Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Uploading the LxCIPtable VNF Image for a Centralized Deployment

    You use this process to make the LxCIPtable VNF available in a centralized deployment.

    To create an LxCIPtable Image:

    1. At http://cloud-images.ubuntu.com/releases/14.04/release/, determine the appropriate Ubuntu cloud image for your Contrail controller node.
    2. Download the appropriate Ubuntu cloud image to the Contrail controller node.

      For example:

      root@host:/# cd /tmp
      root@host:/tmp# wget http://cloud-images.ubuntu.com/releases/14.04/release/ubuntu-14.04-server-cloudimg-amd64-disk1.img
    3. On the Contrail controller node, upload the Ubuntu image into the Glance software.
      root@host:/# glance image-create --name IPtables --is-public True --container-format bare --disk-format qcow2 < ubuntu-14.04-server-cloudimg-amd64-disk1.img

    4. In a local directory on the Contrail OpenStack node, create a metadata file for the image. For example:
      root@host:~/images# cat user-data.txt
      #cloud-config
      password: <PASSWORD>
      chpasswd: { expire: False }
      ssh_pwauth: True
    5. Create an instance of the image called IPtable-temp in this directory.
      root@host:~/images# nova boot --flavor m1.medium --user-data=./user-data.txt --image IPtables IPtable-temp --nic net-id=<management network id>

    6. From the OpenStack GUI, log in to the instance with the username ubuntu and the password specified in the user-data file.
    7. Customize the instance.

      1. Set the root password to the value passw0rd. For example:

        Caution: You must use the value passw0rd for the LxCIPtable VNF to operate correctly.

        ubuntu@iptable-temp:~$sudo passwd root
        Enter new UNIX password:
        Retype new UNIX password:
        passwd: password updated successfully
        ubuntu@iptable-temp:~$
      2. In the file /etc/ssh/sshd_config, specify the following setting:
        PermitRootLogin = yes
      3. Restart the service.

        service ssh restart

      4. In the file /etc/network/interfaces, modify the eth0, eth1, and eth2 settings as follows:
        auto eth0
        iface eth0 inet dhcp
         metric 1
        auto eth1
        iface eth1 inet dhcp
         metric 100
        auto eth2
        iface eth2 inet dhcp
         metric 100
      5. Verify that IPtables is active.

        service ufw status

    8. Take a snapshot of the OpenStack Instance.

      1. Close the instance.

        sudo shutdown -h now

      2. From the OpenStack Instances page, select Create Snapshot for this instance, and specify the Name as LxcImg.
      3. Delete the temporary instance that you created in Step 5.

    Modified: 2017-10-02