[Bug 1931696] Re: ovs offload broken from neutron 16.3.0 onwards
The Hirsute Hippo has reached End of Life, so this bug will not be fixed for that release. ** Changed in: neutron (Ubuntu Hirsute) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931696 Title: ovs offload broken from neutron 16.3.0 onwards To manage notifications about this bug go to: https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1931696/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1931696] Re: ovs offload broken from neutron 16.3.0 onwards
** Merge proposal unlinked: https://code.launchpad.net/~hopem/ubuntu/+source/neutron/+git/neutron/+merge/410049 ** Merge proposal linked: https://code.launchpad.net/~hopem/ubuntu/+source/neutron/+git/neutron/+merge/410648 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931696 Title: ovs offload broken from neutron 16.3.0 onwards To manage notifications about this bug go to: https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1931696/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1931696] Re: ovs offload broken from neutron 16.3.0 onwards
We've also found bug 1948656 which means that toggling explicitly_egress_direct does not remove the flow added when set to True. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931696 Title: ovs offload broken from neutron 16.3.0 onwards To manage notifications about this bug go to: https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1931696/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1931696] Re: ovs offload broken from neutron 16.3.0 onwards
@moshele I have re-tested without dvr-snat and these are the results: (agent_mode=dvr, offload=true, explicitly_egress_direct=False): switchdev port: ping between vms same network/separate hypervisors: pass ping network gateway: fail ping external address: pass normal port: ping between vms same network/separate hypervisors: pass ping network gateway: fail ping external address: pass Results (agent_mode=dvr, offload=true, explicitly_egress_direct=False, 1897637 patch reverted): switchdev port: ping between vms same network/separate hypervisors: pass ping network gateway: pass ping external address: pass normal port: ping between vms same network/separate hypervisors: pass ping network gateway: pass ping external address: pass So as you can see, with your patch in a dvr env (computenode=dvr, networknode=dvr_snat) that has offload enabled, I am unable to ping my network gateway. I assume this is an unintended side-effect of your patch since it does not exist if i remove your patch. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931696 Title: ovs offload broken from neutron 16.3.0 onwards To manage notifications about this bug go to: https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1931696/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1931696] Re: ovs offload broken from neutron 16.3.0 onwards
** Changed in: charm-neutron-openvswitch Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931696 Title: ovs offload broken from neutron 16.3.0 onwards To manage notifications about this bug go to: https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1931696/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1931696] Re: ovs offload broken from neutron 16.3.0 onwards
@hopem The problem was that without explicitly_egress_direct=False we can't offload traffic. We can't offload rule which is flood all port. When you say it works did you check offload? I was aware that it breaks the dvr_snat. What will be the point to use dvr_snat and hardware offload it not working? the comprise to enable it with action normal so at least we can offload vlan/vlxan traffic and for other cases you can use explicitly_egress_direct=True. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931696 Title: ovs offload broken from neutron 16.3.0 onwards To manage notifications about this bug go to: https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1931696/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1931696] Re: ovs offload broken from neutron 16.3.0 onwards
@dragon889 thanks for the info. To be clear the patch we are reverting here is not the patch you reference that introduced explicitly_egress_direct but actually a subsequent patch that alters flows for offloaded ports when explicitly_egress_direct=False that appears to have unintended side-effects. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931696 Title: ovs offload broken from neutron 16.3.0 onwards To manage notifications about this bug go to: https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1931696/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1931696] Re: ovs offload broken from neutron 16.3.0 onwards
The patch of https://review.opendev.org/c/openstack/neutron/+/759367/ which introduced the config option ``explicitly_egress_direct=True/False`` had fixed the following problems: 1. the egress flooding issue on br-int when enable openvswitch(openflow) security group driver https://bugs.launchpad.net/neutron/+bug/1732067 2. fix the east-west traffic broken of dvr https://bugs.launchpad.net/neutron/+bug/1831534 (this bug is for VLAN network, but the issue is not vlan only). 3. fix some potential ingress flood issue on br-int And I had put some issues here as well: https://bugs.launchpad.net/neutron/+bug/1934666/comments/5 So, not use explicitly_egress_direct=True, you have to face these issues. Another thing is that as I said in the release note before, do not use ``explicitly_egress_direct=True`` in host which enable dvr_snat and compute service. There are too many cases need to cover, please try to combine the following cases for DVR: 1. vlan/vxlan 2. dvr/dvr+ha 3. agent mode(dvr, dvr_snat, dvr_no_external) 4. east-west traffic and north-south traffic with the Scenario of src and dest in or not in same host 5. IPv6 6. allowed_address_pair 7. enable/disabl openflow firewall 8. HA router failover The final cases is too many to cover. And FYI, we had mark that dvr_snat + compute services is not supported. https://review.opendev.org/c/openstack/neutron/+/801503 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931696 Title: ovs offload broken from neutron 16.3.0 onwards To manage notifications about this bug go to: https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1931696/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1931696] Re: ovs offload broken from neutron 16.3.0 onwards
** Merge proposal linked: https://code.launchpad.net/~hopem/ubuntu/+source/neutron/+git/neutron/+merge/410061 ** Merge proposal linked: https://code.launchpad.net/~hopem/ubuntu/+source/neutron/+git/neutron/+merge/410059 ** Merge proposal linked: https://code.launchpad.net/~hopem/ubuntu/+source/neutron/+git/neutron/+merge/410055 ** Merge proposal linked: https://code.launchpad.net/~hopem/ubuntu/+source/neutron/+git/neutron/+merge/410060 ** Merge proposal linked: https://code.launchpad.net/~hopem/ubuntu/+source/neutron/+git/neutron/+merge/410057 ** Merge proposal linked: https://code.launchpad.net/~hopem/ubuntu/+source/neutron/+git/neutron/+merge/410054 ** Merge proposal linked: https://code.launchpad.net/~hopem/ubuntu/+source/neutron/+git/neutron/+merge/410056 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931696 Title: ovs offload broken from neutron 16.3.0 onwards To manage notifications about this bug go to: https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1931696/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1931696] Re: ovs offload broken from neutron 16.3.0 onwards
** Also affects: neutron (Ubuntu) Importance: Undecided Status: New ** Also affects: neutron (Ubuntu Bionic) Importance: Undecided Status: New ** Also affects: neutron (Ubuntu Impish) Importance: Undecided Status: New ** Also affects: neutron (Ubuntu Focal) Importance: Undecided Status: New ** Also affects: neutron (Ubuntu Hirsute) Importance: Undecided Status: New ** Also affects: cloud-archive Importance: Undecided Status: New ** Also affects: cloud-archive/queens Importance: Undecided Status: New ** Also affects: cloud-archive/wallaby Importance: Undecided Status: New ** Also affects: cloud-archive/rocky Importance: Undecided Status: New ** Also affects: cloud-archive/train Importance: Undecided Status: New ** Also affects: cloud-archive/xena Importance: Undecided Status: New ** Also affects: cloud-archive/ussuri Importance: Undecided Status: New ** Also affects: cloud-archive/victoria Importance: Undecided Status: New ** Also affects: cloud-archive/stein Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931696 Title: ovs offload broken from neutron 16.3.0 onwards To manage notifications about this bug go to: https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1931696/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
