[ovs-dev] [PATCH ovn] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).
Dumitru Ceara
dceara at redhat.com
Tue Sep 8 08:44:09 UTC 2020
On 9/8/20 10:28 AM, Numan Siddique wrote:
>
>
> On Mon, Sep 7, 2020 at 9:34 PM Dumitru Ceara <dceara at redhat.com
> <mailto:dceara at redhat.com>> wrote:
>
> OVN was dropping IP packets destined to IPs owned by logical routers but
> only if those IPs are not used for SNAT rules. However, if a packet
> doesn't match an existing NAT session and its destination is still a
> router owned IP, it can be safely dropped. Otherwise it will trigger an
> unnecessary packet-in in stage lr_in_arp_request.
>
> To achieve that we add flows that drop traffic to router owned IPs in
> table lr_in_arp_resolve.
>
> Reported-by: Tim Rozet <trozet at redhat.com <mailto:trozet at redhat.com>>
> Reported-at: https://bugzilla.redhat.com/1876174
> Signed-off-by: Dumitru Ceara <dceara at redhat.com
> <mailto:dceara at redhat.com>>
>
>
> Hi Dumitru,
>
> This patch needs a rebase.
>
> Thanks
> Numan
>
>
Hi Numan,
I sent a v2:
http://patchwork.ozlabs.org/project/ovn/patch/1599554583-1698-1-git-send-email-dceara@redhat.com/
Thanks,
Dumitru
More information about the dev
mailing list