Updating health monitor can end up deleting monitor.

Configure Travis-CI and make sure no flake8 violations in current code.

I need to updated the README with a link to the lbaasv2 read the docs site.

Implement RPC methods in agent to allow agent RPC calls to driver for tunnel and L2 population support.

Refactor LBaaSv1-based code in selfips.py to use f5-sdk methods.

Refactor LBaaSv1-based code in vcmp.py to use f5-sdk.

Refactor LBaaSv1-based code in snats.py to use f5-sdk methods.

OpenStack Release

Liberty

Description

I need to ensure we are in compliance with F5 branding requirements. F5, F5 Networks, BIG-IP, and all other product names must use the appropriate trademarks (except in code).

Replace LBaaS v1 common methods with f5-sdk implementation using NetworkHelper methods.

The default pool attribute of a BIG-IP virtual server is not updated when creating a pool without using the --name parameter. The 8.0.1 version of the LBaaS v2 agent incorrectly relies on the name parameter (e.g., --name pool1) to set the default pool attribute of the associated virtual server.

The following is an example reported by an internal F5 customer:

neutron lbaas-loadbalancer-create 94c8de7f-c56e-4cb3-a57a-cdc268e64f1c
neutron lbaas-listener-create --loadbalancer bf66fed0-339a-4010-8e90-14b717dba7d7 --protocol HTTP --protocol-port 8080
neutron lbaas-pool-create --listener b455779a-28c3-433d-b0ec-38c3e1f89ad9 --loadbalancer bf66fed0-339a-4010-8e90-14b717dba7d7 --lb-algorithm ROUND_ROBIN --protocol HTTP

new text:

Maintenance and F5 Technical Support of the F5 code is provided only if the software (i) is unmodified; and (ii) has been marked as F5 Supported in SOL80012344, (https://support.f5.com/kb/en-us/solutions/public/k/80/sol80012344.html). Support will only be provided to customers who have an existing support contract, purchased separately, subject to F5’s support policies available at http://www.f5.com/about/guidelines-policies/ and http://askf5.com.

I need to remove artifacts from the old docs strategy (doc/, docScript.sh) and add the issue and pull request templates.

Some refactoring for L3 binding.

Agent Version

2.0.1

Operating System

Ubuntu

OpenStack Release

Liberty

Description.

The l3_binding module needs to handle improperly formatted l3_static bindings and report the correct error. The configuration file also needs to be changed to be correctly loaded as JSON.

Deployment

When creating a pool, the assure_pool_created() method fails

Error in LBaaSBuilder._assure_pools_created.Message: 'NoneType' object has no attribute 'getitem'

When session persistence was added the listener service checks references a None object in
update_session_persistence.

        persistence = pool['session_persistence']
        persistence_type = persistence['type']

Persistence is None.

• Details: For bugs, fill out the template below.

Agent Version

<Fill in the version you have installed, such as 2.0.1>

Operating System

<Fill in the host OS of the machine running the agent, such as Centos 7>

OpenStack Release

<Fill in the OpenStack release, such as Liberty>

Description

<Describe the bug in detail, steps taken prior to encountering the issue, yand a short explanation of you have deployed openstack and F5® agent>

Deployment

<Explain in reasonable detail your OpenStack deployment, the F5® OpenStack agent, and BIG-IP®(s)>
<Example: Single OpenStack controller with one F5® agent managing a cluster of 4 BIG-IP® VEs>
<Example: Three OpenStack controllers in HA, each with one standalone F5® agent managing a single BIG-IP® appliance>

OpenStack Release

liberty

Description

Instead of using a hyperlink, we should use the slack badge.

Agent fails during L2 network configuration when a loadbalancer is created.

There are many opportunities for the network construction to fail when creating a loadbalancing service. This provides a mechanism to report an error state back to the driver.

Implement functions defined in a network helper class to support NetworkServiceBuilder and L2ServiceBuilder classes.

The System V startup script does not return correct status.

Agent Version

2.0.1

Operating System

Ubuntu

OpenStack Release

Liberty

Description

When the user runs # service f5-oslbaasv2-agent status, there is an error in finding the process.

Deployment

Network objects -- SNATs, tunnels, etc. -- are not removed when load balancer is deleted.

The Debian startup script f5-oslbaasv2-agent fails to start b/c of errors in path names.

Operating System

Ubuntu 14.04

OpenStack Release

Liberty

Description

There are a number of errors that were in the Ubuntu startup script that did not get pushed before release. This fixes those and the start-stop-daemon command execution error.

Deployment

<Explain in reasonable detail your OpenStack deployment, the F5® OpenStack agent, and BIG-IP®(s)>
<Example: Single OpenStack controller with one F5® agent managing a cluster of 4 BIG-IP® VEs>
<Example: Three OpenStack controllers in HA, each with one standalone F5® agent managing a single BIG-IP® appliance>

Agent logs show following error when creating a snat pool:

2016-05-04 13:57:58.722 56098 ERROR f5_openstack_agent.lbaasv2.drivers.bigip.snats [req-33b4b334-9848-405b-bf7f-12b4f87f52e1 be3315095042428fb1ce7f5264f5bc61 d1aaf813eaa8455486b45f53ba467b71 - - -] Create SNAT pool failed 400 Unexpected Error: Bad Request for uri: https://10.50.50.21/mgmt/tm/ltm/snatpool/

In order for the driver to know whether a network is assigned to the BIG-IP '/Common' folder this flag is necessary to determine whether a network with "router:external" set should be considered common.

The operating status (as opposed to provisioning status) is not updated for LBaaS pools and members when the corresponding F5 objects change status.

Agent Version

2.0.1a2

Operating System

CentOS 7

OpenStack Release

Liberty

Description

Follow instructions on http://f5-openstack-lbaasv2.readthedocs.org/en/master/getting-started-lbaasv2.html to create a proxy. Execute commands in reverse order to delete all objects. The look for objects in BIGIP GUI.

Deployment

N/A

Travis build #13.1 errored

Jekyll can't find _includes / _layouts content.

travis_build_13.txt

The assure network code path for VLAN contains a reference to a stale attribute on the bigip object, ihostname.

Implement classes to take an LBaaS v2 service definition, map the service to BIG-IP model objects, and create the model objects on BIG-IP systems. Use f5-sdk for creating BIG-IP resources.

• Title: Creating a neutron lbaasv2 loadbalancer fails with error in agent log:
  ERROR f5_openstack_agent.lbaasv2.drivers.bigip.icontrol_driver [-] Exception: icontrol_driver: instance names and partitions cannot contain '/', but it's: /Common/snat-traffic-group-local-only-d9ce530c-e900-4564-beb7-b5b0279a2e4b_0
• Labels:
• Milestone:
• Assignee:
• Attachments: zip of -
  var/log/neutron/server.log
  var/log/neutron/f5-openstack-agent.log
  etc/neutron/neutron.conf
  etc/neutron/neutron_lbaas.conf
  etc/neutron/services/f5/f5-openstack-agent.ini

create-loadbalancer-issue.zip

• Details

Agent Version

8.0.1

Operating System

Centos 7

OpenStack Release

Liberty

Description

<Describe the bug in detail, steps taken prior to encountering the issue, yand a short explanation of you have deployed openstack and F5® agent>

Deployment

• Packstack all-in-one controller/network node with existing external network
• under-the-cloud BIG-IP VE 12.0.0.1

Implement cluster management functions to support BIG-IP clusters in LBaaS v2.

Changing the default environment from 'Test' to 'Project' and removing unnecessary/misleading comments in the 'ini' file.

Per internal conversation w/ @jlongstaf & Johnny S., the issue template needs to be updated. The references to labels, assignee, and milestone should be removed, as they're not visible to users who aren't admins.

Add support for saving BIG-IP configurations.

The agent periodically checks its cache of services to determine which need to be refreshed/destroyed.

I need to update the CLA landing page URL with the new read the docs URL everywhere it appears.

• CONTRIBUTING
• README

OpenStack Release

n/a

Description

I need to replace the contact email address with the Slack channel URL.

Need to complete session persistence implementation by adding support for creating cookie persistence profiles.

Replace LBaaS v1 common calls with f5-sdk implementation using NetworkHelper class.

Support L3 binding, including loading L3 binding class defined in configuration file, registering BIG-IP MAC addresses, and binding address/subnet pairs when load balancer is created.

OpenStack Release

Liberty

Description

The copyright blurb is missing from lbaasv2/drivers/bigip/icontrol_driver.py. It should be added in asap.

• Title: Liberty Release not in Pypi
• Details:Liberty release is not in Pypi

OpenStack Release

Liberty

Description

8.0.1

OpenStack Release

Liberty

Description

The pip install of agent can only be done from github. Needs to be able to be installed from pypi too.

Remove unused options from f5-openstack-agent.ini file.

Introduction

This document is meant to provide a lightweight, high-level view of the “Disconnected Service Deployment” capability in the F5 OpenStack Agent, hereafter known as “agent”. The business driver for this capability is a requirement to support “Hierarchical Port Binding”; as possible via the ML2 plugin driver architecture.

Background

The agent assumes that a Neutron network will already exist when attempting to create Neutron LBaaS objects. The service model constructed and sent to the agent, and subsequent RPC from the agent back to Neutron for discovery purposes will always have complete information. Therefore, the agent is able to immediately create the necessary configuration on attached BIG-IP(s).

Deploying an OpenStack network architecture with hierarchical port-binding breaks current agent assumptions. The key difference is that the network to which the BIG-IP should attach may not exist at the time Neutron LBaaS sends loadbalancer requests to the F5 plugin driver. The network design provides an outward-facing segment ID to connect to the public/provider network. This ‘top’ network can cascade through a series of one or more intermediate segments before reaching the ‘bottom’ network to which the BIG-IP will be attached.

Proposal

The agent will be modified to create a “disconnected network” in order to support the “delayed activation” of loadbalancer objects. This will become the default behavior and not modifiable by the operator. For deployments using pre-existing Neutron networks, there may be a minor increase (on the order of seconds) in the time to activate BIG-IP configuration. For deployments that create networks on-the-fly, the agent will poll for a maximum of 5 minutes waiting for the BIG-IP facing network to become available. The agent does not attempt to create a Virtual Server until both a loadbalancer AND listener object have been created. The listener object will sit in “PENDING_CREATE” state until either the network is created or the 5-minute timeout occurs.

Definitions

Disconnected Network

The agent will create a VLAN interface named “disconnected-vlan” within each tenant partition that is not connected to an external interface. Therefore, the interface will not be capable of sending or receiving data traffic. But it provides sufficient configuration to support creation of loadbalancer objects.

Delayed Activation

Specific network fields in the Service Model will be allowed to point to, or contain, a non-existent value. The agent will retain its current behavior that immediately translates loadbalancer objects to the appropriate BIG-IP configuration. But the Virtual Server/Listener will be connected to the tenant’s disconnected network. For this proposal, the segment ID (i.e. VXLAN tunnel ID) can be empty even though the Service Model should still contain the name of the network missing an ID.

Deliverables

• Enhanced F5 OpenStack agent

Workflow

Assumption

1. Operator creates loadbalancer with the parent subnet_id
2. ML2 plugin driver creates the network hierarchy
3. Agent must detect a hierarchical network and traverse down to locate the child network
4. Agent polls for child subnet_id
5. Agent requests a neutron port (for the listener, a.k.a. VIP) on the child subnet_id
6. Agent creates the tenant interface on BIG-IP and binds the listener (Virtual Server address)

Sequence Diagram

OpenStack Release

The agent_manager is refreshing the state of a loadbalancing service because it has found a loadbalancing object in the pending state. The sync() method in icontrol_driver refers to service['pool'] which refers to the old service model. This must be changed to service['loadbalancer']

• Details: For bugs, fill out the template below.

Agent Version

<Fill in the version you have installed, such as 2.0.1>

Operating System

<Fill in the host OS of the machine running the agent, such as Centos 7>

OpenStack Release

<Fill in the OpenStack release, such as Liberty>

Description

<Describe the bug in detail, steps taken prior to encountering the issue, yand a short explanation of you have deployed openstack and F5® agent>

Deployment

<Explain in reasonable detail your OpenStack deployment, the F5® OpenStack agent, and BIG-IP®(s)>
<Example: Single OpenStack controller with one F5® agent managing a cluster of 4 BIG-IP® VEs>
<Example: Three OpenStack controllers in HA, each with one standalone F5® agent managing a single BIG-IP® appliance>

The version file needs to change from 8.0.1RC1 to 8.0.1. Perhaps this can wait until the next release.

Rich

Check for existing member fails in L2 adjacent network environment. Error caused by % character in member name (e.g., 10.2.3.4%2:80). Need to urlencode member names. Note: the requests library used by the f5-sdk does not URL encode % characters, so this needs to be explicitly done before submitting the request.

Add support for returning load balancer stats:
active_connections
bytes_in
bytes_out
total_connections

Adding implementation to perform L3 binding to open up the Self-IP for VIP traffic.

Adding Agent L2 population and Tunnel update consumer.

Adding more state information to the report state method.

Updating an existing health monitor (e.g., lbaas-healthmonitor-update ) generates an error in the agent, leaving the loadbalancer in update state.