#NOTES:
#- Single node deployment (baremetal Dell R6415)
#- Two physical NIC ports
#- A wildcard certificate exists for domain.com
#- An A record exists for openstack-texas.domain.com to 10.60.0.240

================= Netplan config file =================

root@texas01:~# cat /etc/netplan/00-netplan.yaml
network:
    ethernets:
      enp132s0f0np0:
        dhcp4: false
      enp132s0f1np1:
        dhcp4: false
    vlans:
      vlan60:
        accept-ra: no
        id: 60
        link: enp132s0f0np0
        mtu: 1500
    bridges:
      br-host:
        addresses: [ 10.60.0.101/24, 10.60.0.240/32 ]
        routes:
        - to: default
          via: 10.60.0.1
        nameservers:
          search: [ local ]
          addresses: [ 8.8.8.8 ]
        interfaces: [ vlan60 ]
        mtu: 9000
      br-mgmt:
        addresses: [ 10.61.0.101/24, 10.61.0.240/32 ]
    version: 2
root@texas01:~# cat /etc/openstack_deploy/openstack_user_config.yml
cidr_networks: &cidr_networks
  container: 10.60.0.0/24

================= openstack_user_config.yml =================

used_ips:
  - "10.61.0.1,10.61.0.119"

global_overrides:
  cidr_networks: *cidr_networks
  internal_lb_vip_address: 10.61.0.240
  external_lb_vip_address: openstack-texas.domain.com
  no_containers: True
  management_bridge: "br-mgmt"
  provider_networks:
    - network:
        container_bridge: "br-mgmt"
        net_name: "container"
        ip_from_q: "container"
        type: "raw"
        group_binds:
          - all_containers
          - hosts
        is_container_address: true
    - network:
        group_binds:
          - network_hosts
        container_bridge: "br-ex"
        network_interface: "enp132s0f1np1"
        type: "vlan"
        net_name: "vlan"
    - network:
        group_binds:
          - compute_hosts
        container_bridge: br-ex
        network_interface: "enp132s0f1np1"
        type: "vlan"
        net_name: "vlan"
    - network:
        group_binds:
          - neutron_openvswitch_agent
        container_bridge: "br-mgmt"
        ip_from_q: "tunnel"
        type: "vxlan"
        range: "9901:9999"
        net_name: "vxlan"

_controller_hosts: &controller_hosts
  texas01:
    ip: 10.60.0.101
    no_containers: true

compute_hosts:
  texas01:
    ip: 10.60.0.101
    no_containers: true

shared-infra_hosts: *controller_hosts
repo-infra_hosts: *controller_hosts
log_hosts: *controller_hosts
haproxy_hosts: *controller_hosts
identity_hosts: *controller_hosts
image_hosts: *controller_hosts
compute-infra_hosts: *controller_hosts
dashboard_hosts: *controller_hosts
network_hosts: *controller_hosts
placement-infra_hosts: *controller_hosts
utility: *controller_hosts
network-northd_hosts: *controller_hosts
network-gateway_hosts: *controller_hosts
skyline_dashboard_hosts: *controller_hosts

================= user_variables.yml =================

root@texas01:~# cat /etc/openstack_deploy/user_variables.yml
debug: false
install_method: source
apply_security_hardening: false

service_region: TEXAS

###############
### HAProxy ###
###############

haproxy_use_keepalived: False
haproxy_keepalived_external_interface: br-host
haproxy_keepalived_internal_interface: br-mgmt
haproxy_bind_external_lb_vip_address: 10.60.0.240
haproxy_bind_internal_lb_vip_address: 10.61.0.240

### SSL ###
haproxy_user_ssl_cert: /etc/openstack_deploy/ssl/openstack.domain.com.2025.crt
haproxy_user_ssl_key: /etc/openstack_deploy/ssl/openstack.domain.com.2025.key
haproxy_user_ssl_ca_cert: /etc/openstack_deploy/ssl/openstack.domain.com.ca-bundle.2025.crt

### Memcached ###
haproxy_memcached_allowlist_networks: "{{ haproxy_allowlist_networks }}"
memcached_servers: "{{ internal_lb_vip_address ~ ':' ~ memcached_port }}"

haproxy_extra_services:
  - service:
      haproxy_service_name: memcached
      haproxy_backend_nodes: "{{ groups['memcached'] | default([]) }}"
      haproxy_bind: "{{ [internal_lb_vip_address] }}"
      haproxy_port: 11211
      haproxy_balance_type: tcp
      haproxy_balance_alg: source
      haproxy_backend_ssl: False
      haproxy_backend_options:
        - tcp-check
      haproxy_allowlist_networks: "{{ haproxy_memcached_allowlist_networks }}"

############
### Nova ###
############

nova_cpu_allocation_ratio: 8.0
nova_resume_guests_state_on_host_boot: true
nova_nova_conf_overrides:
  DEFAULT:
    block_device_allocate_retries: 500
    block_device_allocate_retries_interval: 5
    block_device_creation_timeout: 800
    config_drive_format: vfat
    flat_injected: true
  api:
    dhcp_domain: openstack.domain.com

nova_rpc_response_timeout: 180

# Setup Nova UID/GID and NFS for shared storage
nova_system_user_uid: 980
nova_system_group_gid: 980
#nova_nfs_client:
#  - server: "10.22.0.253"
#    remote_path: "/mnt/ssd/nova/instances"
#    local_path: "/var/lib/nova/instances"
#    type: "nfs"
#    options: "_netdev,auto"
#    config_overrides: "{}"

###############
### Neutron ###
###############
neutron_plugin_type: ml2.ovs
neutron_plugin_base:
  - router
  - metering
  - trunk
  - qos
  - segments

neutron_ml2_drivers_type: "vxlan,vlan"
neutron_dhcp: true
neutron_metadata: true