Enable BGP VPN¶
TechPreview
Note
Consider this section as part of Deploy an OpenStack cluster.
The BGP VPN service is an extra OpenStack Neutron plugin that enables connection of OpenStack Virtual Private Networks with external VPN sites through either BGP/MPLS IP VPNs or E-VPN.
To enable the BGP VPN service:
Enable BGP VPN in the OsDpl custom resource through the
node specific overrides
settings. For example:
spec:
features:
neutron:
bgpvpn:
enabled: true
route_reflector:
# Enable deploygin FRR route reflector
enabled: true
# Local AS number
as_number: 64512
# List of subnets we allow to connect to
# router reflector BGP
neighbor_subnets:
- 10.0.0.0/8
- 172.16.0.0/16
nodes:
openstack-compute-node::enabled:
features:
neutron:
bgpvpn:
enabled: true
When the service is enabled, a route reflector is scheduled on nodes with
the openstack-frrouting: enabled
label. Mirantis recommends collocating
the route reflector nodes with the OpenStack controller nodes. By default, two
replicas are deployed.