On Thu, Jul 26, 2012 at 10:27 PM, Ben Pfaff <b...@nicira.com> wrote: > Signed-off-by: Ben Pfaff <b...@nicira.com> > --- > FAQ | 93 > +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ > 1 files changed, 93 insertions(+), 0 deletions(-) > > diff --git a/FAQ b/FAQ > index bdd96ce..7cba6f0 100644 > --- a/FAQ > +++ b/FAQ > @@ -168,6 +168,99 @@ A: Tunnel and patch virtual ports are not supported, > as described in the > may not be transmitted. > > > +Basic Configuration > +------------------- > + > +Q: How do I configure a port as an access port? > + > +A: Add "tag=VLAN" to your "ovs-vsctl add-port" command. For example, > + the following commands configure br0 with eth0 as a trunk port (the > + default) and tap0 as an access port for VLAN 9: > + > + ovs-vsctl add-br br0 > + ovs-vsctl add-port br0 eth0 > + ovs-vsctl add-port br0 tap0 tag=9 > + > + If you want to configure an already added port as an access port, > + use "ovs-vsctl set", e.g.: > + > + ovs-vsctl set port tap0 tag=9 > + > +Q: How do I configure a port as a SPAN port, that is, enable mirroring > + of all traffic to that port? > + > +A: The following commands configure br0 with eth0 and tap0 as trunk > + ports. All traffic coming in or going out on eth0 or tap0 is also > + mirrored to tap1; any traffic arriving on tap1 is dropped: > + > + ovs-vsctl add-br br0 > + ovs-vsctl add-port br0 eth0 > + ovs-vsctl add-port br0 tap0 > + ovs-vsctl add-port br0 tap1 \ > + -- --id=@p get port tap1 \ > + -- --id=@m create mirror name=m0 select-all=true output-port=@p > \ > + -- set bridge br0 mirrors=@m > Shouldn't we be using "_" instead of "-" in output-port? Same for all other commands below.
> + > + To later disable mirroring, run: > + > + ovs-vsctl clear bridge br0 mirrors > + > +Q: How do I configure a VLAN as an RSPAN VLAN, that is, enable > + mirroring of all traffic to that VLAN? > + > +A: The following commands configure br0 with eth0 as a trunk port and > + tap0 as an access port for VLAN 10. All traffic coming in or going > + out on tap0, as well as traffic coming in or going out on eth0 in > + VLAN 10, is also mirrored to VLAN 15 on eth0: > + > + ovs-vsctl add-br br0 > + ovs-vsctl add-port br0 eth0 > + ovs-vsctl add-port br0 tap0 tag=10 > + ovs-vsctl \ > + -- --id=@m create mirror name=m0 select-vlan=10 output-vlan=15 \ > + -- set bridge br0 mirrors=@m > + > + (If you omit select-vlan=10, then all traffic on any VLAN, except > + VLAN 15, will be mirrored to VLAN 15. This is possibly confusing > + because the packets' original VLANs cannot be determined.) > + > + To later disable mirroring, run: > + > + ovs-vsctl clear bridge br0 mirrors > + > + Mirroring to a VLAN can disrupt a network that contains unmanaged > + switches. See ovs-vswitchd.conf.db(5) for details. Mirroring to a > + GRE tunnel has fewer caveats than mirroring to a VLAN and should > + generally be preferred. > + > +Q: How do I configure mirroring of all traffic to a GRE tunnel? > + > +A: The following commands configure br0 with eth0 and tap0 as trunk > + ports. All traffic coming in or going out on eth0 or tap0 is also > + mirrored to gre0, a GRE tunnel to the remote host 192.168.1.10; any > + traffic arriving on gre0 is dropped: > + > + ovs-vsctl add-br br0 > + ovs-vsctl add-port br0 eth0 > + ovs-vsctl add-port br0 tap0 > + ovs-vsctl add-port br0 gre0 \ > + -- set interface gre0 type=gre options:remote_ip=192.168.1.10 \ > + -- --id=@p get port gre0 \ > + -- --id=@m create mirror name=m0 select-all=true output-port=@p > \ > + -- set bridge br0 mirrors=@m > + > + To later disable mirroring and destroy the GRE tunnel: > + > + ovs-vsctl clear bridge br0 mirrors > + ovs-vcstl del-port br0 gre0 > + > +Q: Does Open vSwitch support ERSPAN? > + > +A: No. ERSPAN is an undocumented proprietary protocol. As an > + alternative, Open vSwitch supports mirroring to a GRE tunnel (see > + above). > + > + > Configuration Problems > ---------------------- > > -- > 1.7.2.5 > > _______________________________________________ > dev mailing list > dev@openvswitch.org > http://openvswitch.org/mailman/listinfo/dev >
_______________________________________________ dev mailing list dev@openvswitch.org http://openvswitch.org/mailman/listinfo/dev
