我想在我的 Openstack 云上部署 juju。我面临的问题是 juju bootstrap 每次都会给出超时错误。分配给实例的浮动 IP 无法 ssh。它要么说找不到到主机的路由,要么说连接被拒绝,要么说权限被拒绝。我的 environment.ymal 文件是:openstack:类型:openstack
# use-floating-ip specifies whether a floating IP address is
# required to give the nodes a public IP address. Some
# installations assign public IP addresses by default without
# requiring a floating IP address.
#
use-floating-ip: true
# use-default-secgroup specifies whether new machine instances
# should have the "default" Openstack security group assigned.
#
use-default-secgroup: true
# network specifies the network label or uuid to bring machines up
# on, in the case where multiple networks exist. It may be omitted
# otherwise.
#
# network: 3db0da69-c062-48a3-b441-98308161d779
# agent-metadata-url specifies the location of the Juju tools and
# metadata. It defaults to the global public tools metadata
# location https://streams.canonical.com/tools.
# 'http://controller:8080/v1/AUTH_%(tenant_id)s/simplestreams/tools/'
agent-metadata-url: 'http://controller:8080/v1/AUTH_%(tenant_id)s/simplestreams/tools/'
# image-metadata-url specifies the location of Ubuntu cloud image
# metadata. It defaults to the global public image metadata
# location https://cloud-images.ubuntu.com/releases.
#'http://controller:8080/v1/AUTH_%(tenant_id)s/simplestreams/images/'
image-metadata-url: 'http://controller:8080/v1/AUTH_%(tenant_id)s/simplestreams/images/'
# image-stream chooses a simplestreams stream from which to select
# OS images, for example daily or released images (or any other stream
# available on simplestreams).
#
image-stream: "released"
# agent-stream chooses a simplestreams stream from which to select tools,
# for example released or proposed tools (or any other stream available
# on simplestreams).
#
agent-stream: "released"
# auth-url defaults to the value of the environment variable
# OS_AUTH_URL, but can be specified here.
#
auth-url: http://controller:5000/v2.0
# tenant-name holds the openstack tenant name. It defaults to the
# environment variable OS_TENANT_NAME.
#
tenant-name: demo
# region holds the openstack region. It defaults to the
# environment variable OS_REGION_NAME.
#
region: regionOne
# The auth-mode, username and password attributes are used for
# userpass authentication (the default).
#
# auth-mode holds the authentication mode. For user-password
# authentication, auth-mode should be "userpass" and username and
# password should be set appropriately; they default to the
# environment variables OS_USERNAME and OS_PASSWORD respectively.
#
auth-mode: userpass
username: demo
password: ***********
# For key-pair authentication, auth-mode should be "keypair" and
# access-key and secret-key should be set appropriately; they
# default to the environment variables OS_ACCESS_KEY and
# OS_SECRET_KEY respectively.
#
# auth-mode: keypair
# access-key: <secret>
# secret-key: <secret>
# Whether or not to refresh the list of available updates for an
# OS. The default option of true is recommended for use in
# production systems, but disabling this can speed up local
# deployments for development or testing.
#
enable-os-refresh-update: false
# Whether or not to perform OS upgrades when machines are
# provisioned. The default option of true is recommended for use
# in production systems, but disabling this can speed up local
# deployments for development or testing.
#
enable-os-upgrade: false
# https://juju.ubuntu.com/docs/config-hpcloud.html
juju bootstrap --debug 的输出是:https://paste.ubuntu.com/24468475/
答案1
我认为这是关于 openstack 中的安全组,您应该在引导控制器时添加默认安全组。