[ovs-discuss] Namespaces connectivity through OVS
Rajasekaran, Monica
Monica.Rajasekaran at us.fujitsu.com
Fri Mar 18 21:41:32 UTC 2016
Thanks Scott and Roman. I’ll try that.
Thanks,
Monica
From: Roman Bolshakov [mailto:roolebo at gmail.com]
Sent: Friday, March 18, 2016 4:36 PM
To: Scott Lowe <scott.lowe at scottlowe.org>; Rajasekaran, Monica <Monica.Rajasekaran at us.fujitsu.com>
Cc: discuss at openvswitch.org
Subject: Re: [ovs-discuss] Namespaces connectivity through OVS
Correct, in secure mode switch will do nothing if a packet doesn't match a rule. The default action in OF1.3+ is to drop such packets. FWIW To simplify debug of the flows I'd recommend to add a fall-through flow in table 0, with the lowest priority 0, to send not matching packets to controller. In the controller you might just print headers of the not-matched packets.
Сб, 19 марта 2016 г. в 0:24, Scott Lowe <scott.lowe at scottlowe.org<mailto:scott.lowe at scottlowe.org>>:
Please see my responses inline, prefixed by [SL].
> On Mar 18, 2016, at 12:09 PM, Rajasekaran, Monica <Monica.Rajasekaran at us.fujitsu.com<mailto:Monica.Rajasekaran at us.fujitsu.com>> wrote:
>
> Hi Scott,
>
> It is connected to an ODL controller. Is there a way to disable OVS learning by itself? I only want it to know if I add flows.
[SL] I am pretty sure there is a way, but I am not familiar with how to enable that functionality (I haven't personally seen the behavior you're describing). Setting the OVS fail_mode to "secure" might help, see "man 5 ovs-vswitchd.conf".
> Thanks,
> Monica
>
>
> -----Original Message-----
> From: Scott Lowe [mailto:scott.lowe at scottlowe.org<mailto:scott.lowe at scottlowe.org>]
> Sent: Friday, March 18, 2016 11:08 AM
> To: Rajasekaran, Monica <Monica.Rajasekaran at us.fujitsu.com<mailto:Monica.Rajasekaran at us.fujitsu.com>>
> Cc: discuss at openvswitch.org<mailto:discuss at openvswitch.org>
> Subject: Re: [ovs-discuss] Namespaces connectivity through OVS
>
> Please see my response below.
>
>
>> On Mar 17, 2016, at 3:50 PM, Rajasekaran, Monica <Monica.Rajasekaran at us.fujitsu.com<mailto:Monica.Rajasekaran at us.fujitsu.com>> wrote:
>>
>> Hi,
>>
>> I have two name spaces (10.0.0.1 and 10.0.0.2) connected via OVS. How do they resolve and reach each other though I have not added any flows inside OVS ? Attached image for reference. Both namespaces and OVS are inside my Ubuntu VM.
>
>
> Hi Monica, you didn't indicate (as far as I can tell) if OVS is connected to a controller. It's my understanding that, by default, when OVS is not connected to a controller it will act as a learning switch.
--
Scott
_______________________________________________
discuss mailing list
discuss at openvswitch.org<mailto:discuss at openvswitch.org>
http://openvswitch.org/mailman/listinfo/discuss
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://openvswitch.org/pipermail/ovs-discuss/attachments/20160318/4a7e44d5/attachment-0002.html>
More information about the discuss
mailing list