yahoo-eng-team team mailing list archive

[OpenStack Infra <2012069@xxxxxxxxxxxxxxxxxx>]

Reviewed:  https://review.opendev.org/c/openstack/neutron/+/877675
Committed: https://opendev.org/openstack/neutron/commit/7dfbdf65a71b7da2865d475cd91988728f734652
Submitter: "Zuul (22348)"
Branch:    master

commit 7dfbdf65a71b7da2865d475cd91988728f734652
Author: Luis Tomas Bolivar <ltomasbo@xxxxxxxxxx>
Date:   Fri Mar 17 15:59:05 2023 +0100

    Add support for localnet_learn_fdb OVN option
    
    In OVN 22.09, the option "localnet_learn_fdb" was added so that
    localnet ports can learn MAC addresses and store them in the FDB
    table. This avoids flooding issues for VMs on provider networks
    when port security is disabled
    
    Closes-Bug: #2012069
    Change-Id: I93574b4fe9a79b649bfe755cf7e0697ccc7eb83a


** Changed in: neutron
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/2012069

Title:
  [OVN] Flooding issue on provider networks with disabled port security

Status in neutron:
  Fix Released

Bug description:
  When VMs associated to a provider network, with disabled port
  security, try to reach IPs on the provider network not known by
  OpenStack, there is a flooding issue due to FDB table not learning
  MACs. It seems there is a option in ovn [1] to address this issue but
  it is not used by OpenStack.

  [1] https://github.com/ovn-
  org/ovn/commit/93514df0d4c8fe7986dc5f287d7011f420d1be6d

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/2012069/+subscriptions