> Perhaps someone could kindly do a bit of "explain to me like I'm 5", because > I'm clearly unclear bout OVS bridges. > > My understanding is that bridges operate independently of each other and that > ports assigned to bridges are independent of ports on other bridges ? > > I'm seeing a weird (to me at least !) issue where implementing changes on a > second bridge seems to kill traffic on the first. > > I have a base config that looks something like this : > ovs-ofctl add-flow br1 > priority=1000,dl_dst=<DEST_MAC_ADDRESS>,actions=output:2 > ovs-ofctl add-flow br1 > priority=1000,dl_dst=<DEST_MAC_ADDRESS>,actions=output:1 > ovs-ofctl add-flow br1 > priority=1000,dl_dst=<DEST_MAC_ADDRESS>,actions=output:1 > ovs-ofctl add-flow br1 priority=2000,dl_type=0x806,nw_proto=1,actions=flood > ovs-ofctl add-flow br1 priority=2000,dl_type=0x86dd,nw_proto=58,actions=flood > > The above works fine (although I'm sure you'll tell me its not the most ideal > config). Traffic flows between ports 1 & 2. > > Now I go to add a second set of ports on a different bridge. And when I do > this, it seems to adversely impact traffic on the first bridge (e.g. BGP > routing sessions drop and don't come up until I delete the flows on the > second bridge). > > ovs-vsctl add br vmbr > ovs-ofctl add-flow vmbr > priority=1000,dl_dst=<DEST_MAC_ADDRESS>,actions=output:10 > ovs-ofctl add-flow vmbr > priority=1000,dl_dst=<DEST_MAC_ADDRESS>,actions=output:11 > ovs-ofctl add-flow vmbr > priority=1000,dl_dst=<DEST_MAC_ADDRESS>,actions=output:12 > ovs-ofctl add-flow vmbr priority=2000,dl_type=0x806,nw_proto=1,actions=flood > ovs-ofctl add-flow vmbr priority=2000,dl_type=0x86dd,nw_proto=58,actions=flood > > My hunch is that its the "actions=flood" entries that are the culprit. But I > don't understand why since they are on different bridges ? > > Thanks in advance for your time !
Hi. The bridges indeed are independent inside the OVS, unless you have connected them with a patch port or something like that. However, every bridge has a bridge-port named br1 and vmbr in your case and these are normal linux interfaces. If they are UP, flooded packets will enter the usual network stack through these ports and can be forwarded to another bridge this way. Not sure if that's your case, but that is definitely possible. Best regards, Ilya Maximets. _______________________________________________ discuss mailing list [email protected] https://mail.openvswitch.org/mailman/listinfo/ovs-discuss
