<div dir="ltr"><div><div><div><div>May be following commands can help to figure out the issues, as this is a mininet setup not sure whether all will be applicable or not. <br><br></div>- Port number along with port name<br><br># ovs-ofctl dump-ports-desc <ovs bridge> <br><br></div>- Try commands like ovs-trace [1] to understand where it's getting dropped. <br><br></div>- It will be good to see the full output of dump-flows.<br><br></div># ovs-ofctl dump-flows <ovs bridge><br><div><div><br>[1] <a href="http://docs.openvswitch.org/en/latest/topics/tracing/">http://docs.openvswitch.org/en/latest/topics/tracing/</a><br><div class="gmail_extra"><br clear="all"><div><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div>Thanks & Regards,</div>
<div>Vikrant Aggarwal</div><br><div><br><span></span><span></span></div></div></div></div>
<br><div class="gmail_quote">On Tue, Oct 10, 2017 at 8:05 AM, Georges Mondji <span dir="ltr"><<a href="mailto:mondjigeorges@gmail.com" target="_blank">mondjigeorges@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><br>Hi,<br><br>I am facing a problem that is the following:<br><br>I have 2 hosts that I connect via gre tunnel.<br><br>On host 1:<br><br>I use mininet to connect 4 hosts to openvswitch bridge s1:<br><br>mininet> dump<br><Host h1: h1-eth0:10.0.0.1 pid=2223><br><Host h2: h2-eth0:10.0.0.2 pid=2226><br><Host h3: h3-eth0:10.0.0.3 pid=2228><br><Host h4: h4-eth0:10.0.0.4 pid=2230><br><OVSSwitch s1: lo:127.0.0.1,s1-eth1:None,s1-<wbr>eth2:None,s1-eth3:None,s1-<wbr>eth4:None pid=2235><br><Controller c0: <a href="http://127.0.0.1:6633" target="_blank">127.0.0.1:6633</a> pid=2216><br><br><br># ovs-vsctl show<br>9eb8e438-e489-411f-bdde-<wbr>b6075026d199<br> Bridge "s1"<br> Controller "ptcp:6634"<br> Controller "tcp:<a href="http://127.0.0.1:6633" target="_blank">127.0.0.1:6633</a>"<br> is_connected: true<br> fail_mode: secure<br> Port "s1-eth2"<br> Interface "s1-eth2"<br> Port "s1-eth1"<br> Interface "s1-eth1"<br> Port "s1-eth4"<br> Interface "s1-eth4"<br> Port "s1-eth3"<br> Interface "s1-eth3"<br> Port "gre0"<br> Interface "gre0"<br> type: gre<br> options: {remote_ip="192.168.56.109"}<br> Port "s1"<br> Interface "s1"<br> type: internal<br><br># ovs-ofctl show s1<br>OFPT_FEATURES_REPLY (xid=0x2): dpid:0000000000000001<br>n_tables:254, n_buffers:256<br>capabilities: FLOW_STATS TABLE_STATS PORT_STATS QUEUE_STATS ARP_MATCH_IP<br>actions: output enqueue set_vlan_vid set_vlan_pcp strip_vlan mod_dl_src mod_dl_d <wbr> <wbr> <wbr> st mod_nw_src mod_nw_dst mod_nw_tos mod_tp_src mod_tp_dst<br> 1(s1-eth1): addr:62:fd:09:5e:bc:99<br> config: 0<br> state: 0<br> current: 10GB-FD COPPER<br> speed: 10000 Mbps now, 0 Mbps max<br> 2(s1-eth2): addr:92:b4:7a:77:58:e8<br> config: 0<br> state: 0<br> current: 10GB-FD COPPER<br> speed: 10000 Mbps now, 0 Mbps max<br> 3(s1-eth3): addr:62:e8:08:fc:ef:d6<br> config: 0<br> state: 0<br> current: 10GB-FD COPPER<br> speed: 10000 Mbps now, 0 Mbps max<br> 4(s1-eth4): addr:ea:8f:c6:f6:37:43<br> config: 0<br> state: 0<br> current: 10GB-FD COPPER<br> speed: 10000 Mbps now, 0 Mbps max<br> 10(gre0): addr:86:f6:b8:e3:72:4e<br> config: 0<br> state: 0<br> speed: 0 Mbps now, 0 Mbps max<br> LOCAL(s1): addr:22:0c:37:f1:9a:42<br> config: PORT_DOWN<br> state: LINK_DOWN<br> speed: 0 Mbps now, 0 Mbps max<br>OFPT_GET_CONFIG_REPLY (xid=0x4): frags=normal miss_send_len=0<br><br><br>==> on host2<br><br>I have connect a docker container (with ip 10.0.0.1 ) directly to openvswitch brideg s1 on port 1<br><br># ovs-vsctl show<br>e793ccff-6257-4865-a75b-<wbr>0f0e87150fdc<br> Bridge "s1"<br> Port "s1"<br> Interface "s1"<br> type: internal<br> Port "gre0"<br> Interface "gre0"<br> type: gre<br> options: {remote_ip="192.168.56.101"}<br><br>#ovs-ofctl show s1<br>OFPT_FEATURES_REPLY (xid=0x2): dpid:00000edef8ab794e<br>n_tables:254, n_buffers:0<br>capabilities: FLOW_STATS TABLE_STATS PORT_STATS QUEUE_STATS ARP_MATCH_IP<br>actions: output enqueue set_vlan_vid set_vlan_pcp strip_vlan mod_dl_src mod_dl_dst mod_nw_src mod_nw_dst mod_nw_tos mod_tp_src mod_tp_dst<br> 1(8cfb87deac6b4_l): addr:92:4c:79:47:a9:68<br> config: 0<br> state: 0<br> current: 10GB-FD COPPER<br> speed: 10000 Mbps now, 0 Mbps max<br> 10(gre0): addr:e2:9c:97:ac:e4:ff<br> config: 0<br> state: 0<br> speed: 0 Mbps now, 0 Mbps max<br> LOCAL(s1): addr:0e:de:f8:ab:79:4e<br> config: PORT_DOWN<br> state: LINK_DOWN<br> speed: 0 Mbps now, 0 Mbps max<br>OFPT_GET_CONFIG_REPLY (xid=0x4): frags=normal miss_send_len=0<br><br><br><br>At this point:<br><br>pingall work <br><br>mininet> pingall<br>*** Ping: testing ping reachability<br>h1 -> h2 h3 h4<br>h2 -> h1 h3 h4<br>h3 -> h1 h2 h4<br>h4 -> h1 h2 h3<br>*** Results: 0% dropped (12/12 received)<br><br>And h1, .., h4 can ping individually the container (10.0.0.11) on host 2 <br><br><br>When I add rules below on the switch:<br><br> hosts h1, .., h4 can ping the container on host2 <br>mininet> h1 ping -c 4 10.0.0.11<br>PING 10.0.0.11 (10.0.0.11) 56(84) bytes of data.<br>64 bytes from <a href="http://10.0.0.11" target="_blank">10.0.0.11</a>: icmp_req=1 ttl=64 time=8.05 ms<br>64 bytes from <a href="http://10.0.0.11" target="_blank">10.0.0.11</a>: icmp_req=2 ttl=64 time=0.546 ms<br>64 bytes from <a href="http://10.0.0.11" target="_blank">10.0.0.11</a>: icmp_req=3 ttl=64 time=0.402 ms<br>64 bytes from <a href="http://10.0.0.11" target="_blank">10.0.0.11</a>: icmp_req=4 ttl=64 time=0.369 ms<br><br>--- 10.0.0.11 ping statistics ---<br>4 packets transmitted, 4 received, 0% packet loss, time 3011ms<br>rtt min/avg/max/mdev = 0.369/2.342/8.051/3.296 ms<br><br><br>but h1 cannot ping h2 or h3 or h4 so pingall failed<br><br>mininet> pingall<br>*** Ping: testing ping reachability<br>h1 -> X X X<br>h2 -> X X X<br>h3 -> X X X<br>h4 -> X X X<br>*** Results: 100% dropped (0/12 received)<br><br><br>Here are openflow rules :<br><br>==> On Host 1<br><br>ovs-ofctl add-flow s1 dl_src=00:00:00:00:00:00,dl_<wbr>dst=00:00:00:00:00:00,actions=<wbr>output:10<br><br>ovs-ofctl add-flow s1 icmp,in_port=1,actions=output:<wbr>10<br>ovs-ofctl add-flow s1 icmp,in_port=2,actions=output:<wbr>10<br>ovs-ofctl add-flow s1 icmp,in_port=3,actions=output:<wbr>10<br>ovs-ofctl add-flow s1 icmp,in_port=4,actions=output:<wbr>10<br><br>ovs-ofctl add-flow s1 icmp,in_port=10,nw_dst=10.0.0.<wbr>1,actions=output:1<br>ovs-ofctl add-flow s1 icmp,in_port=10,nw_dst=10.0.0.<wbr>2,actions=output:2<br>ovs-ofctl add-flow s1 icmp,in_port=10,nw_dst=10.0.0.<wbr>3,actions=output:3<br>ovs-ofctl add-flow s1 icmp,in_port=10,nw_dst=10.0.0.<wbr>4,actions=output:4<br><br><br>==> On host 2<br><br>ovs-ofctl add-flow s1 icmp,in_port=10,nw_dst=10.0.0.<wbr>11,actions=output:1'], shell = True)<br><br>ovs-ofctl add-flow s1 icmp,in_port=1,nw_dst=10.0.0.<wbr>1,actions=output:10<br>ovs-ofctl add-flow s1 icmp,in_port=1,nw_dst=10.0.0.<wbr>2,actions=output:10<br>ovs-ofctl add-flow s1 icmp,in_port=1,nw_dst=10.0.0.<wbr>3,actions=output:10<br>ovs-ofctl add-flow s1 icmp,in_port=1,nw_dst=10.0.0.<wbr>4,actions=output:10<br><br>So the openflow rules are not good. can you help me about what is missing in these rules ?<br><br>Thanks,<br><br>Georges<br></div>
<br>______________________________<wbr>_________________<br>
discuss mailing list<br>
<a href="mailto:discuss@openvswitch.org">discuss@openvswitch.org</a><br>
<a href="https://mail.openvswitch.org/mailman/listinfo/ovs-discuss" rel="noreferrer" target="_blank">https://mail.openvswitch.org/<wbr>mailman/listinfo/ovs-discuss</a><br>
<br></blockquote></div><br></div></div></div></div>