yahoo-eng-team team mailing list archive

[Basil Baby <basilbaby@xxxxxxxxx>]

Public bug reported:

I was testing ovs firewall driver added in https://bugs.launchpad.net/neutron/+bug/1461000 .
Environment: 
OpenStack: Mitaka 
Neutron: 8.1.2
ovs 2.5
linux kernel 4.4
L3 Agent: DVR
L2: ML2 + OVS

My compute has two physical interfaces. p1p2 is used for data traffic and OVS using that interface 
ML2 is configured to use firewall_driver 'openvswitch'

I have created a provider network with IPv4 and IPv6 subnets. When I
tried to create an instance attaching directly to provider network, IPv4
security group rules are working as expected. But, the IPv6 traffic is
not going through even though I am seeing the traffic at the physical
interface of OVS.

Attaching my environment details and OVS flow tables for more
investigation.

** Affects: neutron
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1602006

Title:
  openvswitch firewall driver  IPv6 drop

Status in neutron:
  New

Bug description:
  I was testing ovs firewall driver added in https://bugs.launchpad.net/neutron/+bug/1461000 .
  Environment: 
  OpenStack: Mitaka 
  Neutron: 8.1.2
  ovs 2.5
  linux kernel 4.4
  L3 Agent: DVR
  L2: ML2 + OVS

  My compute has two physical interfaces. p1p2 is used for data traffic and OVS using that interface 
  ML2 is configured to use firewall_driver 'openvswitch'

  I have created a provider network with IPv4 and IPv6 subnets. When I
  tried to create an instance attaching directly to provider network,
  IPv4 security group rules are working as expected. But, the IPv6
  traffic is not going through even though I am seeing the traffic at
  the physical interface of OVS.

  Attaching my environment details and OVS flow tables for more
  investigation.

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1602006/+subscriptions