Neutron UDP traffic continue to get lost after adding security group rule to allow udp traffic
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Invalid
|
Medium
|
Yan Chen |
Bug Description
Brief Description
-----------------
Enable neutron port security and create two security groups for each tenant. Apply this security group to vm pair with udp traffic. The delta value should not be changed between two fetches. But the delta becomes unstable with stable is set to true.
Severity
--------
Major
Steps to Reproduce
------------------
1. Setup traffic between VMs with ixncfg is configured as udp
2. Verify UDP traffic is not allowed
3. Allow UDP traffic on the fly and ensure the delta values is not changed
in between two fetches
TC-name:
TestPacketTypeS
Expected Behavior
-----------------
The delta value is not changed
Actual Behavior
----------------
The delta value is changed
Reproducibility
---------------
reproducible
System Configuration
-------
Regular standard 2+2
Lab-name:
wcp_7_10
Branch/Pull Time/Commit
-------
BUILD_ID=
Timestamp/Logs
--------------
[2020-07-17 05:41:28,165] 314 DEBUG MainThread ssh.send :: Send 'openstack --os-username 'admin' --os-password 'Li69nux*' --os-project-name admin --os-auth-url http://
+------
| Field | Value |
+------
| created_at | 2020-07-
| description | |
| direction | ingress |
| ether_type | IPv4 |
| id | 43104567-
| location | cloud='', project.domain_id=, project.
| name | None |
| port_range_max | None |
| port_range_min | None |
| project_id | 3c468d05132e441
| protocol | udp |
| remote_group_id | None |
| remote_ip_prefix | 0.0.0.0/0 |
| revision_number | 0 |
| security_group_id | f0b79b88-
| tags | [] |
| updated_at | 2020-07-
+------
[2020-07-17 05:41:30,633] 314 DEBUG MainThread ssh.send :: Send 'openstack --os-username 'admin' --os-password 'Li69nux*' --os-project-name admin --os-auth-url http://
+------
| Field | Value |
+------
| created_at | 2020-07-
| description | |
| direction | ingress |
| ether_type | IPv4 |
| id | e73823e9-
| location | cloud='', project.domain_id=, project.
| name | None |
| port_range_max | None |
| port_range_min | None |
| project_id | 3c468d05132e441
| protocol | udp |
| remote_group_id | None |
| remote_ip_prefix | 0.0.0.0/0 |
| revision_number | 0 |
| security_group_id | 8f34c879-
| tags | [] |
| updated_at | 2020-07-
+------
[2020-07-17 05:41:33,031] 941 INFO MainThread ixia_helper.
[2020-07-17 05:41:34,038] 1015 INFO MainThread ixia_helper.
[2020-07-17 05:41:44,049] 941 INFO MainThread ixia_helper.
[2020-07-17 05:41:45,056] 1015 INFO MainThread ixia_helper.
......
[2020-07-17 05:45:57,464] 941 INFO MainThread ixia_helper.
[2020-07-17 05:45:58,472] 1015 INFO MainThread ixia_helper.
[2020-07-17 05:46:08,483] 941 INFO MainThread ixia_helper.
[2020-07-17 05:46:09,491] 1015 INFO MainThread ixia_helper.
[2020-07-17 05:46:19,495] 941 INFO MainThread ixia_helper.
[2020-07-17 05:46:20,501] 1015 INFO MainThread ixia_helper.
[2020-07-17 05:46:30,513] 941 INFO MainThread ixia_helper.
[2020-07-17 05:46:31,520] 1015 INFO MainThread ixia_helper.
[2020-07-17 05:46:41,532] 941 INFO MainThread ixia_helper.
[2020-07-17 05:46:42,540] 1015 INFO MainThread ixia_helper.
[2020-07-17 05:46:54,837] 61 DEBUG MainThread conftest.
***Details: self = <CGCSAuto.
vm_type = 'virtio'
security_groups = ['f0b79b88-
Logs of .tar and automation log as below,
https:/
Test Activity
-------------
Test neutron function with the openstack install system
tags: | added: stx.distro.openstack |
Changed in starlingx: | |
assignee: | nobody → yong hu (yhu6) |
Changed in starlingx: | |
importance: | Undecided → Medium |
Changed in starlingx: | |
assignee: | yong hu (yhu6) → Yan Chen (ychen2u) |
Changed in starlingx: | |
status: | Triaged → Incomplete |
Issue w/ openstack regression after the rebase to Ussuri; maybe related to the rebase. Marking as stx.4.0 gating for now until further investigation by the distro.openstack team.