yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1447651] Re: Find many duplicate rules in memory by using iptables_manager

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: OpenStack Infra <1447651@xxxxxxxxxxxxxxxxxx>
Date: Mon, 27 Aug 2018 02:59:41 -0000
Reply-to: Bug 1447651 <1447651@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Fix proposed to branch: master
Review: https://review.openstack.org/596634

** Changed in: neutron
       Status: Expired => In Progress

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1447651

Title:
  Find many duplicate rules in memory by using iptables_manager

Status in neutron:
  In Progress

Bug description:
  I installed VPNaas In my devstack. I find many duplicate iptables
  rules in memory. The rule is ' 2015-04-23 10:55:15.380 ERROR
  neutron.agent.linux.iptables_manager [-] ###### rule is -A neutron-
  vpn-agen-POSTROUTING -s 192.168.10.0/24 -d 192.168.20.1/24 -m policy
  --dir out --pol ipsec -j ACCEPT ', and I add this log in
  'agent/linux/iptables_manager.py  ' after ' _modify_rules '. Why there
  are duplicate iptables rules?  Does iptables_manager weed out
  duplicate rules?

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1447651/+subscriptions