Floating IP problem in HA OVN DVR with TripleO

Roman Safronov rsafrono at redhat.com
Tue Sep 8 12:50:49 UTC 2020


Hi Reza,

Are you using 'geneve' tenant networks or 'vlan' ones? I am asking because
with VLAN we have the following DVR issue [1]

[1] Bug 1704596 - FIP traffix does not work on OVN-DVR setup when using
VLAN tenant network type
<https://bugzilla.redhat.com/show_bug.cgi?id=1704596>

On Tue, Sep 8, 2020 at 2:04 PM Reza Bakhshayeshi <reza.b2008 at gmail.com>
wrote:

> Hi Slawek,
>
> I'm using the latest CentOS 8 Ussuri OVN packages at:
> https://trunk.rdoproject.org/centos8-ussuri/deps/latest/x86_64/
>
> On both Controller and Compute I get:
>
> # rpm -qa | grep ovn
> ovn-host-20.03.0-4.el8.x86_64
> ovn-20.03.0-4.el8.x86_64
>
> # yum info ovn
> Installed Packages
> Name         : ovn
> Version      : 20.03.0
> Release      : 4.el8
> Architecture : x86_64
> Size         : 12 M
> Source       : ovn-20.03.0-4.el8.src.rpm
> Repository   : @System
> From repo    : delorean-ussuri-testing
> Summary      : Open Virtual Network support
> URL          : http://www.openvswitch.org/
> License      : ASL 2.0 and LGPLv2+ and SISSL
>
> Do you suggest installing ovn manually from source on containers?
> ي
>
> On Tue, 8 Sep 2020 at 12:39, Slawek Kaplonski <skaplons at redhat.com> wrote:
>
>> Hi,
>>
>> Maybe You hit this bug [1]. Please check what ovn version do You have and
>> maybe
>> update it if needed.
>>
>> On Mon, Sep 07, 2020 at 06:23:44PM +0430, Reza Bakhshayeshi wrote:
>> > Hi all,
>> >
>> > I deployed an environment with TripleO Ussuri with 3 HA Controllers and
>> > some Compute nodes with neutron-ovn-dvr-ha.yaml
>> > Instances have Internet access through routers with SNAT traffic (in
>> this
>> > case traffic is routed via a controller node), and by assigning IP
>> address
>> > directly from provider network (not having a router).
>> >
>> > But in case of assigning FIP from provider to an instance, VM Internet
>> > connection is lost.
>> > Here is the output of router nat lists, which seems OK:
>> >
>> >
>> > # ovn-nbctl lr-nat-list 587182a4-4d6b-41b0-9fd8-4c1be58811b0
>> > TYPE             EXTERNAL_IP        EXTERNAL_PORT    LOGICAL_IP
>> >  EXTERNAL_MAC         LOGICAL_PORT
>> > dnat_and_snat    X.X.X.X                      192.168.0.153
>> > fa:16:3e:0a:86:4d    e65bd8e9-5f95-4eb2-a316-97e86fbdb9b6
>> > snat             Y.Y.Y.Y                      192.168.0.0/24
>> >
>> >
>> > I replaced FIP with X.X.X.X and router IP with Y.Y.Y.Y
>> >
>> > When I remove * EXTERNAL_MAC* and *LOGICAL_PORT*, FIP works fine and as
>> it
>> > has to be, but traffic routes from a Controller node and it won't be
>> > distributed anymore.
>> >
>> > Any idea or suggestion would be grateful.
>> > Regards,
>> > Reza
>>
>> [1] https://bugzilla.redhat.com/show_bug.cgi?id=1834433
>>
>> --
>> Slawek Kaplonski
>> Principal software engineer
>> Red Hat
>>
>>

-- 

ROMAN SAFRONOV

SENIOR QE, OPENSTACK NETWORKING

Red Hat <https://www.redhat.com/>

Israel

M: +972545433957

<https://red.ht/sig>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-discuss/attachments/20200908/d6490c93/attachment.html>


More information about the openstack-discuss mailing list