← Back to team overview

yahoo-eng-team team mailing list archive

  1. yahoo-eng-team team
  2. Mailing list archive
  3. Message #83127

[Bug 1885262] [NEW] Add stateless firewall support to OVN

  Thread PreviousDate PreviousThread Next 
Public bug reported:

In Ussuri, we added support for stateless firewall [1]

This added support for stateful attribute in security group, with needed
parts in API extensions "stateful-security-group", database, ... [2]

However implementation is currently only done for the iptables drivers
in ML2/OVS, this limitation is noted in release notes for the feature.

As proposed discussed in the Victoria PTG [3], we should add support for
this attribute in OVN driver.

It should be easy to do [4] and give feature support parity in OVN

[1] https://bugs.launchpad.net/neutron/+bug/1753466
[2] https://review.opendev.org/#/c/572767/
[3] https://etherpad.opendev.org/p/neutron-victoria-ptg L162
[4] http://www.openvswitch.org/support/dist-docs/ovn-northd.8.html

** Affects: neutron
     Importance: Undecided
         Status: New


** Tags: ovn

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1885262

Title:
  Add stateless firewall support to OVN

Status in neutron:
  New

Bug description:
  In Ussuri, we added support for stateless firewall [1]

  This added support for stateful attribute in security group, with
  needed parts in API extensions "stateful-security-group", database,
  ... [2]

  However implementation is currently only done for the iptables drivers
  in ML2/OVS, this limitation is noted in release notes for the feature.

  As proposed discussed in the Victoria PTG [3], we should add support
  for this attribute in OVN driver.

  It should be easy to do [4] and give feature support parity in OVN

  [1] https://bugs.launchpad.net/neutron/+bug/1753466
  [2] https://review.opendev.org/#/c/572767/
  [3] https://etherpad.opendev.org/p/neutron-victoria-ptg L162
  [4] http://www.openvswitch.org/support/dist-docs/ovn-northd.8.html

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1885262/+subscriptions

Follow ups

  Thread PreviousDate PreviousThread Next