[rhos-list] VLANs and metadata

Lutz Christoph lchristoph at arago.de
Mon Jul 15 18:15:25 UTC 2013


Hello!

I've set up a simple case (detailed in a previous mail) of a VLANed network. The router is in the switch. Of course it doesn't know anything about 169.254.169.254. But it gets the packets for that address:

19:48:18.399719 fa:16:3e:84:be:da > 00:00:5e:00:01:01, ethertype 802.1Q (0x8100), length 78: vlan 40, p 0, ethertype IPv4, 192.168.102.2.59526 > 169.254.169.254.http: Flags [S], seq 3099670947, win 14600, options [mss 1460,sackOK,TS val 121280 ecr 0,nop,wscale 6], length 0

If a router was involved, the iptables associated with that router would take care of this. But this is using a VLAN, so it only goes through OpenVSwitch, hitting (AFAIK) iptables between the two bridges.

So how does one redirect 169.254.169.254:80 to the metadata agent in this situation? I found some advice by googling that involves creating a 169.254.0.0/16 network, putting the metadata stuff there. But it didn't go beyond that, and while I may be able to do the network, I have no idea what to do on the Quantum, excuse me, Neutron side. I guess the metadata agent is not needed, only the Nova metadata proxy. Or maybe just redirect the request there in the global iptables?


Best regards / Mit freundlichen Gr??en
Lutz Christoph

--

Lutz Christoph

arago Institut f?r komplexes Datenmanagement AG

Eschersheimer Landstra?e 526 - 532
60433 Frankfurt am Main

eMail: lchristoph at arago.de - www: http://www.arago.de
Tel: 0172/6301004
Mobil: 0172/6301004

[http://www.arago.net/wp-content/uploads/2013/06/EmailSignatur1.png] <http://www.cloudops.de/>

--
Bankverbindung: Frankfurter Sparkasse, BLZ: 500 502 01, Kto.-Nr.: 79343
Vorstand: Hans-Christian Boos, Martin Friedrich
Vorsitzender des Aufsichtsrats: Dr. Bernhard Walther
Sitz: Kronberg im Taunus - HRB 5731 - Registergericht: K?nigstein i.Ts
Ust.Idnr. DE 178572359 - Steuernummer 2603 003 228 43435
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/rhos-list/attachments/20130715/d7b1f94b/attachment.htm>


More information about the rhos-list mailing list