[ovs-git] [openvswitch/ovs] f7d823: ovn-northd: LR respond ARP from valid subnet only.

GitHub noreply at github.com
Mon Aug 27 16:51:21 UTC 2018


  Branch: refs/heads/branch-2.10
  Home:   https://github.com/openvswitch/ovs
  Commit: f7d823bf1f6f4d4b948b2bf9e036ec3f66039f0f
      https://github.com/openvswitch/ovs/commit/f7d823bf1f6f4d4b948b2bf9e036ec3f66039f0f
  Author: Han Zhou <zhouhan at gmail.com>
  Date:   2018-08-27 (Mon, 27 Aug 2018)

  Changed paths:
    M ovn/northd/ovn-northd.8.xml
    M ovn/northd/ovn-northd.c
    M tests/ovn.at

  Log Message:
  -----------
  ovn-northd: LR respond ARP from valid subnet only.

Currently ovn LR datapath responds ARP requests even if the ARP
requestor's src IP doesn't belong to the LR port's subnets. This
may generate unnecessary ARP responses and there could also be
security concerns. This patch restricts the ARP response only if
the requestor's IP matches the LR port's subnets.

Signed-off-by: Han Zhou <hzhou8 at ebay.com>
Signed-off-by: Ben Pfaff <blp at ovn.org>


  Commit: 052602d269480c69007bea771ebb8beffc2e377c
      https://github.com/openvswitch/ovs/commit/052602d269480c69007bea771ebb8beffc2e377c
  Author: Han Zhou <zhouhan at gmail.com>
  Date:   2018-08-27 (Mon, 27 Aug 2018)

  Changed paths:
    M ovn/northd/ovn-northd.8.xml
    M ovn/northd/ovn-northd.c
    M tests/ovn.at

  Log Message:
  -----------
  ovn-northd: Support learning neighbor from ARP request.

Current LR dynamic ARP learning support only ARP responses. If a
IP-MAC binding is learned, it will not get updated even if a host
send a GARP *request* to inform the new binding. This patch supports
learning neighbor changes from ARP requests, including GARP requests.

Signed-off-by: Han Zhou <hzhou8 at ebay.com>
Signed-off-by: Ben Pfaff <blp at ovn.org>


Compare: https://github.com/openvswitch/ovs/compare/46b67377f894...052602d26948
      **NOTE:** This service has been marked for deprecation: https://developer.github.com/changes/2018-04-25-github-services-deprecation/

      Functionality will be removed from GitHub.com on January 31st, 2019.


More information about the git mailing list