allowed address pair does not support ip prefix
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
networking-ovn |
Fix Released
|
High
|
Numan Siddique |
Bug Description
I find this bug in the latest version.
I configure the allowed address pair with CIDR, the format is "IP/length", but in the southbound db table logical_flow, it saves the "IP", not "IP/length"
steve@ovn:
+------
| id | name | mac_address | fixed_ips |
+------
| 4dd7156d-
| a06956eb-
+------
steve@ovn:
steve@ovn:
| Field | Value |
+------
| admin_state_up | True |
| allowed_
| | {"ip_address": "40.0.0.0/24", "mac_address": "fa:16:
| binding:host_id | ovn |
| binding:vif_details | {"port_filter": true} |
| binding:vif_type | ovs |
| binding:vnic_type | normal |
| created_at | 2016-03-31T13:08:15 |
| description | |
| device_id | 43788ce0-
| device_owner | compute:nova |
| extra_dhcp_opts | |
| fixed_ips | {"subnet_id": "44294991-
| id | 4dd7156d-
| mac_address | fa:16:3e:d4:75:c7 |
| name | |
| network_id | 8c0df965-
| port_security_
| qos_policy_id | |
| security_groups | fccb122c-
| status | ACTIVE |
| tenant_id | 51d2a360f6e84dc
| updated_at | 2016-03-31T13:08:21 |
+------
In northbound DB, the 30.0.0.0/24 and 40.0.0.0/24 is saved in column 'port_security'
steve@ovn:
_uuid : 4c498a78-
addresses : ["fa:16:3e:dc:2a:a6 20.0.0.2"]
enabled : true
external_ids : {"neutron:
name : "a06956eb-
options : {}
parent_name : []
port_security : []
tag : []
type : ""
up : true
_uuid : ce1f42fe-
addresses : ["fa:16:3e:d4:75:c7 20.0.0.3"]
enabled : true
external_ids : {"neutron:
name : "4dd7156d-
options : {}
parent_name : []
port_security : ["fa:16:3e:d4:75:c7 20.0.0.3 30.0.0.0/24 40.0.0.0/24"]
tag : []
type : ""
up : true
But in southbound db, the logical flow for the allowed address pair is:
_uuid : 16e6ee6d-
actions : "next;"
external_ids : {stage-
logical_datapath : 0ee09ef5-
match : "inport == \"4dd7156d-
pipeline : ingress
priority : 90
table_id : 1
The mask length disappears.
Changed in networking-ovn: | |
assignee: | nobody → Numan Siddique (numansiddique) |
Changed in networking-ovn: | |
status: | New → Confirmed |
Changed in networking-ovn: | |
status: | Confirmed → In Progress |
Changed in networking-ovn: | |
status: | Fix Committed → Fix Released |
For my understanding this needs to be fixed in OVN itself.