[Mainline-Build 2704]: Fat flow- For intra compute UDP traffic, icmp error response for the corresponding Fat flow is in HOLD state
| Affects | Status | Importance | Assigned to | Milestone | ||
|---|---|---|---|---|---|---|
| Juniper Openstack | Status tracked in Trunk | |||||
| R3.0 |
Fix Committed
|
High
|
Naveen N | |||
| Trunk |
Fix Committed
|
High
|
Naveen N | |||
Bug Description
consider the below case:
VM DNS server 2002:1::5 has Fat configuration for UDP port 53.
VM 2002:1::3 (both VMs on same node) does nslookup to 2002:1::5 where DNS port 53 is not reachable for some reason.
DNS VM will send port not reachable icmp error for the DNS query, but this error response is marked HOLD in the flow and never reaches the destination.
root@nodec12:~# flow -l|grep 2002:1::5 -A2 -B2|grep 2002:1::3 -A2 -B2
-------
51400<=>276056 2002:1::3:40726 17 (7)
(K(nh):43, Action:F, Flags:, S(nh):43, Statistics:1/90 UdpSrcPort 56287
77736 2002:1::5:53 17 (7)
(K(nh):28, Action:H, Flags:, S(nh):0, Statistics:1/138 UdpSrcPort 0
--
--
276056<=>51400 2002:1::5:53 17 (7)
(K(nh):28, Action:F, Flags:, S(nh):28, Statistics:0/0 UdpSrcPort 55097
| information type: | Proprietary → Public |
| OpenContrail Admin (ci-admin-f) wrote [Review update] R3.0 | #2 |
| OpenContrail Admin (ci-admin-f) wrote A change has been merged | #4 |
| OpenContrail Admin (ci-admin-f) wrote [Review update] master | #5 |
| OpenContrail Admin (ci-admin-f) wrote A change has been merged | #9 |
| alok kumar (kalok) wrote | #10 |
This was not seen in mainline 2711 but I again see this issue on R3.0 2717.
This is only for IPv6.
root@nodec12:~# flow -l| grep 2002:1::5 -A2 -B2 | grep 2002:1::6 -A2 -B2
485300 2002:1::6:53 17 (1)
(Gen: 1, K(nh):33, Action:H, Flags:, S(nh):0, Stats:1/139, SPort 0)
--
--
884664<=>1184504 2002:1::6:53 17 (1)
(Gen: 1, K(nh):33, Action:F, Flags:, S(nh):33, Stats:0/0, SPort 60067)
--
1184504<=>884664 2002:1::5:55175 17 (1)
(Gen: 1, K(nh):40, Action:F, Flags:, S(nh):40, Stats:1/91, SPort 51695)