[ovs-dev] [PATCH ovn] ovn-northd: Skip conntrack for MLD packets.

Dumitru Ceara dceara at redhat.com
Fri Sep 11 10:39:55 UTC 2020


On 9/11/20 12:26 PM, Numan Siddique wrote:
> On Fri, Sep 11, 2020 at 3:24 PM Dumitru Ceara <dceara at redhat.com> wrote:
>>
>> On 9/11/20 11:46 AM, Numan Siddique wrote:
>>> On Fri, Sep 11, 2020 at 2:25 PM Dumitru Ceara <dceara at redhat.com> wrote:
>>>>
>>>> We currently skip conntrack for IPv6 Neighbor Discovery packets because
>>>> conntrack marks all ND packets as invalid [0].
>>>>
>>>> The same thing should be done for MLD packets. Otherwise, as soon as an
>>>> allow-related ACL or load balancer is added, MLD packets will go to
>>>> conntrack and get dropped because they are marked "invalid".
>>>>
>>>> This commit also fixes the MLD test to use a link local IPv6 source
>>>> address.
>>>>
>>>> [0] https://bugzilla.kernel.org/show_bug.cgi?id=11797
>>>>
>>>> Signed-off-by: Dumitru Ceara <dceara at redhat.com>
>>>
>>> Thanks Dumitru. I applied this patch to master. Does it need a
>>> backport to 20.06 ?
>>>
>>
>> Thanks Numan! Yes, this could go down to 20.03 if it's not too much trouble.
> 
> I applied to branch-20.06. It doesn't apply cleanly to branch-20.03.
> Can you please post a branch-20.03.
> 

Done:
http://patchwork.ozlabs.org/project/ovn/patch/1599820722-31315-1-git-send-email-dceara@redhat.com/

Thanks!



More information about the dev mailing list