You need a RHEL or CentOS 7 host which has access to the necessary repositories to install:
libvirtopenvswitch
The playbooks will install RDO repositories. These will be disabled by default but will be used to install the virtualbmc service.
Create an inventory directory with the following two files:
libvirt.yml-- this is configuration for the libvirt inventory plugin (included in theinventory_pluginsdirectory of this repository.hosts.yml-- this is a standard Ansible YAML-format inventory file that contains information about the libvirt host.
For example, when working with a remote machine called neu-19-4-stackcomp.kzn.moc, I have an inventory directory called kzn-19-4, and inside that directory my hosts.yml looks like this:
all:
children:
virthost:
hosts:
neu-19-4-stackcomp.kzn.moc:
ansible_user: root
And my libvirt.yml looks like:
---
plugin: libvirt_inventory
uri: qemu+ssh://root@neu-19-4-stackcomp.kzn.moc/system
include_inactive: true
networks:
- 192.168.122.0/24
loglevel: debug
compose:
ansible_user: '"root"'
ansible_ssh_common_args: '"-o ProxyJump=root@neu-19-4-stackcomp.kzn.moc"'
groups:
controller: inventory_hostname.startswith('controller')
compute: inventory_hostname.startswith('compute')
The use of the qemu+ssh://... URI provides remote access to libvirt from the machine on which I am running Ansible. If you were running these playbooks on your virthost, you could simply use qemu:///system.
There are a number of settings in group_vars/all.yml that control the playbooks. You may want to provide new values for:
rhel_image: this is the path (and format) of a RHEL 8.1 KVM guest image (such as can be downloaded from the Red Hat customer portal).undercloud_keys: this is a list of ssh public key URLs. If you use GitHub,https://github.com/<username>.keysis often a good source of your public keys. These will be used for both therootaccount and thestackaccount on the undercloud.overcloud_hosts: this dictionary describes the configuration (ram, disk, vcpus, etc) of the virtual machines created by the playbooks.
You will need to point ansible-playbook at your inventory directory (or configure ansible.cfg appropriately, or set the ANSIBLE_INVENTORY environment variable). Because I've been working with multiple virtual environments, I just use -i <directory> on the ansible-playbook command line.
-
Run
step1.yml.You will need to provide the following variables:
redhat_username-- your customer portal usernameredhat_password-- your customer portal passwordredhat_pool_ids-- a list of pool to which your system should be attached
I drop these into a file named
credentials.yml...--- redhat_username: myusername@redhat.com redhat_password: secretpassword redhat_pool_ids: - 12345678909876543210c323263339ff...and pass that it on the
ansible-playbookcommand line:ansible-playbook step1.yml -i kzn-19-4 -e @credentials.yml -
Log into the undercloud and run
openstack undercloud installas thestackuserTo log into the undercloud, I first get the ip address from the virt host:
# virsh domifaddr undercloud Name MAC address Protocol Address ------------------------------------------------------------------------------- vnet0 52:54:00:6b:8d:e0 ipv4 192.168.122.76/24And then log in as the
stackuser:# ssh stack@192.168.122.76 [stack@undercloud ~]$ openstack undercloud installThis should take around 30 minutes to complete.
-
Run
step2.yml -
Run
step3.yml -
Run
step4.yml -
Log into the undercloud and run
sh overcloud-deploy.sh.I usually capture the output from the command for later review if somethings goes wrong:
# ssh stack@192.168.122.76 [...] [stack@undercloud ~]$ script -c 'sh overcloud-deploy.sh'This should take around an hour to complete.
-
Run
step5.yml. This will set up resources for testing the install (an image, a flavor, networks, etc). It also sets up aclouds.yamlfile on the undercloud, so you can specify credentials to commands using the--os-cloudoption:$ openstack --os-cloud undercloud server list $ openstack --os-cloud overcloud hypervisor listIn addition to the
undercloudandovercloudclouds, it will create anovercloud-<user>entry for any users created by the playbook (currently, just thedemouser).
The controller and compute guests created by these playbooks are attached to the following networks:
- eth0: provisioning network (vlan 100)
- eth0.101: internal api (vlan 101)
- eth0.102: tenant private (vlan 102)
- eth1: management/ipmi
- eth2: storage (vlan 103)
- eth3: external network (vlan 200)
- eth4: floating ip (vlan 201)
These interfaces are all plumbed to an Open vSwitch switch on the virthost named "openstack". At a high level, the virtual infrastructure looks like this:
+-------------+ +-------------+ +-------------+
| | | | | |
| controller0 | | controller1 | | controller2 |
| | | | | |
+-----+-------+ +-------+-----+ +-------+-----+
| | |
+-------------+ | +------------+
| | |
+----+-------+------+----+ +------------+
extgw----+ | | |
| openstack ovs switch +-------+ undercloud |
floatgw----+ | | |
+--------+--------+------+ +------------+
| |
+------+ +------+
| |
+------+------+ +----+--------+
| | | |
| compute0 | | compute1 |
| | | |
+-------------+ +-------------+
extgw and floatgw are interfaces on the virt host that act as the default gateways for, respectively, the external network and the floating ip network.