DVR: Inter Tenant Traffic between networks not possible with shared net
Inter Tenant Traffic between two different networks that belong
to two different Tenants is not possible when connected through
a shared network that are internally connected through DVR
routers.
This issue can be seen in multinode environment where there
is network isolation.
The issue is, we have two different IP for the ports that are
connecting the two routers and DVR does not expose the router
interfaces outside a compute and is blocked by ovs tunnel bridge
rules.
This patch fixes the issue by not applying the DVR specific
rules in the tunnel-bridge to the shared network ports that
are connecting the routers.
Closes-Bug: #1751396
Change-Id: I0717f29209f1354605d2f4128949ddbaefd99629
(cherry picked from commit d019790fe436b72cb05b8d0ff1f3a62ebd9e9bee)
Reviewed: https:/ /review. openstack. org/554644 /git.openstack. org/cgit/ openstack/ neutron/ commit/ ?id=02d31ffb8ab b157dff02fc9772 41ebdbf8ead89c
Committed: https:/
Submitter: Zuul
Branch: stable/queens
commit 02d31ffb8abb157 dff02fc977241eb dbf8ead89c
Author: Swaminathan Vasudevan <email address hidden>
Date: Fri Feb 23 16:22:33 2018 -0800
DVR: Inter Tenant Traffic between networks not possible with shared net
Inter Tenant Traffic between two different networks that belong
to two different Tenants is not possible when connected through
a shared network that are internally connected through DVR
routers.
This issue can be seen in multinode environment where there
is network isolation.
The issue is, we have two different IP for the ports that are
connecting the two routers and DVR does not expose the router
interfaces outside a compute and is blocked by ovs tunnel bridge
rules.
This patch fixes the issue by not applying the DVR specific
rules in the tunnel-bridge to the shared network ports that
are connecting the routers.
Closes-Bug: #1751396 4605d2f4128949d dbaefd99629 cb05b8d0ff1f3a6 2ebd9e9bee)
Change-Id: I0717f29209f135
(cherry picked from commit d019790fe436b72