Page MenuHomePhabricator
Create Task
Maniphest T319524

Cloud VPS: neutron network: the ifupdown bridge setup can be fragile
Closed, ResolvedPublic
Actions

Description

As of this writing, when we need to create a bridge for the neutron-l3-agent we create a resource via puppet openstack::neutron::bridge. This in turns deploys a config file /etc/network/interafaces.d/<bridge_name>
In the case of our neutron l3 setup, we have 2 bridges with 1 port each, one for the external vlan and other for the internal vlan.
Then, when ifup is called at boot (via networking.service), the bridge will be empty of ports if the vlan interfaces aren't up beforehand. An ordering problem.

Moreover, we have seen the behavior be different if the vlan interface is called eno50.1105 or just vlan1105.

This setup is fragile and can lead to severe network outages.

Details

SubjectRepoBranchLines +/-
openstack: neutron: refresh bridge ifupdown code to handle orderingoperations/puppetproduction+10 -2
Customize query in gerrit

Related Objects
Search...

Event Timeline

aborrero created this task.Oct 6 2022, 11:11 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 6 2022, 11:11 AM
gerritbot added a comment.Oct 6 2022, 11:12 AM

Change 839492 had a related patch set uploaded (by Arturo Borrero Gonzalez; author: Arturo Borrero Gonzalez):

[operations/puppet@production] openstack: neutron: refresh bridge ifupdown code to handle ordering

https://gerrit.wikimedia.org/r/839492

gerritbot added a project: Patch-For-Review.Oct 6 2022, 11:12 AM
gerritbot added a comment.Oct 6 2022, 11:34 AM

Change 839492 merged by Arturo Borrero Gonzalez:

[operations/puppet@production] openstack: neutron: refresh bridge ifupdown code to handle ordering

https://gerrit.wikimedia.org/r/839492

aborrero triaged this task as Medium priority.Oct 6 2022, 11:49 AM
aborrero moved this task from Inbox to Doing on the cloud-services-team (Kanban) board.
Maintenance_bot removed a project: Patch-For-Review.Oct 6 2022, 12:30 PM
aborrero updated the task description. (Show Details)Oct 6 2022, 2:10 PM
aborrero added a parent task: T234207: Investigate improvements to how puppet manages network interfaces.
aborrero closed this task as Resolved.Oct 7 2022, 9:02 AM

The particular issue with ordering has been resolved for now.

The underlying fragility in how we setup neutron in general may remain present, but that's worth another task.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL