[ovs-git] Open vSwitch: Avoid inserting duplicate iptables rules when restarting vswitch. (master)

dev at openvswitch.org dev at openvswitch.org
Wed Jun 22 16:15:31 UTC 2011 

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "Open vSwitch".

The branch, master has been updated
       via  b3a375f242c70ff85c30f84ce311628de4a6f022 (commit)
      from  bb9f6963579816c0209a2a7d5510689a043dd965 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit b3a375f242c70ff85c30f84ce311628de4a6f022
Diffs: http://openvswitch.org/cgi-bin/gitweb.cgi?p=openvswitch;a=commitdiff;h=b3a375f242c70ff85c30f84ce311628de4a6f022
Author: Ben Pfaff <blp at nicira.com>
		
Avoid inserting duplicate iptables rules when restarting vswitch.
		
On startup, some OVS initscripts insert an iptables rule to allow GRE
traffic (because GRE support is an important OVS feature).  I noticed that,
each time I restarted OVS, this added another GRE-related rule to the
iptables chain.  This is wasteful, because each additional rule increases
the time it takes to process a packet in the IP stack.

This commit avoids the problem by inserting an iptables rule when there
isn't already an appropriate rule.  It also avoids inserting an iptables
rule if the iptables policy is ACCEPT, meaning that packets are accepted
by default; in such a case, if the GRE packet would be dropped, it is
because the system administrator made that decision explicitly.

Signed-off-by: Ben Pfaff <blp at nicira.com>


-----------------------------------------------------------------------

Summary of changes:
 debian/openvswitch-switch.init   |    6 +--
 utilities/ovs-ctl.8              |   57 ++++++++++++++++++++++++++++++++++++--
 utilities/ovs-ctl.in             |   56 +++++++++++++++++++++++++++++++++++++
 xenserver/etc_init.d_openvswitch |    3 +-
 4 files changed, 113 insertions(+), 9 deletions(-)


hooks/post-receive
-- 
Open vSwitch

More information about the git mailing list