yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1639315] Re: Gratuitous ARP is not sent when floating IP is added to HA router

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: OpenStack Infra <1639315@xxxxxxxxxxxxxxxxxx>
Date: Fri, 11 Nov 2016 13:55:33 -0000
Reply-to: Bug 1639315 <1639315@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Reviewed:  https://review.openstack.org/393886
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=4fdd89e94f778a6aa96151679de2ddcd0165717a
Submitter: Jenkins
Branch:    master

commit 4fdd89e94f778a6aa96151679de2ddcd0165717a
Author: Jakub Libosvar <libosvar@xxxxxxxxxx>
Date:   Fri Nov 4 10:54:51 2016 -0400

    l3-ha: Send gratuitous ARP when new floating IP is added
    
    We rely on keepalived to send gratuitous ARPs when floating IP is added.
    Older versions of keepalived up to 1.2.20 (exclusive) contain bug [1] where
    keepalived does not send GARP on receiving SIGHUP. Unfortunately, newer
    versions containing the fix are not packaged yet for some distributions
    like RHEL or CentOS or Ubuntu Xenial, so this patch adds a workaround for
    such distributions until new packages are available.
    
    The patch also sets net.ipv4.ip_nonlocal_bind kernel parameter to 0 for
    Snat and HA router namespaces in order to avoid sending gratuitous ARPs
    for IP addresses that are not bound to the interface anymore - possibly
    because of failover or removal. Note that kernel < 3.19 contain a bug
    where this knob is missing. In case it attempts to set the parameter and
    it's missing on the system, it doesn't set the knob in root
    namespace like it's done for fip namespaces, but only issues a warning
    message.
    
    [1] https://bugzilla.redhat.com/show_bug.cgi?id=1391553
    
    Change-Id: Ieab53624dc34dc687a0e8eebd84778f7fc95dd77
    Closes-bug: 1639315


** Changed in: neutron
       Status: In Progress => Fix Released

** Bug watch added: Red Hat Bugzilla #1391553
   https://bugzilla.redhat.com/show_bug.cgi?id=1391553

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1639315

Title:
  Gratuitous ARP is not sent when floating IP is added to HA router

Status in neutron:
  Fix Released

Bug description:
  Keepalived doesn't send gratuitous ARP on receiving SIGHUP. This makes
  floating IP, which was previously associated with a port on different
  HA router, inaccesible until local ARP cache is invalidated.

  Steps to reproduce:
    Have two networks and two HA routers
    Associate floating IP to port on first router
    Ping the floating IP from a different node than the node hosting router (this creates arp entry on local machine)
    Disassociate floating ip and associate it to the second router

  - floating ip is not pingable as it contains wrong destination ip
  address

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1639315/+subscriptions

References

[Bug 1639315] [NEW] Gratuitous ARP is not sent when floating IP is added to HA router
From: Jakub Libosvar, 2016-11-04