OpenStack Ansible Installation, Part 3

Cisco VLANs on Catalyst 2960g

Table of Contents

Yesterday I configured the system network configuration on the OpenStack nodes, but I still have to configure VLAN access on the switch.

Overview

Each system has two NICs, in large part to keep storage traffic on its own collision domain. The vlans are assigned thusly:

nic1:
  br-mgmt:
    purpose: 'management traffic, admin'
    vlan: 'native'
    network: '10.3.2.0/23'
  br-storage:
    purpose: 'storage traffic'
    vlan: '5'
    network: '10.3.5.0/24'
nic2:
  br-vlan:
    purpose: 'non-tunneled virtual network'
    vlan: 'native'
    network: '10.3.2.0/23'
  br-vxlan:
    purpose: 'tunneled virtual network'
    vlan: '4'
    network: '10.3.4.0/24'

I don’t need IVR at this point, so all I need to do is configure switch ports properly.

Configuration

On the Catalyst switch, I run the following in config mode:

# For each NIC1 allow VLANs
switch(config)# int g0/2
switch(config-if)# description infra main
switch(config-if)# switchport trunk allowed vlan 1,5
# For each NIC2, allow all VLANs (since br-vlan may create VLANs)
switch(config)# int g0/3
switch(config-if)# description infra neutron
switch(config-if)# switchport trunk allowed vlan all
# For the entire range, set native VLAN and switchport mode
switch(config)# int ran g0/2-7
switch(config-if-range)#switchport trunk native vlan 1
switch(config-if-range)#switchport mode trunk

I then verified that I was able to ping other IPs on the various networks.

In Closing

Since for now, I only need Internet access via my native vlan, I’m not setting up routing. Setting up the VLANs independently of the routing isn’t the worst idea anyway, since it simplifies what could go wrong in each instance.

There is no git commit for this.