Juniper Openstack

AAP/FIP: incorrect stitched MAC for FIP breaks L2 connectivity

Series r3.0
Bug #1615130

Bug #1615130 reported by amit surana on 2016-08-19

This bug affects 1 person

	Status	Importance	Assigned to	Milestone
Juniper Openstack	Status tracked in Trunk
R3.0	Fix Committed	Medium	Naveen N	Juniper Openstack r3.0.3.0
R3.1	Fix Committed	Medium	Naveen N	Juniper Openstack r3.1.1.0
Trunk	Fix Committed	Medium	Naveen N	Juniper Openstack r3.2.0.0-fcs "r3.2.0.0"

Bug Description

Consider a case where a FIP from a public VN has been associated with an AAP (which in-turn front ends a vrrp group that has 2 VMs). This is done by setting the 'floating_ip_fixed_ip_address' property of the FIP object to the AAP IP.

In the public VN (from which FIP is taken), the L3 vrf has a stitched MAC programmed for the FIP, which is set to the MAC of that VM to which the FIP was assigned last. Now, if a VM in the public VN tries of ping the FIP, its ARP request will be proxies by vRouter and replied to with the stitched MAC. As such, the echo request will always be bridged to the 2nd VM -- irrespective of which one is active in the vrrp group.

Tags:

amit surana (asurana-t) on 2016-08-19

summary:

- AAP/FIP: stitched MAC for FIP breaks L2 connectivity
+ AAP/FIP: incorrect stitched MAC for FIP breaks L2 connectivity

Revision history for this message

Naveen N (naveenn) wrote on 2016-08-22:

When floating-ip is associated with 2 VM, there will be 2 EVPN routes exported since mac of each VM is different. If tracking IP is set on FIP, preference of FIP would be tracked based on the tracking-ip route. MAC stitching of VM also should take into account preference and change the stitched MAC upon preference change

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2016-08-31: [Review update] master

Review in progress for https://review.opencontrail.org/23769
Submitter: Naveen N (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2016-09-09: [Review update] R3.1

Review in progress for https://review.opencontrail.org/24031
Submitter: Naveen N (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2016-09-09: A change has been merged

Reviewed: https://review.opencontrail.org/23769
Committed: http://github.org/Juniper/contrail-controller/commit/d08716aafed0613399ebfaff956f02f84836d5ee
Submitter: Zuul
Branch: master

commit d08716aafed0613399ebfaff956f02f84836d5ee
Author: Naveen N <email address hidden>
Date: Wed Aug 31 15:08:03 2016 +0530

* Stitch MAC address based on priority

If there are 2 EVPN routes pointing to same MAC,
then priority must be given to EVPN route with higher
preference. Fix for same.
Closes-bug:#1615130

Change-Id: Iaeda2dc19abef69741cbd146b8954b5859e3f42c

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2016-09-12:

Reviewed: https://review.opencontrail.org/24031
Committed: http://github.org/Juniper/contrail-controller/commit/cd819bca0c59fb3d9a2898a7cd0b604605221aa3
Submitter: Zuul
Branch: R3.1

commit cd819bca0c59fb3d9a2898a7cd0b604605221aa3
Author: Naveen N <email address hidden>
Date: Wed Aug 31 15:08:03 2016 +0530

* Stitch MAC address based on priority

If there are 2 EVPN routes pointing to same MAC,
then priority must be given to EVPN route with higher
preference. Fix for same.
Closes-bug:#1615130

Change-Id: Iaeda2dc19abef69741cbd146b8954b5859e3f42c

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2016-09-19: [Review update] R3.0

#10

Review in progress for https://review.opencontrail.org/24259
Submitter: Naveen N (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2016-09-19: A change has been merged

#12

Reviewed: https://review.opencontrail.org/24259
Committed: http://github.org/Juniper/contrail-controller/commit/2d33a0d3a0afd639c17256ca80e0dc4cca31a30a
Submitter: Zuul
Branch: R3.0

commit 2d33a0d3a0afd639c17256ca80e0dc4cca31a30a
Author: Naveen N <email address hidden>
Date: Wed Aug 31 15:08:03 2016 +0530

* Stitch MAC address based on priority

If there are 2 EVPN routes pointing to same MAC,
then priority must be given to EVPN route with higher
preference. Fix for same.
Closes-bug:#1615130

Change-Id: Iaeda2dc19abef69741cbd146b8954b5859e3f42c

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.