Juniper Openstack

Add knob to enable/disable arp flooding

Series r2.0
Bug #1498397

Bug #1498397 reported by Manish Singh on 2015-09-22

This bug affects 1 person

	Status	Importance	Assigned to	Milestone
Juniper Openstack	Won't Fix	High	Manish Singh	Juniper Openstack r2.22
R2.0	Fix Committed	High	Manish Singh	Juniper Openstack r2.02
R2.20	Won't Fix	High	Manish Singh	Juniper Openstack r2.22
Trunk	Won't Fix	High	Manish Singh	Juniper Openstack r2.22

Bug Description

Add knob to enable flooding of the ARP.

Tags:

Manish Singh (manishs) on 2015-09-22

tags:	added: vrouter
Changed in juniperopenstack:
assignee:	nobody → Manish Singh (manishs)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2015-09-22: [Review update] R2.0

Review in progress for https://review.opencontrail.org/13974
Submitter: Manish Singh (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2015-09-24: A change has been merged

Reviewed: https://review.opencontrail.org/13974
Committed: http://github.org/Juniper/contrail-controller/commit/faa899a89ac2bc23d5fa2c210f67e1eb0d75ccf5
Submitter: Zuul
Branch: R2.0

commit faa899a89ac2bc23d5fa2c210f67e1eb0d75ccf5
Author: Manish <email address hidden>
Date: Tue Sep 22 16:04:37 2015 +0530

Add knob for flooading arp.

Change-Id: I2eccb25be7c57967ee3e87d2283a2bbefa4f968d
Closes-bug: 1498397

Jeba Paulaiyan (jebap) on 2015-09-25

information type:

Proprietary → Public

Revision history for this message

Praveen (praveen-karadakal) wrote on 2015-09-26:

R2.0 only supports routing of IP packets. VRouter proxies with VRRP MAC 00:00:5e:00:01:00 for all VM IP-Address. When VRouter receives IP packet, the packet is routed only if the destination-mac is VRRP MAC (00:00:5e:00:01:00).

A bug was introduced In commit https://github.com/Juniper/contrail-controller/commit/b72913ed45eb921b11e8f2f2742bdb1242851a08, where ARP requests for unknown IP addresses in flooded. When ARP packets are flooded, the receiving VMs will learn "real" ARP address for the source.

Subsequently, packets destined for ARP learned will be bridged instead of getting routed (since destination-mac is not 00:00:5e:00:01:00). Bridged packets do not go thru flow processing in R2.0.

Due to learning of real MAC, we can have following cases for communication between VM1 and VM2
Case-1 : Routed from VM1 to VM2, Routed from VM2 to VM1
Case-2 : Routed from VM1 to VM2, Bridged from VM2 to VM1
Case-3 : Bridged from VM1 to VM2, Routed from VM2 to VM1
Case-4 : Bridged from VM1 to VM2, Bridged from VM2 to VM1

Out of these only Case-1 is valid scenario. Case-2, Case-3 and Case-4 can result in packet drops.

As a fix for R2.0, a control is added to avoid flooding of ARP packets.

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2015-11-17: [Review update] R2.20

Review in progress for https://review.opencontrail.org/15186
Submitter: Manish Singh (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2015-11-17: [Review update] master

Review in progress for https://review.opencontrail.org/15192
Submitter: Manish Singh (<email address hidden>)

Revision history for this message

Manish Singh (manishs) wrote on 2015-11-17:

#11

For R2.20 and master use L3-only mode, if arp flood is not required.

Hari Prasad Killi (haripk) on 2016-01-19

Changed in juniperopenstack:
status:	In Progress → Won't Fix

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.