Changes from v2 -> v3: v2 of port security added port security flows to the ingress table 0 : 'ls_in_port_sec' and egress table 2: 'ls_out_port_sec'. Adding port security flows for IPv6 ND packets would result in lots of flows getting added as we need to first check for ip6.src and then nd.sll/nd.tll and nd.target fields. This would result in many combinations of ip6.src and IPv6 ND fields.
To better organize the flows, in the v3, for ingress pipeline 'ls_in_port_sec' is renamed to 'ls_in_port_sec_l2' and 2 new stages are added 'ls_in_port_sec_ip' and 'ls_in_port_sec_nd'. ' and for egress pipeline 'ls_out_port_sec' is renamed to 'ls_out_port_sec_l2' and a new stage 'ls_out_port_sec_ip' is added before 'ls_out_port_sec_l2'. Numan Siddique (1): ovn: Add l3 port security for IPv4 and IPv6 lib/packets.h | 16 +++ ovn/northd/ovn-northd.8.xml | 123 ++++++++++++++--- ovn/northd/ovn-northd.c | 313 ++++++++++++++++++++++++++++++++++++++----- ovn/ovn-nb.xml | 120 +++++++++++++++-- tests/ovn.at | 318 ++++++++++++++++++++++++++++++++++++++++++++ 5 files changed, 837 insertions(+), 53 deletions(-) -- 2.5.0 _______________________________________________ dev mailing list dev@openvswitch.org http://openvswitch.org/mailman/listinfo/dev
