Dimitris Aragiorgis [Tue, 4 Mar 2014 13:34:26 +0000 (15:34 +0200)]
Some minor fixes..
- Use NETWORK_SUBNET6 since this is exported by Ganeti and not
just SUBNET6
- All logging in helper function
- Do not send GARP or delete neighbor proxy if desired vars are not
set
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Fri, 31 Jan 2014 01:48:12 +0000 (03:48 +0200)]
Minor changes related to logging
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Fri, 31 Jan 2014 02:37:36 +0000 (04:37 +0200)]
Small changes in if* scripts
* Factor out GARP and neighbor proxy action from setup_routed*
* Invoke send_garp in kvm-ifup
* Invoke delete_neighbor_proxy in snf-network-hook
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 4 Mar 2014 12:49:08 +0000 (14:49 +0200)]
Use arpsend instead of arping
arpsend comes along with ndsend with vzctl package.
We send only one packet in order not to delay ifup script.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 30 Jan 2014 18:02:36 +0000 (20:02 +0200)]
Rename dnshook and fix-net
..to snf-network-dnshook and snf-network-hook correspondingly.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 30 Jan 2014 17:38:24 +0000 (19:38 +0200)]
Use env var for logging script
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 30 Jan 2014 17:35:34 +0000 (19:35 +0200)]
hooks-log -> snf-network-log
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 29 Jan 2014 15:23:06 +0000 (17:23 +0200)]
Factor out common funtions from dnshook
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 5 Mar 2014 16:26:26 +0000 (18:26 +0200)]
Bump version to 0.15.8next
Dimitris Aragiorgis [Wed, 5 Mar 2014 11:03:33 +0000 (13:03 +0200)]
Create ebtables chains with RETURN policy
This fixes inter-node private networks in case of multicast packets.
Multicast packets are forwarded to all interfaces bridged
on the bridge. Lets assume the following:
prv0 bridge with tap0, tap1, and eth1.
From tap0 comes a multicast packet.
We will see:
forward IN=tap0 OUT=tap1
forward IN=tap0 OUT=eth1
input IN=tap0
In FORWARD chain we have:
-i tap0 -j FROMTAP0
-o tap0 -j TOTAP0
-i tap1 -j FROMTAP1
-0 tap1 -j TOTAP1
So the first packet will match the first rule. FROMTAP0 does not
drop it since the src MAC is correct and ACCEPTs it!
We fix this by changing the policy to RETURN.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Fri, 28 Feb 2014 11:16:01 +0000 (13:16 +0200)]
Fix typo in ebtables
If interface has an IP we used to add a rule that does not allow
packets coming from TAP to have a different IP. There was a typo
in if statement and the rule did never apply.
Still, we do NOT want this rule so we fix typo and comment the
ebtables rule.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Fri, 28 Feb 2014 10:55:12 +0000 (12:55 +0200)]
Do not add ebtables rule for dhcp response
nfdhpcd opens a socket and binds it with tap interface. So dhcp
response will NOT go though the bridge and ebtables rule is
not needed.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Fri, 28 Feb 2014 10:14:49 +0000 (12:14 +0200)]
Refactor ifup-extra script
1) Look for all kind of tags (interface specific or not):
some-prefix:1:mail
some-prefix:snf-nic-12345:mail
some-prefix:
8252fabd-1021-411c-b8f7-
ed79ed509bb8:mail
some-prefix:mail
2) some-prefix must be other than synnefo:network:
3) introduce setup_extra and clean_extra functions.
4) clean_extra must remove all possible rules that setup_extra could
have previously added.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 27 Feb 2014 15:35:58 +0000 (17:35 +0200)]
Setup ebtables only for mac filtered setups
We used to drop DHCP requests for all bridged setups in case of
nfdhcpd. This requires ebtables setup for private vlans as well.
Dropping DHCP requests in case of nfdhcpd is not really needed
because they are dropped in user space
(payload.set_verdict(nfqueue.NF_DROP)) if a binding file exists.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 27 Feb 2014 11:28:24 +0000 (13:28 +0200)]
Fix ebtables
1) Add ebtables in INPUT/OUTPUT chains too
This is needed because multicast packets
(e.g. with dst address 01:00:83:xx:xx:xx) do NOT go through forward chain
2) In case of nfdhpcd allow DHCP replies only with src address the
MAC address of incoming device (e.g. prv0)
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 26 Feb 2014 13:08:30 +0000 (15:08 +0200)]
Add sample rules in ifup-extra
Here we allows outgoing traffic with destination port 25.
Please note that every rule that is added when the corresponding
tag is found it should always be removed at the beginning of the
script. With other words you should remove stale entries before
adding new.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 25 Feb 2014 10:58:30 +0000 (12:58 +0200)]
Support execution of extra script
In case of kvm-ifup, if an extra script (/etc/ganeti/ifup-extra)
exists, execute it before exiting.
An dummy example script is given, that parses instance's tags,
and searches for synnefo:network:<ident>:mail.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 13 Jan 2014 10:02:46 +0000 (12:02 +0200)]
Make fix-net use common.sh and correct env vars
Helper functions for getting uplink and eui64 reside in common.sh
New Ganeti provides correct GANETI_NEW_PRIMARY GANETI_OLD_PRIMARY
environment variables. Use them in hooks.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 13 Jan 2014 09:03:34 +0000 (11:03 +0200)]
Move fix-net logic from hooks to if-up
In target node we used to run arping and ndsend. Move these
commands to if-up script.
Introduce helper function to get eui64 and uplink.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 9 Jan 2014 13:09:06 +0000 (15:09 +0200)]
Use correct env vars in fix-net hook
After fixing HooksEnv and HooksNodes in Ganeti migration opcode
to include both source and target nodes, use them correctly in
fix-net hook.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 9 Dec 2013 12:25:58 +0000 (14:25 +0200)]
return in case expected env vars are not set
In case of IPv6 only setup, IP environment variable should not be
set. Still if we have a routed setup routed_setup_ipv4() gets invoked.
This means that the following command will be invoked:
ip route replace proto static dev tap3 table public
This replaces default route!!
With this patch fixes routed_setup* functions to return early
in case expected environment vars are not set.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 9 Dec 2013 12:00:52 +0000 (14:00 +0200)]
Remove unused dsnhook.conf file
The relevant settings have been moved in /etc/default/snf-network.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 9 Dec 2013 11:26:29 +0000 (13:26 +0200)]
runlocked forgotten ebtables command
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Sat, 7 Dec 2013 18:27:10 +0000 (20:27 +0200)]
Some fixes/changes in dnshook
* Do not exit if something fails
* Split update_* for IPv4/IPv6
* Add hooks-log at crucial points
* Fix typos
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Sat, 7 Dec 2013 13:22:07 +0000 (15:22 +0200)]
Practically rewrite dnshook
Make it more readable.
Introduce specific methods for getting reverse dns info of an IPv4
or eui64.
Parse every nic info and check for DNS_FLAG network flag
Do not explicitly pass zone statement to nsupdate. Let it determine
the correct zone to update based on the rest of the input.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Fri, 6 Dec 2013 10:37:50 +0000 (12:37 +0200)]
Add GRNET's specific dnshook
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Sat, 7 Dec 2013 14:42:32 +0000 (16:42 +0200)]
Bump version to 0.15.1next
Dimitris Aragiorgis [Fri, 22 Nov 2013 12:40:27 +0000 (14:40 +0200)]
Support firewalls based on NINC index, uuid, names
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Sat, 7 Dec 2013 14:23:03 +0000 (16:23 +0200)]
Bump version to 0.15.0next
Dimitris Aragiorgis [Mon, 28 Oct 2013 09:37:36 +0000 (11:37 +0200)]
Use the script name when logging
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Sun, 27 Oct 2013 10:51:57 +0000 (12:51 +0200)]
Rename clear-proxy-ndp to fix-net
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Sun, 27 Oct 2013 10:38:06 +0000 (12:38 +0200)]
Refactor clear-proxy-ndp post-migrate hook
* Search all NICs for ip-less routed setup and not only NIC0
* On source node clear proxy ndp
* On target node arping and ndsend
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Stratos Psomadakis [Wed, 18 Sep 2013 17:59:53 +0000 (20:59 +0300)]
Serialize the excecution of ebtables processes
ebtables cannot handle multiple userspace ebtables processes running
concurrently. This could lead to failures while setting up or cleaning
up ebtables for VM networks.
ebtables latest release (included in Debian Wheezy) supports ebtables
command seriliazation with the --concurrent cmdline option (which uses
flock).
In order to make sure that snf-network works with older versions of
ebtables, we wrap the ebtables commands around a Python helper script
which serializes the excecution of any processes on a host machine by
waiting until successfully binding on a TCPv4 port on localhost (for
more information see the runlocked script).
Christos Stavrakakis [Fri, 30 Aug 2013 14:06:11 +0000 (17:06 +0300)]
Bump version to 0.14.1next
Christos Stavrakakis [Fri, 30 Aug 2013 10:20:14 +0000 (13:20 +0300)]
Use devflow
* add devflow.conf
* add base version file
Dimitris Aragiorgis [Fri, 24 May 2013 12:37:23 +0000 (15:37 +0300)]
Mods to work with debian's xen
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Sat, 11 May 2013 21:01:41 +0000 (00:01 +0300)]
Add vif-custom script and split kvm-vif-bridge
Put functions in /usr/lib/snf-network/common.sh
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragriorgs [Sat, 8 Sep 2012 08:49:35 +0000 (11:49 +0300)]
Fix a bug in clear-proxy-ndp and add logging
Signed-off-by: Dimitris Aragriorgs <dimara@grnet.gr>
Dimitris Aragiorgis [Sat, 4 Aug 2012 00:31:26 +0000 (03:31 +0300)]
Clear existing binding before adding new
This removes the enrty from nfdhcpd runtime (due to inotify).
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 17 Jul 2012 12:22:23 +0000 (15:22 +0300)]
Use tag types in clear-proxy-ndp
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 17 Jul 2012 12:20:39 +0000 (15:20 +0300)]
Use tag types in kvm-vif-bridge
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 12 Jul 2012 22:36:51 +0000 (01:36 +0300)]
Remove vlan files
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 12 Jul 2012 11:38:22 +0000 (14:38 +0300)]
Remove clear-tap file
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 12 Jul 2012 01:26:38 +0000 (04:26 +0300)]
Add interfaces example
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 12 Jul 2012 01:19:20 +0000 (04:19 +0300)]
README refactor
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 12 Jul 2012 01:06:07 +0000 (04:06 +0300)]
Remove useless files
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 11 Jul 2012 16:40:37 +0000 (19:40 +0300)]
Refactor snf-network
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 11 Jul 2012 07:17:15 +0000 (10:17 +0300)]
Fix a bug in generic mode
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 10 Jul 2012 15:52:14 +0000 (18:52 +0300)]
Fix a minor bug in the generic case
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 10 Jul 2012 12:31:53 +0000 (15:31 +0300)]
Fix a bug in snf-network-build-node-infra
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 10 Jul 2012 11:24:10 +0000 (14:24 +0300)]
Change conf files and vars
Insteed of infra.conf introduce generic.conf and grnet.conf.
Change PUBLIC_* var into NODE_*.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 10 Jul 2012 09:47:09 +0000 (12:47 +0300)]
Add exit 0 to hooks
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 10 Jul 2012 08:53:18 +0000 (11:53 +0300)]
Add exit 0 in kvm-vif-bridge
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 5 Jul 2012 13:30:55 +0000 (16:30 +0300)]
Fix a minor bug
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 5 Jul 2012 11:22:14 +0000 (14:22 +0300)]
Ready for testing
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 5 Jul 2012 04:29:05 +0000 (07:29 +0300)]
Add PUBLIC_LINK
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 5 Jul 2012 03:57:32 +0000 (06:57 +0300)]
Handle correctly the PUBLIC_BRIDGE
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 5 Jul 2012 01:32:20 +0000 (04:32 +0300)]
Add SETUP conf var
Might be either GRNET or GENERIC
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 3 Jul 2012 15:58:07 +0000 (18:58 +0300)]
Fix kvm-vif-bridge
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 3 Jul 2012 15:43:40 +0000 (18:43 +0300)]
Fix prv-net-helper bug
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 3 Jul 2012 15:31:31 +0000 (18:31 +0300)]
Fix a typo in kvm-vif-bridge
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 3 Jul 2012 15:25:33 +0000 (18:25 +0300)]
Remove MASQ setup
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 3 Jul 2012 15:23:33 +0000 (18:23 +0300)]
Refactor kvm-vif-bridge
Make better use of ebtables. Correctly drop DHCP request.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 3 Jul 2012 14:07:35 +0000 (17:07 +0300)]
prv-net-helper: bridge prefix becomes optional
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 28 Jun 2012 18:27:19 +0000 (21:27 +0300)]
Fix env vars
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 28 Jun 2012 18:16:43 +0000 (21:16 +0300)]
Distinguish between GRNET and generic setup
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 28 Jun 2012 17:52:27 +0000 (20:52 +0300)]
Fix a bug in cluster init hook
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 28 Jun 2012 10:25:27 +0000 (13:25 +0300)]
Fix number of arguments check
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 20 Jun 2012 09:23:52 +0000 (12:23 +0300)]
Modify scripts to include network tags
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 19 Jun 2012 18:22:12 +0000 (21:22 +0300)]
Modify kvm-vif-bridge to support network tags
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 18 Jun 2012 18:03:40 +0000 (21:03 +0300)]
Refactor code
Add arguments to scripts.
Fix few bugs.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 18 Jun 2012 17:03:51 +0000 (20:03 +0300)]
clear-tap script
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 18 Jun 2012 17:03:05 +0000 (20:03 +0300)]
Fix clear-proxy ndp.
source conf files to retrieve public vlan
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 18 Jun 2012 15:47:37 +0000 (18:47 +0300)]
Modify bridge naming
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 18 Jun 2012 13:08:34 +0000 (16:08 +0300)]
Change network types
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 13 Jun 2012 17:17:36 +0000 (20:17 +0300)]
Fix a typo
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 13 Jun 2012 17:07:14 +0000 (20:07 +0300)]
Initialize conf files for network transition
No mac filtering, no ebtables, no hooks
No private network (bridge with ebtables) just private range
(one bridge per vlan)
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 13 Jun 2012 12:41:23 +0000 (15:41 +0300)]
enable/disable auto conf hooks
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 12 Jun 2012 17:00:26 +0000 (20:00 +0300)]
Revise snf-network
No NFS storage needed. All info passed in hooks env is produced
by ganeti.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Fri, 8 Jun 2012 07:08:27 +0000 (10:08 +0300)]
Fix log-env
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 7 Jun 2012 17:23:22 +0000 (20:23 +0300)]
Remove netfile from kvm-vif-bridge
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 7 Jun 2012 16:54:06 +0000 (19:54 +0300)]
Make nfdhcpd functional
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 7 Jun 2012 16:52:53 +0000 (19:52 +0300)]
log-env script
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 7 Jun 2012 16:33:41 +0000 (19:33 +0300)]
clear-proxy-ndp hook script
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 29 May 2012 18:44:20 +0000 (21:44 +0300)]
Fix broken ns_responce in nfdhcpd
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 29 May 2012 16:47:35 +0000 (19:47 +0300)]
Fix proxy ndp configuration
uplink should be public vlan not gateway6
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 29 May 2012 13:53:03 +0000 (16:53 +0300)]
Support routed ipv6 when connecting a network
Modify hook to support grnet specific ip-less routing and
proxy ndp for ipv6.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 28 May 2012 17:55:26 +0000 (20:55 +0300)]
Fix proxy ndp issue
Add a ganeti post hook when a tap gets removed
instance-{migrate, failover, remove, stop}-post.d
Check if the first NIC that usually is the public interface
that gets routed and does proxy ntp in ipv6 has any orphan
rule and remove it.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 28 May 2012 17:45:28 +0000 (20:45 +0300)]
Code refactoring in kvm-vif-bridge and nfdhcpd
Allow binding files in form of
GATEWAY6=
in case not defined.
Modify kvm-vif-bridge that clears the pending rules before
handling the tap.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 24 May 2012 20:34:41 +0000 (23:34 +0300)]
Fix IPv6 support for nfdhcpd
Supply all the neccessary fields for dhcp in binding file (created
by kvm-vid-bridge). Reference every dhcp client via the mac or eui64
of the incomming packet on the nfqueue.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 24 May 2012 04:59:26 +0000 (07:59 +0300)]
Modify nfdhcpd to distinguish tap form indev.
DHCPv6 should work fine.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 24 May 2012 04:57:04 +0000 (07:57 +0300)]
Modify hooks to use node infra details.
When connecting a network in routed mode pass the routing table
and not the vlan as link. The link will be choosen depending the
network type and the cluster/node infrastructure.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Mon, 14 May 2012 18:26:51 +0000 (21:26 +0300)]
Fix IPv6 responses in nfdhcpd
Search the interface of incomming request and find binding info
(IPv6 subnet) via traversing all clients configuration and matching
cl.ifname (tap0) with the interface above.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 10 May 2012 14:31:06 +0000 (17:31 +0300)]
Automate config via hooks
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Thu, 26 Apr 2012 11:02:08 +0000 (14:02 +0300)]
Add snf-network-reconfige
Useful script after node reboot.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 24 Apr 2012 19:35:39 +0000 (22:35 +0300)]
Add a script for managing mac prefixes
Mac prefixes are used for private networks.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Tue, 24 Apr 2012 19:24:16 +0000 (22:24 +0300)]
Support automated infa configuration with hooks
New hook for node-add that configures the interfaces in the
new node depending on nodegroup configuration.
After adding a nodegroup snf-network-add-group should be
invoked.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 11 Apr 2012 18:18:57 +0000 (21:18 +0300)]
Various changes
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Wed, 11 Apr 2012 02:29:30 +0000 (05:29 +0300)]
Remove routing tables from nfdhcpd
Put all info inside binding files
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>
Dimitris Aragiorgis [Sun, 8 Apr 2012 23:55:06 +0000 (02:55 +0300)]
Standardize interfaces
Asume standard interfaces per nodegroup.
First define a network.
Then define a nodegroup.
Then define connection.
Signed-off-by: Dimitris Aragiorgis <dimara@grnet.gr>