On Wed, Aug 1, 2012 at 10:39 AM, Gurucharan Shetty <gshe...@nicira.com>wrote:
> > > On Thu, Jul 26, 2012 at 10:27 PM, Ben Pfaff <b...@nicira.com> wrote: > >> Signed-off-by: Ben Pfaff <b...@nicira.com> >> --- >> FAQ | 93 >> +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ >> 1 files changed, 93 insertions(+), 0 deletions(-) >> >> diff --git a/FAQ b/FAQ >> index bdd96ce..7cba6f0 100644 >> --- a/FAQ >> +++ b/FAQ >> @@ -168,6 +168,99 @@ A: Tunnel and patch virtual ports are not supported, >> as described in the >> may not be transmitted. >> >> >> +Basic Configuration >> +------------------- >> + >> +Q: How do I configure a port as an access port? >> + >> +A: Add "tag=VLAN" to your "ovs-vsctl add-port" command. For example, >> + the following commands configure br0 with eth0 as a trunk port (the >> + default) and tap0 as an access port for VLAN 9: >> + >> + ovs-vsctl add-br br0 >> + ovs-vsctl add-port br0 eth0 >> + ovs-vsctl add-port br0 tap0 tag=9 >> + >> + If you want to configure an already added port as an access port, >> + use "ovs-vsctl set", e.g.: >> + >> + ovs-vsctl set port tap0 tag=9 >> + >> +Q: How do I configure a port as a SPAN port, that is, enable mirroring >> + of all traffic to that port? >> + >> +A: The following commands configure br0 with eth0 and tap0 as trunk >> + ports. All traffic coming in or going out on eth0 or tap0 is also >> + mirrored to tap1; any traffic arriving on tap1 is dropped: >> + >> + ovs-vsctl add-br br0 >> + ovs-vsctl add-port br0 eth0 >> + ovs-vsctl add-port br0 tap0 >> + ovs-vsctl add-port br0 tap1 \ >> + -- --id=@p get port tap1 \ >> + -- --id=@m create mirror name=m0 select-all=true >> output-port=@p \ >> + -- set bridge br0 mirrors=@m >> > Shouldn't we be using "_" instead of "-" in output-port? Same for all > other commands below. > I was wrong. It looks like '-' or '_' does not matter. This patch looks good to me. > > >> + >> + To later disable mirroring, run: >> + >> + ovs-vsctl clear bridge br0 mirrors >> + >> +Q: How do I configure a VLAN as an RSPAN VLAN, that is, enable >> + mirroring of all traffic to that VLAN? >> + >> +A: The following commands configure br0 with eth0 as a trunk port and >> + tap0 as an access port for VLAN 10. All traffic coming in or going >> + out on tap0, as well as traffic coming in or going out on eth0 in >> + VLAN 10, is also mirrored to VLAN 15 on eth0: >> + >> + ovs-vsctl add-br br0 >> + ovs-vsctl add-port br0 eth0 >> + ovs-vsctl add-port br0 tap0 tag=10 >> + ovs-vsctl \ >> + -- --id=@m create mirror name=m0 select-vlan=10 output-vlan=15 >> \ >> + -- set bridge br0 mirrors=@m >> + >> + (If you omit select-vlan=10, then all traffic on any VLAN, except >> + VLAN 15, will be mirrored to VLAN 15. This is possibly confusing >> + because the packets' original VLANs cannot be determined.) >> + >> + To later disable mirroring, run: >> + >> + ovs-vsctl clear bridge br0 mirrors >> + >> + Mirroring to a VLAN can disrupt a network that contains unmanaged >> + switches. See ovs-vswitchd.conf.db(5) for details. Mirroring to a >> + GRE tunnel has fewer caveats than mirroring to a VLAN and should >> + generally be preferred. >> + >> +Q: How do I configure mirroring of all traffic to a GRE tunnel? >> + >> +A: The following commands configure br0 with eth0 and tap0 as trunk >> + ports. All traffic coming in or going out on eth0 or tap0 is also >> + mirrored to gre0, a GRE tunnel to the remote host 192.168.1.10; any >> + traffic arriving on gre0 is dropped: >> + >> + ovs-vsctl add-br br0 >> + ovs-vsctl add-port br0 eth0 >> + ovs-vsctl add-port br0 tap0 >> + ovs-vsctl add-port br0 gre0 \ >> + -- set interface gre0 type=gre options:remote_ip=192.168.1.10 >> \ >> + -- --id=@p get port gre0 \ >> + -- --id=@m create mirror name=m0 select-all=true >> output-port=@p \ >> + -- set bridge br0 mirrors=@m >> + >> + To later disable mirroring and destroy the GRE tunnel: >> + >> + ovs-vsctl clear bridge br0 mirrors >> + ovs-vcstl del-port br0 gre0 >> + >> +Q: Does Open vSwitch support ERSPAN? >> + >> +A: No. ERSPAN is an undocumented proprietary protocol. As an >> + alternative, Open vSwitch supports mirroring to a GRE tunnel (see >> + above). >> + >> + >> Configuration Problems >> ---------------------- >> >> -- >> 1.7.2.5 >> >> _______________________________________________ >> dev mailing list >> dev@openvswitch.org >> http://openvswitch.org/mailman/listinfo/dev >> > >
_______________________________________________ dev mailing list dev@openvswitch.org http://openvswitch.org/mailman/listinfo/dev
