允许在 pfSense 防火墙后面的 OpenStack 上进行虚拟实例

tag-icon tag-icon pfsense openstack
允许在 pfSense 防火墙后面的 OpenStack 上进行虚拟实例

我在 CentOS 7 上使用 Packstack 部署了 OpenStack Queens。我的网络有一个 pfSense 防火墙。我启动了一个实例并将一个浮动 IP 关联到它。但当我尝试 ping 它时,它显示“目标不可用”。

我尝试向 pfSense 添加一个条目,其中包含我的实例的 mac 地址和分配的浮动 IP,但似乎仍然不起作用。我希望我的虚拟实例在我的网络中可用。

My physical network: 172.16.0.0/16.
Gateway: 172.16.0.1  
IP of my physical node(static): 172.16.9.24
Floating IP assigned: 172.16.9.65
IP of router to external network: 172.16.9.67

我的 ifcfg-br-ex 文件:

DEVICE="br-ex"
DEVICETYPE=ovs
TYPE=OVSBridge
ONBOOT=yes
IPV6INIT=no
BOOTPROTO=none
DNS1=172.16.0.1
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
IPADDR=172.16.9.24
PREFIX=16
GATEWAY=172.16.0.1

我的 ifcfg-p4p1 文件:

NAME="p4p1"
DEVICE="p4p1"
ONBOOT=yes
IPV6INIT=no
BOOTPROTO=none
DEVICETYPE=ovs
TYPE=OVSPort
OVS_BRIDGE=br-ex

my ifconfig output :

````br-ex: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 172.16.9.24  netmask 255.255.0.0  broadcast 172.16.255.255
        inet6 fe80::84b:6fff:fe01:214f  prefixlen 64  scopeid 0x20<link>
        ether b0:83:fe:97:e1:7f  txqueuelen 1000  (Ethernet)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 206  bytes 8972 (8.7 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 1000  (Local Loopback)
        RX packets 202838  bytes 34140047 (32.5 MiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 202838  bytes 34140047 (32.5 MiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

p4p1: flags=4099<UP,BROADCAST,MULTICAST>  mtu 1500
        ether b0:83:fe:97:e1:7f  txqueuelen 1000  (Ethernet)
        RX packets 0  bytes 0 (0.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

qbrc9a89eb9-b7: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1450
        ether f2:32:57:4c:c1:a6  txqueuelen 1000  (Ethernet)
        RX packets 17  bytes 916 (916.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 0  bytes 0 (0.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

qvbc9a89eb9-b7: flags=4419<UP,BROADCAST,RUNNING,PROMISC,MULTICAST>  mtu 1450
        inet6 fe80::f032:57ff:fe4c:c1a6  prefixlen 64  scopeid 0x20<link>
        ether f2:32:57:4c:c1:a6  txqueuelen 1000  (Ethernet)
        RX packets 18  bytes 1244 (1.2 KiB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 8  bytes 656 (656.0 B)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

qvoc9a89eb9-b7: flags=4419<UP,BROADCAST,RUNNING,PROMISC,MULTICAST>  mtu 1450
        inet6 fe80::78ff:b0ff:fe9b:14b1  prefixlen 64  scopeid 0x20<link>
        ether 7a:ff:b0:9b:14:b1  txqueuelen 1000  (Ethernet)
        RX packets 8  bytes 656 (656.0 B)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 18  bytes 1244 (1.2 KiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

相关内容