neutron

ovn load balancer member failover not working when accessed from floating ip

Bug #1956035 reported by Ivan Zhang on 2021-12-30

This bug report is a duplicate of: Bug #1997418: [ovn-octavia-provider] HM not working for FIPs. Edit Remove

This bug affects 4 people

Affects		Status	Importance	Assigned to	Milestone
	neutron	New	Medium	Fernando Royo

Bug Description

When the health monitor is eanbled, unhealthy members are not excluded from the traffic when accessed by the floating ip associated with the load balancer. It needs one more Load_Balancer_Health_Check row with the vip to be set to the floating ip.

Tags:

Ivan Zhang (sail4dream) on 2021-12-30

tags:

added: ovn-octavia-provider

Rodolfo Alonso (rodolfo-alonso-hernandez) on 2022-01-04

Changed in neutron:
importance:	Undecided → Medium

Revision history for this message

Kurt Garloff (kgarloff) wrote on 2023-02-14:

The OVN loadbalancer would be the perfect L4/L3 loadbalancer in front of an ingress.
More precisely a load balancer in front on nginx-ingress with externalTrafficPolicy: Local, such that no unneeded forwarding is done and that the client IPs are seen by nginx.
Except that all worker nodes are LB members, but nginx is only running on one (by default), so the healthmonitor needs to take the non-working members/nodes out.
But access via the floating IP is required, of course ...
https://github.com/SovereignCloudStack/issues/issues/268#issuecomment-1430259015

Revision history for this message

Kurt Garloff (kgarloff) wrote on 2023-02-19:

In case it's not clear: I did observe this exact issue (on Yoga release).
I found the loadbalancer not taking members out of the rotation and at first saw (outdated) information that health-monitors don't work on the ovn octavia provider. But they do.
Just only for the VIP address and not for an associated floating IP.

Revision history for this message

Fernando Royo (froyoredhat) wrote on 2023-03-28:

I think that this issue is already solved by the series of patches submitted regarding HMs, but in particular this one looks covering the last comment https://review.opendev.org/c/openstack/ovn-octavia-provider/+/873860

Rodolfo Alonso (rodolfo-alonso-hernandez) on 2023-03-29

Changed in neutron:
assignee:	nobody → Fernando Royo (froyoredhat)

Report a bug

This report contains Public information

Everyone can see this information.

Duplicate of bug #1997418 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

auto-github-sovereigncloudstack-issues #268 Edit

Bug watches keep track of this bug in other bug trackers.