[ovs-dev] [PATCH ovn] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).

Dumitru Ceara dceara at redhat.com
Tue Sep 8 08:44:09 UTC 2020


On 9/8/20 10:28 AM, Numan Siddique wrote:
> 
> 
> On Mon, Sep 7, 2020 at 9:34 PM Dumitru Ceara <dceara at redhat.com
> <mailto:dceara at redhat.com>> wrote:
> 
>     OVN was dropping IP packets destined to IPs owned by logical routers but
>     only if those IPs are not used for SNAT rules. However, if a packet
>     doesn't match an existing NAT session and its destination is still a
>     router owned IP, it can be safely dropped. Otherwise it will trigger an
>     unnecessary packet-in in stage lr_in_arp_request.
> 
>     To achieve that we add flows that drop traffic to router owned IPs in
>     table lr_in_arp_resolve.
> 
>     Reported-by: Tim Rozet <trozet at redhat.com <mailto:trozet at redhat.com>>
>     Reported-at: https://bugzilla.redhat.com/1876174
>     Signed-off-by: Dumitru Ceara <dceara at redhat.com
>     <mailto:dceara at redhat.com>>
> 
> 
> Hi Dumitru,
> 
> This patch needs a rebase.
> 
> Thanks
> Numan
>  
> 

Hi Numan,

I sent a v2:
http://patchwork.ozlabs.org/project/ovn/patch/1599554583-1698-1-git-send-email-dceara@redhat.com/

Thanks,
Dumitru



More information about the dev mailing list