OVS conntrack firewall doesn't work with OVS 2.6.0
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Fix Released
|
Medium
|
Rodolfo Alonso |
Bug Description
OVS introduced a check for inconsistent CT actions in the following bug: https:/
If a flow doesn't meet the requirements for a CT action, the flow will be discarded. CT firewall musst specify the L3/L4 protocol (ip, ipv6, tcp, udp, scp) as long as a CT action is used. For example:
Flow1=
should be:
Flow1=
When the flows are added by the agent, an error appears:
...
hard_timeout=
hard_timeout=
hard_timeout=
but the agent continues working without exiting.
tags: | added: ovs |
Changed in neutron: | |
assignee: | nobody → Rodolfo Alonso (rodolfo-alonso-hernandez) |
Changed in neutron: | |
importance: | Undecided → Medium |
Sorry, I see it's covered by https:/ /review. openstack. org/#/c/ 388467/