@Ben - Thanks for the info, I'll take a look at the ARP traffic @Justin - I was planning on doing RST for TCP and ICMP errors for everything else based on a conversation I had with Russel. My knowledge about if the same reject action can be done for TCP/UDP/ICMP is a bit lacking. Whats you're recommendation here?
On Wed, Apr 20, 2016 at 11:40 AM, Justin Pettit <jpet...@ovn.org> wrote: > >> On Apr 20, 2016, at 9:36 AM, Ben Pfaff <b...@ovn.org> wrote: >> >> On Wed, Apr 20, 2016 at 11:19:18AM -0500, Daniel Levy wrote: >>> After some digging I've figured out where the code needs to go within >>> OVN. Looking through the ofctl man page to understand how to set a >>> flows action to return an RST packet, but I do not see the option. >>> Asked on the OVS IRC and was told OVS currently does not support it, >>> unless the packet is forwarded to the controller and built manually >>> as RST. >> >> Yes, that's right. >> >> The initial plan for implementing the OVN tcp_reset logical action is to >> direct packets as needed to ovn-controller, the same way OVN handles >> ARP. > > Daniel, are you planning to generate ICMP errors for UDP and ICMP rejected > packets? It might be nice to create a generic reject OVN action that does > "the right thing" regardless of whether it's TCP, UDP, or ICMP. > > --Justin > > -- Sincerely, Daniel Levy _______________________________________________ dev mailing list dev@openvswitch.org http://openvswitch.org/mailman/listinfo/dev
