Merge pull request #70727 from sheriff-rh/OSDOCS-9146

sheriff-rh · web-flow · commit 11f27c4a3f3c · 2024-02-07T07:59:32.000-05:00
diff --git a/installing/installing_openstack/installing-openstack-user.adoc b/installing/installing_openstack/installing-openstack-user.adoc
@@ -37,6 +37,7 @@ include::modules/installation-osp-accessing-api.adoc[leveloffset=+1]
 include::modules/installation-osp-accessing-api-floating.adoc[leveloffset=+2]
 include::modules/installation-osp-accessing-api-no-floating.adoc[leveloffset=+2]
 include::modules/installation-osp-describing-cloud-parameters.adoc[leveloffset=+1]
+include::modules/installation-osp-creating-network-resources.adoc[leveloffset=+1]
 include::modules/installation-initializing.adoc[leveloffset=+1]
 
 [role="_additional-resources"]
@@ -61,11 +62,10 @@ After you deploy your cluster, you can attach pods to additional networks. For m
 include::modules/installation-user-infra-generate-k8s-manifest-ignition.adoc[leveloffset=+1]
 include::modules/installation-osp-converting-ignition-resources.adoc[leveloffset=+1]
 include::modules/installation-osp-creating-control-plane-ignition.adoc[leveloffset=+1]
-include::modules/installation-osp-creating-network-resources.adoc[leveloffset=+1]
-
-Optionally, you can use the `inventory.yaml` file that you created to customize your installation. For example, you can deploy a cluster that uses bare metal machines.
+include::modules/installation-osp-updating-network-resources.adoc[leveloffset=+1]
 
 include::modules/installation-osp-deploying-bare-metal-machines.adoc[leveloffset=+2]
+
 include::modules/installation-osp-creating-bootstrap-machine.adoc[leveloffset=+1]
 include::modules/installation-osp-creating-control-plane.adoc[leveloffset=+1]
 include::modules/cli-logging-in-kubeadmin.adoc[leveloffset=+1]
diff --git a/modules/installation-osp-config-yaml.adoc b/modules/installation-osp-config-yaml.adoc
@@ -3,15 +3,16 @@
 // * installing/installing_openstack/installing-openstack-installer-custom.adoc
 
 [id="installation-osp-config-yaml_{context}"]
-= Sample customized `install-config.yaml` file for {rh-openstack}
+= Sample customized install-config.yaml file for {rh-openstack}
 
-This sample `install-config.yaml` demonstrates all of the possible {rh-openstack-first}
-customization options.
+The following example `install-config.yaml` files demonstrate all of the possible {rh-openstack-first} customization options.
 
 [IMPORTANT]
-This sample file is provided for reference only. You must obtain your
-`install-config.yaml` file by using the installation program.
+This sample file is provided for reference only. You must obtain your `install-config.yaml` file by using the installation program.
 
+.Example single stack `install-config.yaml` file
+[%collapsible]
+====
 [source,yaml]
 ----
 apiVersion: v1
@@ -49,3 +50,61 @@ endif::openshift-origin[]
 pullSecret: '{"auths": ...}'
 sshKey: ssh-ed25519 AAAA...
 ----
+====
+
+.Example dual stack `install-config.yaml` file
+[%collapsible]
+====
+[source,yaml]
+----
+apiVersion: v1
+baseDomain: example.com
+controlPlane:
+  name: master
+  platform: {}
+  replicas: 3
+compute:
+- name: worker
+  platform:
+    openstack:
+      type: ml.large
+  replicas: 3
+metadata:
+  name: example
+networking:
+  clusterNetwork:
+  - cidr: 10.128.0.0/14
+    hostPrefix: 23
+  - cidr: fd01::/48
+    hostPrefix: 64
+  machineNetwork:
+  - cidr: 192.168.25.0/24
+  - cidr: fd2e:6f44:5dd8:c956::/64
+  serviceNetwork:
+  - 172.30.0.0/16
+  - fd02::/112
+  networkType: OVNKubernetes
+platform:
+  openstack:
+    cloud: mycloud
+    externalNetwork: external
+    computeFlavor: m1.xlarge
+    apiVIPs:
+    - 192.168.25.10
+    - fd2e:6f44:5dd8:c956:f816:3eff:fec3:5955
+    ingressVIPs:
+    - 192.168.25.132
+    - fd2e:6f44:5dd8:c956:f816:3eff:fe40:aecb
+    controlPlanePort:
+      fixedIPs:
+      - subnet:
+          name: openshift-dual4
+      - subnet:
+          name: openshift-dual6
+      network:
+        name: openshift-dual
+fips: false
+pullSecret: '{"auths": ...}'
+sshKey: ssh-ed25519 AAAA...
+----
+====
diff --git a/modules/installation-osp-creating-network-resources.adoc b/modules/installation-osp-creating-network-resources.adoc
@@ -10,80 +10,26 @@ Create the network resources that an {product-title} on {rh-openstack-first} ins
 
 .Prerequisites
 
-* Python 3 is installed on your machine.
 * You downloaded the modules in "Downloading playbook dependencies".
 * You downloaded the playbooks in "Downloading the installation playbooks".
 
 .Procedure
 
-. Optional: Add an external network value to the `inventory.yaml` playbook:
+. For a dual stack cluster deployment, edit the `inventory.yaml` file and uncomment the `os_subnet6` attribute.
+
+. On a command line, create the network resources by running the following command:
 +
-.Example external network value in the `inventory.yaml` Ansible playbook
-[source,yaml]
+[source,terminal]
 ----
-...
-      # The public network providing connectivity to the cluster. If not
-      # provided, the cluster external connectivity must be provided in another
-      # way.
-
-      # Required for os_api_fip, os_ingress_fip, os_bootstrap_fip.
-      os_external_network: 'external'
-...
+$ ansible-playbook -i inventory.yaml network.yaml
 ----
 +
-[IMPORTANT]
+[NOTE]
 ====
-If you did not provide a value for `os_external_network` in the `inventory.yaml` file, you must ensure that VMs can access Glance and an external connection yourself.
+The API and Ingress VIP fields will be overwritten in the `inventory.yaml` playbook with the IP addresses assigned to the network ports.
 ====
-
-. Optional: Add external network and floating IP (FIP) address values to the `inventory.yaml` playbook:
-+
-.Example FIP values in the `inventory.yaml` Ansible playbook
-[source,yaml]
-----
-...
-      # OpenShift API floating IP address. If this value is non-empty, the
-      # corresponding floating IP will be attached to the Control Plane to
-      # serve the OpenShift API.
-      os_api_fip: '203.0.113.23'
-
-      # OpenShift Ingress floating IP address. If this value is non-empty, the
-      # corresponding floating IP will be attached to the worker nodes to serve
-      # the applications.
-      os_ingress_fip: '203.0.113.19'
-
-      # If this value is non-empty, the corresponding floating IP will be
-      # attached to the bootstrap machine. This is needed for collecting logs
-      # in case of install failure.
-      os_bootstrap_fip: '203.0.113.20'
-----
 +
-[IMPORTANT]
+[NOTE]
 ====
-If you do not define values for `os_api_fip` and `os_ingress_fip`, you must perform postinstallation network configuration.
-
-If you do not define a value for `os_bootstrap_fip`, the installer cannot download debugging information from failed installations.
-
-See "Enabling access to the environment" for more information.
+The resources created by the `network.yaml` playbook are deleted by the `down-network.yaml` playbook.
 ====
-
-. On a command line, create security groups by running the `security-groups.yaml` playbook:
-+
-[source,terminal]
-----
-$ ansible-playbook -i inventory.yaml security-groups.yaml
-----
-
-. On a command line, create a network, subnet, and router by running the `network.yaml` playbook:
-+
-[source,terminal]
-----
-$ ansible-playbook -i inventory.yaml network.yaml
-----
-
-. Optional: If you want to control the default resolvers that Nova servers use, run the {rh-openstack} CLI command:
-+
-[source,terminal]
-----
-$ openstack subnet set --dns-nameserver <server_1> --dns-nameserver <server_2> "$INFRA_ID-nodes"
-----
diff --git a/modules/installation-osp-downloading-playbooks.adoc b/modules/installation-osp-downloading-playbooks.adoc
@@ -22,16 +22,16 @@ $ xargs -n 1 curl -O <<< '
         https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/common.yaml
         https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/compute-nodes.yaml
         https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/control-plane.yaml
-        https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/inventory.yaml
-        https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/network.yaml
-        https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/security-groups.yaml
         https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/down-bootstrap.yaml
         https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/down-compute-nodes.yaml
         https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/down-control-plane.yaml
-        https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/down-load-balancers.yaml
         https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/down-network.yaml
         https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/down-security-groups.yaml
-        https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/down-containers.yaml'
+        https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/down-containers.yaml
+        https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/inventory.yaml
+        https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/network.yaml
+        https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/security-groups.yaml
+        https://raw.githubusercontent.com/openshift/installer/release-{product-version}/upi/openstack/update-network-resources.yaml'
 ----
 
 The playbooks are downloaded to your machine.
diff --git a/modules/installation-osp-fixing-subnet.adoc b/modules/installation-osp-fixing-subnet.adoc
@@ -12,24 +12,39 @@ The IP range that the installation program uses by default might not match the N
 .Prerequisites
 
 * You have the `install-config.yaml` file that was generated by the {product-title} installation program.
+* You have Python 3 installed.
 
 .Procedure
 
-. On a command line, browse to the directory that contains `install-config.yaml`.
+. On a command line, browse to the directory that contains the `install-config.yaml` and `inventory.yaml` files.
 
 . From that directory, either run a script to edit the `install-config.yaml` file or update the file manually:
 
-** To set the value by using a script, run:
+** To set the value by using a script, run the following command:
 +
 [source,terminal]
 ----
-$ python -c '
-import yaml;
-path = "install-config.yaml";
-data = yaml.safe_load(open(path));
-data["networking"]["machineNetwork"] = [{"cidr": "192.168.0.0/18"}]; <1>
+$ python -c 'import yaml
+path = "install-config.yaml"
+data = yaml.safe_load(open(path))
+inventory = yaml.safe_load(open("inventory.yaml"))["all"]["hosts"]["localhost"]
+machine_net = [{"cidr": inventory["os_subnet_range"]}]
+api_vips = [inventory["os_apiVIP"]]
+ingress_vips = [inventory["os_ingressVIP"]]
+ctrl_plane_port = {"network": {"name": inventory["os_network"]}, "fixedIPs": [{"subnet": {"name": inventory["os_subnet"]}}]}
+if inventory.get("os_subnet6"): <1>
+    machine_net.append({"cidr": inventory["os_subnet6_range"]})
+    api_vips.append(inventory["os_apiVIP6"])
+    ingress_vips.append(inventory["os_ingressVIP6"])
+    data["networking"]["networkType"] = "OVNKubernetes"
+    data["networking"]["clusterNetwork"].append({"cidr": inventory["cluster_network6_cidr"], "hostPrefix": inventory["cluster_network6_prefix"]})
+    data["networking"]["serviceNetwork"].append(inventory["service_subnet6_range"])
+    ctrl_plane_port["fixedIPs"].append({"subnet": {"name": inventory["os_subnet6"]}})
+data["networking"]["machineNetwork"] = machine_net
+data["platform"]["openstack"]["apiVIPs"] = api_vips
+data["platform"]["openstack"]["ingressVIPs"] = ingress_vips
+data["platform"]["openstack"]["controlPlanePort"] = ctrl_plane_port
+del data["platform"]["openstack"]["externalDNS"]
 open(path, "w").write(yaml.dump(data, default_flow_style=False))'
 ----
-<1> Insert a value that matches your intended Neutron subnet, e.g. `192.0.2.0/24`.
-
-** To set the value manually, open the file and set the value of `networking.machineCIDR` to something that matches your intended Neutron subnet.
+<1> Applies to dual stack (IPv4/IPv6) environments.
diff --git a/modules/installation-osp-updating-network-resources.adoc b/modules/installation-osp-updating-network-resources.adoc
@@ -0,0 +1,92 @@
+// Module included in the following assemblies:
+//
+// * installing/installing_openstack/installing-openstack-user.adoc
+
+:_mod-docs-content-type: PROCEDURE
+[id="installation-osp-updating-network-resources_{context}"]
+= Updating network resources on {rh-openstack}
+
+Update the network resources that an {product-title} on {rh-openstack-first} installation on your own infrastructure requires.
+
+.Prerequisites
+
+* Python 3 is installed on your machine.
+* You downloaded the modules in "Downloading playbook dependencies".
+* You downloaded the playbooks in "Downloading the installation playbooks".
+
+.Procedure
+
+. Optional: Add an external network value to the `inventory.yaml` playbook:
++
+.Example external network value in the `inventory.yaml` Ansible Playbook
+[source,yaml]
+----
+...
+      # The public network providing connectivity to the cluster. If not
+      # provided, the cluster external connectivity must be provided in another
+      # way.
+
+      # Required for os_api_fip, os_ingress_fip, os_bootstrap_fip.
+      os_external_network: 'external'
+...
+----
++
+[IMPORTANT]
+====
+If you did not provide a value for `os_external_network` in the `inventory.yaml` file, you must ensure that VMs can access Glance and an external connection yourself.
+====
+
+. Optional: Add external network and floating IP (FIP) address values to the `inventory.yaml` playbook:
++
+.Example FIP values in the `inventory.yaml` Ansible Playbook
+[source,yaml]
+----
+...
+      # OpenShift API floating IP address. If this value is non-empty, the
+      # corresponding floating IP will be attached to the Control Plane to
+      # serve the OpenShift API.
+      os_api_fip: '203.0.113.23'
+
+      # OpenShift Ingress floating IP address. If this value is non-empty, the
+      # corresponding floating IP will be attached to the worker nodes to serve
+      # the applications.
+      os_ingress_fip: '203.0.113.19'
+
+      # If this value is non-empty, the corresponding floating IP will be
+      # attached to the bootstrap machine. This is needed for collecting logs
+      # in case of install failure.
+      os_bootstrap_fip: '203.0.113.20'
+----
++
+[IMPORTANT]
+====
+If you do not define values for `os_api_fip` and `os_ingress_fip`, you must perform postinstallation network configuration.
+
+If you do not define a value for `os_bootstrap_fip`, the installation program cannot download debugging information from failed installations.
+
+See "Enabling access to the environment" for more information.
+====
+
+. On a command line, create security groups by running the `security-groups.yaml` playbook:
++
+[source,terminal]
+----
+$ ansible-playbook -i inventory.yaml security-groups.yaml
+----
+
+. On a command line, update the network resources by running the `update-network-resources.yaml` playbook:
++
+[source,terminal]
+----
+$ ansible-playbook -i inventory.yaml update-network-resources.yaml <1>
+----
+<1> This playbook will add tags to the network, subnets, ports, and router. It also attaches floating IP addresses to the API and Ingress ports and sets the security groups for those ports.
+
+. Optional: If you want to control the default resolvers that Nova servers use, run the {rh-openstack} CLI command:
++
+[source,terminal]
+----
+$ openstack subnet set --dns-nameserver <server_1> --dns-nameserver <server_2> "$INFRA_ID-nodes"
+----
+
+. Optional: You can use the `inventory.yaml` file that you created to customize your installation. For example, you can deploy a cluster that uses bare metal machines.
