<div dir="ltr"><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#000066">Hi all,</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#000066"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#000066">Thanks a lot for your guidance.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#000066">I didn't have such a problem in TripleO Stein.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#000066">
<span class="gmail-tlid-translation gmail-translation" lang="en"><span title="" class="gmail-">Do you think using OVN DVR in a production environment is a wise choice?</span></span></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#000066"><span class="gmail-tlid-translation gmail-translation" lang="en"><span title="" class="gmail-"><br></span></span></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#000066"><span class="gmail-tlid-translation gmail-translation" lang="en"><span title="" class="gmail-">Regards,</span></span></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#000066"><span class="gmail-tlid-translation gmail-translation" lang="en"><span title="" class="gmail-">Reza<br></span></span>
</div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Tue, 8 Sep 2020 at 21:42, Michał Nasiadka <<a href="mailto:mnasiadka@gmail.com">mnasiadka@gmail.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="auto">Hi Reza,</div><div dir="auto"><br></div><div dir="auto">Here is a related bug: <div><a href="https://bugs.launchpad.net/bugs/1881041" target="_blank">https://bugs.launchpad.net/bugs/1881041</a></div><div dir="auto"><br></div><div dir="auto">I had to use ovn/ovs 2.13 builds from cbs to overcome this issue (<div dir="auto"><a href="https://cbs.centos.org/koji/buildinfo?buildID=30482" target="_blank">https://cbs.centos.org/koji/buildinfo?buildID=30482</a>)</div><div dir="auto"><br></div><div dir="auto">Regards,</div><div dir="auto">Michal</div></div></div><div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Tue, 8 Sep 2020 at 18:52, Reza Bakhshayeshi <<a href="mailto:reza.b2008@gmail.com" target="_blank">reza.b2008@gmail.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">Hi Roman,</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">I'm using 'geneve' for my tenant networks.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">By the way, by pinging 8.8.8.8 from an instance with FIP, tcpdump on its Compute node shows an ARP request for every lost ping. Is it normal behaviour?</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">21:13:04.808508 ARP, Request who-has dns.google tell <br><br>X.X.X.X<br><br><br><br>, length 28<br>21:13:05.808726 ARP, Request who-has dns.google tell <br><br>X.X.X.X<br><br><br><br>, length 28<br>21:13:06.808900 ARP, Request who-has dns.google tell <br><br>X.X.X.X<br><br><br><br>, length 28</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">X.X.X.X if FIP of VM.<br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"><br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Tue, 8 Sep 2020 at 17:21, Roman Safronov <<a href="mailto:rsafrono@redhat.com" target="_blank">rsafrono@redhat.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr">Hi Reza,<div><br></div><div>Are you using 'geneve' tenant networks or 'vlan' ones? I am asking because with VLAN we have the following DVR issue [1]</div><div><br></div><div>[1] <a href="https://bugzilla.redhat.com/show_bug.cgi?id=1704596" target="_blank">Bug 1704596 - FIP traffix does not work on OVN-DVR setup when using VLAN tenant network type</a></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Tue, Sep 8, 2020 at 2:04 PM Reza Bakhshayeshi <<a href="mailto:reza.b2008@gmail.com" target="_blank">reza.b2008@gmail.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">Hi Slawek,</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">I'm using the latest CentOS 8 Ussuri OVN packages at:</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"><a href="https://trunk.rdoproject.org/centos8-ussuri/deps/latest/x86_64/" style="font-family:tahoma,sans-serif" target="_blank">https://trunk.rdoproject.org/centos8-ussuri/deps/latest/x86_64/</a></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">On both Controller and Compute I get:</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"># rpm -qa | grep ovn<br>ovn-host-20.03.0-4.el8.x86_64<br>ovn-20.03.0-4.el8.x86_64</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"># yum info ovn<br>Installed Packages<br>Name : ovn<br>Version : 20.03.0<br>Release : 4.el8<br>Architecture : x86_64<br>Size : 12 M<br>Source : ovn-20.03.0-4.el8.src.rpm<br>Repository : @System<br>From repo : delorean-ussuri-testing<br>Summary : Open Virtual Network support<br>URL : <a href="http://www.openvswitch.org/" style="font-family:tahoma,sans-serif" target="_blank">http://www.openvswitch.org/</a><br>License : ASL 2.0 and LGPLv2+ and SISSL<br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)">Do you suggest installing ovn manually from source on containers?<br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(0,0,102)" dir="rtl">ي<br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Tue, 8 Sep 2020 at 12:39, Slawek Kaplonski <<a href="mailto:skaplons@redhat.com" target="_blank">skaplons@redhat.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Hi,<br><br><br><br><br><br>Maybe You hit this bug [1]. Please check what ovn version do You have and maybe<br><br><br>update it if needed.<br><br><br><br><br><br>On Mon, Sep 07, 2020 at 06:23:44PM +0430, Reza Bakhshayeshi wrote:<br><br><br>> Hi all,<br><br><br>> <br><br><br>> I deployed an environment with TripleO Ussuri with 3 HA Controllers and<br><br><br>> some Compute nodes with neutron-ovn-dvr-ha.yaml<br><br><br>> Instances have Internet access through routers with SNAT traffic (in this<br><br><br>> case traffic is routed via a controller node), and by assigning IP address<br><br><br>> directly from provider network (not having a router).<br><br><br>> <br><br><br>> But in case of assigning FIP from provider to an instance, VM Internet<br><br><br>> connection is lost.<br><br><br>> Here is the output of router nat lists, which seems OK:<br><br><br>> <br><br><br>> <br><br><br>> # ovn-nbctl lr-nat-list 587182a4-4d6b-41b0-9fd8-4c1be58811b0<br><br><br>> TYPE EXTERNAL_IP EXTERNAL_PORT LOGICAL_IP<br><br><br>> EXTERNAL_MAC LOGICAL_PORT<br><br><br>> dnat_and_snat X.X.X.X 192.168.0.153<br><br><br>> fa:16:3e:0a:86:4d e65bd8e9-5f95-4eb2-a316-97e86fbdb9b6<br><br><br>> snat Y.Y.Y.Y <a href="http://192.168.0.0/24" rel="noreferrer" target="_blank">192.168.0.0/24</a><br><br><br>> <br><br><br>> <br><br><br>> I replaced FIP with X.X.X.X and router IP with Y.Y.Y.Y<br><br><br>> <br><br><br>> When I remove * EXTERNAL_MAC* and *LOGICAL_PORT*, FIP works fine and as it<br><br><br>> has to be, but traffic routes from a Controller node and it won't be<br><br><br>> distributed anymore.<br><br><br>> <br><br><br>> Any idea or suggestion would be grateful.<br><br><br>> Regards,<br><br><br>> Reza<br><br><br><br><br><br>[1] <a href="https://bugzilla.redhat.com/show_bug.cgi?id=1834433" rel="noreferrer" target="_blank">https://bugzilla.redhat.com/show_bug.cgi?id=1834433</a><br><br><br><br><br><br>-- <br><br><br>Slawek Kaplonski<br><br><br>Principal software engineer<br><br><br>Red Hat<br><br><br><br><br><br></blockquote></div><br><br></blockquote></div><br clear="all"><div><br></div>-- <br><div dir="ltr"><div dir="ltr"><p style="font-family:overpass,sans-serif;font-weight:bold;margin:0px;padding:0px;font-size:14px;text-transform:uppercase;color:rgb(0,0,0)"><span style="font-family:overpass,sans-serif">ROMAN</span> <span style="font-family:overpass,sans-serif">SAFRONOV</span><br></p><p style="font-family:overpass,sans-serif;font-size:10px;margin:0px 0px 4px;text-transform:uppercase;color:rgb(0,0,0)"><span style="font-family:overpass,sans-serif">SENIOR QE, OPENSTACK NETWORKING</span><span style="margin:0px;font-family:overpass,sans-serif;color:rgb(170,170,170)"></span></p><p style="font-family:overpass,sans-serif;margin:0px;font-size:10px;color:rgb(153,153,153)"><a href="https://www.redhat.com/" style="margin:0px;font-family:overpass,sans-serif;color:rgb(0,136,206)" target="_blank">Red Hat<span style="font-family:overpass,sans-serif"></span></a></p><p style="font-size:10px;margin:0px">Israel</p><p style="font-family:overpass,sans-serif;margin:0px 0px 6px;font-size:10px;color:rgb(153,153,153)"><span style="font-family:overpass,sans-serif">M: <a href="tel:+972545433957" style="font-size:11px;margin:0px;font-family:overpass,sans-serif;color:rgb(0,136,206)" target="_blank">+972545433957</a> </span></p><p style="font-family:overpass,sans-serif;font-weight:bold;margin:0px;padding:0px;font-size:14px;text-transform:uppercase;color:rgb(0,0,0)"><span style="font-weight:400;text-transform:none;font-size:10px;margin:0px;font-family:overpass,sans-serif;color:rgb(153,153,153)"></span><span style="font-size:medium;font-weight:400;text-transform:none;font-family:overpass,sans-serif"></span></p><table style="font-family:overpass,sans-serif;font-size:medium;color:rgb(0,0,0)" border="0"><tbody style="font-family:overpass,sans-serif"><tr style="font-family:overpass,sans-serif"><td style="font-family:overpass,sans-serif" width="100px"><a href="https://red.ht/sig" style="font-family:overpass,sans-serif" target="_blank"><img src="https://www.redhat.com/files/brand/email/sig-redhat.png" style="font-family: overpass, sans-serif;" width="90" height="auto"></a></td></tr></tbody></table></div></div><br><br></blockquote></div><br><br></blockquote></div></div>-- <br><div dir="ltr">Michał Nasiadka<br><a href="mailto:mnasiadka@gmail.com" target="_blank">mnasiadka@gmail.com</a></div>
</blockquote></div>