Overview
This document provides concepts and procedures for deploying an NFVi with Airship 1 Installer in a bare metal infrastructure.
...
Airship requires internet access on the OAM network for downloading images and packages unless the user has created downstream repositories for the same purpose. In the LaaS Lab, the only network that has internet access is the lab management network (refer to the air-pod01 network architecture). Addition steps must be followed to create a gateway/router on the jumphost to enable internet access on the OAM network.
- Create the lab management and OAM network on the jump host. Below is an example of netplan cofniguration:
...
/etc/netplan/50-cloud-init.yaml |
|
network:
version: 2
renderer: networkd
ethernets:
# Lab management network
eno49:
dhcp4: yes
|
...
...
...
...
...
...
...
20/24
ens1f0:
match:
macaddress: 3c:fd:fe:ef:10:29
mtu: 9100
set-name: ens1f0
ens1f1:
match:
macaddress: 3c:fd:fe:ef:10:29
mtu: 9100
set-name: ens1f1
ens4f0:
match:
macaddress: 3c:fd:fe:ef:0e:b9
mtu: 9100
set-name: ens4f0
ens4f1:
match:
macaddress: 3c:fd:fe:ef:0e:b9
mtu: 9100
set-name: ens4f1
bonds:
bond0:
interfaces:
- ens1f1
- ens4f0
mtu: 9214
parameters:
lacp-rate: fast
mode: 802.3ad
transmit-hash-policy: layer3+4
vlans:
# oam network
bond0.201:
addresses:
- 10.200.201.1/24
id: 201
link: bond0
mtu: 9100
nameservers:
addresses:
- 8.8.8.8
- 8.8.4.4 |
...
2. Enable IP forwarding by editing /etc/sysctl.conf to add or ubcomment the following line:
Code Block |
---|
|
net.ipv4.ip_forward=1 |
3. Enable IP masquerading
Code Block |
---|
|
sudo iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
sudo iptables -A FORWARD -i eth1 -o eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT
sudo iptables -A FORWARD -i eth0 -o eth1 -j ACCEPT |
To save settings to iptables either by installing iptables-persistent:
Code Block |
---|
|
sudo apt-get install iptables-persistent |
if it was already installed please update setting by running:
Code Block |
---|
|
sudo dpkg-reconfigure iptables-persistent |
or execute the following command:
Code Block |
---|
|
sudo iptables-save > /etc/iptables/rules.v4 |
Manifest
TBD
Airship is a declarative way of automating the deployment of a site. Therefore, all the deployment details are defined in the manifests.
...