BGP adjacency not established on linux-image-5.15.0-1019-aws
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux-aws (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
We have a simple eBGP setup with a peer over IPsec using a VTI interface using frr (default BGP daemon in Ubuntu 22.04). Everything worked fine until we upgraded to the latest kernel available for our machine: linux-image-
We have confirmed that downgrading to linux-image-
According to tcpdump it seems like both ends initiate the connection, but then there are just a lot of TCP retransmissions and Duplicate ACKs after the OPEN messages. The other side sends a KEEPALIVE but FRR seems to be stuck getting it.
Basically it looks like according to the tcpdump that after the initial exchange of messages the ACKs are not recognized properly by the kernel (?) and therefore continous retransmissions occur until the timer of BGP expires.
Since other TCP applications (e.g. SSH) work fine I'm assuming this might be related to:
- VTI interfaces
- FRR itself
To drive initiatives in parallel I have opened a bug at FRR as well:
https:/
I have added a tcpdump to the github issue, if anybody wants to have a look.