excessive number of dvrs where vm got a fixed ip on floating network

Fix proposed to branch: master
Review: https://review.opendev.org/677092

DVR routers will be created on host, where the Service port is bound.
If the VM that you are creating is bound to host A. then the DVR routers will be created on that host.

So you are creating a VM in a floatingIP Network and not on the fixed IP network. So you got an IP for a VM within the same range as the floatingIP.

That is fine, irrespective of the floatingIP, you VM has an IP now and since that VM is bound to a host, the DVR router is supposed to be provisioned on that host.

I don't understand this part of your comment. 'Then call `routers_updated_on_host` manually, then this dvr will be created on the host where vm resides on, but actually it should be there.'

As far as your device_owner is 'compute:none', or 'dhcp' or 'lbaas' you should see a router pop up.

I do not understand. floating ip network does not associate with any router directly, it is just used as external gateway. So i personally do not believe it's necessary to have a dvr router with it.

for `routers_updated_on_host`, again please take look at https://github.com/openstack/neutron/blob/490471ebd3ac56d0cee164b9c1c1211687e49437/neutron/db/l3_dvrscheduler_db.py#L174 this method, this method will return every port on the router, even router:gateway port will be returned, and I do no think it is necessary to check router:gateway port.

for example, let's define `floating` as an floating ip network
let's assume that dvr `router1` has an external gateway using `floating`
and all of the servers use this router running on compute01, let's create a server using `floating` on compute02

for instance,

openstack server create --nic net-id=floating --availability-zone :compute02

until now this compute02 does not has a dvr router called `router1` but if I manually call

neutron.api.rpc.agentnotifiers.l3_rpc_agent_api.L3AgentNotifyAPI.routers_updated_on_host(context, ['router1'], 'comptue02')
I can see `router1` created on this host and I believe this is not necessary.

The root cause is that method https://github.com/openstack/neutron/blob/490471ebd3ac56d0cee164b9c1c1211687e49437/neutron/db/l3_dvrscheduler_db.py#L174 will return gateway's subnet id, if one looks at https://github.com/openstack/neutron/blob/490471ebd3ac56d0cee164b9c1c1211687e49437/neutron/db/l3_dvrscheduler_db.py#L426 this code, you can see `get_subnet_ids_on_router` will be called if router_ids is not in result_set, and then all the routers using `floating` as gateway will be qualified to be created on compute02 but it does not make sense.

Hello Norman:

First of all and not related directly to this bug, let me say that we are maybe mixing concepts here, between FIPs and DVR. Take the FIP part out from this bug.

If you have a network attached to a DVR router and you create a VM with a port in this network, a DVR router will be created in this host. That's what DVR is going to do: to distribute the router load between the compute nodes, creating instances of this router in the servers with ports associated to the router networks. This will distribute the routing load between servers.

If you want to have a centralized routing architecture, do not use DVR.

IMO, this bug is not valid.

Regards.

PS: https://assafmuller.com/category/dvr/

Hi,

I totally disagree with your point. Again I do believe Dvr is only necessary when router's got an interface on the router it should have nothing to do with what network its gateway uses. In this scenario, I use fip as my instance's fixed ip (and this instance does not associate with a floating ip) and fip subnet does not have interface attached to router, so it should not have a dvr.

even if I step back and admit your point is valid, can you please tell me why this router is necessary? this dvr router does not even have a qr-xx port on fip subnet...

I do hope you please look at the extra test cases I added thanks.

IIUC what Norman is saying, I think he is right here.
So let me explain how I understand this issue:

1. There is networks called e.g. "public",
2. There is dvr router R1 which has "public" network set as external gateway and some "private" networks plugged to it. So VMs connected to "private" networks can have FIP from "public" associated,
3. Now on some compute node new VM is spawned and it is plugged directly to the "public" network - here IIUC dvr router R1 is created on compute node with new VM. But it don't need to be there as this vm is no connected to R1 at all.

@Norman, is my understanding of the issue correct?

Thank you sir, that's exactly what I want to say ....

Change abandoned by Slawek Kaplonski (<email address hidden>) on branch: master
Review: https://review.opendev.org/677092
Reason: This review is > 4 weeks without comment, and failed Jenkins the last time it was checked. We are abandoning this for now. Feel free to reactivate the review by pressing the restore button and leaving a 'recheck' comment to get fresh test results.

Reviewed: https://review.opendev.org/677092
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=480b04ce04f98bae6ff4ab13cec9e01b34204134
Submitter: Zuul
Branch: master

commit 480b04ce04f98bae6ff4ab13cec9e01b34204134
Author: ushen <email address hidden>
Date: Sun Aug 18 21:54:04 2019 +0800

    Unnecessary routers should not be created

    We observe an excessive amount of routers created on
    compute node on which some virtual machines got a fixed
    ip on floating network.

    Rpc servers should filter out those unnecessary routers
    during syncing.

    Change-Id: I299031a505f05cd0469e2476b867b9dbca59c5bf
    Partial-Bug: #1840579

Fix proposed to branch: stable/train
Review: https://review.opendev.org/706641

Reviewed: https://review.opendev.org/706641
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=3ddba37ccc134a1336802fe3693e439de6c33c34
Submitter: Zuul
Branch: stable/train

commit 3ddba37ccc134a1336802fe3693e439de6c33c34
Author: ushen <email address hidden>
Date: Sun Aug 18 21:54:04 2019 +0800

    Unnecessary routers should not be created

    We observe an excessive amount of routers created on
    compute node on which some virtual machines got a fixed
    ip on floating network.

    Rpc servers should filter out those unnecessary routers
    during syncing.

    Change-Id: I299031a505f05cd0469e2476b867b9dbca59c5bf
    Partial-Bug: #1840579
    (cherry picked from commit 480b04ce04f98bae6ff4ab13cec9e01b34204134)

Fix proposed to branch: stable/stein
Review: https://review.opendev.org/712208

Fix proposed to branch: stable/rocky
Review: https://review.opendev.org/712209

Reviewed: https://review.opendev.org/712208
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=5a28141fc86f6881f9520a6b06abfcff0a5a2e9f
Submitter: Zuul
Branch: stable/stein

commit 5a28141fc86f6881f9520a6b06abfcff0a5a2e9f
Author: ushen <email address hidden>
Date: Sun Aug 18 21:54:04 2019 +0800

    Unnecessary routers should not be created

    We observe an excessive amount of routers created on
    compute node on which some virtual machines got a fixed
    ip on floating network.

    Rpc servers should filter out those unnecessary routers
    during syncing.

    Change-Id: I299031a505f05cd0469e2476b867b9dbca59c5bf
    Partial-Bug: #1840579
    (cherry picked from commit 480b04ce04f98bae6ff4ab13cec9e01b34204134)

Fix proposed to branch: stable/queens
Review: https://review.opendev.org/731763

Reviewed: https://review.opendev.org/712209
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=f6401020f7ba406623d49fb43671cb359aca2372
Submitter: Zuul
Branch: stable/rocky

commit f6401020f7ba406623d49fb43671cb359aca2372
Author: ushen <email address hidden>
Date: Sun Aug 18 21:54:04 2019 +0800

    Unnecessary routers should not be created

    We observe an excessive amount of routers created on
    compute node on which some virtual machines got a fixed
    ip on floating network.

    Rpc servers should filter out those unnecessary routers
    during syncing.

    Change-Id: I299031a505f05cd0469e2476b867b9dbca59c5bf
    Partial-Bug: #1840579
    (cherry picked from commit 480b04ce04f98bae6ff4ab13cec9e01b34204134)

Reviewed: https://review.opendev.org/731763
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=7b36eefd1d63c24d25ae6387a88b00600730447e
Submitter: Zuul
Branch: stable/queens

commit 7b36eefd1d63c24d25ae6387a88b00600730447e
Author: ushen <email address hidden>
Date: Sun Aug 18 21:54:04 2019 +0800

    Unnecessary routers should not be created

    We observe an excessive amount of routers created on
    compute node on which some virtual machines got a fixed
    ip on floating network.

    Rpc servers should filter out those unnecessary routers
    during syncing.

    Conflicts:
        neutron/tests/unit/db/test_agentschedulers_db.py

    Change-Id: I299031a505f05cd0469e2476b867b9dbca59c5bf
    Partial-Bug: #1840579
    (cherry picked from commit 480b04ce04f98bae6ff4ab13cec9e01b34204134)