42 # api_extensions_path = extensions:/path/to/more/extensions:/even/more/extensions |
52 # api_extensions_path = extensions:/path/to/more/extensions:/even/more/extensions |
43 # The __path__ of neutron.extensions is appended to this, so if your |
53 # The __path__ of neutron.extensions is appended to this, so if your |
44 # extensions are in there you don't need to specify them here |
54 # extensions are in there you don't need to specify them here |
45 # api_extensions_path = |
55 # api_extensions_path = |
46 |
56 |
47 # Neutron plugin provider module |
57 # (StrOpt) Neutron core plugin entrypoint to be loaded from the |
|
58 # neutron.core_plugins namespace. See setup.cfg for the entrypoint names of the |
|
59 # plugins included in the neutron source distribution. For compatibility with |
|
60 # previous versions, the class name of a plugin can be specified instead of its |
|
61 # entrypoint name. |
|
62 # |
|
63 # core_plugin = |
|
64 # Example: core_plugin = ml2 |
|
65 # |
48 # The EVSNeutronPluginV2 Neutron plugin connects to the Solaris Elastic |
66 # The EVSNeutronPluginV2 Neutron plugin connects to the Solaris Elastic |
49 # Virtual Switch framework to provide virtual networking between Solaris |
67 # Virtual Switch framework to provide virtual networking between Solaris |
50 # Zones. |
68 # Zones. |
51 core_plugin = neutron.plugins.evs.plugin.EVSNeutronPluginV2 |
69 core_plugin = neutron.plugins.evs.plugin.EVSNeutronPluginV2 |
52 |
70 |
53 # Advanced service modules |
71 # (ListOpt) List of service plugin entrypoints to be loaded from the |
|
72 # neutron.service_plugins namespace. See setup.cfg for the entrypoint names of |
|
73 # the plugins included in the neutron source distribution. For compatibility |
|
74 # with previous versions, the class name of a plugin can be specified instead |
|
75 # of its entrypoint name. |
|
76 # |
54 # service_plugins = |
77 # service_plugins = |
|
78 # Example: service_plugins = router,firewall,lbaas,vpnaas,metering |
55 |
79 |
56 # Paste configuration file |
80 # Paste configuration file |
57 # api_paste_config = api-paste.ini |
81 # api_paste_config = api-paste.ini |
58 |
82 |
59 # The strategy to be used for auth. |
83 # The strategy to be used for auth. |
60 # Supported values are 'keystone'(default), 'noauth'. |
84 # Supported values are 'keystone'(default), 'noauth'. |
61 # auth_strategy = keystone |
85 # auth_strategy = keystone |
62 |
86 |
63 # Base MAC address. The first 3 octets will remain unchanged. If the |
87 # Base MAC address. The first 3 octets will remain unchanged. If the |
64 # 4h octet is not 00, it will also used. The others will be |
88 # 4h octet is not 00, it will also be used. The others will be |
65 # randomly generated. |
89 # randomly generated. |
66 # 3 octet |
90 # 3 octet |
67 # base_mac = fa:16:3e:00:00:00 |
91 # base_mac = fa:16:3e:00:00:00 |
68 # 4 octet |
92 # 4 octet |
69 # base_mac = fa:16:3e:4f:00:00 |
93 # base_mac = fa:16:3e:4f:00:00 |
70 |
94 |
|
95 # DVR Base MAC address. The first 3 octets will remain unchanged. If the |
|
96 # 4th octet is not 00, it will also be used. The others will be randomly |
|
97 # generated. The 'dvr_base_mac' *must* be different from 'base_mac' to |
|
98 # avoid mixing them up with MAC's allocated for tenant ports. |
|
99 # A 4 octet example would be dvr_base_mac = fa:16:3f:4f:00:00 |
|
100 # The default is 3 octet |
|
101 # dvr_base_mac = fa:16:3f:00:00:00 |
|
102 |
71 # Maximum amount of retries to generate a unique MAC address |
103 # Maximum amount of retries to generate a unique MAC address |
72 # mac_generation_retries = 16 |
104 # mac_generation_retries = 16 |
73 |
105 |
74 # DHCP Lease duration (in seconds) |
106 # DHCP Lease duration (in seconds). Use -1 to |
|
107 # tell dnsmasq to use infinite lease times. |
75 # dhcp_lease_duration = 86400 |
108 # dhcp_lease_duration = 86400 |
76 |
109 |
77 # Allow sending resource operation notification to DHCP agent |
110 # Allow sending resource operation notification to DHCP agent |
78 # dhcp_agent_notification = True |
111 # dhcp_agent_notification = True |
79 |
112 |
85 # allow_sorting = False |
118 # allow_sorting = False |
86 # Enable or disable overlapping IPs for subnets |
119 # Enable or disable overlapping IPs for subnets |
87 # Attention: the following parameter MUST be set to False if Neutron is |
120 # Attention: the following parameter MUST be set to False if Neutron is |
88 # being used in conjunction with nova security groups |
121 # being used in conjunction with nova security groups |
89 # allow_overlapping_ips = False |
122 # allow_overlapping_ips = False |
90 # Ensure that configured gateway is on subnet |
123 # Ensure that configured gateway is on subnet. For IPv6, validate only if |
91 # force_gateway_on_subnet = False |
124 # gateway is not a link local address. Deprecated, to be removed during the |
92 |
125 # K release, at which point the check will be mandatory. |
93 |
126 # force_gateway_on_subnet = True |
94 # RPC configuration options. Defined in rpc __init__ |
|
95 # The messaging module to use, defaults to kombu. |
|
96 # rpc_backend = neutron.openstack.common.rpc.impl_kombu |
|
97 # Size of RPC thread pool |
|
98 # rpc_thread_pool_size = 64 |
|
99 # Size of RPC connection pool |
|
100 # rpc_conn_pool_size = 30 |
|
101 # Seconds to wait for a response from call or multicall |
|
102 # rpc_response_timeout = 60 |
|
103 # Seconds to wait before a cast expires (TTL). Only supported by impl_zmq. |
|
104 # rpc_cast_timeout = 30 |
|
105 # Modules of exceptions that are permitted to be recreated |
|
106 # upon receiving exception data from an rpc call. |
|
107 # allowed_rpc_exception_modules = neutron.openstack.common.exception, nova.exception |
|
108 # AMQP exchange to connect to if using RabbitMQ or QPID |
|
109 # control_exchange = neutron |
|
110 |
|
111 # If passed, use a fake RabbitMQ provider |
|
112 # fake_rabbit = False |
|
113 |
|
114 # Configuration options if sending notifications via kombu rpc (these are |
|
115 # the defaults) |
|
116 # SSL version to use (valid only if SSL enabled) |
|
117 # kombu_ssl_version = |
|
118 # SSL key file (valid only if SSL enabled) |
|
119 # kombu_ssl_keyfile = |
|
120 # SSL cert file (valid only if SSL enabled) |
|
121 # kombu_ssl_certfile = |
|
122 # SSL certification authority file (valid only if SSL enabled)' |
|
123 # kombu_ssl_ca_certs = |
|
124 # IP address of the RabbitMQ installation |
|
125 # rabbit_host = localhost |
|
126 # Password of the RabbitMQ server |
|
127 # rabbit_password = guest |
|
128 # Port where RabbitMQ server is running/listening |
|
129 # rabbit_port = 5672 |
|
130 # RabbitMQ single or HA cluster (host:port pairs i.e: host1:5672, host2:5672) |
|
131 # rabbit_hosts is defaulted to '$rabbit_host:$rabbit_port' |
|
132 # rabbit_hosts = localhost:5672 |
|
133 # User ID used for RabbitMQ connections |
|
134 # rabbit_userid = guest |
|
135 # Location of a virtual RabbitMQ installation. |
|
136 # rabbit_virtual_host = / |
|
137 # Maximum retries with trying to connect to RabbitMQ |
|
138 # (the default of 0 implies an infinite retry count) |
|
139 # rabbit_max_retries = 0 |
|
140 # RabbitMQ connection retry interval |
|
141 # rabbit_retry_interval = 1 |
|
142 # Use HA queues in RabbitMQ (x-ha-policy: all).You need to |
|
143 # wipe RabbitMQ database when changing this option. (boolean value) |
|
144 # rabbit_ha_queues = false |
|
145 |
|
146 # QPID |
|
147 # rpc_backend=neutron.openstack.common.rpc.impl_qpid |
|
148 # Qpid broker hostname |
|
149 # qpid_hostname = localhost |
|
150 # Qpid broker port |
|
151 # qpid_port = 5672 |
|
152 # Qpid single or HA cluster (host:port pairs i.e: host1:5672, host2:5672) |
|
153 # qpid_hosts is defaulted to '$qpid_hostname:$qpid_port' |
|
154 # qpid_hosts = localhost:5672 |
|
155 # Username for qpid connection |
|
156 # qpid_username = '' |
|
157 # Password for qpid connection |
|
158 # qpid_password = '' |
|
159 # Space separated list of SASL mechanisms to use for auth |
|
160 # qpid_sasl_mechanisms = '' |
|
161 # Seconds between connection keepalive heartbeats |
|
162 # qpid_heartbeat = 60 |
|
163 # Transport to use, either 'tcp' or 'ssl' |
|
164 # qpid_protocol = tcp |
|
165 # Disable Nagle algorithm |
|
166 # qpid_tcp_nodelay = True |
|
167 |
|
168 # ZMQ |
|
169 # rpc_backend=neutron.openstack.common.rpc.impl_zmq |
|
170 # ZeroMQ bind address. Should be a wildcard (*), an ethernet interface, or IP. |
|
171 # The "host" option should point or resolve to this address. |
|
172 # rpc_zmq_bind_address = * |
|
173 |
|
174 # ============ Notification System Options ===================== |
|
175 |
|
176 # Notifications can be sent when network/subnet/port are create, updated or deleted. |
|
177 # There are three methods of sending notifications: logging (via the |
|
178 # log_file directive), rpc (via a message queue) and |
|
179 # noop (no notifications sent, the default) |
|
180 |
|
181 # Notification_driver can be defined multiple times |
|
182 # Do nothing driver |
|
183 # notification_driver = neutron.openstack.common.notifier.no_op_notifier |
|
184 # Logging driver |
|
185 # notification_driver = neutron.openstack.common.notifier.log_notifier |
|
186 # RPC driver. DHCP agents needs it. |
|
187 notification_driver = neutron.openstack.common.notifier.rpc_notifier |
|
188 |
|
189 # default_notification_level is used to form actual topic name(s) or to set logging level |
|
190 # default_notification_level = INFO |
|
191 |
|
192 # default_publisher_id is a part of the notification payload |
|
193 # host = myhost.com |
|
194 # default_publisher_id = $host |
|
195 |
|
196 # Defined in rpc_notifier, can be comma separated values. |
|
197 # The actual topic names will be %s.%(default_notification_level)s |
|
198 # notification_topics = notifications |
|
199 |
127 |
200 # Default maximum number of items returned in a single response, |
128 # Default maximum number of items returned in a single response, |
201 # value == infinite and value < 0 means no max limit, and value must |
129 # value == infinite and value < 0 means no max limit, and value must |
202 # greater than 0. If the number of items requested is greater than |
130 # be greater than 0. If the number of items requested is greater than |
203 # pagination_max_limit, server will just return pagination_max_limit |
131 # pagination_max_limit, server will just return pagination_max_limit |
204 # of number of items. |
132 # of number of items. |
205 # pagination_max_limit = -1 |
133 # pagination_max_limit = -1 |
206 |
134 |
207 # Maximum number of DNS nameservers per subnet |
135 # Maximum number of DNS nameservers per subnet |
234 |
165 |
235 # Allow auto scheduling routers to L3 agent. It will schedule non-hosted |
166 # Allow auto scheduling routers to L3 agent. It will schedule non-hosted |
236 # routers to first L3 agent which sends sync_routers message to neutron server |
167 # routers to first L3 agent which sends sync_routers message to neutron server |
237 # router_auto_schedule = True |
168 # router_auto_schedule = True |
238 |
169 |
|
170 # Allow automatic rescheduling of routers from dead L3 agents with |
|
171 # admin_state_up set to True to alive agents. |
|
172 # allow_automatic_l3agent_failover = False |
|
173 |
239 # Number of DHCP agents scheduled to host a network. This enables redundant |
174 # Number of DHCP agents scheduled to host a network. This enables redundant |
240 # DHCP agents for configured networks. |
175 # DHCP agents for configured networks. |
241 # dhcp_agents_per_network = 1 |
176 # dhcp_agents_per_network = 1 |
242 |
177 |
243 # =========== end of items for agent scheduler extension ===== |
178 # =========== end of items for agent scheduler extension ===== |
|
179 |
|
180 # =========== items for l3 extension ============== |
|
181 # Enable high availability for virtual routers. |
|
182 # l3_ha = False |
|
183 # |
|
184 # Maximum number of l3 agents which a HA router will be scheduled on. If it |
|
185 # is set to 0 the router will be scheduled on every agent. |
|
186 # max_l3_agents_per_router = 3 |
|
187 # |
|
188 # Minimum number of l3 agents which a HA router will be scheduled on. The |
|
189 # default value is 2. |
|
190 # min_l3_agents_per_router = 2 |
|
191 # |
|
192 # CIDR of the administrative network if HA mode is enabled |
|
193 # l3_ha_net_cidr = 169.254.192.0/18 |
|
194 # =========== end of items for l3 extension ======= |
244 |
195 |
245 # =========== WSGI parameters related to the API server ============== |
196 # =========== WSGI parameters related to the API server ============== |
246 # Number of separate worker processes to spawn. The default, 0, runs the |
197 # Number of separate worker processes to spawn. The default, 0, runs the |
247 # worker thread in the current process. Greater than 0 launches that number of |
198 # worker thread in the current process. Greater than 0 launches that number of |
248 # child processes as workers. The parent process manages them. |
199 # child processes as workers. The parent process manages them. |
249 # api_workers = 0 |
200 # api_workers = 0 |
|
201 |
|
202 # Number of separate RPC worker processes to spawn. The default, 0, runs the |
|
203 # worker thread in the current process. Greater than 0 launches that number of |
|
204 # child processes as RPC workers. The parent process manages them. |
|
205 # This feature is experimental until issues are addressed and testing has been |
|
206 # enabled for various plugins for compatibility. |
|
207 # rpc_workers = 0 |
|
208 |
|
209 # Timeout for client connections socket operations. If an |
|
210 # incoming connection is idle for this number of seconds it |
|
211 # will be closed. A value of '0' means wait forever. (integer |
|
212 # value) |
|
213 # client_socket_timeout = 900 |
|
214 |
|
215 # wsgi keepalive option. Determines if connections are allowed to be held open |
|
216 # by clients after a request is fulfilled. A value of False will ensure that |
|
217 # the socket connection will be explicitly closed once a response has been |
|
218 # sent to the client. |
|
219 # wsgi_keep_alive = True |
|
220 |
250 # Sets the value of TCP_KEEPIDLE in seconds to use for each server socket when |
221 # Sets the value of TCP_KEEPIDLE in seconds to use for each server socket when |
251 # starting API server. Not supported on OS X. |
222 # starting API server. Not supported on OS X. |
252 # tcp_keepidle = 600 |
223 # tcp_keepidle = 600 |
253 |
224 |
254 # Number of seconds to keep retrying to listen |
225 # Number of seconds to keep retrying to listen |
255 # retry_until_window = 30 |
226 # retry_until_window = 30 |
256 |
227 |
257 # Number of backlog requests to configure the socket with. |
228 # Number of backlog requests to configure the socket with. |
258 # backlog = 4096 |
229 # backlog = 4096 |
|
230 |
|
231 # Max header line to accommodate large tokens |
|
232 # max_header_line = 16384 |
259 |
233 |
260 # Enable SSL on the API server |
234 # Enable SSL on the API server |
261 # use_ssl = False |
235 # use_ssl = False |
262 |
236 |
263 # Certificate file to use when starting API server securely |
237 # Certificate file to use when starting API server securely |
271 # API clients need to authenticate to the API server using SSL certificates |
245 # API clients need to authenticate to the API server using SSL certificates |
272 # signed by a trusted CA |
246 # signed by a trusted CA |
273 # ssl_ca_file = /path/to/cafile |
247 # ssl_ca_file = /path/to/cafile |
274 # ======== end of WSGI parameters related to the API server ========== |
248 # ======== end of WSGI parameters related to the API server ========== |
275 |
249 |
|
250 |
|
251 # ======== neutron nova interactions ========== |
|
252 # Send notification to nova when port status is active. |
|
253 # notify_nova_on_port_status_changes = True |
|
254 |
|
255 # Send notifications to nova when port data (fixed_ips/floatingips) change |
|
256 # so nova can update it's cache. |
|
257 # notify_nova_on_port_data_changes = True |
|
258 |
|
259 # URL for connection to nova (Only supports one nova region currently). |
|
260 # nova_url = http://127.0.0.1:8774/v2 |
|
261 |
|
262 # Name of nova region to use. Useful if keystone manages more than one region |
|
263 # nova_region_name = |
|
264 |
|
265 # Username for connection to nova in admin context |
|
266 # nova_admin_username = |
|
267 |
|
268 # The uuid of the admin nova tenant |
|
269 # nova_admin_tenant_id = |
|
270 |
|
271 # Password for connection to nova in admin context. |
|
272 # nova_admin_password = |
|
273 |
|
274 # Authorization URL for connection to nova in admin context. |
|
275 # nova_admin_auth_url = |
|
276 |
|
277 # CA file for novaclient to verify server certificates |
|
278 # nova_ca_certificates_file = |
|
279 |
|
280 # Boolean to control ignoring SSL errors on the nova url |
|
281 # nova_api_insecure = False |
|
282 |
|
283 # Number of seconds between sending events to nova if there are any events to send |
|
284 # send_events_interval = 2 |
|
285 |
|
286 # ======== end of neutron nova interactions ========== |
|
287 |
|
288 # |
|
289 # Options defined in oslo.messaging |
|
290 # |
|
291 |
|
292 # Use durable queues in amqp. (boolean value) |
|
293 # Deprecated group/name - [DEFAULT]/rabbit_durable_queues |
|
294 #amqp_durable_queues=false |
|
295 |
|
296 # Auto-delete queues in amqp. (boolean value) |
|
297 #amqp_auto_delete=false |
|
298 |
|
299 # Size of RPC connection pool. (integer value) |
|
300 #rpc_conn_pool_size=30 |
|
301 |
|
302 # Qpid broker hostname. (string value) |
|
303 #qpid_hostname=localhost |
|
304 |
|
305 # Qpid broker port. (integer value) |
|
306 #qpid_port=5672 |
|
307 |
|
308 # Qpid HA cluster host:port pairs. (list value) |
|
309 #qpid_hosts=$qpid_hostname:$qpid_port |
|
310 |
|
311 # Username for Qpid connection. (string value) |
|
312 #qpid_username= |
|
313 |
|
314 # Password for Qpid connection. (string value) |
|
315 #qpid_password= |
|
316 |
|
317 # Space separated list of SASL mechanisms to use for auth. |
|
318 # (string value) |
|
319 #qpid_sasl_mechanisms= |
|
320 |
|
321 # Seconds between connection keepalive heartbeats. (integer |
|
322 # value) |
|
323 #qpid_heartbeat=60 |
|
324 |
|
325 # Transport to use, either 'tcp' or 'ssl'. (string value) |
|
326 #qpid_protocol=tcp |
|
327 |
|
328 # Whether to disable the Nagle algorithm. (boolean value) |
|
329 #qpid_tcp_nodelay=true |
|
330 |
|
331 # The qpid topology version to use. Version 1 is what was |
|
332 # originally used by impl_qpid. Version 2 includes some |
|
333 # backwards-incompatible changes that allow broker federation |
|
334 # to work. Users should update to version 2 when they are |
|
335 # able to take everything down, as it requires a clean break. |
|
336 # (integer value) |
|
337 #qpid_topology_version=1 |
|
338 |
|
339 # SSL version to use (valid only if SSL enabled). valid values |
|
340 # are TLSv1, SSLv23 and SSLv3. SSLv2 may be available on some |
|
341 # distributions. (string value) |
|
342 #kombu_ssl_version= |
|
343 |
|
344 # SSL key file (valid only if SSL enabled). (string value) |
|
345 #kombu_ssl_keyfile= |
|
346 |
|
347 # SSL cert file (valid only if SSL enabled). (string value) |
|
348 #kombu_ssl_certfile= |
|
349 |
|
350 # SSL certification authority file (valid only if SSL |
|
351 # enabled). (string value) |
|
352 #kombu_ssl_ca_certs= |
|
353 |
|
354 # How long to wait before reconnecting in response to an AMQP |
|
355 # consumer cancel notification. (floating point value) |
|
356 #kombu_reconnect_delay=1.0 |
|
357 |
|
358 # The RabbitMQ broker address where a single node is used. |
|
359 # (string value) |
|
360 #rabbit_host=localhost |
|
361 |
|
362 # The RabbitMQ broker port where a single node is used. |
|
363 # (integer value) |
|
364 #rabbit_port=5672 |
|
365 |
|
366 # RabbitMQ HA cluster host:port pairs. (list value) |
|
367 #rabbit_hosts=$rabbit_host:$rabbit_port |
|
368 |
|
369 # Connect over SSL for RabbitMQ. (boolean value) |
|
370 #rabbit_use_ssl=false |
|
371 |
|
372 # The RabbitMQ userid. (string value) |
|
373 #rabbit_userid=guest |
|
374 |
|
375 # The RabbitMQ password. (string value) |
|
376 #rabbit_password=guest |
|
377 |
|
378 # the RabbitMQ login method (string value) |
|
379 #rabbit_login_method=AMQPLAIN |
|
380 |
|
381 # The RabbitMQ virtual host. (string value) |
|
382 #rabbit_virtual_host=/ |
|
383 |
|
384 # How frequently to retry connecting with RabbitMQ. (integer |
|
385 # value) |
|
386 #rabbit_retry_interval=1 |
|
387 |
|
388 # How long to backoff for between retries when connecting to |
|
389 # RabbitMQ. (integer value) |
|
390 #rabbit_retry_backoff=2 |
|
391 |
|
392 # Maximum number of RabbitMQ connection retries. Default is 0 |
|
393 # (infinite retry count). (integer value) |
|
394 #rabbit_max_retries=0 |
|
395 |
|
396 # Use HA queues in RabbitMQ (x-ha-policy: all). If you change |
|
397 # this option, you must wipe the RabbitMQ database. (boolean |
|
398 # value) |
|
399 #rabbit_ha_queues=false |
|
400 |
|
401 # If passed, use a fake RabbitMQ provider. (boolean value) |
|
402 #fake_rabbit=false |
|
403 |
|
404 # ZeroMQ bind address. Should be a wildcard (*), an ethernet |
|
405 # interface, or IP. The "host" option should point or resolve |
|
406 # to this address. (string value) |
|
407 #rpc_zmq_bind_address=* |
|
408 |
|
409 # MatchMaker driver. (string value) |
|
410 #rpc_zmq_matchmaker=oslo.messaging._drivers.matchmaker.MatchMakerLocalhost |
|
411 |
|
412 # ZeroMQ receiver listening port. (integer value) |
|
413 #rpc_zmq_port=9501 |
|
414 |
|
415 # Number of ZeroMQ contexts, defaults to 1. (integer value) |
|
416 #rpc_zmq_contexts=1 |
|
417 |
|
418 # Maximum number of ingress messages to locally buffer per |
|
419 # topic. Default is unlimited. (integer value) |
|
420 #rpc_zmq_topic_backlog=<None> |
|
421 |
|
422 # Directory for holding IPC sockets. (string value) |
|
423 #rpc_zmq_ipc_dir=/var/run/openstack |
|
424 |
|
425 # Name of this node. Must be a valid hostname, FQDN, or IP |
|
426 # address. Must match "host" option, if running Nova. (string |
|
427 # value) |
|
428 #rpc_zmq_host=oslo |
|
429 |
|
430 # Seconds to wait before a cast expires (TTL). Only supported |
|
431 # by impl_zmq. (integer value) |
|
432 #rpc_cast_timeout=30 |
|
433 |
|
434 # Heartbeat frequency. (integer value) |
|
435 #matchmaker_heartbeat_freq=300 |
|
436 |
|
437 # Heartbeat time-to-live. (integer value) |
|
438 #matchmaker_heartbeat_ttl=600 |
|
439 |
|
440 # Size of RPC greenthread pool. (integer value) |
|
441 #rpc_thread_pool_size=64 |
|
442 |
|
443 # Driver or drivers to handle sending notifications. (multi |
|
444 # valued) |
|
445 #notification_driver= |
|
446 |
|
447 # AMQP topic used for OpenStack notifications. (list value) |
|
448 # Deprecated group/name - [rpc_notifier2]/topics |
|
449 #notification_topics=notifications |
|
450 |
|
451 # Seconds to wait for a response from a call. (integer value) |
|
452 #rpc_response_timeout=60 |
|
453 |
|
454 # A URL representing the messaging driver to use and its full |
|
455 # configuration. If not set, we fall back to the rpc_backend |
|
456 # option and driver specific configuration. (string value) |
|
457 #transport_url=<None> |
|
458 |
|
459 # The messaging driver to use, defaults to rabbit. Other |
|
460 # drivers include qpid and zmq. (string value) |
|
461 #rpc_backend=rabbit |
|
462 |
|
463 # The default exchange under which topics are scoped. May be |
|
464 # overridden by an exchange name specified in the |
|
465 # transport_url option. (string value) |
|
466 #control_exchange=openstack |
|
467 |
|
468 |
|
469 [matchmaker_redis] |
|
470 |
|
471 # |
|
472 # Options defined in oslo.messaging |
|
473 # |
|
474 |
|
475 # Host to locate redis. (string value) |
|
476 #host=127.0.0.1 |
|
477 |
|
478 # Use this port to connect to redis host. (integer value) |
|
479 #port=6379 |
|
480 |
|
481 # Password for Redis server (optional). (string value) |
|
482 #password=<None> |
|
483 |
|
484 |
|
485 [matchmaker_ring] |
|
486 |
|
487 # |
|
488 # Options defined in oslo.messaging |
|
489 # |
|
490 |
|
491 # Matchmaker ring file (JSON). (string value) |
|
492 # Deprecated group/name - [DEFAULT]/matchmaker_ringfile |
|
493 #ringfile=/etc/oslo/matchmaker_ring.json |
|
494 |
276 [quotas] |
495 [quotas] |
277 # resource name(s) that are supported in quota features |
496 # Default driver to use for quota checks |
|
497 # quota_driver = neutron.db.quota_db.DbQuotaDriver |
|
498 |
|
499 # Resource name(s) that are supported in quota features |
278 # quota_items = network,subnet,port |
500 # quota_items = network,subnet,port |
279 |
501 |
280 # default number of resource allowed per tenant, minus for unlimited |
502 # Default number of resource allowed per tenant. A negative value means |
|
503 # unlimited. |
281 # default_quota = -1 |
504 # default_quota = -1 |
282 |
505 |
283 # number of networks allowed per tenant, and minus means unlimited |
506 # Number of networks allowed per tenant. A negative value means unlimited. |
284 # quota_network = 10 |
507 # quota_network = 10 |
285 |
508 |
286 # number of subnets allowed per tenant, and minus means unlimited |
509 # Number of subnets allowed per tenant. A negative value means unlimited. |
287 # quota_subnet = 10 |
510 # quota_subnet = 10 |
288 |
511 |
289 # number of ports allowed per tenant, and minus means unlimited |
512 # Number of ports allowed per tenant. A negative value means unlimited. |
290 # quota_port = 50 |
513 # quota_port = 50 |
291 |
514 |
292 # number of security groups allowed per tenant, and minus means unlimited |
515 # Number of security groups allowed per tenant. A negative value means |
|
516 # unlimited. |
293 # quota_security_group = 10 |
517 # quota_security_group = 10 |
294 |
518 |
295 # number of security group rules allowed per tenant, and minus means unlimited |
519 # Number of security group rules allowed per tenant. A negative value means |
|
520 # unlimited. |
296 # quota_security_group_rule = 100 |
521 # quota_security_group_rule = 100 |
297 |
522 |
298 # default driver to use for quota checks |
523 # Number of vips allowed per tenant. A negative value means unlimited. |
299 # The default quota driver, neutron.db.quota_db.DbQuotaDriver, supports |
524 # quota_vip = 10 |
300 # static quotas defined in the [quotas] section. The Elastic Virtual |
525 |
301 # Switch plugin supports per-tenant quota limits via the quota extension |
526 # Number of pools allowed per tenant. A negative value means unlimited. |
302 # API. To enable per-tenant quotas, the quota_driver should be set to |
527 # quota_pool = 10 |
303 # neutron.plugins.evs.db.quotas_db.EVSDbQuotaDriver. |
528 |
304 quota_driver = neutron.plugins.evs.db.quotas_db.EVSDbQuotaDriver |
529 # Number of pool members allowed per tenant. A negative value means unlimited. |
|
530 # The default is unlimited because a member is not a real resource consumer |
|
531 # on Openstack. However, on back-end, a member is a resource consumer |
|
532 # and that is the reason why quota is possible. |
|
533 # quota_member = -1 |
|
534 |
|
535 # Number of health monitors allowed per tenant. A negative value means |
|
536 # unlimited. |
|
537 # The default is unlimited because a health monitor is not a real resource |
|
538 # consumer on Openstack. However, on back-end, a member is a resource consumer |
|
539 # and that is the reason why quota is possible. |
|
540 # quota_health_monitor = -1 |
|
541 |
|
542 # Number of routers allowed per tenant. A negative value means unlimited. |
|
543 # quota_router = 10 |
|
544 |
|
545 # Number of floating IPs allowed per tenant. A negative value means unlimited. |
|
546 # quota_floatingip = 50 |
|
547 |
|
548 # Number of firewalls allowed per tenant. A negative value means unlimited. |
|
549 # quota_firewall = 1 |
|
550 |
|
551 # Number of firewall policies allowed per tenant. A negative value means |
|
552 # unlimited. |
|
553 # quota_firewall_policy = 1 |
|
554 |
|
555 # Number of firewall rules allowed per tenant. A negative value means |
|
556 # unlimited. |
|
557 # quota_firewall_rule = 100 |
305 |
558 |
306 [agent] |
559 [agent] |
307 # Use "sudo neutron-rootwrap /etc/neutron/rootwrap.conf" to use the real |
560 # Use "sudo neutron-rootwrap /etc/neutron/rootwrap.conf" to use the real |
308 # root filter facility. |
561 # root filter facility. |
309 # Change to "sudo" to skip the filtering and just run the comand directly |
562 # Change to "sudo" to skip the filtering and just run the comand directly |
310 # root_helper = sudo |
563 # root_helper = sudo |
311 |
564 |
312 # =========== items for agent management extension ============= |
565 # =========== items for agent management extension ============= |
313 # seconds between nodes reporting state to server; should be less than |
566 # seconds between nodes reporting state to server; should be less than |
314 # agent_down_time, best if it is half or less than agent_down_time |
567 # agent_down_time, best if it is half or less than agent_down_time |
315 # report_interval = 4 |
568 # report_interval = 30 |
316 |
569 |
317 # =========== end of items for agent management extension ===== |
570 # =========== end of items for agent management extension ===== |
318 |
571 |
319 [keystone_authtoken] |
572 [keystone_authtoken] |
320 auth_uri = http://127.0.0.1:5000/v2.0 |
573 auth_uri = http://127.0.0.1:5000/v2.0/ |
321 identity_uri = http://127.0.0.1:35357 |
574 identity_uri = http://127.0.0.1:35357/ |
322 admin_tenant_name = %SERVICE_TENANT_NAME% |
575 admin_tenant_name = %SERVICE_TENANT_NAME% |
323 admin_user = %SERVICE_USER% |
576 admin_user = %SERVICE_USER% |
324 admin_password = %SERVICE_PASSWORD% |
577 admin_password = %SERVICE_PASSWORD% |
325 signing_dir = $state_path/keystone-signing |
578 signing_dir = $state_path/keystone-signing |
326 |
579 |
366 |
627 |
367 [service_providers] |
628 [service_providers] |
368 # Specify service providers (drivers) for advanced services like loadbalancer, VPN, Firewall. |
629 # Specify service providers (drivers) for advanced services like loadbalancer, VPN, Firewall. |
369 # Must be in form: |
630 # Must be in form: |
370 # service_provider=<service_type>:<name>:<driver>[:default] |
631 # service_provider=<service_type>:<name>:<driver>[:default] |
371 # List of allowed service type include LOADBALANCER, FIREWALL, VPN |
632 # List of allowed service types includes LOADBALANCER, FIREWALL, VPN |
372 # Combination of <service type> and <name> must be unique; <driver> must also be unique |
633 # Combination of <service type> and <name> must be unique; <driver> must also be unique |
373 # this is multiline option, example for default provider: |
634 # This is multiline option, example for default provider: |
374 # service_provider=LOADBALANCER:name:lbaas_plugin_driver_path:default |
635 # service_provider=LOADBALANCER:name:lbaas_plugin_driver_path:default |
375 # example of non-default provider: |
636 # example of non-default provider: |
376 # service_provider=FIREWALL:name2:firewall_driver_path |
637 # service_provider=FIREWALL:name2:firewall_driver_path |
377 # --- Reference implementations --- |
638 # --- Reference implementations --- |
378 service_provider=LOADBALANCER:Haproxy:neutron.services.loadbalancer.drivers.haproxy.plugin_driver.HaproxyOnHostPluginDriver:default |
639 service_provider=LOADBALANCER:Haproxy:neutron.services.loadbalancer.drivers.haproxy.plugin_driver.HaproxyOnHostPluginDriver:default |
|
640 service_provider=VPN:openswan:neutron.services.vpn.service_drivers.ipsec.IPsecVPNDriver:default |
|
641 # In order to activate Radware's lbaas driver you need to uncomment the next line. |
|
642 # If you want to keep the HA Proxy as the default lbaas driver, remove the attribute default from the line below. |
|
643 # Otherwise comment the HA Proxy line |
|
644 # service_provider = LOADBALANCER:Radware:neutron.services.loadbalancer.drivers.radware.driver.LoadBalancerDriver:default |
|
645 # uncomment the following line to make the 'netscaler' LBaaS provider available. |
|
646 # service_provider=LOADBALANCER:NetScaler:neutron.services.loadbalancer.drivers.netscaler.netscaler_driver.NetScalerPluginDriver |
|
647 # Uncomment the following line (and comment out the OpenSwan VPN line) to enable Cisco's VPN driver. |
|
648 # service_provider=VPN:cisco:neutron.services.vpn.service_drivers.cisco_ipsec.CiscoCsrIPsecVPNDriver:default |
|
649 # Uncomment the line below to use Embrane heleos as Load Balancer service provider. |
|
650 # service_provider=LOADBALANCER:Embrane:neutron.services.loadbalancer.drivers.embrane.driver.EmbraneLbaas:default |
|
651 # Uncomment the line below to use the A10 Networks LBaaS driver. Requires 'pip install a10-neutron-lbaas'. |
|
652 #service_provider = LOADBALANCER:A10Networks:neutron.services.loadbalancer.drivers.a10networks.driver_v1.ThunderDriver:default |
|
653 # Uncomment the following line to test the LBaaS v2 API _WITHOUT_ a real backend |
|
654 # service_provider = LOADBALANCER:LoggingNoop:neutron.services.loadbalancer.drivers.logging_noop.driver.LoggingNoopLoadBalancerDriver:default |