[ovs-git] [ovn-org/ovn] 544d43: ovn-northd: Skip conntrack for MLD packets.
Dumitru Ceara
noreply at github.com
Fri Sep 11 10:21:11 UTC 2020
Branch: refs/heads/branch-20.06
Home: https://github.com/ovn-org/ovn
Commit: 544d43cf5d905515a7c6ee9e0f0403e46501b5ac
https://github.com/ovn-org/ovn/commit/544d43cf5d905515a7c6ee9e0f0403e46501b5ac
Author: Dumitru Ceara <dceara at redhat.com>
Date: 2020-09-11 (Fri, 11 Sep 2020)
Changed paths:
M northd/ovn-northd.8.xml
M northd/ovn-northd.c
M tests/ovn.at
Log Message:
-----------
ovn-northd: Skip conntrack for MLD packets.
We currently skip conntrack for IPv6 Neighbor Discovery packets because
conntrack marks all ND packets as invalid [0].
The same thing should be done for MLD packets. Otherwise, as soon as an
allow-related ACL or load balancer is added, MLD packets will go to
conntrack and get dropped because they are marked "invalid".
This commit also fixes the MLD test to use a link local IPv6 source
address.
[0] https://bugzilla.kernel.org/show_bug.cgi?id=11797
Signed-off-by: Dumitru Ceara <dceara at redhat.com>
Signed-off-by: Numan Siddique <numans at ovn.org>
(cherry-picked from master commit 520189bf313054702f5f802acd7944cca3b6baaa)
More information about the git
mailing list