Hey there, I am writing to seek clarification on the feasibility of implementing traffic filters for port mirroring in ovn, specifically regarding the encapsulation of traffic to overlay using Geneve, VXLAN, or ERSPAN.
In the current setup, it is understood that remote port mirroring assumes the destination lies outside the OVN cluster. Upon examination, there appear to be two potential strategies to address this issue: 1. Utilizing Filters in OVS: While this approach presents itself as a feasible option, it comes with certain drawbacks. Primarily, when executing remote port mirroring, ovs encapsulates the packet within the underlay header. Consequently, this inhibits the ability to mirror traffic to a port situated on a separate host within the OVN cluster. 2. Integrating New Logic into the Logical Flow in the Southbound Database: it's constrained by its capability to output traffic solely on ports that reside within the same logical switch. This poses a limitation in its implementation. since both options are currently not possible, I would greatly appreciate any insights or advice you may have regarding these approaches. -- Regards, Alexandra. _______________________________________________ dev mailing list [email protected] https://mail.openvswitch.org/mailman/listinfo/ovs-dev
