# login as openstack ID
# Source credentials file
source keystonerc_admin
# Create private network
neutron net-create private
# Associate subnet
neutron subnet-create --name private_subnet private 10.0.0.0/24
# create router
neutron router-create myrouter
# uplink router to the public internet
neutron router-gateway-set myrouter public
# uplink subnet to router
neutron router-interface-add myrouter private_subnet
# create security profile for jump host
neutron security-group-create jumphost
# Add rule to allow icmp in
neutron security-group-rule-create --protocol icmp jumphost
# Add rule to allow ssh in
neutron security-group-rule-create --protocol tcp --port-range-min 22 --port-range-max 22 jumphost
# find out net id
neutron net-list
# Launch jump host:
nova boot --image cirros --flavor 1 jumphost --security_groups jumphost --nic net-id=<net id of "private">
# Determine port-id attached to jump host
neutron port-list -- --device_id=<instance_id>
# create floatingip
neutron floatingip-create public --port-id <port-id>
# test ping/ssh
No comments:
Post a Comment