After binding a floating IP to VM, the static route can't work in DVR.
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Fix Released
|
High
|
Swaminathan Vasudevan |
Bug Description
In DVR topology, in order to arrived target host, a static route entry has been added to vrouter.
1>. Before associate a floating IP to VM, the traffic from VM to target host via the router(SNAT-NS) is OK.
Gateway ------- vrouter(SNAT-NS) ------- VM
|
|
Target HOST
2>. Then I associate a floating IP to VM, the VM can't ping to target host now.
Gateway ------- vrouter(FIP-NS) ------- VM
|
|
Target HOST
I have checked the router in SNAT-NS and FIP-NS, found the static router entry is added to SNAT-NS, but it missed in FIP-NS.
Append detail info:
Internet
|
|
|
GW<----
|
|(external-net)
|
FIP(192.
|
|(internal-net)
|
VM(192.168.0.6)
1> The IP of target host is 172.18.0.56/24
2> The IP of external GW is 172.16.0.1, but the IP of internal GW is 192.168.0.1, they are different.
3> The exact router in snat namespace is the same as it in router namespace(
tags: |
added: l3-dvr-backlog removed: dvr route static |
description: | updated |
Changed in neutron: | |
assignee: | nobody → Swaminathan Vasudevan (swaminathan-vasudevan) |
status: | Expired → In Progress |
tags: | added: mitaka-backport-potential |
Changed in neutron: | |
assignee: | Swaminathan Vasudevan (swaminathan-vasudevan) → Brian Haley (brian-haley) |
Changed in neutron: | |
assignee: | Brian Haley (brian-haley) → Swaminathan Vasudevan (swaminathan-vasudevan) |
Changed in neutron: | |
assignee: | Swaminathan Vasudevan (swaminathan-vasudevan) → Brian Haley (brian-haley) |
Changed in neutron: | |
assignee: | Brian Haley (brian-haley) → Swaminathan Vasudevan (swaminathan-vasudevan) |
Changed in neutron: | |
assignee: | Swaminathan Vasudevan (swaminathan-vasudevan) → Brian Haley (brian-haley) |
Changed in neutron: | |
assignee: | Brian Haley (brian-haley) → Swaminathan Vasudevan (swaminathan-vasudevan) |
Changed in neutron: | |
importance: | Undecided → High |
milestone: | none → ocata-rc1 |
tags: | added: newton-backport-potential ocata-rc-potential |
This might be true. Since we are not currently adding the static routes to the fip namespace.
We are only adding it to the router_namespace, but since the router namespace does not have the external interface configured, it might error out.
So it would probably make sense to add the static routes in the fip namespace as well along with the snat_namespace, when configured for external network.