Description of problem: both external network and internal network must not be created as shared, since new tenants should not see them [stack@puma33 ~]$ neutron net-list +--------------------------------------+----------------------------------------------------+-------------------------------------------------------+ | id | name | subnets | +--------------------------------------+----------------------------------------------------+-------------------------------------------------------+ | 09af3ca6-fc88-4562-95f6-70d02ae3b962 | default-net | 4d23263b-b233-41b5-a57f-4208251b3779 43.33.33.0/24 | | 0d75caa2-32ae-4f96-9645-7594e4cf7e72 | ext-net | ad5b34f2-24a1-4b12-a010-fac900a4a33d 10.35.180.0/24 | | 11969f09-1d4c-49e3-8c43-034f60414972 | net201 | 5ecf76e9-78fc-469e-98fe-35d50e8ecc3b 21.0.0.0/24 | | | | 8da4f6e2-ef8a-4b5b-bac8-248082e84b64 3001::/64 | | 2445d555-825e-4fb3-8d3a-ed151e10daed | HA network tenant 0880685edf8148e59dbaf09d6fa52a4d | a6fb4f60-32d4-4bc3-a175-3383c2643019 169.254.192.0/18 | | fc76b229-2174-429e-a093-aacbaba4d5ff | net202 | ab3a2852-a720-4f86-8e86-15e6c032ce26 22.0.0.0/24 | +--------------------------------------+----------------------------------------------------+-------------------------------------------------------+ [stack@puma33 ~]$ neutron net-show 09af3ca6-fc88-4562-95f6-70d02ae3b962 +---------------------------+--------------------------------------+ | Field | Value | +---------------------------+--------------------------------------+ | admin_state_up | True | | id | 09af3ca6-fc88-4562-95f6-70d02ae3b962 | | mtu | 0 | | name | default-net | | provider:network_type | vxlan | | provider:physical_network | | | provider:segmentation_id | 1 | | router:external | False | | shared | True | | status | ACTIVE | | subnets | 4d23263b-b233-41b5-a57f-4208251b3779 | | tenant_id | 0880685edf8148e59dbaf09d6fa52a4d | +---------------------------+--------------------------------------+ [stack@puma33 ~]$ neutron net-show 0d75caa2-32ae-4f96-9645-7594e4cf7e72 +---------------------------+--------------------------------------+ | Field | Value | +---------------------------+--------------------------------------+ | admin_state_up | True | | id | 0d75caa2-32ae-4f96-9645-7594e4cf7e72 | | mtu | 0 | | name | ext-net | | provider:network_type | vxlan | | provider:physical_network | | | provider:segmentation_id | 3 | | router:external | True | | shared | False | | status | ACTIVE | | subnets | ad5b34f2-24a1-4b12-a010-fac900a4a33d | | tenant_id | 0880685edf8148e59dbaf09d6fa52a4d | +---------------------------+--------------------------------------+ Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Dan, is this something that we need to fix? or is this not a real world problem?
It seems to me that ext-net should not be shared, but I'm not sure why we wouldn't make the default net shared. Isn't that the default for VM creation? Anyway, I have no strong opinion on the matter, but the ext-net and default net are not created by the network isolation code, those are functions of the CLI (I'm not sure how the CLI interacts with Heat, etc. to create those nets).
with workaround to delete/recreate the net, deferring this to A1
This bug did not make the OSP 8.0 release. It is being deferred to OSP 10.
Hi! Is this problem still reproducible on recent versions (9 or 10)?
Hi Seems like it is fix on latest osp 10 [stack@undercloud-0 ~]$ rpm -qa | grep openstack-tripleo-heat-templates openstack-tripleo-heat-templates-5.0.0-0.6.0rc3.el7ost.noarch [stack@undercloud-0 ~]$ source stackrc [stack@undercloud-0 ~]$ neutron net-list +--------------------------------------+--------------+----------------------------------------------------+ | id | name | subnets | +--------------------------------------+--------------+----------------------------------------------------+ | 0c854694-0250-4b14-b5a7-bfef9cbb498b | external | 8ee83446-d48b-4322-a154-afdf8bc9a2e4 10.0.0.0/24 | | a37790c3-aa9a-4e3e-a0f0-c342522c37e8 | storage | 20e7a2a4-0c00-4e6d-b321-a1da0ffd3baf 172.17.3.0/24 | | c3325e75-1315-444e-86d2-8ef26a445d30 | storage_mgmt | 1d500a41-fa7f-4f37-825f-e2561c93245d 172.17.4.0/24 | | c6ccea71-0115-4696-ac94-c369673a6be1 | internal_api | b1c7b646-af6e-493d-a1d0-a7fef62ff117 172.17.1.0/24 | | cb283b27-c793-4cc8-b15b-99f61932c333 | ctlplane | 6bd93d44-d4e7-47a7-8248-6785da44569b 192.0.2.0/24 | | e51f96b9-36df-4440-90cf-9832d5cb247b | tenant | 2f85334e-6bdf-4775-a896-e14879ec3ea5 172.17.2.0/24 | +--------------------------------------+--------------+----------------------------------------------------+ [stack@undercloud-0 ~]$ neutron net-show external +---------------------------+--------------------------------------+ | Field | Value | +---------------------------+--------------------------------------+ | admin_state_up | False | | availability_zone_hints | | | availability_zones | | | created_at | 2016-10-26T09:40:25Z | | description | | | id | 0c854694-0250-4b14-b5a7-bfef9cbb498b | | ipv4_address_scope | | | ipv6_address_scope | | | mtu | 1500 | | name | external | | project_id | ebb8015e752041f184248013372cee47 | | provider:network_type | flat | | provider:physical_network | external | | provider:segmentation_id | | | revision_number | 4 | | router:external | False | | shared | False | | status | ACTIVE | | subnets | 8ee83446-d48b-4322-a154-afdf8bc9a2e4 | | tags | | | tenant_id | ebb8015e752041f184248013372cee47 | | updated_at | 2016-10-26T09:40:27Z | +---------------------------+--------------------------------------+ [stack@undercloud-0 ~]$ neutron net-show ctlplane +---------------------------+--------------------------------------+ | Field | Value | +---------------------------+--------------------------------------+ | admin_state_up | True | | availability_zone_hints | | | availability_zones | nova | | created_at | 2016-10-25T12:49:27Z | | description | | | id | cb283b27-c793-4cc8-b15b-99f61932c333 | | ipv4_address_scope | | | ipv6_address_scope | | | mtu | 1500 | | name | ctlplane | | project_id | ebb8015e752041f184248013372cee47 | | provider:network_type | flat | | provider:physical_network | ctlplane | | provider:segmentation_id | | | revision_number | 5 | | router:external | False | | shared | False | | status | ACTIVE | | subnets | 6bd93d44-d4e7-47a7-8248-6785da44569b | | tags | | | tenant_id | ebb8015e752041f184248013372cee47 | | updated_at | 2016-10-25T13:02:26Z | +---------------------------+--------------------------------------+