openstack team mailing list archive

[Robert van Leeuwen <Robert.vanLeeuwen@xxxxxxxxxxxxx>]

Hi,

I've got a strange networking problem with the quantum l3 router setup:
* I can ping from my virtual 
* "Real" traffic (e.g. TCP) only goes from the quantum setup to the "physical network", return traffic never arrives

We have the following setup:
* A openstack private network (running accross GRE tunnels)
* A bridge-mapped network to a vlan on the "physical network"
* A quantum router patched into the SDN and the "physical network"
* quantum-l3-agent running
* Our router on the "physical network" routes the subnets designated for use as openstack private networks to the quantum-l3-agent node.

The goal of this setup is to make virtuals on our private networks in openstack fully accessible (bi-directional) to the physical networks outside of openstack without having to setup floating ip's for each node.
This use-case does not appear to be in the documentation but I don't see an obvious reason why this could not work :)

We are running on the following:
* SL6.3
* Openvswitch 1.7.1
* Openstack Folsom

This is the ovs-ofctl output, the first rule concerns the bridge_mapped network to the physical network. (vlan 28)
ovs-ofctl dump-flows br-eth1
NXST_FLOW reply (xid=0x4):
 cookie=0x0, duration=478.386s, table=0, n_packets=6, n_bytes=372, idle_age=234, priority=4,in_port=16,dl_vlan=1 actions=mod_vlan_vid:28,NORMAL
 cookie=0x0, duration=474.646s, table=0, n_packets=7, n_bytes=716, idle_age=440, priority=4,in_port=16,dl_vlan=4 actions=mod_vlan_vid:5,NORMAL
 cookie=0x0, duration=488.861s, table=0, n_packets=45942, n_bytes=6350881, idle_age=0, priority=1 actions=NORMAL
 cookie=0x0, duration=486.919s, table=0, n_packets=6, n_bytes=440, idle_age=440, priority=2,in_port=16 actions=drop

Thx,
Robert van Leeuwen