In the architecture described in this chapter, the Neutron API service runs on the controller node.
controller# pkg install neutron
/etc/neutron/neutron.conf
qpid_hostname=/$CONTROLLER_ADM_NODE rabbit_host=/$CONTROLLER_ADM_NODE # Host to locate redis. (string value) # host=127.0.0.1 host=$CONTROLLER_ADM_NODE [keystone_authtoken] auth_uri = http://$CONTROLLER_ADM_NODE:5000/v2.0 identity_uri = http://$CONTROLLER_ADM_NODE:35357 admin_tenant_name = tenant admin_user = neutron admin_password = service-password [database] connection = mysql://neutron:neutron@$CONTROLLER_ADM_NODE/neutron
/etc/neutron/plugins/evs/evs_plugin.ini
[EVS] evs_controller = ssh://evsuser@$CONTROLLER_ADM_NODE
/etc/neutron/dhcp_agent.ini
[DEFAULT] evs_controller = ssh://evsuser@$CONTROLLER_ADM_NODE
controller# evsadm set-prop -p controller=ssh://evsuser@$CONTROLLER_ADM_NODE
controller# su - evsuser -c "ssh-keygen -N '' \ -f /var/user/evsuser/.ssh/id_rsa -t rsa" controller# su - neutron -c "ssh-keygen -N '' -f /var/lib/neutron/.ssh/id_rsa -t rsa" controller# ssh-keygen -N '' -f /root/.ssh/id_rsa -t rsa
controller# cat /var/user/evsuser/.ssh/id_rsa.pub \ /var/lib/neutron/.ssh/id_rsa.pub /root/.ssh/id_rsa.pub >> \ /var/user/evsuser/.ssh/authorized_keys
Specify Yes at every prompt for confirmation.
controller# su - evsuser -c "ssh evsuser@$CONTROLLER_ADM_NODE true" controller# su - neutron -c "ssh evsuser@$CONTROLLER_ADM_NODE true" controller# ssh evsuser@$CONTROLLER_ADM_NODE true
controller# chown -R evsuser:evsgroup /var/user/evsuser/.sshcontroller controller# chown -R neutron:neutron /var/lib/neutron/.ssh
controller# evsadm set-controlprop -p property=value
The following example shows how to set these properties. Optionally, use the final command to display all the EVS properties:
controller# evsadm set-controlprop -p l2-type=vlan controller# evsadm set-controlprop -p vlan-range=1,200-300 controller# evsadm set-controlprop -p uplink-port=net0 controller# evsadm show-controlprop -o all
controller# ipadm set-prop -p forwarding=on ipv4
controller# svcadm enable -rs ipfilter
controller# svcadm enable -rs neutron-server neutron-dhcp-agent