[NWV_404] OpenStack Network Troubleshooting Workshop

Networking of OpenStack infrastructure in a multi-node environment can be complicated and frustrating. There are many custom defined networks (Control, data, and management) for the infrastructure, each with various purposes and traffic flows. OpenStack commands (Neutron, Nova, Cinder, etc.) may flow over one network, with the resource instantiation and service delivery taking place over another. This course is designed to help participants troubleshoot virtual networks deployed with OpenStack over underlying physical infrastructure. The course will show how physical infrastructure, basic VM to VM as well as complex virtualized networks, are deployed with details of daemons, agents, config files, log files, etc. Participants will be taken them through various break-fix scenarios and exercises.

Required Equipment: This course requires an understanding of IT infrastructure and familiarity with basic Linux CLI commands. Each participant needs a laptop with the PuTTY ssh client installed, to be used for direct access into Award Solutions’ OpenStack IaaS (Linux environment).

Learning Objectives

After completing this course, the participant will be able to:
• Associate failures to log file entries, and recommend appropriate actions.
• Perform basic Validation Testing of networked entities
• Differentiate between configuration vs. networking issues
• Identify appropriate trace points, perform capture of packet flows
• Decipher and Interpreting Frame formats
• Isolate network issues, and recommend appropriate corrective action
• Identify and isolate Neutron networking issues

Intended Audience

This course is designed for participants seeking OpenStack networking troubleshooting knowledge.

Suggested Prerequisites

• A solid understanding of L1/L2/L3 physical networking
• A solid understanding of Linux
• A good understanding of OpenStack

Course Length

3 Days

Course Outlines / Knowledge Knuggets

1. Physical Infrastructure Networking
1.1. Various network types
1.2. Agent configuration
1.2.1. Policies
1.3. Agent Log Files
1.4. Agent Service Status
1.5. Validate node-to-node connectivity

2. Basic VM to VM virtual networking
2.1. External equipment and implications
2.2. OpenStack network, VM create
2.3. Linux networking and OpenStack
2.4. Tracing OpenStack commands
2.4.1. APIs, RabitMQ,databases, etc.
2.5. Tracing VM to VM packet
2.6. OpenFlow rules in OVS vSwitch
2.7. Stunnel/encryption

3. Complex VM to VM Virtual networking
3.1. Multiple routers
3.2. FWaaS, LBaaS, etc
3.3. Tracing VM to VM packet
3.4. VXLAN configuration
3.5. Configuration files
3.6. DVR VS Networking node

4. Troubleshooting general communications issues
4.1. Neutron plugin issues
4.2. Tenant Overlapping IP address spaces
4.3. DHCP issues
4.4. Floating/static IP issues

5. Troubleshooting VM-to-VM communication failures
5.1. OpenStack order of operations
5.2. Identifying L1, L2, L3 issues
5.3. Security group/rules

6. Troubleshooting VM networking issues
6.1. L1, L2, L3 issues
6.2. Security issues
6.2.1. Security group rules
6.2.2. Firewall/IPtables
6.3. Cinder volume network access
6.4. Packet throughput enhancements

7. Network traffic analyzers
7.1. Bro and Tcpdump examples
7.2. Correlating events
7.3. Track network wide flows
7.4. Decapsulating
7.5. Decryption
7.6. Policy scripts


For any additional questions,
please contact Mr. Rod Marckese
at +1-972-664-0727 x246 or

