We saw volume creation with related issues and probable solutions.
Now we will see volume attach to VM. Create partition on it. Remove it and detach volume from VM.
Attach created volume to testvm. Following is command-line requirement for cinder volume-attach.
Volume ID will get it from cinder-list use auto to autoassign the new device.
You can check volume status is changed to in-use now and also changed attached with VM ID.
Continue reading “Basic Cinder (volume) service functionality in Openstack – Part2”
In this post I am going to show you basic functionality of openstack cinder (volume) service functionality by creating volume on internal storage. Attaching that volume to VM. Create partition on that volume in client machine and test partition remove and detaching volume from VM.
Lets take one running state vm for cinder testing as we can do this operation on the fly. I have one VM name testvm.
Check the disk and partitions on the VM. I can access the testvm using private IP and public IP. Lets access it using private IP using unique network namespace.
First check private-net network ID and test the ping to private IP of VM using network namespace. For more details about basic networking in openstack check my last blog posts.
Continue reading “Basic Cinder (volume) service functionality in Openstack – Part1”
When you installed Openstack using packstack you might have faced openstack-keystone service issue. When try it to restart it fails with code-name keystone error.
I have done some research on it and found the solution.
The issue is with Openstack Keystone Service which we have configured using httpd deamon in answers.cfg file ( configuration file used to install Openstack using packstack)
Now openstack-keystone service will not start as http service is already in started mode and we haven’t created any relation between openstack-keystone and http service.
So to start openstack-keystone service we have to create symbolic link and point openstack-keystone service to http service.
Continue reading “Failed to start OpenStack Identity Service (code-named Keystone).”
Many times we need graphical UI to open/run some applications. So following are simple and quick steps to create graphical UI on Centos7/RHEL7.
First check you have yum repository configured to access local or internet repository
Graphical UI filesets will install in group so that all required/dependent filesets will install automatically. Check all available groups in yum repository using group list
Continue reading “Graphical/Desktop UI for Centos 7/RHEL 7”
This post describing multinode OpenStack installation on centos7/rhel7 for Liberty release. If you want to do single node installation please refer my earlier post.
We are installing OpenStack onto 3 nodes controller,compute and network using packstack utility
Following is 3 node Openstack Architecture and related Openstack services running on respective nodes. I am using two network one is management network of 192.168.56.* which is used for internal communication between nodes and one external network used to assign public IP to VM and to access instances/VM from outside. I am also using NATed DHCP ip on each nodes to download required filesets from internet.
Continue reading “Multinode Openstack Installation on Centos 7/RHEL 7”
Many times I have encountered this issue that user is waiting for long duration to get password prompt. I used to type fast and working on couple of windows so hate to wait for longer duration just to insert my password.
I have searched about this issue and found out the cause so sharing that with you all to avoid waiting window. Solution is very simple.
Whenever user is login using SSH its going through reverse DNS lookup and searching host details from machine IP address before login to machine. This is helpful for security purpose but our default configuration and SELINUX security does that job anyway.
This is default setting present in sshd_config for reverse DNS lookup.
Modify it by removing # and changing ‘yes’ to ‘no’
Continue reading “Slow SSH login issue on Linux”
This post is a quickstart guide to install OpenStack Liberty release using packstack on CentOS7.
This is very basic POC setup where all components will be installed on one node only. I will create another post for multinode installation setup.
- Install CentOS using minimal install Software Selection.
Continue reading “Openstack Liberty install using packstack on Centos 7/RHEL 7”
In this post I am going to show how to do network configuration in rhel7/centos7. We have ip command introduced in linux way back but we never used it. In this post we will use ip related commands which isnot easy to use as it has many options need to provide to get relevant output.
to see IP address details normally we used ifconfig command we check the same using ip addr show command.
Here we an see ipv4 address of eth0 interface along with ipv6 address and network UP status and mtu size.
Continue reading “Network Configuration in RHEL 7/Centos 7”
Today I am going to show you how to use access control list (ACL) permissions in rhel7. Traditionally we have assigned permission to one user/owner and one group for file or directory but in some cases we need other user or other group apart from owner need to have readonly access or write access on same directory. To achieve this we have access control list permission concept in Linux.
Other users and and groups can also access file or directory even when they are not owners and member of group who is having ownership on that file or directory.
we use only two commands getfacl to see ACL permissions on directory/file and setfacl to set ACL permissions. We can even set default ACL so that new files and sub-directories created in directory will inherit ACL permissions of parent directory.
The filesystem needs to be mounted with ACL support enabled. XFS filesystems have built-in ACL support and Ext4 filesystem in RHEL7 have ACL option enabled by default. In earlier versions of RHEL you may need the ACL option included with mount request.
First we see ACL permission on file named prod.conf.
Continue reading “Access Control List (ACL) Permissions in RHEL 7/Centos 7”
In this post I am going to show you how to configure SSH key based authentication on rhel7/centos7. Configuration of SSH key based authentication is little different in rhel7 compared to traditional method of manually copying public key to another server. Users can login using ssh with password and authenticate using public key authentication.
On every server we have two keys private and public. Private key is used as authentication credentials like password which must be kept secret and secure. Public key we need to copy on the server where user want to login and used to verify private key so public key does not need to be secret.
How authentication happens in SSH key key based authentication. SSH server that has public key can issue a challenge that can only be answered by system who is holding private key as a result user can authenticate without password only with the help of public key and system grant login access to the user.
Use ssh-keygen command to generate private and public key as follows
Continue reading “Configure SSH key based authentication on rhel 7/centos 7”