DVR: Inter Tenant Traffic between networks not possible with shared net
Inter Tenant Traffic between two different networks that belong
to two different Tenants is not possible when connected through
a shared network that are internally connected through DVR
routers.
This issue can be seen in multinode environment where there
is network isolation.
The issue is, we have two different IP for the ports that are
connecting the two routers and DVR does not expose the router
interfaces outside a compute and is blocked by ovs tunnel bridge
rules.
This patch fixes the issue by not applying the DVR specific
rules in the tunnel-bridge to the shared network ports that
are connecting the routers.
Closes-Bug: #1751396
Change-Id: I0717f29209f1354605d2f4128949ddbaefd99629
(cherry picked from commit d019790fe436b72cb05b8d0ff1f3a62ebd9e9bee)
Reviewed: https:/ /review. openstack. org/558585 /git.openstack. org/cgit/ openstack/ neutron/ commit/ ?id=6956821764e 81c61f4c3620a2a 6753394b5bc69a
Committed: https:/
Submitter: Zuul
Branch: stable/pike
commit 6956821764e81c6 1f4c3620a2a6753 394b5bc69a
Author: Swaminathan Vasudevan <email address hidden>
Date: Fri Feb 23 16:22:33 2018 -0800
DVR: Inter Tenant Traffic between networks not possible with shared net
Inter Tenant Traffic between two different networks that belong
to two different Tenants is not possible when connected through
a shared network that are internally connected through DVR
routers.
This issue can be seen in multinode environment where there
is network isolation.
The issue is, we have two different IP for the ports that are
connecting the two routers and DVR does not expose the router
interfaces outside a compute and is blocked by ovs tunnel bridge
rules.
This patch fixes the issue by not applying the DVR specific
rules in the tunnel-bridge to the shared network ports that
are connecting the routers.
Closes-Bug: #1751396 4605d2f4128949d dbaefd99629 cb05b8d0ff1f3a6 2ebd9e9bee)
Change-Id: I0717f29209f135
(cherry picked from commit d019790fe436b72