私有 openstrack 云上的 juju bootstrap 失败

私有 openstrack 云上的 juju bootstrap 失败

我想在我的 Openstack 云上部署 juju。我面临的问题是 juju bootstrap 每次都会给出超时错误。分配给实例的浮动 IP 无法 ssh。它要么说找不到到主机的路由,要么说连接被拒绝,要么说权限被拒绝。我的 environment.ymal 文件是:openstack:类型:openstack

    # use-floating-ip specifies whether a floating IP address is
    # required to give the nodes a public IP address. Some
    # installations assign public IP addresses by default without
    # requiring a floating IP address.
    #
    use-floating-ip: true

    # use-default-secgroup specifies whether new machine instances
    # should have the "default" Openstack security group assigned.
    #
    use-default-secgroup: true

    # network specifies the network label or uuid to bring machines up
    # on, in the case where multiple networks exist. It may be omitted
    # otherwise.
    #
    # network: 3db0da69-c062-48a3-b441-98308161d779

    # agent-metadata-url specifies the location of the Juju tools and
    # metadata. It defaults to the global public tools metadata
    # location https://streams.canonical.com/tools.
    # 'http://controller:8080/v1/AUTH_%(tenant_id)s/simplestreams/tools/' 
    agent-metadata-url: 'http://controller:8080/v1/AUTH_%(tenant_id)s/simplestreams/tools/'

    # image-metadata-url specifies the location of Ubuntu cloud image
    # metadata. It defaults to the global public image metadata
    # location https://cloud-images.ubuntu.com/releases.
    #'http://controller:8080/v1/AUTH_%(tenant_id)s/simplestreams/images/'
    image-metadata-url: 'http://controller:8080/v1/AUTH_%(tenant_id)s/simplestreams/images/'

    # image-stream chooses a simplestreams stream from which to select
    # OS images, for example daily or released images (or any other stream
    # available on simplestreams).
    #
    image-stream: "released"

    # agent-stream chooses a simplestreams stream from which to select tools,
    # for example released or proposed tools (or any other stream available
    # on simplestreams).
    #
    agent-stream: "released"

    # auth-url defaults to the value of the environment variable
    # OS_AUTH_URL, but can be specified here.
    #
    auth-url: http://controller:5000/v2.0

    # tenant-name holds the openstack tenant name. It defaults to the
    # environment variable OS_TENANT_NAME.
    #
    tenant-name: demo

    # region holds the openstack region. It defaults to the
    # environment variable OS_REGION_NAME.
    #
    region: regionOne

    # The auth-mode, username and password attributes are used for
    # userpass authentication (the default).
    #
    # auth-mode holds the authentication mode. For user-password
    # authentication, auth-mode should be "userpass" and username and
    # password should be set appropriately; they default to the
    # environment variables OS_USERNAME and OS_PASSWORD respectively.
    #
    auth-mode: userpass
    username: demo
    password: ***********

    # For key-pair authentication, auth-mode should be "keypair" and
    # access-key and secret-key should be set appropriately; they
    # default to the environment variables OS_ACCESS_KEY and
    # OS_SECRET_KEY respectively.
    #
    # auth-mode: keypair
    # access-key: <secret>
    # secret-key: <secret>

    # Whether or not to refresh the list of available updates for an
    # OS. The default option of true is recommended for use in
    # production systems, but disabling this can speed up local
    # deployments for development or testing.
    #
    enable-os-refresh-update: false

    # Whether or not to perform OS upgrades when machines are
    # provisioned. The default option of true is recommended for use
    # in production systems, but disabling this can speed up local
    # deployments for development or testing.
    #
    enable-os-upgrade: false

# https://juju.ubuntu.com/docs/config-hpcloud.html

juju bootstrap --debug 的输出是:https://paste.ubuntu.com/24468475/

答案1

我认为这是关于 openstack 中的安全组,您应该在引导控制器时添加默认安全组。

相关内容