Red Hat NETWORK 4.0.5 - Guía de instalación descargar pdf (Pagina 47)

Workaround: You must change the password right after openstack-

foreman-installer finishes (the installer prints a link to a page

where the password can be changed).

This replaces the password with an new (hidden) one, and anyone

attempting to use the displayed password will not have access.

BZ #103326 0

When “generic receive offload” (GRO) is enabled while using GRE

or VXLAN tunneling, inbound bandwidth available to instances from

an external network using a OpenStack Networking router is

extremely low.

Workaround: Disable GRO offloading on the network node where the

l3-agent runs by adding the following line to

/etc/sysconfig/network-scripts/ifcfg-ethX:

ETHTOOL_OPTS="-K ethX gro off"

where ethX is the network interface device used for the external

network. Either reboot or run "ifdown ethX; ifup ethX" for the

setting to take effect.

This will provide more symmetric bandwidth and faster inbound

data flow.

BZ #104 06 10

Currently, a missing firewall rule for ceilometer-api causes

ceilometer-api to only be accessible locally on a controller, not

from other machines.

Workaround: Open port 8777 in the firewall on the controller

node(s).

This will make ceilometer-api accessible from other machines.

BZ #104 156 0

Currently, PackStack does not allow all hosts to access keystone.

As a result, remote callers of various API services are unable to

obtain a new token, preventing use of these API services from

remote hosts.

As a workaround, execute the following commands on the controller

host:

$ INDEX=$(sudo iptables -L | grep -A 20 'INPUT.*policy ACCEPT'

| grep -- -- | grep -n keystone | cut -f1 -d:)

$ sudo iptables -I INPUT $INDEX -p tcp --dport 35357 -j ACCEPT

$ sudo service iptables save

After doing this the remote callers of API services work

correctly.

⁠Chapt er 2 . Release Not es

4 3

1 2 ... 42 43 44 45 46 47 48 49 50 51 52 53

Sin comentarios

Red Hat NETWORK 4.0.5 - Guía de instalación Pagina 47