You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@cloudstack.apache.org by BJO ERN <bj...@gmail.com> on 2013/11/10 08:04:51 UTC

Fwd: F5: Failed to create VLAN

Guys, I hope that there is someone who can help me.
After investing days now to get F5 loadbalancer and Cloudstack (4.2.1 build
from sources) I'm pretty much stuck, mostly due to lack of information and
documentation.

I got to a point now where Cloudstack wants to provision a VLAN to spin up
the first VR but it just bails out, what ever I do. Even worse it makes no
sense, the VLAN is created on the F5 so I guess there is just a bug going
on :

*Error Message cloudstack :*

2013-11-09 22:03:49,041 DEBUG [agent.transport.Request]
(Job-Executor-25:job-71 = [ 081a9bd4-6d4d-40d2-9868-48f6aca0116e ]) Seq
7-671875076: Sending  { Cmd , MgmtId: 110493122496, via: 7, Ver: v1, Flags:
100011, [{"com.cloud.agent.api.ro
uting.IpAssocCommand":{"ipAddresses":[{"accountId":1,"sourceNat":true,"add":true,"oneToOneNat":false,"firstIP":false,"vlanId":"651","vlanGateway":"10.161.2.168","vlanNetmask":"255.255.254.0","networkRate":200}],"accessDetails":{},"wait":
0}}] }
2013-11-09 22:03:49,041 DEBUG [agent.transport.Request]
(Job-Executor-25:job-71 = [ 081a9bd4-6d4d-40d2-9868-48f6aca0116e ]) Seq
7-671875076: Executing:  { Cmd , MgmtId: 110493122496, via: 7, Ver: v1,
Flags: 100011, [{"com.cloud.agent.api
.routing.IpAssocCommand":{"ipAddresses":[{"accountId":1,"sourceNat":true,"add":true,"oneToOneNat":false,"firstIP":false,"vlanId":"651","vlanGateway":"10.161.2.168","vlanNetmask":"255.255.254.0","networkRate":200}],"accessDetails":{},"wai
t":0}}] }
2013-11-09 22:03:49,042 DEBUG [agent.manager.DirectAgentAttache]
(DirectAgent-220:null) Seq 7-671875076: Executing request
2013-11-09 22:03:49,316 DEBUG [network.resource.F5BigIpResource]
(DirectAgent-220:null) Creating a guest VLAN with tag 651
2013-11-09 22:03:49,398 ERROR [network.resource.F5BigIpResource]
(DirectAgent-220:null) *Failed to execute IPAssocCommand due to
com.cloud.utils.exception.ExecutionException: Failed to create vlan with
tag 651*
2013-11-09 22:03:49,467 ERROR [network.resource.F5BigIpResource]
(DirectAgent-220:null) Retrying IpAssocCommand. Number of retries
remaining: 1
2013-11-09 22:03:49,662 DEBUG [network.resource.F5BigIpResource]
(DirectAgent-220:null) Creating a guest VLAN with tag 651
2013-11-09 22:03:49,685 ERROR [network.resource.F5BigIpResource]
(DirectAgent-220:null) Exception caught in
Networking::urn:iControl:Networking/VLAN::create()
Exception: Common::OperationFailed
        primary_error_code   : 16908390 (0x01020066)
        secondary_error_code : 0
        error_string         : 01020066:3: The requested VLAN
(/Common/vlan-651) already exists in partition Common.
2013-11-09 22:03:49,685 ERROR [network.resource.F5BigIpResource]
(DirectAgent-220:null) Failed to execute IPAssocCommand due to
com.cloud.utils.exception.ExecutionException: Exception caught in
Networking::urn:iControl:Networking/VLAN::c
reate()
Exception: Common::OperationFailed
        primary_error_code   : 16908390 (0x01020066)
        secondary_error_code : 0
        error_string         : 01020066:3: The requested VLAN
(/Common/vlan-651) already exists in partition Common.
2013-11-09 22:03:49,701 DEBUG
[storage.secondary.SecondaryStorageManagerImpl] (secstorage-1:null) Zone 1
is ready to launch secondary storage VM
2013-11-09 22:03:49,765 ERROR [network.resource.F5BigIpResource]
(DirectAgent-220:null) Retrying IpAssocCommand. Number of retries
remaining: 0
2013-11-09 22:03:49,910 DEBUG [cloud.consoleproxy.ConsoleProxyManagerImpl]
(consoleproxy-1:null) Zone 1 is ready to launch console proxy
2013-11-09 22:03:49,956 DEBUG [network.resource.F5BigIpResource]
(DirectAgent-220:null) Creating a guest VLAN with tag 651
2013-11-09 22:03:49,976 ERROR [network.resource.F5BigIpResource]
(DirectAgent-220:null) Exception caught in
Networking::urn:iControl:Networking/VLAN::create()
Exception: Common::OperationFailed
        primary_error_code   : 16908390 (0x01020066)
        secondary_error_code : 0
        error_string         : 01020066:3: The requested VLAN
(/Common/vlan-651) already exists in partition Common.
2013-11-09 22:03:49,977 ERROR [network.resource.F5BigIpResource]
(DirectAgent-220:null) Failed to execute IPAssocCommand due to
com.cloud.utils.exception.ExecutionException: Exception caught in
Networking::urn:iControl:Networking/VLAN::create()
Exception: Common::OperationFailed
        primary_error_code   : 16908390 (0x01020066)
        secondary_error_code : 0
        error_string         : 01020066:3: The requested VLAN
(/Common/vlan-651) already exists in partition Common.
2013-11-09 22:03:49,977 DEBUG [agent.manager.DirectAgentAttache]
(DirectAgent-220:null) Seq 7-671875076: Response Received:

*Errors I see in the LTM log:*

*Nov  9 22:03:48 f5-ltmve-001 err mcpd[6030]: 01020066:3: The requested
VLAN (/Common/vlan-651) already exists in partition*
*Nov  9 22:03:48 f5-ltmve-001 err mcpd[6030]: 01020066:3: The requested
VLAN (/Common/vlan-651) already exists in partition*

Unfortunately the VLAN has been created that's why I see two errors (retry
parameter in cloudstack is 2) in F5 and 3 in cloudstack.

[root@f5-ltmve-001:Active:Standalone] config # tmsh show /net vlan vlan-651

-------------------------------------
Net::Vlan: vlan-651
-------------------------------------
Interface Name      vlan-651
Mac Address (True)  52:54:00:07:58:7c
MTU                 1500
Tag                 651

  -----------------------
  | Net::Vlan-Member: 1.1
  -----------------------
  | Tagged  yes

     ---------------------------------------------------------------
     | Net::Interface
     | Name  Status    Bits   Bits    Pkts  Pkts  Drops  Errs  Media
     |                   In    Out      In   Out
     ---------------------------------------------------------------
     | 1.1       up  463.4M  22.0K  918.1K    32      0     0   none


What I basically did to get to this point is just compile 4.2.1 branch in
nonoss mode and use the icontrol 11.4.1 matching my F5 LTM (virtual
edition) 11.4
For what it's worth, I attached my network offering I used last, but I did
try shared guest mode too, same result.

count = 1
networkoffering:
name = F5
id = 001ccca1-0a3a-47ba-bd62-ebbc4ef3fbeb
availability = Optional
conservemode = False
displaytext = F5
egressdefaultpolicy = True
forvpc = False
guestiptype = Shared
isdefault = False
ispersistent = False
maxconnections = 8192
networkrate = 200
service:
name = Dns
provider:
name = VirtualRouter
================================================================================
name = UserData
provider:
name = VirtualRouter
================================================================================
name = Lb
capability:
name = SupportedLBIsolation
canchooseservicecapability = False
value = shared
================================================================================
name = ElasticLb
canchooseservicecapability = False
value = false
================================================================================
name = InlineMode
canchooseservicecapability = False
value = false
================================================================================
provider:
name = F5BigIp
================================================================================
name = Dhcp
provider:
name = VirtualRouter
================================================================================
serviceofferingid = 08caae2d-4708-4f74-aa1d-1029464221a3
specifyipranges = True
specifyvlan = True
state = Enabled
traffictype = Guest


Created bug CLOUDSTACK-5119 now to find out what's going on. I will leave
this environment available to debugging but I'm going to continue to test
the F5 support in other IAAS solutions.
I'm also open to downgrade the F5 loadbalancer to a 10.x version

Thanks in advance,
Bjoern