neutron

Bug #1626010
Comment #1

Comment 1 for bug 1626010

Revision history for this message

Bence Romsics (bence-romsics) wrote on 2016-09-21: Re: Connectivity problem on trunk parent with MAC reuse and openvswitch firewall driver

Trying to find the openflow rule dropping the test traffic generated by ping:

$ openstack port show port0 | grep -w id # the parent port
| id | a8560361-7af7-4503-b478-4e9b95db2628
$ sudo ovs-ofctl show br-int
...
60(tpi-a8560361-7a): addr:82:46:63:ff:1a:c6
     config: 0
     state: 0
     speed: 0 Mbps now, 0 Mbps max
...

$ sudo ip netns exec "qdhcp-$( openstack network show net0 | awk '/ id / { print $4 }' )" ping 10.0.4.6
# concurrent with the ping
$ sudo ovs-ofctl dump-flows br-int | grep -v n_packets=0 | grep actions=drop | column -t
...
cookie=0xa462c2e0451a9866, duration=8266.222s, table=71, n_packets=2, n_bytes=723, idle_age=8259, priority=70,udp,reg5=0x3c,in_port=60,tp_src=67,tp_dst=68 actions=drop
cookie=0xa462c2e0451a9866, duration=8266.222s, table=71, n_packets=318, n_bytes=28972, idle_age=64, priority=10,ct_state=-trk,reg5=0x3c,in_port=60 actions=drop
cookie=0xa462c2e0451a9866, duration=8266.201s, table=72, n_packets=4, n_bytes=300, idle_age=8249, priority=50,ct_state=+inv+trk actions=drop

Then the only rule with an increasing packet count (n_packets) is this:
priority=10,ct_state=-trk,reg5=0x3c,in_port=60 actions=drop