openstack
/
neutron
Code Issues Proposed changes
neutron/neutron/agent/linux
History
Moshe Levi 51c7c3cb2e ovs firewall: fix mac learning on the ingress rule table when ovs offload enabled 
In RULES_INGRESS_TABLE table 82 there is a rule for allow established and
related connections. The current rule sends the packet directly to the dest
port without doing a mac learning. This is causing ovs to age out the dest mac
of the remote VM and causing the rule to be changed in flood rule. For the normal
case it fine as they try to avoid high cpu. ovs hardware offload reduce cpu usage
by moving some of the packet processing to nic and flood rule is not offloaded,
therefore it prefre to use the NORMAL action to avoid the flood rule.
We also keep the same logic as today when using explicitly_egress_direct=True
which avoid NORMAL action in the entire pipeline.

Closes-Bug: #1897637

Change-Id: I9b611d62be5d0529e8b35e3d8280baa5be54bc2b
(cherry picked from commit 8fc80b7e13)
 		2020-10-24 01:01:07 +00:00
..
openvswitch_firewall ovs firewall: fix mac learning on the ingress rule table when ovs offload enabled 2020-10-24 01:01:07 +00:00
__init__.py Empty files should not contain copyright or license 2014-10-20 00:50:32 +00:00
async_process.py Add kill_timeout to AsyncProcess 2019-01-04 11:44:23 +01:00
bridge_lib.py LinuxBridge: Use ifindex for logical 'timestamp' 2016-09-14 17:02:46 +00:00
daemon.py Remove argument "watch_log = " 2017-10-13 09:42:48 +08:00
dhcp.py Do not fail deleting namespace if it does not exist 2020-09-22 10:46:32 +02:00
dibbler.py use PROVISIONAL_IPV6_PD_PREFIX from neutron-lib 2017-11-14 12:26:43 -07:00
external_process.py Check dnsmasq process is active when spawned 2020-04-07 20:09:41 +00:00
interface.py Allow usage of legacy 3rd-party interface drivers 2020-05-21 08:42:25 +00:00
ip_conntrack.py Remove race and simplify conntrack state management 2018-03-14 17:26:37 -04:00
ip_lib.py Avoid raising NetworkInterfaceNotFound exception in DHCP agent logs 2020-09-18 12:53:42 +02:00
ip_link_support.py Make code follow log translation guideline 2017-08-14 02:01:48 +00:00
ip_monitor.py Make code follow log translation guideline 2017-08-14 02:01:48 +00:00
ipset_manager.py [Security] fix allowed-address-pair 0.0.0.0/0 issue 2020-07-31 11:23:18 +00:00
iptables_comments.py Iptables firewall driver adds forward rules for trusted ports 2018-03-06 10:13:44 +01:00
iptables_firewall.py [Security] fix allowed-address-pair 0.0.0.0/0 issue 2020-07-31 11:23:18 +00:00
iptables_manager.py Packets getting lost during SNAT with too many connections 2019-06-04 23:23:07 +00:00
keepalived.py Add 'keepalived_use_no_track' config option 2020-08-25 10:27:05 +02:00
l3_tc_lib.py Support iproute2 4.15 in l3_tc_lib 2020-04-14 07:40:42 +00:00
ovsdb_monitor.py ovsdb monitor: do not die on ovsdb-client stderr output 2018-09-17 10:16:32 +02:00
pd.py Handle properly existing LLA address during l3 agent restart 2020-08-27 20:48:18 +00:00
pd_driver.py use PROVISIONAL_IPV6_PD_PREFIX from neutron-lib 2017-11-14 12:26:43 -07:00
polling.py Support ovsdb-client monitor with remote connection 2017-01-17 06:00:58 -08:00
ra.py Add radvd_user config option 2019-10-24 15:59:03 +00:00
tc_lib.py Fix all pep8 E265 errors 2018-04-30 16:35:52 -04:00
utils.py Fix race condition when getting cmdline 2019-11-24 14:33:32 +00:00
xenapi_root_helper.py Fix all pep8 E129 errors 2018-05-03 13:44:04 +09:00