Allowed address pairs aren't populated to the new host with DVR router
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Fix Released
|
Medium
|
Slawek Kaplonski |
Bug Description
In the DVR routers, neutron-server needs to populate ARP entries also for IPs added to the ports as allowed address pairs. When e.g. new IP is added to the allowed address pairs of the port, it works fine and neutron server sends notification about such new arp entry to the all L3 agents where dvr router is placed.
But in case when new vm plugged to the same router is spawned on completly new compute, or existing vm is migrated to the new compute where dvr router wasn't created before, arp entries for allowed address pairs aren't populated at all.
OpenStack Infra (hudson-openstack) wrote : Fix proposed to neutron (master) | #1 |
Changed in neutron: | |
status: | Confirmed → In Progress |
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (master) | #2 |
Reviewed: https:/
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit 7b59b5069b14027
Author: Slawek Kaplonski <email address hidden>
Date: Fri May 14 16:07:14 2021 +0200
[DVR] Send allowed address pairs info to the L3 agents
When new dvr router is going to be created on the node, L3 agent
asks server for list of ports plugged to the subnets, to populate
arp entries for all fixed IPs from those ports.
There was missing info about allowed address pairs there, so those
IPs were not populated in the qrouter namespace.
Now it's added and L3 agent can add those arp entries to the qrouter
namespaces too.
Closes-Bug: #1928466
Change-Id: I5d6c72c271ff45
Changed in neutron: | |
status: | In Progress → Fix Released |
OpenStack Infra (hudson-openstack) wrote : Fix proposed to neutron (stable/wallaby) | #3 |
Fix proposed to branch: stable/wallaby
Review: https:/
OpenStack Infra (hudson-openstack) wrote : Fix proposed to neutron (stable/victoria) | #4 |
Fix proposed to branch: stable/victoria
Review: https:/
OpenStack Infra (hudson-openstack) wrote : Fix proposed to neutron (stable/ussuri) | #5 |
Fix proposed to branch: stable/ussuri
Review: https:/
OpenStack Infra (hudson-openstack) wrote : Fix proposed to neutron (stable/train) | #6 |
Fix proposed to branch: stable/train
Review: https:/
OpenStack Infra (hudson-openstack) wrote : Fix proposed to neutron (stable/stein) | #7 |
Fix proposed to branch: stable/stein
Review: https:/
OpenStack Infra (hudson-openstack) wrote : Fix proposed to neutron (stable/rocky) | #8 |
Fix proposed to branch: stable/rocky
Review: https:/
OpenStack Infra (hudson-openstack) wrote : Fix proposed to neutron (stable/queens) | #9 |
Fix proposed to branch: stable/queens
Review: https:/
OpenStack Infra (hudson-openstack) wrote : Related fix proposed to neutron-tempest-plugin (master) | #10 |
Related fix proposed to branch: master
Review: https:/
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (stable/wallaby) | #11 |
Reviewed: https:/
Committed: https:/
Submitter: "Zuul (22348)"
Branch: stable/wallaby
commit e622b28e2c009aa
Author: Slawek Kaplonski <email address hidden>
Date: Fri May 14 16:07:14 2021 +0200
[DVR] Send allowed address pairs info to the L3 agents
When new dvr router is going to be created on the node, L3 agent
asks server for list of ports plugged to the subnets, to populate
arp entries for all fixed IPs from those ports.
There was missing info about allowed address pairs there, so those
IPs were not populated in the qrouter namespace.
Now it's added and L3 agent can add those arp entries to the qrouter
namespaces too.
Conflicts:
Closes-Bug: #1928466
Change-Id: I5d6c72c271ff45
(cherry picked from commit 7b59b5069b14027
tags: | added: in-stable-wallaby |
tags: | added: in-stable-rocky |
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (stable/rocky) | #12 |
Reviewed: https:/
Committed: https:/
Submitter: "Zuul (22348)"
Branch: stable/rocky
commit 1321a31a8ce7bc2
Author: Slawek Kaplonski <email address hidden>
Date: Fri May 14 16:07:14 2021 +0200
[DVR] Send allowed address pairs info to the L3 agents
When new dvr router is going to be created on the node, L3 agent
asks server for list of ports plugged to the subnets, to populate
arp entries for all fixed IPs from those ports.
There was missing info about allowed address pairs there, so those
IPs were not populated in the qrouter namespace.
Now it's added and L3 agent can add those arp entries to the qrouter
namespaces too.
Conflicts:
Closes-Bug: #1928466
Change-Id: I5d6c72c271ff45
(cherry picked from commit 7b59b5069b14027
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (stable/victoria) | #13 |
Reviewed: https:/
Committed: https:/
Submitter: "Zuul (22348)"
Branch: stable/victoria
commit 0ce952609071b8c
Author: Slawek Kaplonski <email address hidden>
Date: Fri May 14 16:07:14 2021 +0200
[DVR] Send allowed address pairs info to the L3 agents
When new dvr router is going to be created on the node, L3 agent
asks server for list of ports plugged to the subnets, to populate
arp entries for all fixed IPs from those ports.
There was missing info about allowed address pairs there, so those
IPs were not populated in the qrouter namespace.
Now it's added and L3 agent can add those arp entries to the qrouter
namespaces too.
Conflicts:
Closes-Bug: #1928466
Change-Id: I5d6c72c271ff45
(cherry picked from commit 7b59b5069b14027
tags: | added: in-stable-victoria |
tags: | added: in-stable-ussuri |
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (stable/ussuri) | #14 |
Reviewed: https:/
Committed: https:/
Submitter: "Zuul (22348)"
Branch: stable/ussuri
commit ab31406d77a2927
Author: Slawek Kaplonski <email address hidden>
Date: Fri May 14 16:07:14 2021 +0200
[DVR] Send allowed address pairs info to the L3 agents
When new dvr router is going to be created on the node, L3 agent
asks server for list of ports plugged to the subnets, to populate
arp entries for all fixed IPs from those ports.
There was missing info about allowed address pairs there, so those
IPs were not populated in the qrouter namespace.
Now it's added and L3 agent can add those arp entries to the qrouter
namespaces too.
Conflicts:
Closes-Bug: #1928466
Change-Id: I5d6c72c271ff45
(cherry picked from commit 7b59b5069b14027
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (stable/train) | #15 |
Reviewed: https:/
Committed: https:/
Submitter: "Zuul (22348)"
Branch: stable/train
commit 888ab6a2fc9a26b
Author: Slawek Kaplonski <email address hidden>
Date: Fri May 14 16:07:14 2021 +0200
[DVR] Send allowed address pairs info to the L3 agents
When new dvr router is going to be created on the node, L3 agent
asks server for list of ports plugged to the subnets, to populate
arp entries for all fixed IPs from those ports.
There was missing info about allowed address pairs there, so those
IPs were not populated in the qrouter namespace.
Now it's added and L3 agent can add those arp entries to the qrouter
namespaces too.
Conflicts:
Closes-Bug: #1928466
Change-Id: I5d6c72c271ff45
(cherry picked from commit 7b59b5069b14027
tags: | added: in-stable-train |
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (stable/stein) | #16 |
Reviewed: https:/
Committed: https:/
Submitter: "Zuul (22348)"
Branch: stable/stein
commit e8e38d67b23cc06
Author: Slawek Kaplonski <email address hidden>
Date: Fri May 14 16:07:14 2021 +0200
[DVR] Send allowed address pairs info to the L3 agents
When new dvr router is going to be created on the node, L3 agent
asks server for list of ports plugged to the subnets, to populate
arp entries for all fixed IPs from those ports.
There was missing info about allowed address pairs there, so those
IPs were not populated in the qrouter namespace.
Now it's added and L3 agent can add those arp entries to the qrouter
namespaces too.
Conflicts:
Closes-Bug: #1928466
Change-Id: I5d6c72c271ff45
(cherry picked from commit 7b59b5069b14027
tags: | added: in-stable-stein |
tags: | added: in-stable-queens |
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (stable/queens) | #17 |
Reviewed: https:/
Committed: https:/
Submitter: "Zuul (22348)"
Branch: stable/queens
commit 581174d5f676167
Author: Slawek Kaplonski <email address hidden>
Date: Fri May 14 16:07:14 2021 +0200
[DVR] Send allowed address pairs info to the L3 agents
When new dvr router is going to be created on the node, L3 agent
asks server for list of ports plugged to the subnets, to populate
arp entries for all fixed IPs from those ports.
There was missing info about allowed address pairs there, so those
IPs were not populated in the qrouter namespace.
Now it's added and L3 agent can add those arp entries to the qrouter
namespaces too.
Conflicts:
Closes-Bug: #1928466
Change-Id: I5d6c72c271ff45
(cherry picked from commit 7b59b5069b14027
OpenStack Infra (hudson-openstack) wrote : Related fix merged to neutron-tempest-plugin (master) | #18 |
Reviewed: https:/
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit 1536b57c8f1116b
Author: Slawek Kaplonski <email address hidden>
Date: Fri Jun 4 13:55:31 2021 +0200
Remove "active" attribute from the allowed_
Attribute "active" is going to be added to the allowed_
in the patch [1] and will not be available in older branches.
To make our existing allowed_
both cases, with and without that "active" attribute, this patch
removes that field from the allowed_
by the Neutron server.
We could make expected results of those tests to be dependend on the
available Neutron's API extensions but in that case existing tests may
fail randomly as all tests are always using same IP addresses thus
allowed_
To properly check active/inactive allowed address pairs there will be
additional tests added to the neutron-
patch.
[1] https:/
Related-Bug: #1928466
Change-Id: I368ca13291055f
OpenStack Infra (hudson-openstack) wrote : Fix included in openstack/neutron 16.4.0 | #19 |
This issue was fixed in the openstack/neutron 16.4.0 release.
OpenStack Infra (hudson-openstack) wrote : Fix included in openstack/neutron 17.2.0 | #20 |
This issue was fixed in the openstack/neutron 17.2.0 release.
OpenStack Infra (hudson-openstack) wrote : Fix included in openstack/neutron 18.1.0 | #21 |
This issue was fixed in the openstack/neutron 18.1.0 release.
OpenStack Infra (hudson-openstack) wrote : Fix included in openstack/neutron 19.0.0.0rc1 | #22 |
This issue was fixed in the openstack/neutron 19.0.0.0rc1 release candidate.
OpenStack Infra (hudson-openstack) wrote : Fix included in openstack/neutron queens-eol | #23 |
This issue was fixed in the openstack/neutron queens-eol release.
OpenStack Infra (hudson-openstack) wrote : Fix included in openstack/neutron rocky-eol | #24 |
This issue was fixed in the openstack/neutron rocky-eol release.
OpenStack Infra (hudson-openstack) wrote : Fix included in openstack/neutron stein-eol | #25 |
This issue was fixed in the openstack/neutron stein-eol release.
OpenStack Infra (hudson-openstack) wrote : Fix included in openstack/neutron train-eol | #26 |
This issue was fixed in the openstack/neutron train-eol release.
Fix proposed to branch: master /review. opendev. org/c/openstack /neutron/ +/791492
Review: https:/