[neutron] Slow floating IP activation when FWaaS v2 enabled
Jason Anderson
jasonanderson at uchicago.edu
Tue Dec 31 15:23:33 UTC 2019
Hi all,
We recently started using the FWaaS feature (v2) in Neutron for our deployment. However, we noticed that when this feature is enabled, floating IP activation (the setting up of iptables rules that perform DNAT to the destination instance) takes a long time to happen. The effect is that the user has to wait for a while before the floating IP becomes active on an instance. I was wondering if anybody else has experienced this, and if there are any workarounds. I suspect there may be some queuing happening behind an iptables lock somewhere but I haven't been able to verify anything for sure yet.
Thank you,
--
Jason Anderson
Chameleon DevOps Lead
Consortium for Advanced Science and Engineering, The University of Chicago
Mathematics & Computer Science Division, Argonne National Laboratory
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-discuss/attachments/20191231/7f7cc46d/attachment.html>
More information about the openstack-discuss
mailing list