1 [DEFAULT] |
1 [DEFAULT] |
2 # Print more verbose output (set logging level to INFO instead of default WARNING level). |
2 |
3 # verbose = False |
3 # |
4 |
4 # From neutron |
5 # =========Start Global Config Option for Distributed L3 Router=============== |
5 # |
6 # Setting the "router_distributed" flag to "True" will default to the creation |
6 |
7 # of distributed tenant routers. The admin can override this flag by specifying |
7 # Where to store Neutron state files. This directory must be writable by the |
8 # the type of the router on the create request (admin-only attribute). Default |
8 # agent. (string value) |
9 # value is "False" to support legacy mode (centralized) routers. |
9 #state_path = /var/lib/neutron |
10 # |
10 |
11 # router_distributed = False |
11 # The host IP to bind to (string value) |
12 # |
12 #bind_host = 0.0.0.0 |
13 # ===========End Global Config Option for Distributed L3 Router=============== |
13 |
14 |
14 # The port to bind to (port value) |
15 # Print debugging output (set logging level to DEBUG instead of default WARNING level). |
15 # Minimum value: 0 |
16 # debug = False |
16 # Maximum value: 65535 |
17 |
17 #bind_port = 9696 |
18 # Where to store Neutron state files. This directory must be writable by the |
18 |
19 # user executing the agent. |
19 # The path for API extensions. Note that this can be a colon-separated list of |
20 # state_path = /var/lib/neutron |
20 # paths. For example: api_extensions_path = |
21 |
21 # extensions:/path/to/more/exts:/even/more/exts. The __path__ of |
22 # log_format = %(asctime)s %(levelname)8s [%(name)s] %(message)s |
22 # neutron.extensions is appended to this, so if your extensions are in there |
23 # log_date_format = %Y-%m-%d %H:%M:%S |
23 # you don't need to specify them here. (string value) |
24 |
24 #api_extensions_path = |
25 # use_syslog -> syslog |
25 |
26 # log_file and log_dir -> log_dir/log_file |
26 # The type of authentication to use (string value) |
27 # (not log_file) and log_dir -> log_dir/{binary_name}.log |
27 #auth_strategy = keystone |
28 # use_stderr -> stderr |
28 |
29 # (not user_stderr) and (not log_file) -> stdout |
29 # The core plugin Neutron will use (string value) |
30 # publish_errors -> notification system |
30 # |
31 |
31 # The ML2 plugin provides support for heterogenous networking technologies in |
32 # use_syslog = False |
32 # the cloud. |
33 # syslog_log_facility = LOG_USER |
33 core_plugin = ml2 |
34 |
34 |
35 # use_stderr = True |
35 # The service plugins Neutron will use (list value) |
36 # log_file = |
36 # |
37 # log_dir = |
37 # This option must be set when the core_plugin is set to 'ml2' and the |
38 |
38 # supported values are 'router' and 'vpnaas'. |
39 # publish_errors = False |
39 service_plugins = router |
40 |
40 |
41 # Address to bind the API server to |
41 # The base MAC address Neutron will use for VIFs. The first 3 octets will |
42 # bind_host = 0.0.0.0 |
42 # remain unchanged. If the 4th octet is not 00, it will also be used. The |
43 |
43 # others will be randomly generated. (string value) |
44 # Port the bind the API server to |
44 #base_mac = fa:16:3e:00:00:00 |
45 # bind_port = 9696 |
45 |
46 |
46 # How many times Neutron will retry MAC generation (integer value) |
47 # Path to the extensions. Note that this can be a colon-separated list of |
47 #mac_generation_retries = 16 |
48 # paths. For example: |
48 |
49 # api_extensions_path = extensions:/path/to/more/extensions:/even/more/extensions |
49 # Allow the usage of the bulk API (boolean value) |
50 # The __path__ of neutron.extensions is appended to this, so if your |
50 #allow_bulk = true |
51 # extensions are in there you don't need to specify them here |
51 |
52 # api_extensions_path = |
52 # Allow the usage of the pagination (boolean value) |
53 |
53 #allow_pagination = false |
54 # (StrOpt) Neutron core plugin entrypoint to be loaded from the |
54 |
55 # neutron.core_plugins namespace. See setup.cfg for the entrypoint names of the |
55 # Allow the usage of the sorting (boolean value) |
56 # plugins included in the neutron source distribution. For compatibility with |
56 #allow_sorting = false |
57 # previous versions, the class name of a plugin can be specified instead of its |
57 |
58 # entrypoint name. |
58 # The maximum number of items returned in a single response, value was |
59 # |
59 # 'infinite' or negative integer means no limit (string value) |
60 # The ML2 plugin provides support for heterogenous networking technologies |
60 #pagination_max_limit = -1 |
61 # in the cloud. |
61 |
62 # |
62 # Default value of availability zone hints. The availability zone aware |
63 # core_plugin = |
63 # schedulers use this when the resources availability_zone_hints is empty. |
64 # Example: core_plugin = ml2 |
64 # Multiple availability zones can be specified by a comma separated string. |
65 # core_plugin = ml2 |
65 # This value can be empty. In this case, even if availability_zone_hints for a |
66 |
66 # resource is empty, availability zone is considered for high availability |
67 # The EVSNeutronPluginV2 Neutron plugin connects to the Solaris Elastic |
67 # while scheduling the resource. (list value) |
68 # Virtual Switch framework to provide virtual networking between Solaris |
68 #default_availability_zones = |
69 # Zones. |
69 |
70 core_plugin = neutron.plugins.evs.plugin.EVSNeutronPluginV2 |
70 # Maximum number of DNS nameservers per subnet (integer value) |
71 |
71 #max_dns_nameservers = 5 |
72 # (ListOpt) List of service plugin entrypoints to be loaded from the |
72 |
73 # neutron.service_plugins namespace. See setup.cfg for the entrypoint names of |
73 # Maximum number of host routes per subnet (integer value) |
74 # the plugins included in the neutron source distribution. For compatibility |
74 #max_subnet_host_routes = 20 |
75 # with previous versions, the class name of a plugin can be specified instead |
75 |
76 # of its entrypoint name. |
76 # Maximum number of fixed ips per port. This option is deprecated and will be |
77 # |
77 # removed in the N release. (integer value) |
78 # This option must be set when the core_plugin is set to ML2 and the |
78 # This option is deprecated for removal. |
79 # supported values are router and vpnaas. |
79 # Its value may be silently ignored in the future. |
80 # |
80 #max_fixed_ips_per_port = 5 |
81 # service_plugins = |
81 |
82 # Example: service_plugins = router,firewall,lbaas,vpnaas,metering |
82 # Default IPv4 subnet pool to be used for automatic subnet CIDR allocation. |
83 # service_plugins = router |
83 # Specifies by UUID the pool to be used in case where creation of a subnet is |
84 |
84 # being called without a subnet pool ID. If not set then no pool will be used |
85 # Paste configuration file |
85 # unless passed explicitly to the subnet create. If no pool is used, then a |
86 # api_paste_config = api-paste.ini |
86 # CIDR must be passed to create a subnet and that subnet will not be allocated |
87 |
87 # from any pool; it will be considered part of the tenant's private address |
88 # (StrOpt) Hostname to be used by the neutron server, agents and services |
88 # space. This option is deprecated for removal in the N release. (string value) |
89 # running on this machine. All the agents and services running on this machine |
89 # This option is deprecated for removal. |
90 # must use the same host value. |
90 # Its value may be silently ignored in the future. |
91 # The default value is hostname of the machine. |
91 #default_ipv4_subnet_pool = <None> |
92 # |
92 |
93 # host = |
93 # Default IPv6 subnet pool to be used for automatic subnet CIDR allocation. |
94 |
94 # Specifies by UUID the pool to be used in case where creation of a subnet is |
95 # The strategy to be used for auth. |
95 # being called without a subnet pool ID. See the description for |
96 # Supported values are 'keystone'(default), 'noauth'. |
96 # default_ipv4_subnet_pool for more information. This option is deprecated for |
97 # auth_strategy = keystone |
97 # removal in the N release. (string value) |
98 |
98 # This option is deprecated for removal. |
99 # Base MAC address. The first 3 octets will remain unchanged. If the |
99 # Its value may be silently ignored in the future. |
100 # 4h octet is not 00, it will also be used. The others will be |
100 #default_ipv6_subnet_pool = <None> |
101 # randomly generated. |
101 |
102 # 3 octet |
102 # Enables IPv6 Prefix Delegation for automatic subnet CIDR allocation. Set to |
103 # base_mac = fa:16:3e:00:00:00 |
103 # True to enable IPv6 Prefix Delegation for subnet allocation in a PD-capable |
104 # 4 octet |
104 # environment. Users making subnet creation requests for IPv6 subnets without |
105 # base_mac = fa:16:3e:4f:00:00 |
105 # providing a CIDR or subnetpool ID will be given a CIDR via the Prefix |
106 |
106 # Delegation mechanism. Note that enabling PD will override the behavior of the |
107 # DVR Base MAC address. The first 3 octets will remain unchanged. If the |
107 # default IPv6 subnetpool. (boolean value) |
108 # 4th octet is not 00, it will also be used. The others will be randomly |
108 #ipv6_pd_enabled = false |
109 # generated. The 'dvr_base_mac' *must* be different from 'base_mac' to |
109 |
110 # avoid mixing them up with MAC's allocated for tenant ports. |
110 # DHCP lease duration (in seconds). Use -1 to tell dnsmasq to use infinite |
111 # A 4 octet example would be dvr_base_mac = fa:16:3f:4f:00:00 |
111 # lease times. (integer value) |
112 # The default is 3 octet |
112 # Deprecated group/name - [DEFAULT]/dhcp_lease_time |
113 # dvr_base_mac = fa:16:3f:00:00:00 |
113 #dhcp_lease_duration = 86400 |
114 |
114 |
115 # Maximum amount of retries to generate a unique MAC address |
115 # Domain to use for building the hostnames (string value) |
116 # mac_generation_retries = 16 |
116 #dns_domain = openstacklocal |
117 |
117 |
118 # DHCP Lease duration (in seconds). Use -1 to |
118 # Driver for external DNS integration. (string value) |
119 # tell dnsmasq to use infinite lease times. |
119 #external_dns_driver = <None> |
120 # dhcp_lease_duration = 86400 |
120 |
121 |
121 # Allow sending resource operation notification to DHCP agent (boolean value) |
122 # Allow sending resource operation notification to DHCP agent |
122 #dhcp_agent_notification = true |
123 # dhcp_agent_notification = True |
123 |
124 |
124 # Allow overlapping IP support in Neutron. Attention: the following parameter |
125 # Enable or disable bulk create/update/delete operations |
125 # MUST be set to False if Neutron is being used in conjunction with Nova |
126 # allow_bulk = True |
126 # security groups. (boolean value) |
127 # Enable or disable pagination |
127 #allow_overlapping_ips = false |
128 # allow_pagination = False |
128 |
129 # Enable or disable sorting |
129 # Hostname to be used by the Neutron server, agents and services running on |
130 # allow_sorting = False |
130 # this machine. All the agents and services running on this machine must use |
131 # Enable or disable overlapping IPs for subnets |
131 # the same host value. (string value) |
132 # Attention: the following parameter MUST be set to False if Neutron is |
132 #host = example.domain |
133 # being used in conjunction with nova security groups |
133 |
134 # allow_overlapping_ips = False |
|
135 # Ensure that configured gateway is on subnet. For IPv6, validate only if |
134 # Ensure that configured gateway is on subnet. For IPv6, validate only if |
136 # gateway is not a link local address. Deprecated, to be removed during the |
135 # gateway is not a link local address. Deprecated, to be removed during the |
137 # K release, at which point the check will be mandatory. |
136 # Newton release, at which point the gateway will not be forced on to subnet. |
138 # force_gateway_on_subnet = True |
137 # (boolean value) |
139 |
138 # This option is deprecated for removal. |
140 # Default maximum number of items returned in a single response, |
139 # Its value may be silently ignored in the future. |
141 # value == infinite and value < 0 means no max limit, and value must |
140 #force_gateway_on_subnet = true |
142 # be greater than 0. If the number of items requested is greater than |
141 |
143 # pagination_max_limit, server will just return pagination_max_limit |
142 # Send notification to nova when port status changes (boolean value) |
144 # of number of items. |
143 #notify_nova_on_port_status_changes = true |
145 # pagination_max_limit = -1 |
144 |
146 |
145 # Send notification to nova when port data (fixed_ips/floatingip) changes so |
147 # Maximum number of DNS nameservers per subnet |
146 # nova can update its cache. (boolean value) |
148 # max_dns_nameservers = 5 |
147 #notify_nova_on_port_data_changes = true |
149 |
148 |
150 # Maximum number of host routes per subnet |
149 # Number of seconds between sending events to nova if there are any events to |
151 # max_subnet_host_routes = 20 |
150 # send. (integer value) |
152 |
151 #send_events_interval = 2 |
153 # Maximum number of fixed ips per port |
152 |
154 # max_fixed_ips_per_port = 5 |
153 # If True, advertise network MTU values if core plugin calculates them. MTU is |
155 |
154 # advertised to running instances via DHCP and RA MTU options. (boolean value) |
156 # Maximum number of routes per router |
155 #advertise_mtu = true |
157 # max_routes = 30 |
156 |
158 |
157 # Neutron IPAM (IP address management) driver to use. If ipam_driver is not set |
159 # Default Subnet Pool to be used for IPv4 subnet-allocation. |
158 # (default behavior), no IPAM driver is used. In order to use the reference |
160 # Specifies by UUID the pool to be used in case of subnet-create being called |
159 # implementation of Neutron IPAM driver, use 'internal'. (string value) |
161 # without a subnet-pool ID. The default of None means that no pool will be |
160 #ipam_driver = <None> |
162 # used unless passed explicitly to subnet create. If no pool is used, then a |
161 |
163 # CIDR must be passed to create a subnet and that subnet will not be allocated |
162 # If True, then allow plugins that support it to create VLAN transparent |
164 # from any pool; it will be considered part of the tenant's private address |
163 # networks. (boolean value) |
165 # space. |
164 #vlan_transparent = false |
166 # default_ipv4_subnet_pool = |
165 |
167 |
166 # This will choose the web framework in which to run the Neutron API server. |
168 # Default Subnet Pool to be used for IPv6 subnet-allocation. |
167 # 'pecan' is a new experiemental rewrite of the API server. (string value) |
169 # Specifies by UUID the pool to be used in case of subnet-create being |
168 # Allowed values: legacy, pecan |
170 # called without a subnet-pool ID. Set to "prefix_delegation" |
169 #web_framework = legacy |
171 # to enable IPv6 Prefix Delegation in a PD-capable environment. |
170 |
172 # See the description for default_ipv4_subnet_pool for more information. |
171 # MTU of the underlying physical network. Neutron uses this value to calculate |
173 # default_ipv6_subnet_pool = |
172 # MTU for all virtual network components. For flat and VLAN networks, neutron |
174 |
173 # uses this value without modification. For overlay networks such as VXLAN, |
175 # =========== items for MTU selection and advertisement ============= |
174 # neutron automatically subtracts the overlay protocol overhead from this |
176 # Advertise MTU. If True, effort is made to advertise MTU |
175 # value. Defaults to 1500, the standard value for Ethernet. Also consider |
177 # settings to VMs via network methods (ie. DHCP and RA MTU options) |
176 # setting the path_mtu ml2 configuration value to the global_physnet_mtu value |
178 # when the network's preferred MTU is known. |
177 # when using the ml2 plug-in. Otherwise the global_physnet_mtu value might get |
179 # advertise_mtu = False |
178 # overridden by a smaller path_mtu value and hence have no effect on |
180 # ======== end of items for MTU selection and advertisement ========= |
179 # overlay/tunnel networks but only flat and VLAN networks. (integer value) |
181 |
180 # Deprecated group/name - [ml2]/segment_mtu |
182 # =========== items for agent management extension ============= |
181 #global_physnet_mtu = 1500 |
183 # Seconds to regard the agent as down; should be at least twice |
182 |
184 # report_interval, to be sure the agent is down for good |
183 # Number of backlog requests to configure the socket with (integer value) |
185 # agent_down_time = 75 |
184 #backlog = 4096 |
186 # =========== end of items for agent management extension ===== |
185 |
187 |
186 # Number of seconds to keep retrying to listen (integer value) |
188 # =========== items for agent scheduler extension ============= |
187 #retry_until_window = 30 |
189 # Driver to use for scheduling network to DHCP agent |
188 |
190 # network_scheduler_driver = neutron.scheduler.dhcp_agent_scheduler.ChanceScheduler |
189 # Enable SSL on the API server (boolean value) |
191 # Driver to use for scheduling router to a default L3 agent |
190 #use_ssl = false |
192 # router_scheduler_driver = neutron.scheduler.l3_agent_scheduler.ChanceScheduler |
191 |
193 # Driver to use for scheduling a loadbalancer pool to an lbaas agent |
192 # Seconds between running periodic tasks (integer value) |
194 # loadbalancer_pool_scheduler_driver = neutron.services.loadbalancer.agent_scheduler.ChanceScheduler |
193 #periodic_interval = 40 |
195 |
194 |
196 # (StrOpt) Representing the resource type whose load is being reported by |
195 # Number of separate API worker processes for service. If not specified, the |
197 # the agent. |
196 # default is equal to the number of CPUs available for best performance. |
198 # This can be 'networks','subnets' or 'ports'. When specified (Default is networks), |
197 # (integer value) |
199 # the server will extract particular load sent as part of its agent configuration object |
198 api_workers = 1 |
200 # from the agent report state, which is the number of resources being consumed, at |
199 |
201 # every report_interval. |
200 # Number of RPC worker processes for service (integer value) |
202 # dhcp_load_type can be used in combination with network_scheduler_driver = |
201 #rpc_workers = 1 |
203 # neutron.scheduler.dhcp_agent_scheduler.WeightScheduler |
202 |
204 # When the network_scheduler_driver is WeightScheduler, dhcp_load_type can |
203 # Number of RPC worker processes dedicated to state reports queue (integer |
205 # be configured to represent the choice for the resource being balanced. |
204 # value) |
206 # Example: dhcp_load_type = networks |
205 #rpc_state_report_workers = 1 |
207 # Values: |
206 |
208 # networks - number of networks hosted on the agent |
207 # Range of seconds to randomly delay when starting the periodic task scheduler |
209 # subnets - number of subnets associated with the networks hosted on the agent |
208 # to reduce stampeding. (Disable by setting to 0) (integer value) |
210 # ports - number of ports associated with the networks hosted on the agent |
209 #periodic_fuzzy_delay = 5 |
211 # dhcp_load_type = networks |
210 |
212 |
211 # |
213 # Allow auto scheduling networks to DHCP agent. It will schedule non-hosted |
212 # From neutron.agent |
214 # networks to first DHCP agent which sends get_active_networks message to |
213 # |
215 # neutron server |
214 |
216 # network_auto_schedule = True |
215 # The driver used to manage the virtual interface. (string value) |
217 |
216 #interface_driver = <None> |
218 # Allow auto scheduling routers to L3 agent. It will schedule non-hosted |
217 |
219 # routers to first L3 agent which sends sync_routers message to neutron server |
218 # Location for Metadata Proxy UNIX domain socket. (string value) |
220 # router_auto_schedule = True |
219 #metadata_proxy_socket = $state_path/metadata_proxy |
221 |
220 |
222 # Allow automatic rescheduling of routers from dead L3 agents with |
221 # User (uid or name) running metadata proxy after its initialization (if empty: |
223 # admin_state_up set to True to alive agents. |
222 # agent effective user). (string value) |
224 # allow_automatic_l3agent_failover = False |
223 #metadata_proxy_user = |
225 |
224 |
226 # Allow automatic removal of networks from dead DHCP agents with |
225 # Group (gid or name) running metadata proxy after its initialization (if |
227 # admin_state_up set to True. |
226 # empty: agent effective group). (string value) |
228 # Networks could then be rescheduled if network_auto_schedule is True |
227 #metadata_proxy_group = |
229 # allow_automatic_dhcp_failover = True |
228 |
230 |
229 # Enable/Disable log watch by metadata proxy. It should be disabled when |
231 # Number of DHCP agents scheduled to host a network. This enables redundant |
|
232 # DHCP agents for configured networks. |
|
233 # dhcp_agents_per_network = 1 |
|
234 |
|
235 # Enable services on agents with admin_state_up False. |
|
236 # If this option is False, when admin_state_up of an agent is turned to |
|
237 # False, services on it will be disabled. If this option is True, services |
|
238 # on agents with admin_state_up False keep available and manual scheduling |
|
239 # to such agents is available. Agents with admin_state_up False are not |
|
240 # selected for automatic scheduling regardless of this option. |
|
241 # enable_services_on_agents_with_admin_state_down = False |
|
242 |
|
243 # =========== end of items for agent scheduler extension ===== |
|
244 |
|
245 # =========== items for l3 extension ============== |
|
246 # Enable high availability for virtual routers. |
|
247 # l3_ha = False |
|
248 # |
|
249 # Maximum number of l3 agents which a HA router will be scheduled on. If it |
|
250 # is set to 0 the router will be scheduled on every agent. |
|
251 # max_l3_agents_per_router = 3 |
|
252 # |
|
253 # Minimum number of l3 agents which a HA router will be scheduled on. The |
|
254 # default value is 2. |
|
255 # min_l3_agents_per_router = 2 |
|
256 # |
|
257 # CIDR of the administrative network if HA mode is enabled |
|
258 # l3_ha_net_cidr = 169.254.192.0/18 |
|
259 # |
|
260 # The network type to use when creating the HA network for an HA router. |
|
261 # By default or if empty, the first 'tenant_network_types' |
|
262 # is used. This is helpful when the VRRP traffic should use a specific |
|
263 # network which not the default one. |
|
264 # ha_network_type = |
|
265 # Example: ha_network_type = flat |
|
266 # |
|
267 # The physical network name with which the HA network can be created. |
|
268 # ha_network_physical_name = |
|
269 # Example: ha_network_physical_name = physnet1 |
|
270 # =========== end of items for l3 extension ======= |
|
271 |
|
272 # =========== items for metadata proxy configuration ============== |
|
273 # User (uid or name) running metadata proxy after its initialization |
|
274 # (if empty: agent effective user) |
|
275 # metadata_proxy_user = |
|
276 |
|
277 # Group (gid or name) running metadata proxy after its initialization |
|
278 # (if empty: agent effective group) |
|
279 # metadata_proxy_group = |
|
280 |
|
281 # Enable/Disable log watch by metadata proxy, it should be disabled when |
|
282 # metadata_proxy_user/group is not allowed to read/write its log file and |
230 # metadata_proxy_user/group is not allowed to read/write its log file and |
283 # 'copytruncate' logrotate option must be used if logrotate is enabled on |
231 # copytruncate logrotate option must be used if logrotate is enabled on |
284 # metadata proxy log files. Option default value is deduced from |
232 # metadata proxy log files. Option default value is deduced from |
285 # metadata_proxy_user: watch log is enabled if metadata_proxy_user is agent |
233 # metadata_proxy_user: watch log is enabled if metadata_proxy_user is agent |
286 # effective user id/name. |
234 # effective user id/name. (boolean value) |
287 # metadata_proxy_watch_log = |
235 #metadata_proxy_watch_log = <None> |
288 |
236 |
289 # Location of Metadata Proxy UNIX domain socket |
237 # |
290 # metadata_proxy_socket = $state_path/metadata_proxy |
238 # From neutron.db |
291 # =========== end of items for metadata proxy configuration ============== |
239 # |
292 |
240 |
293 # ========== items for VLAN trunking networks ========== |
241 # Seconds to regard the agent is down; should be at least twice |
294 # Setting this flag to True will allow plugins that support it to |
242 # report_interval, to be sure the agent is down for good. (integer value) |
295 # create VLAN transparent networks. This flag has no effect for |
243 #agent_down_time = 75 |
296 # plugins that do not support VLAN transparent networks. |
244 |
297 # vlan_transparent = False |
245 # Representing the resource type whose load is being reported by the agent. |
298 # ========== end of items for VLAN trunking networks ========== |
246 # This can be "networks", "subnets" or "ports". When specified (Default is |
299 |
247 # networks), the server will extract particular load sent as part of its agent |
300 # =========== WSGI parameters related to the API server ============== |
248 # configuration object from the agent report state, which is the number of |
301 # Number of separate worker processes to spawn. The default, 0, runs the |
249 # resources being consumed, at every report_interval.dhcp_load_type can be used |
302 # worker thread in the current process. Greater than 0 launches that number of |
250 # in combination with network_scheduler_driver = |
303 # child processes as workers. The parent process manages them. |
251 # neutron.scheduler.dhcp_agent_scheduler.WeightScheduler When the |
304 # api_workers = 0 |
252 # network_scheduler_driver is WeightScheduler, dhcp_load_type can be configured |
305 |
253 # to represent the choice for the resource being balanced. Example: |
306 # Number of separate RPC worker processes to spawn. The default, 0, runs the |
254 # dhcp_load_type=networks (string value) |
307 # worker thread in the current process. Greater than 0 launches that number of |
255 # Allowed values: networks, subnets, ports |
308 # child processes as RPC workers. The parent process manages them. |
256 #dhcp_load_type = networks |
309 # This feature is experimental until issues are addressed and testing has been |
257 |
310 # enabled for various plugins for compatibility. |
258 # Agent starts with admin_state_up=False when enable_new_agents=False. In the |
311 # rpc_workers = 0 |
259 # case, user's resources will not be scheduled automatically to the agent until |
312 |
260 # admin changes admin_state_up to True. (boolean value) |
313 # Timeout for client connections socket operations. If an |
261 #enable_new_agents = true |
314 # incoming connection is idle for this number of seconds it |
262 |
315 # will be closed. A value of '0' means wait forever. (integer |
263 # Maximum number of routes per router (integer value) |
316 # value) |
264 #max_routes = 30 |
317 # client_socket_timeout = 900 |
265 |
318 |
266 # Define the default value of enable_snat if not provided in |
319 # wsgi keepalive option. Determines if connections are allowed to be held open |
267 # external_gateway_info. (boolean value) |
320 # by clients after a request is fulfilled. A value of False will ensure that |
268 #enable_snat_by_default = true |
321 # the socket connection will be explicitly closed once a response has been |
269 |
322 # sent to the client. |
270 # Driver to use for scheduling network to DHCP agent (string value) |
323 # wsgi_keep_alive = True |
271 #network_scheduler_driver = neutron.scheduler.dhcp_agent_scheduler.WeightScheduler |
324 |
272 |
325 # Sets the value of TCP_KEEPIDLE in seconds to use for each server socket when |
273 # Allow auto scheduling networks to DHCP agent. (boolean value) |
326 # starting API server. Not supported on OS X. |
274 #network_auto_schedule = true |
327 # tcp_keepidle = 600 |
275 |
328 |
276 # Automatically remove networks from offline DHCP agents. (boolean value) |
329 # Number of seconds to keep retrying to listen |
277 #allow_automatic_dhcp_failover = true |
330 # retry_until_window = 30 |
278 |
331 |
279 # Number of DHCP agents scheduled to host a tenant network. If this number is |
332 # Number of backlog requests to configure the socket with. |
280 # greater than 1, the scheduler automatically assigns multiple DHCP agents for |
333 # backlog = 4096 |
281 # a given tenant network, providing high availability for DHCP service. |
334 |
282 # (integer value) |
335 # Max header line to accommodate large tokens |
283 #dhcp_agents_per_network = 1 |
336 # max_header_line = 16384 |
284 |
337 |
285 # Enable services on an agent with admin_state_up False. If this option is |
338 # Enable SSL on the API server |
286 # False, when admin_state_up of an agent is turned False, services on it will |
339 # use_ssl = False |
287 # be disabled. Agents with admin_state_up False are not selected for automatic |
340 |
288 # scheduling regardless of this option. But manual scheduling to such agents is |
341 # Certificate file to use when starting API server securely |
289 # available if this option is True. (boolean value) |
342 # ssl_cert_file = /path/to/certfile |
290 #enable_services_on_agents_with_admin_state_down = false |
343 |
291 |
344 # Private key file to use when starting API server securely |
292 # The base mac address used for unique DVR instances by Neutron. The first 3 |
345 # ssl_key_file = /path/to/keyfile |
293 # octets will remain unchanged. If the 4th octet is not 00, it will also be |
346 |
294 # used. The others will be randomly generated. The 'dvr_base_mac' *must* be |
347 # CA certificate file to use when starting API server securely to |
295 # different from 'base_mac' to avoid mixing them up with MAC's allocated for |
348 # verify connecting clients. This is an optional parameter only required if |
296 # tenant ports. A 4 octet example would be dvr_base_mac = fa:16:3f:4f:00:00. |
349 # API clients need to authenticate to the API server using SSL certificates |
297 # The default is 3 octet (string value) |
350 # signed by a trusted CA |
298 #dvr_base_mac = fa:16:3f:00:00:00 |
351 # ssl_ca_file = /path/to/cafile |
299 |
352 # ======== end of WSGI parameters related to the API server ========== |
300 # System-wide flag to determine the type of router that tenants can create. |
353 |
301 # Only admin can override. (boolean value) |
354 # ======== neutron nova interactions ========== |
302 #router_distributed = false |
355 # Send notification to nova when port status is active. |
303 |
356 # notify_nova_on_port_status_changes = True |
304 # Driver to use for scheduling router to a default L3 agent (string value) |
357 |
305 #router_scheduler_driver = neutron.scheduler.l3_agent_scheduler.LeastRoutersScheduler |
358 # Send notifications to nova when port data (fixed_ips/floatingips) change |
306 |
359 # so nova can update it's cache. |
307 # Allow auto scheduling of routers to L3 agent. (boolean value) |
360 # notify_nova_on_port_data_changes = True |
308 #router_auto_schedule = true |
361 |
309 |
362 # URL for connection to nova (Only supports one nova region currently). |
310 # Automatically reschedule routers from offline L3 agents to online L3 agents. |
363 # nova_url = http://127.0.0.1:8774/v2 |
311 # (boolean value) |
364 |
312 #allow_automatic_l3agent_failover = false |
365 # Name of nova region to use. Useful if keystone manages more than one region |
313 |
366 # nova_region_name = |
314 # Enable HA mode for virtual routers. (boolean value) |
367 |
315 #l3_ha = false |
368 # Username for connection to nova in admin context |
316 |
369 # nova_admin_username = |
317 # Maximum number of L3 agents which a HA router will be scheduled on. If it is |
370 |
318 # set to 0 then the router will be scheduled on every agent. (integer value) |
371 # The uuid of the admin nova tenant |
319 #max_l3_agents_per_router = 3 |
372 # nova_admin_tenant_id = |
320 |
373 |
321 # Minimum number of L3 agents which a HA router will be scheduled on. If it is |
374 # The name of the admin nova tenant. If the uuid of the admin nova tenant |
322 # set to 0 then the router will be scheduled on every agent. (integer value) |
375 # is set, this is optional. Useful for cases where the uuid of the admin |
323 #min_l3_agents_per_router = 2 |
376 # nova tenant is not available when configuration is being done. |
324 |
377 # nova_admin_tenant_name = |
325 # Subnet used for the l3 HA admin network. (string value) |
378 |
326 #l3_ha_net_cidr = 169.254.192.0/18 |
379 # Password for connection to nova in admin context. |
327 |
380 # nova_admin_password = |
328 # The network type to use when creating the HA network for an HA router. By |
381 |
329 # default or if empty, the first 'tenant_network_types' is used. This is |
382 # Authorization URL for connection to nova in admin context. |
330 # helpful when the VRRP traffic should use a specific network which is not the |
383 # nova_admin_auth_url = http://localhost:5000/v2.0 |
331 # default one. (string value) |
384 |
332 #l3_ha_network_type = |
385 # CA file for novaclient to verify server certificates |
333 |
386 # nova_ca_certificates_file = |
334 # The physical network name with which the HA network can be created. (string |
387 |
335 # value) |
388 # Boolean to control ignoring SSL errors on the nova url |
336 #l3_ha_network_physical_name = |
389 # nova_api_insecure = False |
337 |
390 |
338 # |
391 # Number of seconds between sending events to nova if there are any events to send |
339 # From neutron.extensions |
392 # send_events_interval = 2 |
340 # |
393 |
341 |
394 # ======== end of neutron nova interactions ========== |
342 # Maximum number of allowed address pairs (integer value) |
395 |
343 #max_allowed_address_pair = 10 |
396 # |
344 |
397 # Options defined in oslo.messaging |
345 # |
398 # |
346 # From neutron.qos |
399 |
347 # |
400 # Use durable queues in amqp. (boolean value) |
348 |
401 # Deprecated group/name - [DEFAULT]/rabbit_durable_queues |
349 # Drivers list to use to send the update notification (list value) |
402 # amqp_durable_queues=false |
350 #notification_drivers = message_queue |
403 |
351 |
404 # Auto-delete queues in amqp. (boolean value) |
352 # |
405 # amqp_auto_delete=false |
353 # From oslo.log |
|
354 # |
|
355 |
|
356 # If set to true, the logging level will be set to DEBUG instead of the default |
|
357 # INFO level. (boolean value) |
|
358 #debug = false |
|
359 |
|
360 # If set to false, the logging level will be set to WARNING instead of the |
|
361 # default INFO level. (boolean value) |
|
362 # This option is deprecated for removal. |
|
363 # Its value may be silently ignored in the future. |
|
364 #verbose = true |
|
365 |
|
366 # The name of a logging configuration file. This file is appended to any |
|
367 # existing logging configuration files. For details about logging configuration |
|
368 # files, see the Python logging module documentation. Note that when logging |
|
369 # configuration files are used then all logging configuration is set in the |
|
370 # configuration file and other logging configuration options are ignored (for |
|
371 # example, logging_context_format_string). (string value) |
|
372 # Deprecated group/name - [DEFAULT]/log_config |
|
373 #log_config_append = <None> |
|
374 |
|
375 # Defines the format string for %%(asctime)s in log records. Default: |
|
376 # %(default)s . This option is ignored if log_config_append is set. (string |
|
377 # value) |
|
378 #log_date_format = %Y-%m-%d %H:%M:%S |
|
379 |
|
380 # (Optional) Name of log file to send logging output to. If no default is set, |
|
381 # logging will go to stderr as defined by use_stderr. This option is ignored if |
|
382 # log_config_append is set. (string value) |
|
383 # Deprecated group/name - [DEFAULT]/logfile |
|
384 #log_file = <None> |
|
385 |
|
386 # (Optional) The base directory used for relative log_file paths. This option |
|
387 # is ignored if log_config_append is set. (string value) |
|
388 # Deprecated group/name - [DEFAULT]/logdir |
|
389 #log_dir = <None> |
|
390 |
|
391 # Uses logging handler designed to watch file system. When log file is moved or |
|
392 # removed this handler will open a new log file with specified path |
|
393 # instantaneously. It makes sense only if log_file option is specified and |
|
394 # Linux platform is used. This option is ignored if log_config_append is set. |
|
395 # (boolean value) |
|
396 #watch_log_file = false |
|
397 |
|
398 # Use syslog for logging. Existing syslog format is DEPRECATED and will be |
|
399 # changed later to honor RFC5424. This option is ignored if log_config_append |
|
400 # is set. (boolean value) |
|
401 #use_syslog = false |
|
402 |
|
403 # Syslog facility to receive log lines. This option is ignored if |
|
404 # log_config_append is set. (string value) |
|
405 #syslog_log_facility = LOG_USER |
|
406 |
|
407 # Log output to standard error. This option is ignored if log_config_append is |
|
408 # set. (boolean value) |
|
409 #use_stderr = true |
|
410 |
|
411 # Format string to use for log messages with context. (string value) |
|
412 #logging_context_format_string = %(asctime)s.%(msecs)03d %(process)d %(levelname)s %(name)s [%(request_id)s %(user_identity)s] %(instance)s%(message)s |
|
413 |
|
414 # Format string to use for log messages when context is undefined. (string |
|
415 # value) |
|
416 #logging_default_format_string = %(asctime)s.%(msecs)03d %(process)d %(levelname)s %(name)s [-] %(instance)s%(message)s |
|
417 |
|
418 # Additional data to append to log message when logging level for the message |
|
419 # is DEBUG. (string value) |
|
420 #logging_debug_format_suffix = %(funcName)s %(pathname)s:%(lineno)d |
|
421 |
|
422 # Prefix each line of exception output with this format. (string value) |
|
423 #logging_exception_prefix = %(asctime)s.%(msecs)03d %(process)d ERROR %(name)s %(instance)s |
|
424 |
|
425 # Defines the format string for %(user_identity)s that is used in |
|
426 # logging_context_format_string. (string value) |
|
427 #logging_user_identity_format = %(user)s %(tenant)s %(domain)s %(user_domain)s %(project_domain)s |
|
428 |
|
429 # List of package logging levels in logger=LEVEL pairs. This option is ignored |
|
430 # if log_config_append is set. (list value) |
|
431 #default_log_levels = amqp=WARN,amqplib=WARN,boto=WARN,qpid=WARN,sqlalchemy=WARN,suds=INFO,oslo.messaging=INFO,iso8601=WARN,requests.packages.urllib3.connectionpool=WARN,urllib3.connectionpool=WARN,websocket=WARN,requests.packages.urllib3.util.retry=WARN,urllib3.util.retry=WARN,keystonemiddleware=WARN,routes.middleware=WARN,stevedore=WARN,taskflow=WARN,keystoneauth=WARN,oslo.cache=INFO,dogpile.core.dogpile=INFO |
|
432 |
|
433 # Enables or disables publication of error events. (boolean value) |
|
434 #publish_errors = false |
|
435 |
|
436 # The format for an instance that is passed with the log message. (string |
|
437 # value) |
|
438 #instance_format = "[instance: %(uuid)s] " |
|
439 |
|
440 # The format for an instance UUID that is passed with the log message. (string |
|
441 # value) |
|
442 #instance_uuid_format = "[instance: %(uuid)s] " |
|
443 |
|
444 # Enables or disables fatal status of deprecations. (boolean value) |
|
445 #fatal_deprecations = false |
|
446 |
|
447 # |
|
448 # From oslo.messaging |
|
449 # |
406 |
450 |
407 # Size of RPC connection pool. (integer value) |
451 # Size of RPC connection pool. (integer value) |
408 # rpc_conn_pool_size=30 |
452 # Deprecated group/name - [DEFAULT]/rpc_conn_pool_size |
409 |
453 #rpc_conn_pool_size = 30 |
410 # Qpid broker hostname. (string value) |
454 |
411 # qpid_hostname=localhost |
455 # ZeroMQ bind address. Should be a wildcard (*), an ethernet interface, or IP. |
412 |
456 # The "host" option should point or resolve to this address. (string value) |
413 # Qpid broker port. (integer value) |
457 #rpc_zmq_bind_address = * |
414 # qpid_port=5672 |
458 |
415 |
459 # MatchMaker driver. (string value) |
416 # Qpid HA cluster host:port pairs. (list value) |
460 # Allowed values: redis, dummy |
417 # qpid_hosts=$qpid_hostname:$qpid_port |
461 #rpc_zmq_matchmaker = redis |
418 |
462 |
419 # Username for Qpid connection. (string value) |
463 # Type of concurrency used. Either "native" or "eventlet" (string value) |
420 # qpid_username= |
464 #rpc_zmq_concurrency = eventlet |
421 |
465 |
422 # Password for Qpid connection. (string value) |
466 # Number of ZeroMQ contexts, defaults to 1. (integer value) |
423 # qpid_password= |
467 #rpc_zmq_contexts = 1 |
424 |
468 |
425 # Space separated list of SASL mechanisms to use for auth. |
469 # Maximum number of ingress messages to locally buffer per topic. Default is |
|
470 # unlimited. (integer value) |
|
471 #rpc_zmq_topic_backlog = <None> |
|
472 |
|
473 # Directory for holding IPC sockets. (string value) |
|
474 #rpc_zmq_ipc_dir = /var/run/openstack |
|
475 |
|
476 # Name of this node. Must be a valid hostname, FQDN, or IP address. Must match |
|
477 # "host" option, if running Nova. (string value) |
|
478 #rpc_zmq_host = localhost |
|
479 |
|
480 # Seconds to wait before a cast expires (TTL). The default value of -1 |
|
481 # specifies an infinite linger period. The value of 0 specifies no linger |
|
482 # period. Pending messages shall be discarded immediately when the socket is |
|
483 # closed. Only supported by impl_zmq. (integer value) |
|
484 #rpc_cast_timeout = -1 |
|
485 |
|
486 # The default number of seconds that poll should wait. Poll raises timeout |
|
487 # exception when timeout expired. (integer value) |
|
488 #rpc_poll_timeout = 1 |
|
489 |
|
490 # Expiration timeout in seconds of a name service record about existing target |
|
491 # ( < 0 means no timeout). (integer value) |
|
492 #zmq_target_expire = 120 |
|
493 |
|
494 # Use PUB/SUB pattern for fanout methods. PUB/SUB always uses proxy. (boolean |
|
495 # value) |
|
496 #use_pub_sub = true |
|
497 |
|
498 # Minimal port number for random ports range. (port value) |
|
499 # Minimum value: 0 |
|
500 # Maximum value: 65535 |
|
501 #rpc_zmq_min_port = 49152 |
|
502 |
|
503 # Maximal port number for random ports range. (integer value) |
|
504 # Minimum value: 1 |
|
505 # Maximum value: 65536 |
|
506 #rpc_zmq_max_port = 65536 |
|
507 |
|
508 # Number of retries to find free port number before fail with ZMQBindError. |
|
509 # (integer value) |
|
510 #rpc_zmq_bind_port_retries = 100 |
|
511 |
|
512 # Size of executor thread pool. (integer value) |
|
513 # Deprecated group/name - [DEFAULT]/rpc_thread_pool_size |
|
514 #executor_thread_pool_size = 64 |
|
515 |
|
516 # Seconds to wait for a response from a call. (integer value) |
|
517 #rpc_response_timeout = 60 |
|
518 |
|
519 # A URL representing the messaging driver to use and its full configuration. If |
|
520 # not set, we fall back to the rpc_backend option and driver specific |
|
521 # configuration. (string value) |
|
522 #transport_url = <None> |
|
523 |
|
524 # The messaging driver to use, defaults to rabbit. Other drivers include amqp |
|
525 # and zmq. (string value) |
|
526 #rpc_backend = rabbit |
|
527 |
|
528 # The default exchange under which topics are scoped. May be overridden by an |
|
529 # exchange name specified in the transport_url option. (string value) |
|
530 #control_exchange = neutron |
|
531 |
|
532 # |
|
533 # From oslo.service.wsgi |
|
534 # |
|
535 |
|
536 # File name for the paste.deploy config for api service (string value) |
|
537 #api_paste_config = api-paste.ini |
|
538 |
|
539 # A python format string that is used as the template to generate log lines. |
|
540 # The following values can beformatted into it: client_ip, date_time, |
|
541 # request_line, status_code, body_length, wall_seconds. (string value) |
|
542 #wsgi_log_format = %(client_ip)s "%(request_line)s" status: %(status_code)s len: %(body_length)s time: %(wall_seconds).7f |
|
543 |
|
544 # Sets the value of TCP_KEEPIDLE in seconds for each server socket. Not |
|
545 # supported on OS X. (integer value) |
|
546 #tcp_keepidle = 600 |
|
547 |
|
548 # Size of the pool of greenthreads used by wsgi (integer value) |
|
549 #wsgi_default_pool_size = 100 |
|
550 |
|
551 # Maximum line size of message headers to be accepted. max_header_line may need |
|
552 # to be increased when using large tokens (typically those generated when |
|
553 # keystone is configured to use PKI tokens with big service catalogs). (integer |
|
554 # value) |
|
555 #max_header_line = 16384 |
|
556 |
|
557 # If False, closes the client socket connection explicitly. (boolean value) |
|
558 #wsgi_keep_alive = true |
|
559 |
|
560 # Timeout for client connections' socket operations. If an incoming connection |
|
561 # is idle for this number of seconds it will be closed. A value of '0' means |
|
562 # wait forever. (integer value) |
|
563 #client_socket_timeout = 900 |
|
564 |
|
565 |
|
566 [agent] |
|
567 |
|
568 # |
|
569 # From neutron.agent |
|
570 # |
|
571 |
|
572 # Root helper application. Use 'sudo neutron-rootwrap |
|
573 # /etc/neutron/rootwrap.conf' to use the real root filter facility. Change to |
|
574 # 'sudo' to skip the filtering and just run the command directly. (string |
|
575 # value) |
|
576 root_helper = |
|
577 |
|
578 # Use the root helper when listing the namespaces on a system. This may not be |
|
579 # required depending on the security configuration. If the root helper is not |
|
580 # required, set this to False for a performance improvement. (boolean value) |
|
581 #use_helper_for_ns_read = true |
|
582 |
|
583 # Root helper daemon application to use when possible. (string value) |
|
584 #root_helper_daemon = <None> |
|
585 |
|
586 # Seconds between nodes reporting state to server; should be less than |
|
587 # agent_down_time, best if it is half or less than agent_down_time. (floating |
|
588 # point value) |
|
589 #report_interval = 30 |
|
590 |
|
591 # Log agent heartbeats (boolean value) |
|
592 #log_agent_heartbeats = false |
|
593 |
|
594 # Add comments to iptables rules. Set to false to disallow the addition of |
|
595 # comments to generated iptables rules that describe each rule's purpose. |
|
596 # System must support the iptables comments module for addition of comments. |
|
597 # (boolean value) |
|
598 #comment_iptables_rules = true |
|
599 |
|
600 # Action to be executed when a child process dies (string value) |
|
601 # Allowed values: respawn, exit |
|
602 #check_child_processes_action = respawn |
|
603 |
|
604 # Interval between checks of child process liveness (seconds), use 0 to disable |
|
605 # (integer value) |
|
606 #check_child_processes_interval = 60 |
|
607 |
|
608 # Availability zone of this node (string value) |
|
609 #availability_zone = nova |
|
610 |
|
611 |
|
612 [cors] |
|
613 |
|
614 # |
|
615 # From oslo.middleware.cors |
|
616 # |
|
617 |
|
618 # Indicate whether this resource may be shared with the domain received in the |
|
619 # requests "origin" header. (list value) |
|
620 #allowed_origin = <None> |
|
621 |
|
622 # Indicate that the actual request can include user credentials (boolean value) |
|
623 #allow_credentials = true |
|
624 |
|
625 # Indicate which headers are safe to expose to the API. Defaults to HTTP Simple |
|
626 # Headers. (list value) |
|
627 #expose_headers = X-Auth-Token,X-Subject-Token,X-Service-Token,X-OpenStack-Request-ID,OpenStack-Volume-microversion |
|
628 |
|
629 # Maximum cache age of CORS preflight requests. (integer value) |
|
630 #max_age = 3600 |
|
631 |
|
632 # Indicate which methods can be used during the actual request. (list value) |
|
633 #allow_methods = GET,PUT,POST,DELETE,PATCH |
|
634 |
|
635 # Indicate which header field names may be used during the actual request. |
|
636 # (list value) |
|
637 #allow_headers = X-Auth-Token,X-Identity-Status,X-Roles,X-Service-Catalog,X-User-Id,X-Tenant-Id,X-OpenStack-Request-ID |
|
638 |
|
639 |
|
640 [cors.subdomain] |
|
641 |
|
642 # |
|
643 # From oslo.middleware.cors |
|
644 # |
|
645 |
|
646 # Indicate whether this resource may be shared with the domain received in the |
|
647 # requests "origin" header. (list value) |
|
648 #allowed_origin = <None> |
|
649 |
|
650 # Indicate that the actual request can include user credentials (boolean value) |
|
651 #allow_credentials = true |
|
652 |
|
653 # Indicate which headers are safe to expose to the API. Defaults to HTTP Simple |
|
654 # Headers. (list value) |
|
655 #expose_headers = X-Auth-Token,X-Subject-Token,X-Service-Token,X-OpenStack-Request-ID,OpenStack-Volume-microversion |
|
656 |
|
657 # Maximum cache age of CORS preflight requests. (integer value) |
|
658 #max_age = 3600 |
|
659 |
|
660 # Indicate which methods can be used during the actual request. (list value) |
|
661 #allow_methods = GET,PUT,POST,DELETE,PATCH |
|
662 |
|
663 # Indicate which header field names may be used during the actual request. |
|
664 # (list value) |
|
665 #allow_headers = X-Auth-Token,X-Identity-Status,X-Roles,X-Service-Catalog,X-User-Id,X-Tenant-Id,X-OpenStack-Request-ID |
|
666 |
|
667 |
|
668 [database] |
|
669 |
|
670 # |
|
671 # From neutron.db |
|
672 # |
|
673 |
|
674 # Database engine for which script will be generated when using offline |
|
675 # migration. (string value) |
|
676 #engine = |
|
677 |
|
678 # |
|
679 # From oslo.db |
|
680 # |
|
681 |
|
682 # The file name to use with SQLite. (string value) |
|
683 # Deprecated group/name - [DEFAULT]/sqlite_db |
|
684 #sqlite_db = oslo.sqlite |
|
685 |
|
686 # If True, SQLite uses synchronous mode. (boolean value) |
|
687 # Deprecated group/name - [DEFAULT]/sqlite_synchronous |
|
688 #sqlite_synchronous = true |
|
689 |
|
690 # The back end to use for the database. (string value) |
|
691 # Deprecated group/name - [DEFAULT]/db_backend |
|
692 #backend = sqlalchemy |
|
693 |
|
694 # The SQLAlchemy connection string to use to connect to the database. (string |
|
695 # value) |
|
696 # Deprecated group/name - [DEFAULT]/sql_connection |
|
697 # Deprecated group/name - [DATABASE]/sql_connection |
|
698 # Deprecated group/name - [sql]/connection |
|
699 connection = mysql://%SERVICE_USER%:%SERVICE_PASSWORD%@localhost/neutron |
|
700 |
|
701 # The SQLAlchemy connection string to use to connect to the slave database. |
426 # (string value) |
702 # (string value) |
427 # qpid_sasl_mechanisms= |
703 #slave_connection = <None> |
428 |
704 |
429 # Seconds between connection keepalive heartbeats. (integer |
705 # The SQL mode to be used for MySQL sessions. This option, including the |
430 # value) |
706 # default, overrides any server-set SQL mode. To use whatever SQL mode is set |
431 # qpid_heartbeat=60 |
707 # by the server configuration, set this to no value. Example: mysql_sql_mode= |
432 |
708 # (string value) |
433 # Transport to use, either 'tcp' or 'ssl'. (string value) |
709 #mysql_sql_mode = TRADITIONAL |
434 # qpid_protocol=tcp |
710 |
435 |
711 # Timeout before idle SQL connections are reaped. (integer value) |
436 # Whether to disable the Nagle algorithm. (boolean value) |
712 # Deprecated group/name - [DEFAULT]/sql_idle_timeout |
437 # qpid_tcp_nodelay=true |
713 # Deprecated group/name - [DATABASE]/sql_idle_timeout |
438 |
714 # Deprecated group/name - [sql]/idle_timeout |
439 # The qpid topology version to use. Version 1 is what was |
715 #idle_timeout = 3600 |
440 # originally used by impl_qpid. Version 2 includes some |
716 |
441 # backwards-incompatible changes that allow broker federation |
717 # Minimum number of SQL connections to keep open in a pool. (integer value) |
442 # to work. Users should update to version 2 when they are |
718 # Deprecated group/name - [DEFAULT]/sql_min_pool_size |
443 # able to take everything down, as it requires a clean break. |
719 # Deprecated group/name - [DATABASE]/sql_min_pool_size |
|
720 #min_pool_size = 1 |
|
721 |
|
722 # Maximum number of SQL connections to keep open in a pool. (integer value) |
|
723 # Deprecated group/name - [DEFAULT]/sql_max_pool_size |
|
724 # Deprecated group/name - [DATABASE]/sql_max_pool_size |
|
725 #max_pool_size = <None> |
|
726 |
|
727 # Maximum number of database connection retries during startup. Set to -1 to |
|
728 # specify an infinite retry count. (integer value) |
|
729 # Deprecated group/name - [DEFAULT]/sql_max_retries |
|
730 # Deprecated group/name - [DATABASE]/sql_max_retries |
|
731 #max_retries = 10 |
|
732 |
|
733 # Interval between retries of opening a SQL connection. (integer value) |
|
734 # Deprecated group/name - [DEFAULT]/sql_retry_interval |
|
735 # Deprecated group/name - [DATABASE]/reconnect_interval |
|
736 #retry_interval = 10 |
|
737 |
|
738 # If set, use this value for max_overflow with SQLAlchemy. (integer value) |
|
739 # Deprecated group/name - [DEFAULT]/sql_max_overflow |
|
740 # Deprecated group/name - [DATABASE]/sqlalchemy_max_overflow |
|
741 #max_overflow = 50 |
|
742 |
|
743 # Verbosity of SQL debugging information: 0=None, 100=Everything. (integer |
|
744 # value) |
|
745 # Deprecated group/name - [DEFAULT]/sql_connection_debug |
|
746 #connection_debug = 0 |
|
747 |
|
748 # Add Python stack traces to SQL as comment strings. (boolean value) |
|
749 # Deprecated group/name - [DEFAULT]/sql_connection_trace |
|
750 #connection_trace = false |
|
751 |
|
752 # If set, use this value for pool_timeout with SQLAlchemy. (integer value) |
|
753 # Deprecated group/name - [DATABASE]/sqlalchemy_pool_timeout |
|
754 #pool_timeout = <None> |
|
755 |
|
756 # Enable the experimental use of database reconnect on connection lost. |
|
757 # (boolean value) |
|
758 #use_db_reconnect = false |
|
759 |
|
760 # Seconds between retries of a database transaction. (integer value) |
|
761 #db_retry_interval = 1 |
|
762 |
|
763 # If True, increases the interval between retries of a database operation up to |
|
764 # db_max_retry_interval. (boolean value) |
|
765 #db_inc_retry_interval = true |
|
766 |
|
767 # If db_inc_retry_interval is set, the maximum seconds between retries of a |
|
768 # database operation. (integer value) |
|
769 #db_max_retry_interval = 10 |
|
770 |
|
771 # Maximum retries in case of connection error or deadlock error before error is |
|
772 # raised. Set to -1 to specify an infinite retry count. (integer value) |
|
773 #db_max_retries = 20 |
|
774 |
|
775 |
|
776 [keystone_authtoken] |
|
777 |
|
778 # |
|
779 # From keystonemiddleware.auth_token |
|
780 # |
|
781 |
|
782 # Complete public Identity API endpoint. (string value) |
|
783 auth_uri = http://127.0.0.1:5000/v2.0/ |
|
784 |
|
785 # API version of the admin Identity API endpoint. (string value) |
|
786 #auth_version = <None> |
|
787 |
|
788 # Do not handle authorization requests within the middleware, but delegate the |
|
789 # authorization decision to downstream WSGI components. (boolean value) |
|
790 #delay_auth_decision = false |
|
791 |
|
792 # Request timeout value for communicating with Identity API server. (integer |
|
793 # value) |
|
794 #http_connect_timeout = <None> |
|
795 |
|
796 # How many times are we trying to reconnect when communicating with Identity |
|
797 # API Server. (integer value) |
|
798 #http_request_max_retries = 3 |
|
799 |
|
800 # Env key for the swift cache. (string value) |
|
801 #cache = <None> |
|
802 |
|
803 # Required if identity server requires client certificate (string value) |
|
804 #certfile = <None> |
|
805 |
|
806 # Required if identity server requires client certificate (string value) |
|
807 #keyfile = <None> |
|
808 |
|
809 # A PEM encoded Certificate Authority to use when verifying HTTPs connections. |
|
810 # Defaults to system CAs. (string value) |
|
811 #cafile = <None> |
|
812 |
|
813 # Verify HTTPS connections. (boolean value) |
|
814 #insecure = false |
|
815 |
|
816 # The region in which the identity server can be found. (string value) |
|
817 #region_name = <None> |
|
818 |
|
819 # Directory used to cache files related to PKI tokens. (string value) |
|
820 signing_dir = $state_path/keystone-signing |
|
821 |
|
822 # Optionally specify a list of memcached server(s) to use for caching. If left |
|
823 # undefined, tokens will instead be cached in-process. (list value) |
|
824 # Deprecated group/name - [DEFAULT]/memcache_servers |
|
825 #memcached_servers = <None> |
|
826 |
|
827 # In order to prevent excessive effort spent validating tokens, the middleware |
|
828 # caches previously-seen tokens for a configurable duration (in seconds). Set |
|
829 # to -1 to disable caching completely. (integer value) |
|
830 #token_cache_time = 300 |
|
831 |
|
832 # Determines the frequency at which the list of revoked tokens is retrieved |
|
833 # from the Identity service (in seconds). A high number of revocation events |
|
834 # combined with a low cache duration may significantly reduce performance. |
444 # (integer value) |
835 # (integer value) |
445 # qpid_topology_version=1 |
836 #revocation_cache_time = 10 |
446 |
837 |
447 # SSL version to use (valid only if SSL enabled). valid values |
838 # (Optional) If defined, indicate whether token data should be authenticated or |
448 # are TLSv1, SSLv23 and SSLv3. SSLv2 may be available on some |
839 # authenticated and encrypted. If MAC, token data is authenticated (with HMAC) |
449 # distributions. (string value) |
840 # in the cache. If ENCRYPT, token data is encrypted and authenticated in the |
450 # kombu_ssl_version= |
841 # cache. If the value is not one of these options or empty, auth_token will |
451 |
842 # raise an exception on initialization. (string value) |
452 # SSL key file (valid only if SSL enabled). (string value) |
843 # Allowed values: None, MAC, ENCRYPT |
453 # kombu_ssl_keyfile= |
844 #memcache_security_strategy = None |
454 |
845 |
455 # SSL cert file (valid only if SSL enabled). (string value) |
846 # (Optional, mandatory if memcache_security_strategy is defined) This string is |
456 # kombu_ssl_certfile= |
847 # used for key derivation. (string value) |
457 |
848 #memcache_secret_key = <None> |
458 # SSL certification authority file (valid only if SSL |
849 |
459 # enabled). (string value) |
850 # (Optional) Number of seconds memcached server is considered dead before it is |
460 # kombu_ssl_ca_certs= |
851 # tried again. (integer value) |
461 |
852 #memcache_pool_dead_retry = 300 |
462 # How long to wait before reconnecting in response to an AMQP |
853 |
463 # consumer cancel notification. (floating point value) |
854 # (Optional) Maximum total number of open connections to every memcached |
464 # kombu_reconnect_delay=1.0 |
855 # server. (integer value) |
465 |
856 #memcache_pool_maxsize = 10 |
466 # The RabbitMQ broker address where a single node is used. |
857 |
|
858 # (Optional) Socket timeout in seconds for communicating with a memcached |
|
859 # server. (integer value) |
|
860 #memcache_pool_socket_timeout = 3 |
|
861 |
|
862 # (Optional) Number of seconds a connection to memcached is held unused in the |
|
863 # pool before it is closed. (integer value) |
|
864 #memcache_pool_unused_timeout = 60 |
|
865 |
|
866 # (Optional) Number of seconds that an operation will wait to get a memcached |
|
867 # client connection from the pool. (integer value) |
|
868 #memcache_pool_conn_get_timeout = 10 |
|
869 |
|
870 # (Optional) Use the advanced (eventlet safe) memcached client pool. The |
|
871 # advanced pool will only work under python 2.x. (boolean value) |
|
872 #memcache_use_advanced_pool = false |
|
873 |
|
874 # (Optional) Indicate whether to set the X-Service-Catalog header. If False, |
|
875 # middleware will not ask for service catalog on token validation and will not |
|
876 # set the X-Service-Catalog header. (boolean value) |
|
877 #include_service_catalog = true |
|
878 |
|
879 # Used to control the use and type of token binding. Can be set to: "disabled" |
|
880 # to not check token binding. "permissive" (default) to validate binding |
|
881 # information if the bind type is of a form known to the server and ignore it |
|
882 # if not. "strict" like "permissive" but if the bind type is unknown the token |
|
883 # will be rejected. "required" any form of token binding is needed to be |
|
884 # allowed. Finally the name of a binding method that must be present in tokens. |
467 # (string value) |
885 # (string value) |
468 # rabbit_host=localhost |
886 #enforce_token_bind = permissive |
469 |
887 |
470 # The RabbitMQ broker port where a single node is used. |
888 # If true, the revocation list will be checked for cached tokens. This requires |
471 # (integer value) |
889 # that PKI tokens are configured on the identity server. (boolean value) |
472 # rabbit_port=5672 |
890 #check_revocations_for_cached = false |
473 |
891 |
474 # RabbitMQ HA cluster host:port pairs. (list value) |
892 # Hash algorithms to use for hashing PKI tokens. This may be a single algorithm |
475 # rabbit_hosts=$rabbit_host:$rabbit_port |
893 # or multiple. The algorithms are those supported by Python standard |
476 |
894 # hashlib.new(). The hashes will be tried in the order given, so put the |
477 # Connect over SSL for RabbitMQ. (boolean value) |
895 # preferred one first for performance. The result of the first hash will be |
478 # rabbit_use_ssl=false |
896 # stored in the cache. This will typically be set to multiple values only while |
479 |
897 # migrating from a less secure algorithm to a more secure one. Once all the old |
480 # The RabbitMQ userid. (string value) |
898 # tokens are expired this option should be set to a single value for better |
481 # rabbit_userid=guest |
899 # performance. (list value) |
482 |
900 #hash_algorithms = md5 |
483 # The RabbitMQ password. (string value) |
901 |
484 # rabbit_password=guest |
902 # Authentication type to load (unknown value) |
485 |
903 # Deprecated group/name - [DEFAULT]/auth_plugin |
486 # the RabbitMQ login method (string value) |
904 #auth_type = <None> |
487 # rabbit_login_method=AMQPLAIN |
905 |
488 |
906 # Config Section from which to load plugin specific options (unknown value) |
489 # The RabbitMQ virtual host. (string value) |
907 #auth_section = <None> |
490 # rabbit_virtual_host=/ |
908 |
491 |
909 # Complete admin Identity API endpoint. This should specify the unversioned |
492 # How frequently to retry connecting with RabbitMQ. (integer |
910 # root endpoint e.g. https://localhost:35357/ (string value) |
493 # value) |
911 identity_uri = http://127.0.0.1:35357/ |
494 # rabbit_retry_interval=1 |
912 |
495 |
913 # Service username. (string value) |
496 # How long to backoff for between retries when connecting to |
914 admin_user = %SERVICE_USER% |
497 # RabbitMQ. (integer value) |
915 |
498 # rabbit_retry_backoff=2 |
916 # Service user password. (string value) |
499 |
917 admin_password = %SERVICE_PASSWORD% |
500 # Maximum number of RabbitMQ connection retries. Default is 0 |
918 |
501 # (infinite retry count). (integer value) |
919 # Service tenant name. (string value) |
502 # rabbit_max_retries=0 |
920 admin_tenant_name = %SERVICE_TENANT_NAME% |
503 |
921 |
504 # Use HA queues in RabbitMQ (x-ha-policy: all). If you change |
922 |
505 # this option, you must wipe the RabbitMQ database. (boolean |
923 [matchmaker_redis] |
506 # value) |
924 |
507 # rabbit_ha_queues=false |
925 # |
508 |
926 # From oslo.messaging |
509 # If passed, use a fake RabbitMQ provider. (boolean value) |
927 # |
510 # fake_rabbit=false |
928 |
511 |
929 # Host to locate redis. (string value) |
512 # ZeroMQ bind address. Should be a wildcard (*), an ethernet |
930 #host = 127.0.0.1 |
513 # interface, or IP. The "host" option should point or resolve |
931 |
514 # to this address. (string value) |
932 # Use this port to connect to redis host. (port value) |
515 # rpc_zmq_bind_address=* |
933 # Minimum value: 0 |
516 |
934 # Maximum value: 65535 |
517 # MatchMaker driver. (string value) |
935 #port = 6379 |
518 # rpc_zmq_matchmaker=oslo.messaging._drivers.matchmaker.MatchMakerLocalhost |
936 |
519 |
937 # Password for Redis server (optional). (string value) |
520 # ZeroMQ receiver listening port. (integer value) |
938 #password = |
521 # rpc_zmq_port=9501 |
939 |
522 |
940 # List of Redis Sentinel hosts (fault tolerance mode) e.g. |
523 # Number of ZeroMQ contexts, defaults to 1. (integer value) |
941 # [host:port, host1:port ... ] (list value) |
524 # rpc_zmq_contexts=1 |
942 #sentinel_hosts = |
525 |
943 |
526 # Maximum number of ingress messages to locally buffer per |
944 # Redis replica set name. (string value) |
527 # topic. Default is unlimited. (integer value) |
945 #sentinel_group_name = oslo-messaging-zeromq |
528 # rpc_zmq_topic_backlog= |
946 |
529 |
947 # Time in ms to wait between connection attempts. (integer value) |
530 # Directory for holding IPC sockets. (string value) |
948 #wait_timeout = 500 |
531 # rpc_zmq_ipc_dir=/var/run/openstack |
949 |
532 |
950 # Time in ms to wait before the transaction is killed. (integer value) |
533 # Name of this node. Must be a valid hostname, FQDN, or IP |
951 #check_timeout = 20000 |
534 # address. Must match "host" option, if running Nova. (string |
952 |
535 # value) |
953 # Timeout in ms on blocking socket operations (integer value) |
536 # rpc_zmq_host=oslo |
954 #socket_timeout = 1000 |
537 |
955 |
538 # Seconds to wait before a cast expires (TTL). Only supported |
956 |
539 # by impl_zmq. (integer value) |
957 [nova] |
540 # rpc_cast_timeout=30 |
958 |
541 |
959 # |
542 # Heartbeat frequency. (integer value) |
960 # From neutron |
543 # matchmaker_heartbeat_freq=300 |
961 # |
544 |
962 |
545 # Heartbeat time-to-live. (integer value) |
963 # Name of nova region to use. Useful if keystone manages more than one region. |
546 # matchmaker_heartbeat_ttl=600 |
964 # (string value) |
547 |
965 #region_name = <None> |
548 # Size of RPC greenthread pool. (integer value) |
966 |
549 # rpc_thread_pool_size=64 |
967 # Type of the nova endpoint to use. This endpoint will be looked up in the |
550 |
968 # keystone catalog and should be one of public, internal or admin. (string |
551 # Driver or drivers to handle sending notifications. (multi |
969 # value) |
552 # valued) |
970 # Allowed values: public, admin, internal |
553 # notification_driver= |
971 #endpoint_type = public |
|
972 |
|
973 # |
|
974 # From nova.auth |
|
975 # |
|
976 |
|
977 # Authentication URL (unknown value) |
|
978 auth_url = http://127.0.0.1:5000/v2.0/ |
|
979 |
|
980 # Authentication type to load (unknown value) |
|
981 # Deprecated group/name - [DEFAULT]/auth_plugin |
|
982 auth_type = v2password |
|
983 |
|
984 # PEM encoded Certificate Authority to use when verifying HTTPs connections. |
|
985 # (string value) |
|
986 #cafile = <None> |
|
987 |
|
988 # PEM encoded client certificate cert file (string value) |
|
989 #certfile = <None> |
|
990 |
|
991 # Optional domain ID to use with v3 and v2 parameters. It will be used for both |
|
992 # the user and project domain in v3 and ignored in v2 authentication. (unknown |
|
993 # value) |
|
994 #default_domain_id = <None> |
|
995 |
|
996 # Optional domain name to use with v3 API and v2 parameters. It will be used |
|
997 # for both the user and project domain in v3 and ignored in v2 authentication. |
|
998 # (unknown value) |
|
999 #default_domain_name = <None> |
|
1000 |
|
1001 # Domain ID to scope to (unknown value) |
|
1002 #domain_id = <None> |
|
1003 |
|
1004 # Domain name to scope to (unknown value) |
|
1005 #domain_name = <None> |
|
1006 |
|
1007 # Verify HTTPS connections. (boolean value) |
|
1008 #insecure = false |
|
1009 |
|
1010 # PEM encoded client certificate key file (string value) |
|
1011 #keyfile = <None> |
|
1012 |
|
1013 # User's password (unknown value) |
|
1014 password = %SERVICE_PASSWORD% |
|
1015 |
|
1016 # Domain ID containing project (unknown value) |
|
1017 #project_domain_id = <None> |
|
1018 |
|
1019 # Domain name containing project (unknown value) |
|
1020 #project_domain_name = <None> |
|
1021 |
|
1022 # Project ID to scope to (unknown value) |
|
1023 # Deprecated group/name - [DEFAULT]/tenant-id |
|
1024 #project_id = <None> |
|
1025 |
|
1026 # Project name to scope to (unknown value) |
|
1027 # Deprecated group/name - [DEFAULT]/tenant-name |
|
1028 #project_name = <None> |
|
1029 |
|
1030 # Tenant ID (unknown value) |
|
1031 #tenant_id = <None> |
|
1032 |
|
1033 # Tenant Name (unknown value) |
|
1034 tenant_name = %SERVICE_TENANT_NAME% |
|
1035 |
|
1036 # Timeout value for http requests (integer value) |
|
1037 #timeout = <None> |
|
1038 |
|
1039 # Trust ID (unknown value) |
|
1040 #trust_id = <None> |
|
1041 |
|
1042 # User's domain id (unknown value) |
|
1043 #user_domain_id = <None> |
|
1044 |
|
1045 # User's domain name (unknown value) |
|
1046 #user_domain_name = <None> |
|
1047 |
|
1048 # User id (unknown value) |
|
1049 #user_id = <None> |
|
1050 |
|
1051 # Username (unknown value) |
|
1052 # Deprecated group/name - [DEFAULT]/user-name |
|
1053 username = %SERVICE_USER% |
|
1054 |
|
1055 |
|
1056 [oslo_concurrency] |
|
1057 |
|
1058 # |
|
1059 # From oslo.concurrency |
|
1060 # |
|
1061 |
|
1062 # Enables or disables inter-process locks. (boolean value) |
|
1063 # Deprecated group/name - [DEFAULT]/disable_process_locking |
|
1064 #disable_process_locking = false |
|
1065 |
|
1066 # Directory to use for lock files. For security, the specified directory |
|
1067 # should only be writable by the user running the processes that need locking. |
|
1068 # Defaults to environment variable OSLO_LOCK_PATH. If external locks are used, |
|
1069 # a lock path must be set. (string value) |
|
1070 # Deprecated group/name - [DEFAULT]/lock_path |
|
1071 lock_path = $state_path/lock |
|
1072 |
|
1073 |
|
1074 [oslo_messaging_amqp] |
|
1075 |
|
1076 # |
|
1077 # From oslo.messaging |
|
1078 # |
|
1079 |
|
1080 # address prefix used when sending to a specific server (string value) |
|
1081 # Deprecated group/name - [amqp1]/server_request_prefix |
|
1082 #server_request_prefix = exclusive |
|
1083 |
|
1084 # address prefix used when broadcasting to all servers (string value) |
|
1085 # Deprecated group/name - [amqp1]/broadcast_prefix |
|
1086 #broadcast_prefix = broadcast |
|
1087 |
|
1088 # address prefix when sending to any server in group (string value) |
|
1089 # Deprecated group/name - [amqp1]/group_request_prefix |
|
1090 #group_request_prefix = unicast |
|
1091 |
|
1092 # Name for the AMQP container (string value) |
|
1093 # Deprecated group/name - [amqp1]/container_name |
|
1094 #container_name = <None> |
|
1095 |
|
1096 # Timeout for inactive connections (in seconds) (integer value) |
|
1097 # Deprecated group/name - [amqp1]/idle_timeout |
|
1098 #idle_timeout = 0 |
|
1099 |
|
1100 # Debug: dump AMQP frames to stdout (boolean value) |
|
1101 # Deprecated group/name - [amqp1]/trace |
|
1102 #trace = false |
|
1103 |
|
1104 # CA certificate PEM file to verify server certificate (string value) |
|
1105 # Deprecated group/name - [amqp1]/ssl_ca_file |
|
1106 #ssl_ca_file = |
|
1107 |
|
1108 # Identifying certificate PEM file to present to clients (string value) |
|
1109 # Deprecated group/name - [amqp1]/ssl_cert_file |
|
1110 #ssl_cert_file = |
|
1111 |
|
1112 # Private key PEM file used to sign cert_file certificate (string value) |
|
1113 # Deprecated group/name - [amqp1]/ssl_key_file |
|
1114 #ssl_key_file = |
|
1115 |
|
1116 # Password for decrypting ssl_key_file (if encrypted) (string value) |
|
1117 # Deprecated group/name - [amqp1]/ssl_key_password |
|
1118 #ssl_key_password = <None> |
|
1119 |
|
1120 # Accept clients using either SSL or plain TCP (boolean value) |
|
1121 # Deprecated group/name - [amqp1]/allow_insecure_clients |
|
1122 #allow_insecure_clients = false |
|
1123 |
|
1124 # Space separated list of acceptable SASL mechanisms (string value) |
|
1125 # Deprecated group/name - [amqp1]/sasl_mechanisms |
|
1126 #sasl_mechanisms = |
|
1127 |
|
1128 # Path to directory that contains the SASL configuration (string value) |
|
1129 # Deprecated group/name - [amqp1]/sasl_config_dir |
|
1130 #sasl_config_dir = |
|
1131 |
|
1132 # Name of configuration file (without .conf suffix) (string value) |
|
1133 # Deprecated group/name - [amqp1]/sasl_config_name |
|
1134 #sasl_config_name = |
|
1135 |
|
1136 # User name for message broker authentication (string value) |
|
1137 # Deprecated group/name - [amqp1]/username |
|
1138 #username = |
|
1139 |
|
1140 # Password for message broker authentication (string value) |
|
1141 # Deprecated group/name - [amqp1]/password |
|
1142 #password = |
|
1143 |
|
1144 |
|
1145 [oslo_messaging_notifications] |
|
1146 |
|
1147 # |
|
1148 # From oslo.messaging |
|
1149 # |
|
1150 |
|
1151 # The Drivers(s) to handle sending notifications. Possible values are |
|
1152 # messaging, messagingv2, routing, log, test, noop (multi valued) |
|
1153 # Deprecated group/name - [DEFAULT]/notification_driver |
|
1154 #driver = |
|
1155 |
|
1156 # A URL representing the messaging driver to use for notifications. If not set, |
|
1157 # we fall back to the same configuration used for RPC. (string value) |
|
1158 # Deprecated group/name - [DEFAULT]/notification_transport_url |
|
1159 #transport_url = <None> |
554 |
1160 |
555 # AMQP topic used for OpenStack notifications. (list value) |
1161 # AMQP topic used for OpenStack notifications. (list value) |
556 # Deprecated group/name - [rpc_notifier2]/topics |
1162 # Deprecated group/name - [rpc_notifier2]/topics |
557 # notification_topics=notifications |
1163 # Deprecated group/name - [DEFAULT]/notification_topics |
558 |
1164 #topics = notifications |
559 # Seconds to wait for a response from a call. (integer value) |
1165 |
560 # rpc_response_timeout=60 |
1166 |
561 |
1167 [oslo_messaging_rabbit] |
562 # A URL representing the messaging driver to use and its full |
|
563 # configuration. If not set, we fall back to the rpc_backend |
|
564 # option and driver specific configuration. (string value) |
|
565 # transport_url= |
|
566 |
|
567 # The messaging driver to use, defaults to rabbit. Other |
|
568 # drivers include qpid and zmq. (string value) |
|
569 # rpc_backend=rabbit |
|
570 |
|
571 # The default exchange under which topics are scoped. May be |
|
572 # overridden by an exchange name specified in the |
|
573 # transport_url option. (string value) |
|
574 # control_exchange=openstack |
|
575 |
|
576 |
|
577 [matchmaker_redis] |
|
578 |
|
579 # |
|
580 # Options defined in oslo.messaging |
|
581 # |
|
582 |
|
583 # Host to locate redis. (string value) |
|
584 # host=127.0.0.1 |
|
585 |
|
586 # Use this port to connect to redis host. (integer value) |
|
587 # port=6379 |
|
588 |
|
589 # Password for Redis server (optional). (string value) |
|
590 # password= |
|
591 |
|
592 |
|
593 [matchmaker_ring] |
|
594 |
|
595 # |
|
596 # Options defined in oslo.messaging |
|
597 # |
|
598 |
|
599 # Matchmaker ring file (JSON). (string value) |
|
600 # Deprecated group/name - [DEFAULT]/matchmaker_ringfile |
|
601 # ringfile=/etc/oslo/matchmaker_ring.json |
|
602 |
|
603 [quotas] |
|
604 # Default driver to use for quota checks |
|
605 # quota_driver = neutron.db.quota_db.DbQuotaDriver |
|
606 |
|
607 # Resource name(s) that are supported in quota features |
|
608 # quota_items = network,subnet,port |
|
609 |
|
610 # Default number of resource allowed per tenant. A negative value means |
|
611 # unlimited. |
|
612 # default_quota = -1 |
|
613 |
|
614 # Number of networks allowed per tenant. A negative value means unlimited. |
|
615 # quota_network = 10 |
|
616 |
|
617 # Number of subnets allowed per tenant. A negative value means unlimited. |
|
618 # quota_subnet = 10 |
|
619 |
|
620 # Number of ports allowed per tenant. A negative value means unlimited. |
|
621 # quota_port = 50 |
|
622 |
|
623 # Number of security groups allowed per tenant. A negative value means |
|
624 # unlimited. |
|
625 # quota_security_group = 10 |
|
626 |
|
627 # Number of security group rules allowed per tenant. A negative value means |
|
628 # unlimited. |
|
629 # quota_security_group_rule = 100 |
|
630 |
|
631 # Number of vips allowed per tenant. A negative value means unlimited. |
|
632 # quota_vip = 10 |
|
633 |
|
634 # Number of pools allowed per tenant. A negative value means unlimited. |
|
635 # quota_pool = 10 |
|
636 |
|
637 # Number of pool members allowed per tenant. A negative value means unlimited. |
|
638 # The default is unlimited because a member is not a real resource consumer |
|
639 # on Openstack. However, on back-end, a member is a resource consumer |
|
640 # and that is the reason why quota is possible. |
|
641 # quota_member = -1 |
|
642 |
|
643 # Number of health monitors allowed per tenant. A negative value means |
|
644 # unlimited. |
|
645 # The default is unlimited because a health monitor is not a real resource |
|
646 # consumer on Openstack. However, on back-end, a member is a resource consumer |
|
647 # and that is the reason why quota is possible. |
|
648 # quota_health_monitor = -1 |
|
649 |
|
650 # Number of loadbalancers allowed per tenant. A negative value means unlimited. |
|
651 # quota_loadbalancer = 10 |
|
652 |
|
653 # Number of listeners allowed per tenant. A negative value means unlimited. |
|
654 # quota_listener = -1 |
|
655 |
|
656 # Number of v2 health monitors allowed per tenant. A negative value means |
|
657 # unlimited. These health monitors exist under the lbaas v2 API |
|
658 # quota_healthmonitor = -1 |
|
659 |
|
660 # Number of routers allowed per tenant. A negative value means unlimited. |
|
661 # quota_router = 10 |
|
662 |
|
663 # Number of floating IPs allowed per tenant. A negative value means unlimited. |
|
664 # quota_floatingip = 50 |
|
665 |
|
666 # Number of firewalls allowed per tenant. A negative value means unlimited. |
|
667 # quota_firewall = 1 |
|
668 |
|
669 # Number of firewall policies allowed per tenant. A negative value means |
|
670 # unlimited. |
|
671 # quota_firewall_policy = 1 |
|
672 |
|
673 # Number of firewall rules allowed per tenant. A negative value means |
|
674 # unlimited. |
|
675 # quota_firewall_rule = 100 |
|
676 |
|
677 [agent] |
|
678 # Use "sudo neutron-rootwrap /etc/neutron/rootwrap.conf" to use the real |
|
679 # root filter facility. |
|
680 # Change to "sudo" to skip the filtering and just run the command directly |
|
681 root_helper = |
|
682 |
|
683 # Set to true to add comments to generated iptables rules that describe |
|
684 # each rule's purpose. (System must support the iptables comments module.) |
|
685 # comment_iptables_rules = True |
|
686 |
|
687 # Root helper daemon application to use when possible. |
|
688 # root_helper_daemon = |
|
689 |
|
690 # Use the root helper when listing the namespaces on a system. This may not |
|
691 # be required depending on the security configuration. If the root helper is |
|
692 # not required, set this to False for a performance improvement. |
|
693 # use_helper_for_ns_read = True |
|
694 |
|
695 # The interval to check external processes for failure in seconds (0=disabled) |
|
696 # check_child_processes_interval = 60 |
|
697 |
|
698 # Action to take when an external process spawned by an agent dies |
|
699 # Values: |
|
700 # respawn - Respawns the external process |
|
701 # exit - Exits the agent |
|
702 # check_child_processes_action = respawn |
|
703 |
|
704 # =========== items for agent management extension ============= |
|
705 # seconds between nodes reporting state to server; should be less than |
|
706 # agent_down_time, best if it is half or less than agent_down_time |
|
707 # report_interval = 30 |
|
708 |
|
709 # =========== end of items for agent management extension ===== |
|
710 |
|
711 [keystone_authtoken] |
|
712 auth_uri = http://127.0.0.1:5000/v2.0/ |
|
713 identity_uri = http://127.0.0.1:35357/ |
|
714 admin_tenant_name = %SERVICE_TENANT_NAME% |
|
715 admin_user = %SERVICE_USER% |
|
716 admin_password = %SERVICE_PASSWORD% |
|
717 signing_dir = $state_path/keystone-signing |
|
718 |
|
719 [database] |
|
720 # This line MUST be changed to actually run the plugin. |
|
721 # Example: |
|
722 # connection = mysql://root:[email protected]:3306/neutron |
|
723 # Replace 127.0.0.1 above with the IP address of the database used by the |
|
724 # main neutron server. (Leave it as is if the database runs on this host.) |
|
725 # connection = sqlite:// |
|
726 # NOTE: In deployment the [database] section and its connection attribute may |
|
727 # be set in the corresponding core plugin '.ini' file. However, it is suggested |
|
728 # to put the [database] section and its connection attribute in this |
|
729 # configuration file. |
|
730 connection = mysql://%SERVICE_USER%:%SERVICE_PASSWORD%@localhost/neutron |
|
731 |
|
732 # Database engine for which script will be generated when using offline |
|
733 # migration |
|
734 # engine = |
|
735 |
|
736 # The SQLAlchemy connection string used to connect to the slave database |
|
737 # slave_connection = |
|
738 |
|
739 # This configures the MySQL storage engine. This allows for OpenStack to |
|
740 # support different storage engines such as InnoDB, NDB, etc. By Default, |
|
741 # this value will be set to InnoDB. For MySQL Cluster, set to NDBCLUSTER. |
|
742 # Example: mysql_storage_engine=(string value) |
|
743 mysql_storage_engine = InnoDB |
|
744 |
|
745 # Database reconnection retry times - in event connectivity is lost |
|
746 # set to -1 implies an infinite retry count |
|
747 # max_retries = 10 |
|
748 |
|
749 # Database reconnection interval in seconds - if the initial connection to the |
|
750 # database fails |
|
751 # retry_interval = 10 |
|
752 |
|
753 # Minimum number of SQL connections to keep open in a pool |
|
754 # min_pool_size = 1 |
|
755 |
|
756 # Maximum number of SQL connections to keep open in a pool |
|
757 # max_pool_size = 10 |
|
758 |
|
759 # Timeout in seconds before idle sql connections are reaped |
|
760 # idle_timeout = 3600 |
|
761 |
|
762 # If set, use this value for max_overflow with sqlalchemy |
|
763 # max_overflow = 20 |
|
764 |
|
765 # Verbosity of SQL debugging information. 0=None, 100=Everything |
|
766 # connection_debug = 0 |
|
767 |
|
768 # Add python stack traces to SQL as comment strings |
|
769 # connection_trace = False |
|
770 |
|
771 # If set, use this value for pool_timeout with sqlalchemy |
|
772 # pool_timeout = 10 |
|
773 |
|
774 [nova] |
|
775 # Name of the plugin to load |
|
776 # auth_plugin = |
|
777 |
|
778 # Config Section from which to load plugin specific options |
|
779 # auth_section = |
|
780 |
|
781 # PEM encoded Certificate Authority to use when verifying HTTPs connections. |
|
782 # cafile = |
|
783 |
|
784 # PEM encoded client certificate cert file |
|
785 # certfile = |
|
786 |
|
787 # Verify HTTPS connections. |
|
788 # insecure = False |
|
789 |
|
790 # PEM encoded client certificate key file |
|
791 # keyfile = |
|
792 |
|
793 # Name of nova region to use. Useful if keystone manages more than one region. |
|
794 # region_name = |
|
795 |
|
796 # Timeout value for http requests |
|
797 # timeout = |
|
798 |
|
799 [oslo_concurrency] |
|
800 |
|
801 # Directory to use for lock files. For security, the specified directory should |
|
802 # only be writable by the user running the processes that need locking. |
|
803 # Defaults to environment variable OSLO_LOCK_PATH. If external locks are used, |
|
804 # a lock path must be set. |
|
805 lock_path = $state_path/lock |
|
806 |
|
807 # Enables or disables inter-process locks. |
|
808 # disable_process_locking = False |
|
809 |
|
810 [oslo_policy] |
|
811 |
|
812 # The JSON file that defines policies. |
|
813 # policy_file = policy.json |
|
814 |
|
815 # Default rule. Enforced when a requested rule is not found. |
|
816 # policy_default_rule = default |
|
817 |
|
818 # Directories where policy configuration files are stored. |
|
819 # They can be relative to any directory in the search path defined by the |
|
820 # config_dir option, or absolute paths. The file defined by policy_file |
|
821 # must exist for these directories to be searched. Missing or empty |
|
822 # directories are ignored. |
|
823 # policy_dirs = policy.d |
|
824 |
|
825 [oslo_messaging_amqp] |
|
826 |
1168 |
827 # |
1169 # |
828 # From oslo.messaging |
1170 # From oslo.messaging |
829 # |
1171 # |
830 |
1172 |
831 # Address prefix used when sending to a specific server (string value) |
|
832 # Deprecated group/name - [amqp1]/server_request_prefix |
|
833 # server_request_prefix = exclusive |
|
834 |
|
835 # Address prefix used when broadcasting to all servers (string value) |
|
836 # Deprecated group/name - [amqp1]/broadcast_prefix |
|
837 # broadcast_prefix = broadcast |
|
838 |
|
839 # Address prefix when sending to any server in group (string value) |
|
840 # Deprecated group/name - [amqp1]/group_request_prefix |
|
841 # group_request_prefix = unicast |
|
842 |
|
843 # Name for the AMQP container (string value) |
|
844 # Deprecated group/name - [amqp1]/container_name |
|
845 # container_name = |
|
846 |
|
847 # Timeout for inactive connections (in seconds) (integer value) |
|
848 # Deprecated group/name - [amqp1]/idle_timeout |
|
849 # idle_timeout = 0 |
|
850 |
|
851 # Debug: dump AMQP frames to stdout (boolean value) |
|
852 # Deprecated group/name - [amqp1]/trace |
|
853 # trace = false |
|
854 |
|
855 # CA certificate PEM file for verifing server certificate (string value) |
|
856 # Deprecated group/name - [amqp1]/ssl_ca_file |
|
857 # ssl_ca_file = |
|
858 |
|
859 # Identifying certificate PEM file to present to clients (string value) |
|
860 # Deprecated group/name - [amqp1]/ssl_cert_file |
|
861 # ssl_cert_file = |
|
862 |
|
863 # Private key PEM file used to sign cert_file certificate (string value) |
|
864 # Deprecated group/name - [amqp1]/ssl_key_file |
|
865 # ssl_key_file = |
|
866 |
|
867 # Password for decrypting ssl_key_file (if encrypted) (string value) |
|
868 # Deprecated group/name - [amqp1]/ssl_key_password |
|
869 # ssl_key_password = |
|
870 |
|
871 # Accept clients using either SSL or plain TCP (boolean value) |
|
872 # Deprecated group/name - [amqp1]/allow_insecure_clients |
|
873 # allow_insecure_clients = false |
|
874 |
|
875 |
|
876 [oslo_messaging_qpid] |
|
877 |
|
878 # |
|
879 # From oslo.messaging |
|
880 # |
|
881 |
|
882 # Use durable queues in AMQP. (boolean value) |
1173 # Use durable queues in AMQP. (boolean value) |
|
1174 # Deprecated group/name - [DEFAULT]/amqp_durable_queues |
883 # Deprecated group/name - [DEFAULT]/rabbit_durable_queues |
1175 # Deprecated group/name - [DEFAULT]/rabbit_durable_queues |
884 # amqp_durable_queues = false |
1176 #amqp_durable_queues = false |
885 |
1177 |
886 # Auto-delete queues in AMQP. (boolean value) |
1178 # Auto-delete queues in AMQP. (boolean value) |
887 # Deprecated group/name - [DEFAULT]/amqp_auto_delete |
1179 # Deprecated group/name - [DEFAULT]/amqp_auto_delete |
888 # amqp_auto_delete = false |
1180 #amqp_auto_delete = false |
889 |
|
890 # Size of RPC connection pool. (integer value) |
|
891 # Deprecated group/name - [DEFAULT]/rpc_conn_pool_size |
|
892 # rpc_conn_pool_size = 30 |
|
893 |
|
894 # Qpid broker hostname. (string value) |
|
895 # Deprecated group/name - [DEFAULT]/qpid_hostname |
|
896 # qpid_hostname = localhost |
|
897 |
|
898 # Qpid broker port. (integer value) |
|
899 # Deprecated group/name - [DEFAULT]/qpid_port |
|
900 # qpid_port = 5672 |
|
901 |
|
902 # Qpid HA cluster host:port pairs. (list value) |
|
903 # Deprecated group/name - [DEFAULT]/qpid_hosts |
|
904 # qpid_hosts = $qpid_hostname:$qpid_port |
|
905 |
|
906 # Username for Qpid connection. (string value) |
|
907 # Deprecated group/name - [DEFAULT]/qpid_username |
|
908 # qpid_username = |
|
909 |
|
910 # Password for Qpid connection. (string value) |
|
911 # Deprecated group/name - [DEFAULT]/qpid_password |
|
912 # qpid_password = |
|
913 |
|
914 # Space separated list of SASL mechanisms to use for auth. (string value) |
|
915 # Deprecated group/name - [DEFAULT]/qpid_sasl_mechanisms |
|
916 # qpid_sasl_mechanisms = |
|
917 |
|
918 # Seconds between connection keepalive heartbeats. (integer value) |
|
919 # Deprecated group/name - [DEFAULT]/qpid_heartbeat |
|
920 # qpid_heartbeat = 60 |
|
921 |
|
922 # Transport to use, either 'tcp' or 'ssl'. (string value) |
|
923 # Deprecated group/name - [DEFAULT]/qpid_protocol |
|
924 # qpid_protocol = tcp |
|
925 |
|
926 # Whether to disable the Nagle algorithm. (boolean value) |
|
927 # Deprecated group/name - [DEFAULT]/qpid_tcp_nodelay |
|
928 # qpid_tcp_nodelay = true |
|
929 |
|
930 # The number of prefetched messages held by receiver. (integer value) |
|
931 # Deprecated group/name - [DEFAULT]/qpid_receiver_capacity |
|
932 # qpid_receiver_capacity = 1 |
|
933 |
|
934 # The qpid topology version to use. Version 1 is what was originally used by |
|
935 # impl_qpid. Version 2 includes some backwards-incompatible changes that allow |
|
936 # broker federation to work. Users should update to version 2 when they are |
|
937 # able to take everything down, as it requires a clean break. (integer value) |
|
938 # Deprecated group/name - [DEFAULT]/qpid_topology_version |
|
939 # qpid_topology_version = 1 |
|
940 |
|
941 |
|
942 [oslo_messaging_rabbit] |
|
943 |
|
944 # |
|
945 # From oslo.messaging |
|
946 # |
|
947 |
|
948 # Use durable queues in AMQP. (boolean value) |
|
949 # Deprecated group/name - [DEFAULT]/rabbit_durable_queues |
|
950 # amqp_durable_queues = false |
|
951 |
|
952 # Auto-delete queues in AMQP. (boolean value) |
|
953 # Deprecated group/name - [DEFAULT]/amqp_auto_delete |
|
954 # amqp_auto_delete = false |
|
955 |
|
956 # Size of RPC connection pool. (integer value) |
|
957 # Deprecated group/name - [DEFAULT]/rpc_conn_pool_size |
|
958 # rpc_conn_pool_size = 30 |
|
959 |
1181 |
960 # SSL version to use (valid only if SSL enabled). Valid values are TLSv1 and |
1182 # SSL version to use (valid only if SSL enabled). Valid values are TLSv1 and |
961 # SSLv23. SSLv2, SSLv3, TLSv1_1, and TLSv1_2 may be available on some |
1183 # SSLv23. SSLv2, SSLv3, TLSv1_1, and TLSv1_2 may be available on some |
962 # distributions. (string value) |
1184 # distributions. (string value) |
963 # Deprecated group/name - [DEFAULT]/kombu_ssl_version |
1185 # Deprecated group/name - [DEFAULT]/kombu_ssl_version |
964 # kombu_ssl_version = |
1186 #kombu_ssl_version = |
965 |
1187 |
966 # SSL key file (valid only if SSL enabled). (string value) |
1188 # SSL key file (valid only if SSL enabled). (string value) |
967 # Deprecated group/name - [DEFAULT]/kombu_ssl_keyfile |
1189 # Deprecated group/name - [DEFAULT]/kombu_ssl_keyfile |
968 # kombu_ssl_keyfile = |
1190 #kombu_ssl_keyfile = |
969 |
1191 |
970 # SSL cert file (valid only if SSL enabled). (string value) |
1192 # SSL cert file (valid only if SSL enabled). (string value) |
971 # Deprecated group/name - [DEFAULT]/kombu_ssl_certfile |
1193 # Deprecated group/name - [DEFAULT]/kombu_ssl_certfile |
972 # kombu_ssl_certfile = |
1194 #kombu_ssl_certfile = |
973 |
1195 |
974 # SSL certification authority file (valid only if SSL enabled). (string value) |
1196 # SSL certification authority file (valid only if SSL enabled). (string value) |
975 # Deprecated group/name - [DEFAULT]/kombu_ssl_ca_certs |
1197 # Deprecated group/name - [DEFAULT]/kombu_ssl_ca_certs |
976 # kombu_ssl_ca_certs = |
1198 #kombu_ssl_ca_certs = |
977 |
1199 |
978 # How long to wait before reconnecting in response to an AMQP consumer cancel |
1200 # How long to wait before reconnecting in response to an AMQP consumer cancel |
979 # notification. (floating point value) |
1201 # notification. (floating point value) |
980 # Deprecated group/name - [DEFAULT]/kombu_reconnect_delay |
1202 # Deprecated group/name - [DEFAULT]/kombu_reconnect_delay |
981 # kombu_reconnect_delay = 1.0 |
1203 #kombu_reconnect_delay = 1.0 |
|
1204 |
|
1205 # EXPERIMENTAL: Possible values are: gzip, bz2. If not set compression will not |
|
1206 # be used. This option may notbe available in future versions. (string value) |
|
1207 #kombu_compression = <None> |
|
1208 |
|
1209 # How long to wait a missing client beforce abandoning to send it its replies. |
|
1210 # This value should not be longer than rpc_response_timeout. (integer value) |
|
1211 # Deprecated group/name - [DEFAULT]/kombu_reconnect_timeout |
|
1212 #kombu_missing_consumer_retry_timeout = 60 |
|
1213 |
|
1214 # Determines how the next RabbitMQ node is chosen in case the one we are |
|
1215 # currently connected to becomes unavailable. Takes effect only if more than |
|
1216 # one RabbitMQ node is provided in config. (string value) |
|
1217 # Allowed values: round-robin, shuffle |
|
1218 #kombu_failover_strategy = round-robin |
982 |
1219 |
983 # The RabbitMQ broker address where a single node is used. (string value) |
1220 # The RabbitMQ broker address where a single node is used. (string value) |
984 # Deprecated group/name - [DEFAULT]/rabbit_host |
1221 # Deprecated group/name - [DEFAULT]/rabbit_host |
985 # rabbit_host = localhost |
1222 #rabbit_host = localhost |
986 |
1223 |
987 # The RabbitMQ broker port where a single node is used. (integer value) |
1224 # The RabbitMQ broker port where a single node is used. (port value) |
|
1225 # Minimum value: 0 |
|
1226 # Maximum value: 65535 |
988 # Deprecated group/name - [DEFAULT]/rabbit_port |
1227 # Deprecated group/name - [DEFAULT]/rabbit_port |
989 # rabbit_port = 5672 |
1228 #rabbit_port = 5672 |
990 |
1229 |
991 # RabbitMQ HA cluster host:port pairs. (list value) |
1230 # RabbitMQ HA cluster host:port pairs. (list value) |
992 # Deprecated group/name - [DEFAULT]/rabbit_hosts |
1231 # Deprecated group/name - [DEFAULT]/rabbit_hosts |
993 # rabbit_hosts = $rabbit_host:$rabbit_port |
1232 #rabbit_hosts = $rabbit_host:$rabbit_port |
994 |
1233 |
995 # Connect over SSL for RabbitMQ. (boolean value) |
1234 # Connect over SSL for RabbitMQ. (boolean value) |
996 # Deprecated group/name - [DEFAULT]/rabbit_use_ssl |
1235 # Deprecated group/name - [DEFAULT]/rabbit_use_ssl |
997 # rabbit_use_ssl = false |
1236 #rabbit_use_ssl = false |
998 |
1237 |
999 # The RabbitMQ userid. (string value) |
1238 # The RabbitMQ userid. (string value) |
1000 # Deprecated group/name - [DEFAULT]/rabbit_userid |
1239 # Deprecated group/name - [DEFAULT]/rabbit_userid |
1001 # rabbit_userid = guest |
1240 #rabbit_userid = guest |
1002 |
1241 |
1003 # The RabbitMQ password. (string value) |
1242 # The RabbitMQ password. (string value) |
1004 # Deprecated group/name - [DEFAULT]/rabbit_password |
1243 # Deprecated group/name - [DEFAULT]/rabbit_password |
1005 # rabbit_password = guest |
1244 #rabbit_password = guest |
1006 |
1245 |
1007 # The RabbitMQ login method. (string value) |
1246 # The RabbitMQ login method. (string value) |
1008 # Deprecated group/name - [DEFAULT]/rabbit_login_method |
1247 # Deprecated group/name - [DEFAULT]/rabbit_login_method |
1009 # rabbit_login_method = AMQPLAIN |
1248 #rabbit_login_method = AMQPLAIN |
1010 |
1249 |
1011 # The RabbitMQ virtual host. (string value) |
1250 # The RabbitMQ virtual host. (string value) |
1012 # Deprecated group/name - [DEFAULT]/rabbit_virtual_host |
1251 # Deprecated group/name - [DEFAULT]/rabbit_virtual_host |
1013 # rabbit_virtual_host = / |
1252 #rabbit_virtual_host = / |
1014 |
1253 |
1015 # How frequently to retry connecting with RabbitMQ. (integer value) |
1254 # How frequently to retry connecting with RabbitMQ. (integer value) |
1016 # rabbit_retry_interval = 1 |
1255 #rabbit_retry_interval = 1 |
1017 |
1256 |
1018 # How long to backoff for between retries when connecting to RabbitMQ. (integer |
1257 # How long to backoff for between retries when connecting to RabbitMQ. (integer |
1019 # value) |
1258 # value) |
1020 # Deprecated group/name - [DEFAULT]/rabbit_retry_backoff |
1259 # Deprecated group/name - [DEFAULT]/rabbit_retry_backoff |
1021 # rabbit_retry_backoff = 2 |
1260 #rabbit_retry_backoff = 2 |
|
1261 |
|
1262 # Maximum interval of RabbitMQ connection retries. Default is 30 seconds. |
|
1263 # (integer value) |
|
1264 #rabbit_interval_max = 30 |
1022 |
1265 |
1023 # Maximum number of RabbitMQ connection retries. Default is 0 (infinite retry |
1266 # Maximum number of RabbitMQ connection retries. Default is 0 (infinite retry |
1024 # count). (integer value) |
1267 # count). (integer value) |
1025 # Deprecated group/name - [DEFAULT]/rabbit_max_retries |
1268 # Deprecated group/name - [DEFAULT]/rabbit_max_retries |
1026 # rabbit_max_retries = 0 |
1269 #rabbit_max_retries = 0 |
1027 |
1270 |
1028 # Use HA queues in RabbitMQ (x-ha-policy: all). If you change this option, you |
1271 # Try to use HA queues in RabbitMQ (x-ha-policy: all). If you change this |
1029 # must wipe the RabbitMQ database. (boolean value) |
1272 # option, you must wipe the RabbitMQ database. In RabbitMQ 3.0, queue mirroring |
|
1273 # is no longer controlled by the x-ha-policy argument when declaring a queue. |
|
1274 # If you just want to make sure that all queues (except those with auto- |
|
1275 # generated names) are mirrored across all nodes, run: "rabbitmqctl set_policy |
|
1276 # HA '^(?!amq\.).*' '{"ha-mode": "all"}' " (boolean value) |
1030 # Deprecated group/name - [DEFAULT]/rabbit_ha_queues |
1277 # Deprecated group/name - [DEFAULT]/rabbit_ha_queues |
1031 # rabbit_ha_queues = false |
1278 #rabbit_ha_queues = false |
|
1279 |
|
1280 # Positive integer representing duration in seconds for queue TTL (x-expires). |
|
1281 # Queues which are unused for the duration of the TTL are automatically |
|
1282 # deleted. The parameter affects only reply and fanout queues. (integer value) |
|
1283 # Minimum value: 1 |
|
1284 #rabbit_transient_queues_ttl = 1800 |
|
1285 |
|
1286 # Specifies the number of messages to prefetch. Setting to zero allows |
|
1287 # unlimited messages. (integer value) |
|
1288 #rabbit_qos_prefetch_count = 0 |
|
1289 |
|
1290 # Number of seconds after which the Rabbit broker is considered down if |
|
1291 # heartbeat's keep-alive fails (0 disable the heartbeat). EXPERIMENTAL (integer |
|
1292 # value) |
|
1293 #heartbeat_timeout_threshold = 60 |
|
1294 |
|
1295 # How often times during the heartbeat_timeout_threshold we check the |
|
1296 # heartbeat. (integer value) |
|
1297 #heartbeat_rate = 2 |
1032 |
1298 |
1033 # Deprecated, use rpc_backend=kombu+memory or rpc_backend=fake (boolean value) |
1299 # Deprecated, use rpc_backend=kombu+memory or rpc_backend=fake (boolean value) |
1034 # Deprecated group/name - [DEFAULT]/fake_rabbit |
1300 # Deprecated group/name - [DEFAULT]/fake_rabbit |
1035 # fake_rabbit = false |
1301 #fake_rabbit = false |
|
1302 |
|
1303 # Maximum number of channels to allow (integer value) |
|
1304 #channel_max = <None> |
|
1305 |
|
1306 # The maximum byte size for an AMQP frame (integer value) |
|
1307 #frame_max = <None> |
|
1308 |
|
1309 # How often to send heartbeats for consumer's connections (integer value) |
|
1310 #heartbeat_interval = 1 |
|
1311 |
|
1312 # Enable SSL (boolean value) |
|
1313 #ssl = <None> |
|
1314 |
|
1315 # Arguments passed to ssl.wrap_socket (dict value) |
|
1316 #ssl_options = <None> |
|
1317 |
|
1318 # Set socket timeout in seconds for connection's socket (floating point value) |
|
1319 #socket_timeout = 0.25 |
|
1320 |
|
1321 # Set TCP_USER_TIMEOUT in seconds for connection's socket (floating point |
|
1322 # value) |
|
1323 #tcp_user_timeout = 0.25 |
|
1324 |
|
1325 # Set delay for reconnection to some host which has connection error (floating |
|
1326 # point value) |
|
1327 #host_connection_reconnect_delay = 0.25 |
|
1328 |
|
1329 # Maximum number of connections to keep queued. (integer value) |
|
1330 #pool_max_size = 10 |
|
1331 |
|
1332 # Maximum number of connections to create above `pool_max_size`. (integer |
|
1333 # value) |
|
1334 #pool_max_overflow = 0 |
|
1335 |
|
1336 # Default number of seconds to wait for a connections to available (integer |
|
1337 # value) |
|
1338 #pool_timeout = 30 |
|
1339 |
|
1340 # Lifetime of a connection (since creation) in seconds or None for no |
|
1341 # recycling. Expired connections are closed on acquire. (integer value) |
|
1342 #pool_recycle = 600 |
|
1343 |
|
1344 # Threshold at which inactive (since release) connections are considered stale |
|
1345 # in seconds or None for no staleness. Stale connections are closed on acquire. |
|
1346 # (integer value) |
|
1347 #pool_stale = 60 |
|
1348 |
|
1349 # Persist notification messages. (boolean value) |
|
1350 #notification_persistence = false |
|
1351 |
|
1352 # Exchange name for for sending notifications (string value) |
|
1353 #default_notification_exchange = ${control_exchange}_notification |
|
1354 |
|
1355 # Max number of not acknowledged message which RabbitMQ can send to |
|
1356 # notification listener. (integer value) |
|
1357 #notification_listener_prefetch_count = 100 |
|
1358 |
|
1359 # Reconnecting retry count in case of connectivity problem during sending |
|
1360 # notification, -1 means infinite retry. (integer value) |
|
1361 #default_notification_retry_attempts = -1 |
|
1362 |
|
1363 # Reconnecting retry delay in case of connectivity problem during sending |
|
1364 # notification message (floating point value) |
|
1365 #notification_retry_delay = 0.25 |
|
1366 |
|
1367 # Time to live for rpc queues without consumers in seconds. (integer value) |
|
1368 #rpc_queue_expiration = 60 |
|
1369 |
|
1370 # Exchange name for sending RPC messages (string value) |
|
1371 #default_rpc_exchange = ${control_exchange}_rpc |
|
1372 |
|
1373 # Exchange name for receiving RPC replies (string value) |
|
1374 #rpc_reply_exchange = ${control_exchange}_rpc_reply |
|
1375 |
|
1376 # Max number of not acknowledged message which RabbitMQ can send to rpc |
|
1377 # listener. (integer value) |
|
1378 #rpc_listener_prefetch_count = 100 |
|
1379 |
|
1380 # Max number of not acknowledged message which RabbitMQ can send to rpc reply |
|
1381 # listener. (integer value) |
|
1382 #rpc_reply_listener_prefetch_count = 100 |
|
1383 |
|
1384 # Reconnecting retry count in case of connectivity problem during sending |
|
1385 # reply. -1 means infinite retry during rpc_timeout (integer value) |
|
1386 #rpc_reply_retry_attempts = -1 |
|
1387 |
|
1388 # Reconnecting retry delay in case of connectivity problem during sending |
|
1389 # reply. (floating point value) |
|
1390 #rpc_reply_retry_delay = 0.25 |
|
1391 |
|
1392 # Reconnecting retry count in case of connectivity problem during sending RPC |
|
1393 # message, -1 means infinite retry. If actual retry attempts in not 0 the rpc |
|
1394 # request could be processed more then one time (integer value) |
|
1395 #default_rpc_retry_attempts = -1 |
|
1396 |
|
1397 # Reconnecting retry delay in case of connectivity problem during sending RPC |
|
1398 # message (floating point value) |
|
1399 #rpc_retry_delay = 0.25 |
|
1400 |
|
1401 |
|
1402 [oslo_policy] |
|
1403 |
|
1404 # |
|
1405 # From oslo.policy |
|
1406 # |
|
1407 |
|
1408 # The JSON file that defines policies. (string value) |
|
1409 # Deprecated group/name - [DEFAULT]/policy_file |
|
1410 #policy_file = policy.json |
|
1411 |
|
1412 # Default rule. Enforced when a requested rule is not found. (string value) |
|
1413 # Deprecated group/name - [DEFAULT]/policy_default_rule |
|
1414 #policy_default_rule = default |
|
1415 |
|
1416 # Directories where policy configuration files are stored. They can be relative |
|
1417 # to any directory in the search path defined by the config_dir option, or |
|
1418 # absolute paths. The file defined by policy_file must exist for these |
|
1419 # directories to be searched. Missing or empty directories are ignored. (multi |
|
1420 # valued) |
|
1421 # Deprecated group/name - [DEFAULT]/policy_dirs |
|
1422 #policy_dirs = policy.d |
|
1423 |
|
1424 |
|
1425 [quotas] |
|
1426 |
|
1427 # |
|
1428 # From neutron |
|
1429 # |
|
1430 |
|
1431 # Resource name(s) that are supported in quota features. This option is now |
|
1432 # deprecated for removal. (list value) |
|
1433 # This option is deprecated for removal. |
|
1434 # Its value may be silently ignored in the future. |
|
1435 #quota_items = network,subnet,port |
|
1436 |
|
1437 # Default number of resource allowed per tenant. A negative value means |
|
1438 # unlimited. (integer value) |
|
1439 #default_quota = -1 |
|
1440 |
|
1441 # Number of networks allowed per tenant. A negative value means unlimited. |
|
1442 # (integer value) |
|
1443 #quota_network = 10 |
|
1444 |
|
1445 # Number of subnets allowed per tenant, A negative value means unlimited. |
|
1446 # (integer value) |
|
1447 #quota_subnet = 10 |
|
1448 |
|
1449 # Number of ports allowed per tenant. A negative value means unlimited. |
|
1450 # (integer value) |
|
1451 #quota_port = 50 |
|
1452 |
|
1453 # Default driver to use for quota checks (string value) |
|
1454 #quota_driver = neutron.db.quota.driver.DbQuotaDriver |
|
1455 |
|
1456 # Keep in track in the database of current resourcequota usage. Plugins which |
|
1457 # do not leverage the neutron database should set this flag to False (boolean |
|
1458 # value) |
|
1459 #track_quota_usage = true |
|
1460 |
|
1461 # |
|
1462 # From neutron.extensions |
|
1463 # |
|
1464 |
|
1465 # Number of routers allowed per tenant. A negative value means unlimited. |
|
1466 # (integer value) |
|
1467 #quota_router = 10 |
|
1468 |
|
1469 # Number of floating IPs allowed per tenant. A negative value means unlimited. |
|
1470 # (integer value) |
|
1471 #quota_floatingip = 50 |
|
1472 |
|
1473 # Number of security groups allowed per tenant. A negative value means |
|
1474 # unlimited. (integer value) |
|
1475 #quota_security_group = 10 |
|
1476 |
|
1477 # Number of security rules allowed per tenant. A negative value means |
|
1478 # unlimited. (integer value) |
|
1479 #quota_security_group_rule = 100 |
|
1480 |
|
1481 |
|
1482 [ssl] |
|
1483 |
|
1484 # |
|
1485 # From oslo.service.sslutils |
|
1486 # |
|
1487 |
|
1488 # CA certificate file to use to verify connecting clients. (string value) |
|
1489 # Deprecated group/name - [DEFAULT]/ssl_ca_file |
|
1490 #ca_file = <None> |
|
1491 |
|
1492 # Certificate file to use when starting the server securely. (string value) |
|
1493 # Deprecated group/name - [DEFAULT]/ssl_cert_file |
|
1494 #cert_file = <None> |
|
1495 |
|
1496 # Private key file to use when starting the server securely. (string value) |
|
1497 # Deprecated group/name - [DEFAULT]/ssl_key_file |
|
1498 #key_file = <None> |
|
1499 |
|
1500 # SSL version to use (valid only if SSL enabled). Valid values are TLSv1 and |
|
1501 # SSLv23. SSLv2, SSLv3, TLSv1_1, and TLSv1_2 may be available on some |
|
1502 # distributions. (string value) |
|
1503 #version = <None> |
|
1504 |
|
1505 # Sets the list of available ciphers. value should be a string in the OpenSSL |
|
1506 # cipher list format. (string value) |
|
1507 #ciphers = <None> |