On 6/2/21 3:34 PM, Eelco Chaudron wrote: > Currently, conntrack in the kernel has an undocumented feature referred > to as all-zero IP address SNAT. Basically, when a source port > collision is detected during the commit, the source port will be > translated to an ephemeral port. If there is no collision, no SNAT is > performed. > > This patchset documents this behavior and adds a self-test to verify > it's not changing. In addition, a datapath feature flag is added for > the all-zero IP SNAT case. This will help applications on top of OVS, > like OVN, to determine this feature can be used. > > Signed-off-by: Eelco Chaudron <[email protected]> > ---
Tested with OVN patches that use ct_zero_snat [0], works as expected. Acked-by: Dumitru Ceara <[email protected]> Thanks, Dumitru [0] https://github.com/dceara/ovn/tree/bz1939676-dnat-and-snat-v1 _______________________________________________ dev mailing list [email protected] https://mail.openvswitch.org/mailman/listinfo/ovs-dev
