← Back to team overview

yahoo-eng-team team mailing list archive

  1. yahoo-eng-team team
  2. Mailing list archive
  3. Message #91081

[Bug 2003706] [NEW] [OVN] Security group logging only logs half of the connection

  Thread PreviousDate PreviousThread Next 
Public bug reported:

With the OVN security group logging feature enabled there is only one
direction (from client to server) packets are actually logged. It
happens because there is a single OpenFlow rule created for the returned
traffic and it has no logging action

Steps:
- Create server associated to security group.
- Add a network log object that logs accepted traffic from that security group.
- Check logs in ovn-controller.log

Expected results:
- We get the packets incoming and outcoming from the server.

Actual results:
- We only see incoming packets.

More info at: https://bugzilla.redhat.com/show_bug.cgi?id=2152877

** Affects: neutron
     Importance: Undecided
     Assignee: Elvira García Ruiz (elviragr)
         Status: New


** Tags: ovn

** Description changed:

  With the OVN security group logging feature enabled there is only one
  direction (from client to server) packets are actually logged. It
  happens because there is a single OpenFlow rule created for the returned
  traffic and it has no logging action
  
  Steps:
  - Create server associated to security group.
  - Add a network log object that logs accepted traffic from that security group.
  - Check logs in ovn-controller.log
  
  Expected results:
  - We get the packets incoming and outcoming from the server.
  
  Actual results:
  - We only see incoming packets.
+ 
+ More info at: https://bugzilla.redhat.com/show_bug.cgi?id=2152877

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/2003706

Title:
  [OVN] Security group logging only logs half of the connection

Status in neutron:
  New

Bug description:
  With the OVN security group logging feature enabled there is only one
  direction (from client to server) packets are actually logged. It
  happens because there is a single OpenFlow rule created for the
  returned traffic and it has no logging action

  Steps:
  - Create server associated to security group.
  - Add a network log object that logs accepted traffic from that security group.
  - Check logs in ovn-controller.log

  Expected results:
  - We get the packets incoming and outcoming from the server.

  Actual results:
  - We only see incoming packets.

  More info at: https://bugzilla.redhat.com/show_bug.cgi?id=2152877

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/2003706/+subscriptions

Follow ups

  Thread PreviousDate PreviousThread Next