Openstack Neutron provides by default some protections for your VMs' communications, those protections verify that VMs can not impersonate other VMs. You can easily see how it does that by checking the flow rules in an OVS deployment using: ovs-ofctl dump-flows br-int If you look for a certain qvo port (or the port number, depending … Continue reading Port security in Openstack
It always feels good to know that something I've tried to explain is actually helping people , this truly made my day
From the title, this is obviously a very common scenario that you may want to do. One thing that we rarely think about though is "backends" for the attached volumes when we create volumes. When you create a volume, the volume is created on a cinder backend and kept attached to this backend until it's … Continue reading Migrating VMs with attached RBDs
Openstack stores quota usage for tenants in the database in quota_usages table. Nova and cinder have by default their own separate databases and in each database you get a new quota_usages table. The structure of the quota_usages table is as follows +---------------+--------------+------+-----+---------+----------------+ | Field | Type | Null | Key | Default | Extra | … Continue reading Quota usage refresh in Openstack
Using CEPH as a backend for glance images has slowly become the default deployment methodology in many production deployments. It is usually as easy as creating a new pool in ceph ( glance pool) and creating a user to be associated with glance. The glance CEPH user will normally authenticate using cephx and store images … Continue reading Glance and CEPH backend
Cold migrations are an integral piece of any QEMU/KVM deployment. It's cold or "non-live" as you have to power down the VM, move it to the new host and power it back up. Openstack follows the same procedure when it comes to migrating VMs. Cold migrations in Openstack are done via the user running the … Continue reading VM Cold migrations/resizing in openstack
A tool that's less known-about for cinder is cinder-manage. You might have run into it during upgrades. The most common use case is cinder-manage db sync This is normally executed during upgrades to bring the database to the latest version, or to create the schema for a new installation. But there's actually additional usages for … Continue reading cinder-manage: Did you know about it ?
The Openstack User Group for Southwestern Ontario is finally here ! The group will focus on allowing Openstack users in the SWO area to exchange experiences and knowledge of Openstack as well as a way to socialise with fellow Openstackers If you'r in the area, join us . Events will be soon posted on the … Continue reading Openstack SWO User Group is here !
