vrouter has an entry to drop specific subnet though agent has default route
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
Juniper Openstack | Status tracked in Trunk | |||||
R2.0 |
Fix Committed
|
Undecided
|
Naveen N | |||
R2.1 |
Won't Fix
|
Undecided
|
Naveen N | |||
R2.20 |
Fix Released
|
Undecided
|
Naveen N | |||
Trunk |
Fix Released
|
Undecided
|
Naveen N |
Bug Description
Naveen is aware of the issue and has a possible fix...
From: Senthilnathan Murugappan
Sent: Wednesday, May 27, 2015 12:06 PM
To: Naveen N; Hari Prasad Killi
Subject: RE: public network gets dropped
Hi Naveen,
Yup that’s the expectation too but for some reason private-net has a entry to drop public net.
Config, Control node: 10.87.24.33, 10.87.24.34, 10.87.24.35
root@csol1-
+------
| Field | Value |
+------
| admin_state_up | True |
| contrail:fq_name | default-domain |
| | ProjectfA91 |
| | lr2 |
| external_
| id | f5ea63fd-
| name | lr2 |
| status | ACTIVE |
| tenant_id | 0c43c57ede7f424
+------
root@csol1-
+------
| id | name | mac_address | fixed_ips |
+------
| 0b39290b-
+------
From: Naveen N
Sent: Tuesday, May 26, 2015 10:22 PM
To: Senthilnathan Murugappan; Hari Prasad Killi
Subject: Re: public network gets dropped
Hi Senthil,
In case of netns SNAT AFAIK, private network will just have a default route
pointing to SNAT SI, this route would be deleted once external gateway is deleted.
Can you give use more details about ur setup, webui IP?
Regards
Naveen N
_______
From: Senthilnathan Murugappan
Sent: Wednesday, May 27, 2015 6:23 AM
To: Hari Prasad Killi; Naveen N
Subject: public network gets dropped
Hi Hari, Naveen,
On the snat setup after couple of teardowns observing that there is a specific route in vrouter to drop the public net. Issue goes away upon reload of the vrouter module.
Had a chat with Raja who believes at some point of time agent has populated this route and hasn’t cleared the same.
On Host 10.87.24.44:
Vrf 1 is private-net1 (1.1.1.0/24) and 172.21.1.0/24 is my public gw network and I don’t have any policies connecting them except for snat.
Agent has 0.0.0.0/0 to 100.64.0.5 which is the SI-VN and doesn’t have other routes than local and default.
root@csol1-node9:~# rt --dump 1 | grep 172.21.1.0
172.21.1.0/24 24 - 0
172.21.100.0/24 0 L 23 13
http://
Appreciate if you could take a look.
Thanks,
Senthil
Review in progress for https:/ /review. opencontrail. org/10977
Submitter: Naveen N (<email address hidden>)