086e7bced | admin | True |
| 1c56213482864f7088c707aa9f30d6fd | demo | True |
| b368d26df37746419b232c6dd1b4ef33 | service | True |
+----------------------------------+---------+---------+
[root@svr248 openstack]# keystone user-list
+----------------------------------+---------+---------+-----------------+
| id | name | enabled | email |
+----------------------------------+---------+---------+-----------------+
| 44ccfec300eb4ae1a2aec17766c00037 | admin | True | jjqiu92@163.com |
| 7341eab474ce4da0bc5a06f3e69d50d9 | demo | True | jjqiu92@163.com |
| 030fafb751a64e0c88ff792eed0400b7 | glance | True | |
| b12c3b7f6a794fe7a649dadf1eea977d | neutron | True | |
| 1cc2a11c43474506acac95226d607538 | nova | True | |
+----------------------------------+---------+---------+-----------------+
[root@svr248 openstack]# keystone role-list
+----------------------------------+----------+
| id | name |
+----------------------------------+----------+
| faf84eb40c5a47f68606282c800188db | _member_ |
| 4f765a4ed1414a40a25610602a6b0870 | admin |
+----------------------------------+----------+
[root@svr248 openstack]# keystone user-role-list --tenant admin --user admin
+----------------------------------+----------+----------------------------------+----------------------------------+
| id | name | user_id | tenant_id |
+----------------------------------+----------+----------------------------------+----------------------------------+
| faf84eb40c5a47f68606282c800188db | _member_ | 44ccfec300eb4ae1a2aec17766c00037 | e19b357e67294cca8799379086e7bced |
| 4f765a4ed1414a40a25610602a6b0870 | admin | 44ccfec300eb4ae1a2aec17766c00037 | e19b357e67294cca8799379086e7bced |
+----------------------------------+----------+----------------------------------+----------------------------------+
[root@svr248 openstack]# keystone user-role-list --tenant demo --user demo
+----------------------------------+----------+----------------------------------+----------------------------------+
| id | name | user_id | tenant_id |
+----------------------------------+----------+----------------------------------+----------------------------------+
| faf84eb40c5a47f68606282c800188db | _member_ | 7341eab474ce4da0bc5a06f3e69d50d9 | 1c56213482864f7088c707aa9f30d6fd |
+----------------------------------+----------+----------------------------------+----------------------------------+
[root@controller openstack]# unset OS_SERVICE_TOKEN OS_SERVICE_ENDPOINT
[root@controller openstack]# keystone --os-tenant-name admin --os-username admin --os-password ADMIN_PASS --os-auth-url http://172.18.7.248:35357/v2.0 token-get
+-----------+----------------------------------+
| Property | Value |
+-----------+----------------------------------+
| expires | 2015-05-13T04:28:20Z |
| id | 0de06551137c49209482a223dab82798 |
| tenant_id | e19b357e67294cca8799379086e7bced |
| user_id | 44ccfec300eb4ae1a2aec17766c00037 |
+-----------+----------------------------------+
[root@controller openstack]# keystone --os-tenant-name admin --os-username admin --os-password ADMIN_PASS --os-auth-url http://172.18.7.248:35357/v2.0 tenant-list
+----------------------------------+---------+---------+
| id | name | enabled |
+----------------------------------+---------+---------+
| e19b357e67294cca8799379086e7bced | admin | True |
| 1c56213482864f7088c707aa9f30d6fd | demo | True |
| b368d26df37746419b232c6dd1b4ef33 | service | True |
+----------------------------------+---------+---------+
[root@controller openstack]# keystone --os-tenant-name admin --os-username admin --os-password ADMIN_PASS --os-auth-url http://172.18.7.248:35357/v2.0 user-list
+----------------------------------+---------+---------+-----------------+
| id | name | enabled | email |
+----------------------------------+---------+---------+-----------------+
| 44ccfec300eb4ae1a2aec17766c00037 | admin | True | jjqiu92@163.com |
| 4df05045ef054f21a16224e8791df606 | cinder | True | |
| 154e2b61c31846f5a4a227153719f496 | demo | True | jjqiu92@163.com |
| 030fafb751a64e0c88ff792eed0400b7 | glance | True | |
| b12c3b7f6a794fe7a649dadf1eea977d | neutron | True | |
| 1cc2a11c43474506acac95226d607538 | nova | True | |
| a99f5b638178488e8619da8452d47ef0 | swift | True | |
+----------------------------------+---------+---------+-----------------+
[root@controller openstack]# keystone --os-tenant-name admin --os-username admin --os-password ADMIN_PASS --os-auth-url http://172.18.7.248:35357/v2.0 role-list
+----------------------------------+----------+
| id | name |
+----------------------------------+----------+
| faf84eb40c5a47f68606282c800188db | _member_ |
| 4f765a4ed1414a40a25610602a6b0870 | admin |
+----------------------------------+----------+
[root@controller openstack]# keystone --os-tenant-name demo --os-username demo --os-password DEMO_PASS --os-auth-url http://172.18.7.248:35357/v2.0 token-get
+-----------+----------------------------------+
| Property | Value |
+-----------+----------------------------------+
| expires | 2015-05-13T04:29:37Z |
| id | 15d351668d3c4e6791b435568085414e |
| tenant_id | 1c56213482864f7088c707aa9f30d6fd |
| user_id | 154e2b61c31846f5a4a227153719f496 |
+-----------+----------------------------------+
[root@controller openstack]# keystone --os-tenant-name demo --os-username demo --os-password DEMO_PASS --os-auth-url http://172.18.7.248:35357/v2.0 user-list
You are not authorized to perform the requested action: admin_required (HTTP 403)
[root@controller openstack]#
[root@controller nova]# grep -i 'error' *.log
2015-05-14 11:15:36.428 6103 ERROR nova.scheduler.utils [req-ceb13406-3e1a-4607-9a08-a9e056aeacf2 None] [instance: 050b9439-d7f7-4358-999e-fffddce77051] Error from last host: computer1 (node computer1): [u'Traceback (most recent call last):n', u' File "/usr/lib/python2.7/site-packages/nova/compute/manager.py", line 2033, in _do_build_and_run_instancen filter_properties)n', u' File "/usr/lib/python2.7/site-packages/nova/compute/manager.py", line 2164, in _build_and_run_instancen instance_uuid=instance.uuid, reason=six.text_type(e))n', u"RescheduledException: Build of instance 050b9439-d7f7-4358-999e-fffddce77051 was re-scheduled: Specifying 'tenant_id' other than authenticated tenant in request requires admin privilegesn"]
2015-05-14 11:15:36.433 6103 INFO oslo.messaging._drivers.impl_rabbit [req-ceb13406-3e1a-4607-9a08-a9e056aeacf2 ] Connecting to AMQP server on 172.18.7.248:5672
2015-05-14 11:15:36.455 6103 INFO oslo.messaging._drivers.impl_rabbit [req-ceb13406-3e1a-4607-9a08-a9e056aeacf2 ] Connected to AMQP server on 172.18.7.248:5672
2015-05-14 11:15:36.487 6103 WARNING nova.scheduler.driver [req-ceb13406-3e1a-4607-9a08-a9e056aeacf2 None] [instance: 050b9439-d7f7-4358-999e-fffddce77051] NoValidHost exception with message: 'No valid host was found.'
2015-05-14 11:15:36.488 6103 WARNING nova.scheduler.driver [req-ceb13406-3e1a-4607-9a08-a9e056aeacf2 None] [instance: 050b9439-d7f7-4358-999e-fffddce77051] Setting instance to ERROR state.
计算节点日志:
[root@computer1 nova]# grep -i 'error' *.log
nova-compute.log:2015-05-12 02:32:06.064 22928 ERROR nova.network.neutronv2.api [-] [instance: 1ede19de-c103-4d60-8e00-3f783583423b] Neutron error creating port on network 4511a0dc-966c-46ec-99e1-418d4a3589b0
nova-compute.log:2015-05-12 02:32:06.064 22928 TRACE nova.network.neutronv2.api [instance: 1ede19de-c103-4d60-8e00-3f783583423b] exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 02:32:06.067 22928 ERROR nova.compute.manager [-] Instance failed network setup after 1 attempt(s)
nova-compute.log:2015-05-12 02:32:06.067 22928 TRACE nova.compute.manager exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 02:32:06.787 22928 ERROR nova.compute.manager [-] [instance: 1ede19de-c103-4d60-8e00-3f783583423b] Instance failed to spawn
nova-compute.log:2015-05-12 02:32:06.787 22928 TRACE nova.compute.manager [instance: 1ede19de-c103-4d60-8e00-3f783583423b] exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:00:55.447 22928 ERROR nova.network.neutronv2.api [-] [instance: 7c730977-c6b5-4f33-9a72-5b68bbce8a9c] Neutron error creating port on network 4511a0dc-966c-46ec-99e1-418d4a3589b0
nova-compute.log:2015-05-12 04:00:55.447 22928 TRACE nova.network.neutronv2.api [instance: 7c730977-c6b5-4f33-9a72-5b68bbce8a9c] exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:00:55.451 22928 ERROR nova.compute.manager [-] Instance failed network setup after 1 attempt(s)
nova-compute.log:2015-05-12 04:00:55.451 22928 TRACE nova.compute.manager exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:00:55.970 22928 ERROR nova.compute.manager [-] [instance: 7c730977-c6b5-4f33-9a72-5b68bbce8a9c] Instance failed to spawn
nova-compute.log:2015-05-12 04:00:55.970 22928 TRACE nova.compute.manager [instance: 7c730977-c6b5-4f33-9a72-5b68bbce8a9c] exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:03:56.917 22928 ERROR nova.network.neutronv2.api [-] [instance: 6f23ebde-32fa-4f56-b1d7-71ba24d341de] Neutron error creating port on network 4511a0dc-966c-46ec-99e1-418d4a3589b0
nova-compute.log:2015-05-12 04:03:56.917 22928 TRACE nova.network.neutronv2.api [instance: 6f23ebde-32fa-4f56-b1d7-71ba24d341de] exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:03:56.919 22928 ERROR nova.compute.manager [-] Instance failed network setup after 1 attempt(s)
nova-compute.log:2015-05-12 04:03:56.919 22928 TRACE nova.compute.manager exception_handler_v20(status_code, des_error_body)
nova-compute.log:2015-05-12 04:03:57.675 22928 ERROR nova.compute.manager [-] [instance: 6f23ebde-32fa-4f56-b1d7-71ba24d341de] Instance failed to spawn
keystone的list都是没问题的:
[root@svr248 openstack]# keystone tenant-list
+----------------------------------+---------+---------+
| id | name | enabled |
+----------------------------------+---------+---------+
| e19b357e67294cca8799379086e7bced | admin | True |
| 1c56213482864f7088c707aa9f30d6fd | demo | True |
| b368d26df37746419b232c6dd1b4ef33 | service | True |
+----------------------------------+---------+---------+
[root@svr248 openstack]# keystone user-list
+----------------------------------+---------+---------+-----------------+
| id | name | enabled | email |
+----------------------------------+---------+---------+-----------------+
| 44ccfec300eb4ae1a2aec17766c00037 | admin | True | jjqiu92@163.com |
| 7341eab474ce4da0bc5a06f3e69d50d9 | demo | True | jjqiu92@163.com |
| 030fafb751a64e0c88ff792eed0400b7 | glance | True | |
| b12c3b7f6a794fe7a649dadf1eea977d | neutron | True | |
| 1cc2a11c43474506acac95226d607538 | nova | True | |
+----------------------------------+---------+---------+-----------------+
[root@svr248 openstack]# keystone role-list
+----------------------------------+----------+
| id | name |
+----------------------------------+----------+
| faf84eb40c5a47f68606282c800188db | _member_ |
| 4f765a4ed1414a40a25610602a6b0870 | admin |
+----------------------------------+----------+
[root@svr248 openstack]# keystone user-role-list --tenant admin --user admin
+----------------------------------+----------+----------------------------------+----------------------------------+
| id | name | user_id | tenant_id |
+----------------------------------+----------+----------------------------------+----------------------------------+
| faf84eb40c5a47f68606282c800188db | _member_ | 44ccfec300eb4ae1a2aec17766c00037 | e19b357e67294cca8799379086e7bced |
| 4f765a4ed1414a40a25610602a6b0870 | admin | 44ccfec300eb4ae1a2aec17766c00037 | e19b357e67294cca8799379086e7bced |
+----------------------------------+----------+----------------------------------+----------------------------------+
[root@svr248 openstack]# keystone user-role-list --tenant demo --user demo
+----------------------------------+----------+----------------------------------+----------------------------------+
| id | name | user_id | tenant_id |
+----------------------------------+----------+----------------------------------+----------------------------------+
| faf84eb40c5a47f68606282c800188db | _member_ | 7341eab474ce4da0bc5a06f3e69d50d9 | 1c56213482864f7088c707aa9f30d6fd |
+----------------------------------+----------+----------------------------------+----------------------------------+
[root@controller openstack]# unset OS_SERVICE_TOKEN OS_SERVICE_ENDPOINT
[root@controller openstack]# keystone --os-tenant-name admin --os-username admin --os-password ADMIN_PASS --os-auth-url http://172.18.7.248:35357/v2.0 token-get
+-----------+----------------------------------+
| Property | Value |
+-----------+----------------------------------+
| expires | 2015-05-13T04:28:20Z |
| id | 0de06551137c49209482a223dab82798 |
| tenant_id | e19b357e67294cca8799379086e7bced |
| user_id | 44ccfec300eb4ae1a2aec17766c00037 |
+-----------+----------------------------------+
[root@controller openstack]# keystone --os-tenant-name admin --os-username admin --os-password ADMIN_PASS --os-auth-url http://172.18.7.248:35357/v2.0 tenant-list
+----------------------------------+---------+---------+
| id | name | enabled |
+----------------------------------+---------+---------+
| e19b357e67294cca8799379086e7bced | admin | True |
| 1c56213482864f7088c707aa9f30d6fd | demo | True |
| b368d26df37746419b232c6dd1b4ef33 | service | True |
+----------------------------------+---------+---------+
[root@controller openstack]# keystone --os-tenant-name admin --os-username admin --os-password ADMIN_PASS --os-auth-url http://172.18.7.248:35357/v2.0 user-list
+----------------------------------+---------+---------+-----------------+
| id | name | enabled | email |
+----------------------------------+---------+---------+-----------------+
| 44ccfec300eb4ae1a2aec17766c00037 | admin | True | jjqiu92@163.com |
| 4df05045ef054f21a16224e8791df606 | cinder | True | |
| 154e2b61c31846f5a4a227153719f496 | demo | True | jjqiu92@163.com |
| 030fafb751a64e0c88ff792eed0400b7 | glance | True | |
| b12c3b7f6a794fe7a649dadf1eea977d | neutron | True | |
| 1cc2a11c43474506acac95226d607538 | nova | True | |
| a99f5b638178488e8619da8452d47ef0 | swift | True | |
+----------------------------------+---------+---------+-----------------+
[root@controller openstack]# keystone --os-tenant-name admin --os-username admin --os-password ADMIN_PASS --os-auth-url http://172.18.7.248:35357/v2.0 role-list
+----------------------------------+----------+
| id | name |
+----------------------------------+----------+
| faf84eb40c5a47f68606282c800188db | _member_ |
| 4f765a4ed1414a40a25610602a6b0870 | admin |
+----------------------------------+----------+
[root@controller openstack]# keystone --os-tenant-name demo --os-username demo --os-password DEMO_PASS --os-auth-url http://172.18.7.248:35357/v2.0 token-get
+-----------+----------------------------------+
| Property | Value |
+-----------+----------------------------------+
| expires | 2015-05-13T04:29:37Z |
| id | 15d351668d3c4e6791b435568085414e |
| tenant_id | 1c56213482864f7088c707aa9f30d6fd |
| user_id | 154e2b61c31846f5a4a227153719f496 |
+-----------+----------------------------------+
[root@controller openstack]# keystone --os-tenant-name demo --os-username demo --os-password DEMO_PASS --os-auth-url http://172.18.7.248:35357/v2.0 user-list
You are not authorized to perform the requested action: admin_required (HTTP 403)
[root@controller openstack]#
10同行回答
看日志可能和neutron有关系,你检查下 计算节点上面 neutron的配置文件收起
浏览5110
哥们,你在命令行用nova boot启动一个虚拟机,加上--debug,把信息贴上来.收起
浏览5071
浏览4839
因为线索太少,建议你检查一下各个地方关于service(Services)的配置,我感觉跟这个东西有关系。
有些文档上面是用的services,有些文档是service,还有些是用的my_service,等等不一样。
怀疑配置有误
另外一点,垃圾一定要清,许多时候垃圾会影响判断。收起
有些文档上面是用的services,有些文档是service,还有些是用的my_service,等等不一样。
怀疑配置有误
另外一点,垃圾一定要清,许多时候垃圾会影响判断。收起
浏览4965
svr248是controller机器之前的主机名,我不知道怎么删除svr248的行,不过不用管它,应该不影响建实例。computer-node1是computer1之前的主机名,也不用管。
[root@controller openstack]# . ./admin-openrc.sh
[root@controller openstack]# nova service-list
+----+------------------+----------------+----------+---------+-------+----------------------------+-----------------+
| Id | Binary | Host | Zone | Status | State | Updated_at | Disabled Reason |
+----+------------------+----------------+----------+---------+-------+----------------------------+-----------------+
| 1 | nova-conductor | svr248 | internal | enabled | down | 2015-05-11T10:19:42.000000 | - |
| 2 | nova-consoleauth | svr248 | internal | enabled | down | 2015-05-11T10:19:44.000000 | - |
| 3 | nova-scheduler | svr248 | internal | enabled | down | 2015-05-11T10:19:43.000000 | - |
| 4 | nova-cert | svr248 | internal | enabled | down | 2015-05-11T10:19:45.000000 | - |
| 5 | nova-compute | computer-node1 | nova | enabled | down | 2015-05-05T06:00:38.000000 | None |
| 6 | nova-compute | svr248 | nova | enabled | down | 2015-05-11T10:19:41.000000 | None |
| 7 | nova-network | svr248 | internal | enabled | down | 2015-05-11T10:19:44.000000 | - |
| 8 | nova-compute | computer1 | nova | enabled | up | 2015-05-14T01:33:35.000000 | None |
| 9 | nova-network | computer1 | internal | enabled | down | 2015-05-05T08:33:17.000000 | - |
| 10 | nova-conductor | controller | internal | enabled | up | 2015-05-14T01:33:28.000000 | - |
| 11 | nova-consoleauth | controller | internal | enabled | up | 2015-05-14T01:33:37.000000 | - |
| 12 | nova-cert | controller | internal | enabled | up | 2015-05-14T01:33:29.000000 | - |
| 13 | nova-scheduler | controller | internal | enabled | up | 2015-05-14T01:33:35.000000 | - |
| 14 | nova-network | controller | internal | enabled | down | 2015-05-12T09:32:26.000000 | - |
+----+------------------+----------------+----------+---------+-------+----------------------------+-----------------+
[root@controller openstack]# ping controller
PING controller (172.18.7.248) 56(84) bytes of data.
64 bytes from controller (172.18.7.248): icmp_seq=1 ttl=64 time=0.086 ms
64 bytes from controller (172.18.7.248): icmp_seq=2 ttl=64 time=0.047 ms
^C
--- controller ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1000ms
rtt min/avg/max/mdev = 0.047/0.066/0.086/0.021 ms
[root@controller openstack]# ping computer1
PING computer1 (172.18.7.245) 56(84) bytes of data.
64 bytes from computer1 (172.18.7.245): icmp_seq=1 ttl=64 time=0.758 ms
64 bytes from computer1 (172.18.7.245): icmp_seq=2 ttl=64 time=0.588 ms
^C
--- computer1 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1000ms
rtt min/avg/max/mdev = 0.588/0.673/0.758/0.085 ms
[root@controller openstack]# cat /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
172.18.7.248 controller
172.18.7.245 computer1
172.18.7.246 network
172.18.7.244 storage1
172.18.7.242 storage2收起
[root@controller openstack]# . ./admin-openrc.sh
[root@controller openstack]# nova service-list
+----+------------------+----------------+----------+---------+-------+----------------------------+-----------------+
| Id | Binary | Host | Zone | Status | State | Updated_at | Disabled Reason |
+----+------------------+----------------+----------+---------+-------+----------------------------+-----------------+
| 1 | nova-conductor | svr248 | internal | enabled | down | 2015-05-11T10:19:42.000000 | - |
| 2 | nova-consoleauth | svr248 | internal | enabled | down | 2015-05-11T10:19:44.000000 | - |
| 3 | nova-scheduler | svr248 | internal | enabled | down | 2015-05-11T10:19:43.000000 | - |
| 4 | nova-cert | svr248 | internal | enabled | down | 2015-05-11T10:19:45.000000 | - |
| 5 | nova-compute | computer-node1 | nova | enabled | down | 2015-05-05T06:00:38.000000 | None |
| 6 | nova-compute | svr248 | nova | enabled | down | 2015-05-11T10:19:41.000000 | None |
| 7 | nova-network | svr248 | internal | enabled | down | 2015-05-11T10:19:44.000000 | - |
| 8 | nova-compute | computer1 | nova | enabled | up | 2015-05-14T01:33:35.000000 | None |
| 9 | nova-network | computer1 | internal | enabled | down | 2015-05-05T08:33:17.000000 | - |
| 10 | nova-conductor | controller | internal | enabled | up | 2015-05-14T01:33:28.000000 | - |
| 11 | nova-consoleauth | controller | internal | enabled | up | 2015-05-14T01:33:37.000000 | - |
| 12 | nova-cert | controller | internal | enabled | up | 2015-05-14T01:33:29.000000 | - |
| 13 | nova-scheduler | controller | internal | enabled | up | 2015-05-14T01:33:35.000000 | - |
| 14 | nova-network | controller | internal | enabled | down | 2015-05-12T09:32:26.000000 | - |
+----+------------------+----------------+----------+---------+-------+----------------------------+-----------------+
[root@controller openstack]# ping controller
PING controller (172.18.7.248) 56(84) bytes of data.
64 bytes from controller (172.18.7.248): icmp_seq=1 ttl=64 time=0.086 ms
64 bytes from controller (172.18.7.248): icmp_seq=2 ttl=64 time=0.047 ms
^C
--- controller ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1000ms
rtt min/avg/max/mdev = 0.047/0.066/0.086/0.021 ms
[root@controller openstack]# ping computer1
PING computer1 (172.18.7.245) 56(84) bytes of data.
64 bytes from computer1 (172.18.7.245): icmp_seq=1 ttl=64 time=0.758 ms
64 bytes from computer1 (172.18.7.245): icmp_seq=2 ttl=64 time=0.588 ms
^C
--- computer1 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1000ms
rtt min/avg/max/mdev = 0.588/0.673/0.758/0.085 ms
[root@controller openstack]# cat /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
172.18.7.248 controller
172.18.7.245 computer1
172.18.7.246 network
172.18.7.244 storage1
172.18.7.242 storage2收起
浏览4933
neutron也没问题的。心堵得慌:[root@controller openstack]# . ./demo-openrc.sh
[root@controller openstack]# neutron net-list
+--------------------------------------+----------+-----------------------------------------------------+
| id | name | subnets |
+--------------------------------------+----------+-----------------------------------------------------+
| 4511a0dc-966c-46ec-99e1-418d4a3589b0 | demo-net | 75280f92-25bb-4e7f-9af9-8e75186b3db6 192.168.1.0/24 |
| 8ce4a28a-0997-471d-b3e1-4e9b5c02fc37 | ext-net | c0068d8a-b278-4b09-8354-4e90daa5d82b 172.18.7.0/24 |
+--------------------------------------+----------+-----------------------------------------------------+
[root@controller openstack]# neutron subnet-list
+--------------------------------------+-------------+----------------+--------------------------------------------------+
| id | name | cidr | allocation_pools |
+--------------------------------------+-------------+----------------+--------------------------------------------------+
| 75280f92-25bb-4e7f-9af9-8e75186b3db6 | demo-subnet | 192.168.1.0/24 | {"start": "192.168.1.2", "end": "192.168.1.254"} |
| c0068d8a-b278-4b09-8354-4e90daa5d82b | ext-subnet | 172.18.7.0/24 | {"start": "172.18.7.80", "end": "172.18.7.99"} |
+--------------------------------------+-------------+----------------+--------------------------------------------------+
[root@controller openstack]# ping -c 4 172.18.7.80
PING 172.18.7.80 (172.18.7.80) 56(84) bytes of data.
64 bytes from 172.18.7.80: icmp_seq=1 ttl=64 time=4.37 ms
64 bytes from 172.18.7.80: icmp_seq=2 ttl=64 time=0.776 ms
64 bytes from 172.18.7.80: icmp_seq=3 ttl=64 time=0.640 ms
64 bytes from 172.18.7.80: icmp_seq=4 ttl=64 time=0.739 ms
--- 172.18.7.80 ping statistics ---
4 packets transmitted, 4 received, 0% packet loss, time 3001ms
rtt min/avg/max/mdev = 0.640/1.632/4.375/1.584 ms
[root@controller openstack]# neutron router-list
+--------------------------------------+-------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| id | name | external_gateway_info |
+--------------------------------------+-------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| 98fd4452-128e-4881-b6f5-6b761ddd2c62 | demo-router | {"network_id": "8ce4a28a-0997-471d-b3e1-4e9b5c02fc37", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "c0068d8a-b278-4b09-8354-4e90daa5d82b", "ip_address": "172.18.7.80"}]} |
+--------------------------------------+-------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
[root@controller openstack]#
收起
[root@controller openstack]# neutron net-list
+--------------------------------------+----------+-----------------------------------------------------+
| id | name | subnets |
+--------------------------------------+----------+-----------------------------------------------------+
| 4511a0dc-966c-46ec-99e1-418d4a3589b0 | demo-net | 75280f92-25bb-4e7f-9af9-8e75186b3db6 192.168.1.0/24 |
| 8ce4a28a-0997-471d-b3e1-4e9b5c02fc37 | ext-net | c0068d8a-b278-4b09-8354-4e90daa5d82b 172.18.7.0/24 |
+--------------------------------------+----------+-----------------------------------------------------+
[root@controller openstack]# neutron subnet-list
+--------------------------------------+-------------+----------------+--------------------------------------------------+
| id | name | cidr | allocation_pools |
+--------------------------------------+-------------+----------------+--------------------------------------------------+
| 75280f92-25bb-4e7f-9af9-8e75186b3db6 | demo-subnet | 192.168.1.0/24 | {"start": "192.168.1.2", "end": "192.168.1.254"} |
| c0068d8a-b278-4b09-8354-4e90daa5d82b | ext-subnet | 172.18.7.0/24 | {"start": "172.18.7.80", "end": "172.18.7.99"} |
+--------------------------------------+-------------+----------------+--------------------------------------------------+
[root@controller openstack]# ping -c 4 172.18.7.80
PING 172.18.7.80 (172.18.7.80) 56(84) bytes of data.
64 bytes from 172.18.7.80: icmp_seq=1 ttl=64 time=4.37 ms
64 bytes from 172.18.7.80: icmp_seq=2 ttl=64 time=0.776 ms
64 bytes from 172.18.7.80: icmp_seq=3 ttl=64 time=0.640 ms
64 bytes from 172.18.7.80: icmp_seq=4 ttl=64 time=0.739 ms
--- 172.18.7.80 ping statistics ---
4 packets transmitted, 4 received, 0% packet loss, time 3001ms
rtt min/avg/max/mdev = 0.640/1.632/4.375/1.584 ms
[root@controller openstack]# neutron router-list
+--------------------------------------+-------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| id | name | external_gateway_info |
+--------------------------------------+-------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| 98fd4452-128e-4881-b6f5-6b761ddd2c62 | demo-router | {"network_id": "8ce4a28a-0997-471d-b3e1-4e9b5c02fc37", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "c0068d8a-b278-4b09-8354-4e90daa5d82b", "ip_address": "172.18.7.80"}]} |
+--------------------------------------+-------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
[root@controller openstack]#
收起
浏览4864
官方文档做到这步也是没权限user-list的,应该是正常的,因为demo用户确实只能get token,不能list。
[root@controller openstack]# keystone --os-tenant-name demo --os-username demo --os-password DEMO_PASS --os-auth-url http://172.18.7.248:35357/v2.0 user-list
You are not authorized to perform the requested action: admin_required (HTTP 403)
[root@controller openstack]#
+-----------+----------------------------------+收起
[root@controller openstack]# keystone --os-tenant-name demo --os-username demo --os-password DEMO_PASS --os-auth-url http://172.18.7.248:35357/v2.0 user-list
You are not authorized to perform the requested action: admin_required (HTTP 403)
[root@controller openstack]#
+-----------+----------------------------------+收起
浏览4946