glance Archives - erol.name

I have decided to summarize in one page all useful Openstack commands. This post will be useful to anyone interested in learning Openstack cloud commands or use it as a daily reference.

Openstack commands:	Old equivalents:
General commands:
`openstack image list openstack flavor list openstack network list openstack server list`	`glance image-list nova flavor-list neutron net-list nova list`
Server commands:
`openstack server show [SERVER] openstack server stop [SERVER] openstack server start [SERVER] openstack server delete [SERVER] openstack server image create [IMAGE]`	`nova show [SERVER] nova stop [SERVER] nova start [SERVER] nova delete [SERVER] nova image-create [IMAGE]`
Server console commands:
`openstack console log show openstack console url show`	`nova console-log nova get-vnc-console`
SSH Keypairs*:
`openstack keypair create [KEYPAIR] > key.pem` `openstack keypair show[KEYPAIR] --public-key > key.pub` `openstack keypair show --public-key [KEYPAIR]`	`nova keypair-add [KEYPAIR] > key.pem` `nova keypair-show [KEYPAIR] \| grep Public \| awk -F': ' '{print $2}' > ./.ssh/key.pub` `nova keypair-show [KEYPAIR]`
Metadata**:
Key-value pairs: `openstack server create --property [KEY]=[VALUE]` Script (any language): `openstack server create --user-data [SCRIPT]` Cloud-config file (yaml) `openstack server create --user-data [FILE]` File injection `openstack server create --file [DEST_FILE]=[SRC_FILE]`	`nova boot --meta [KEY]=[VALUE]` `nova boot --user-data [SCRIPT]` `nova boot --user-data [FILE]` `nova boot --file [DEST_FILE]=[SRC_FILE]`

* Don’t forget to chmod 600 key.pem in order to protect it and make it usable by SSH command
** There can only be 1 user-data option, but many property and file options .
Metadata is retrieved by process cloud-int in cloud images .
Server requests with curl http://169.254.169.254 –> Metadata service (nova) which replies with
data in JSON format <– (Restful API).

Openstack network related commands:
Security group:
`openstack security group create [SEC_GROUP] openstack security group rule create --dst-port 12345 [SEC_GROUP]* openstack server add security group [SERVER] [SEC_GROUP] openstack security group rule list [SEC_GROUP] --long`
Network:
`openstack network list openstack network show [NETWORK] openstack network create [NETWORK] openstack network delete [NETWORK]`
Subnet:
`openstack subnet list openstack subnet show [SUBNET] openstack subnet create --network --subnet-range [CIDR] [SUBNET] openstack subnet delete [SUBNET]`
Port:
`openstack port list openstack port show [PORT] openstack port create --network [NETWORK] [PORT]** openstack port delete [PORT]`
Floating IP:
`openstack floating ip list openstack floating ip create [EXT_NET]* openstack server add floating ip [SERVER] [IP_ADDRESS] openstack server remove floating ip [SERVER] [IP_ADDRESS] openstack floating ip delete [IP_ADDRESS] openstack floating ip set [IP_ADDRESS]*`
Router:
`openstack router create [ROUTER] openstack router show [ROUTER] openstack router delete [ROUTER] openstack router list` set [ROUTER] gateway: `neutron router-gateway-set [ROUTER] public` clear [ROUTER] gateway: `neutron router-gateway-clear [ROUTER]` add private subnet to [ROUTER]: `openstack router add subnet [ROUTER] private_subnet` remove private subnet to [ROUTER]: `openstack router remove subnet [ROUTER] private_subnet` list [ROUTER] interfaces: `openstack port list --router [ROUTER]`

* You can add additional parameters here like –egress for outgoing traffic or –protocol [UDP|ICMP]
** You can associate floating ip with specific port by adding –port PORT
*** You could also add –fixed-ip [subnet=SUBNET|ip-address=IP_ADDRESS]

Metadata related commands

Server*:

Metadata related commands
Server*:
retrieve metadata info: `curl http://169.254.169.254/`retrieve latest metadata: `curl http://169.254.169/254/latest`meta-data/$: `curl http://169.254.169/254/latest/meta-data`retrieve floating ip: `curl http://169.254.169/254/latest/meta-data/public-ipv4`retrieve openstack metadata: `curl http://169.254.169.254/openstack`retrieve latest metadata: `curl http://169.254.169.254/openstack/metadata`retrieve meta_data.json: `curl http://169.254.169.254/openstack/meta_data.json`

retrieve metadata info:

curl http://169.254.169.254/

retrieve latest metadata:

curl http://169.254.169/254/latest

meta-data/$:

curl http://169.254.169/254/latest/meta-data

retrieve floating ip:

curl http://169.254.169/254/latest/meta-data/public-ipv4

retrieve openstack metadata:

curl http://169.254.169.254/openstack

retrieve latest metadata:

curl http://169.254.169.254/openstack/metadata

retrieve meta_data.json:
curl http://169.254.169.254/openstack/meta_data.json

* Curl commands are to be ran from running server

Openstack commands:	Old commands:
Server creation*:
`openstack server create \ --image [IMAGE] \ --flavor [FLAVOR] \ --nic [net-id=NETWORK_UUID\|port-id=PORT_UUID] \ --key-name [KEYPAIR] \ [SERVER]`	`nova boot --image [IMAGE] \ --flavor [FLAVOR] \ --nic [net-id=NETWORK_UUID\|port-id=PORT_UUID] \ --key-name [KEYPAIR] \ [SERVER]`

* You could use –nic net-id=NETWORK_UUID,v4-fixed-ip=IP_ADDRESS to specify fixed IP for SERVER

Few examples:
Create cirros-image:
`openstack image create --public --container-format=bare --disk-format=qcow2 --file cirros-0.3.4-x86_64-disk.img cirros-image`
Create network:
`neutron net-create external_network --provider:network_type flat --provider:physical_network extnet --router:external`
Create subnet:
`neutron subnet-create --name public_subnet --enable_dhcp=False --allocation-pool=start=172.30.152.10,end=172.30.152.40 --gateway=172.30.152.1 external_network 172.30.152.0/24`
Create server:
`openstack server create --image 9d904b2f-8774-4db8-b195-8aa47e3ebe3c --flavor 1 --nic net-id=4d75d36b-cc99-46b3-83aa-6ae5a96ae38e cirros`

Cloud config* examples:
Configure time zone:
`#cloud-config timezone: "Europe/Sarajevo"`
Install packages, specific versions**
`#cloud-config packages: - pwgen - pastebinit - [libpython2.7, 2.7.3-0ubuntu3.1]`
Upgrade all packages**:
`#cloud-config package_upgrade: true`
Install NTP if neccessary and configure NTP server map
`#cloud-config ntp: servers: - my.ntp.server - ntp.ubuntu.com - 192.168.23.2`
Configure CentOS users centos and root with password
`#cloud-config chpasswd: list: \| root:changeme centos:changeme expire: False ssh_pwauth: True`

* Yaml format text files that begin with #cloud-config and are executed by cloud-init process present in most cloud image files, but not in cirros.
** Works with all package managers if specific distro-package is not specified f.e. 2.7.3-0ubuntu3.1