Make sure iptables is aware of the GRE tunneling.
http://openvswitch.org/cgi-bin/ovsman.cgi?page=utilities/ovs-ctl.8#The
‘‘enable−protocol’’ command
Joe
On Jan 7, 2014, at 9:39 PM, Li, Chen <chen...@intel.com> wrote:
> Hi list,
>
> I'm working under Centos 6.4 + Openvswitch 1.11.0_8ce28d-1.el6ost +
> Openstack Havana.
>
> While, I have two nodes.
> One is compute node, with an active instance, and the instance keep send out
> DHCP request out, try to get an IP address.
> Another is network node, it will start dnsmasq process.
> Instance should get IP from the dnsmasq process in theory.
> But unfortunately, this operation failed.
>
> In the network node’s physical NIC port, using tcpdump command, I can get:
> 10:11:11.416293 IP 192.101.11.101 > 192.101.11.201: GREv0, key=0x1,
> length 350: IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request
> from fa:16:3e:06:49:b1 (oui Unknown), length 300
> 10:11:11.416347 IP 192.101.11.201 > 192.101.11.101: ICMP host
> 192.101.11.201 unreachable - admin prohibited, length 378
>
> And I can’t get anything from “ovs-dpctl dump-flows”.
> Not sure if I just missed all of them or they really not received by ovs.
>
> Looks like the DHCP request can’t be processed at the network node.
> Because dhcp agent actually just create an interface on ovs bridge br-int,
> and start dnsmasq based on that port, they’re much behind.
> So, I think this might not related to dhcp agent (openstack) .
>
> Anyone have any ideas about why this happened ??
>
> Thanks.
> -chen
>
>
> Configuration on Network Node:
>
> ovs-vsctl show
> 34e0c8b4-315c-42c5-9d7d-183d3a6fbd83
> Bridge br-int
> Port br-int
> Interface br-int
> type: internal
> Port patch-tun
> Interface patch-tun
> type: patch
> options: {peer=patch-int}
> Port "tap0b4cf11c-29"
> tag: 2
> Interface "tap0b4cf11c-29"
> Port "tap45bfc42b-93"
> tag: 1
> Interface "tap45bfc42b-93"
> Bridge br-tun
> Port "vxlan-192.101.11.102"
> Interface "vxlan-192.101.11.102"
> type: vxlan
> options: {dst_port="8472", in_key=flow,
> local_ip="192.101.11.201", out_key=flow, remote_ip="192.101.11.102"}
> Port br-tun
> Interface br-tun
> type: internal
> Port "vxlan-192.101.11.101"
> Interface "vxlan-192.101.11.101"
> type: vxlan
> options: {dst_port="8472", in_key=flow,
> local_ip="192.101.11.201", out_key=flow, remote_ip="192.101.11.101"}
> Port "gre-192.101.11.102"
> Interface "gre-192.101.11.102"
> type: gre
> options: {in_key=flow, local_ip="192.101.11.201",
> out_key=flow, remote_ip="192.101.11.102"}
> Port patch-int
> Interface patch-int
> type: patch
> options: {peer=patch-tun}
> Port "gre-192.101.11.101"
> Interface "gre-192.101.11.101"
> type: gre
> options: {in_key=flow, local_ip="192.101.11.201",
> out_key=flow, remote_ip="192.101.11.101"}
>
> ovs-ofctl dump-flows br-int
> NXST_FLOW reply (xid=0x4):
> cookie=0x0, duration=2305.835s, table=0, n_packets=2, n_bytes=160,
> idle_age=2302, priority=2,in_port=6 actions=drop
> cookie=0x0, duration=2305.517s, table=0, n_packets=1, n_bytes=70,
> idle_age=2302, priority=2,in_port=5 actions=drop
> cookie=0x0, duration=2319.056s, table=0, n_packets=99, n_bytes=10554,
> idle_age=23, priority=1 actions=NORMAL
> (But, port 5 & 6 do not exist)
> ovs-vsctl get Interface br-int ofport
> 65534
> ovs-vsctl get Interface patch-tun ofport
> 2
> ovs-vsctl get Interface tap0b4cf11c-29 ofport
> 4
> ovs-vsctl get Interface tap45bfc42b-93 ofport
> 1
>
> ovs-ofctl dump-flows br-tun (I don’t really understand what these rules
> means….. L)
>
> NXST_FLOW reply (xid=0x4):
> cookie=0x0, duration=2463.775s, table=0, n_packets=0, n_bytes=0,
> idle_age=2463, priority=1,in_port=3 actions=resubmit(,3)
> cookie=0x0, duration=2460.413s, table=0, n_packets=0, n_bytes=0,
> idle_age=2460, priority=1,in_port=7 actions=resubmit(,3)
> cookie=0x0, duration=2459.222s, table=0, n_packets=0, n_bytes=0,
> idle_age=2459, priority=1,in_port=8 actions=resubmit(,2)
> cookie=0x0, duration=2456.564s, table=0, n_packets=0, n_bytes=0,
> idle_age=2456, priority=1,in_port=11 actions=resubmit(,2)
> cookie=0x0, duration=2466.384s, table=0, n_packets=49, n_bytes=5090,
> idle_age=177, priority=1,in_port=1 actions=resubmit(,1)
> cookie=0x0, duration=2458.316s, table=0, n_packets=0, n_bytes=0,
> idle_age=2458, priority=1,in_port=9 actions=resubmit(,2)
> cookie=0x0, duration=2457.436s, table=0, n_packets=0, n_bytes=0,
> idle_age=2457, priority=1,in_port=10 actions=resubmit(,2)
> cookie=0x0, duration=2462.082s, table=0, n_packets=0, n_bytes=0,
> idle_age=2462, priority=1,in_port=5 actions=resubmit(,3)
> cookie=0x0, duration=2461.216s, table=0, n_packets=0, n_bytes=0,
> idle_age=2461, priority=1,in_port=6 actions=resubmit(,3)
> cookie=0x0, duration=2464.603s, table=0, n_packets=50, n_bytes=5464,
> idle_age=172, priority=1,in_port=2 actions=resubmit(,3)
> cookie=0x0, duration=2462.945s, table=0, n_packets=0, n_bytes=0,
> idle_age=2462, priority=1,in_port=4 actions=resubmit(,3)
> cookie=0x0, duration=2466.288s, table=0, n_packets=4, n_bytes=300,
> idle_age=2457, priority=0 actions=drop
> cookie=0x0, duration=2466.201s, table=1, n_packets=40, n_bytes=4384,
> idle_age=177, priority=0,dl_dst=00:00:00:00:00:00/01:00:00:00:00:00
> actions=resubmit(,20)
> cookie=0x0, duration=2466.114s, table=1, n_packets=9, n_bytes=706,
> idle_age=2454, priority=0,dl_dst=01:00:00:00:00:00/01:00:00:00:00:00
> actions=resubmit(,21)
> cookie=0x0, duration=2460.981s, table=2, n_packets=0, n_bytes=0,
> idle_age=2460, priority=1,tun_id=0x1 actions=mod_vlan_vid:1,resubmit(,10)
> cookie=0x0, duration=2466.025s, table=2, n_packets=0, n_bytes=0,
> idle_age=2466, priority=0 actions=drop
> cookie=0x0, duration=2460.836s, table=3, n_packets=50, n_bytes=5464,
> idle_age=172, priority=1,tun_id=0x3 actions=mod_vlan_vid:2,resubmit(,10)
> cookie=0x0, duration=2465.928s, table=3, n_packets=0, n_bytes=0,
> idle_age=2465, priority=0 actions=drop
> cookie=0x0, duration=2465.841s, table=10, n_packets=50, n_bytes=5464,
> idle_age=172, priority=1
> actions=learn(table=20,hard_timeout=300,priority=1,NXM_OF_VLAN_TCI[0..11],NXM_OF_ETH_DST[]=NXM_OF_ETH_SRC[],load:0->NXM_OF_VLAN_TCI[],load:NXM_NX_TUN_ID[]->NXM_NX_TUN_ID[],output:NXM_OF_IN_PORT[]),output:1
> cookie=0x0, duration=183.629s, table=20, n_packets=40, n_bytes=4384,
> hard_timeout=300, idle_age=177, hard_age=171,
> priority=1,vlan_tci=0x0002/0x0fff,dl_dst=fa:16:3e:25:a8:02
> actions=load:0->NXM_OF_VLAN_TCI[],load:0x3->NXM_NX_TUN_ID[],output:2
> cookie=0x0, duration=2465.755s, table=20, n_packets=0, n_bytes=0,
> idle_age=2465, priority=0 actions=resubmit(,21)
> cookie=0x0, duration=2460.923s, table=21, n_packets=0, n_bytes=0,
> idle_age=2460, priority=1,dl_vlan=2
> actions=strip_vlan,set_tunnel:0x3,output:4,output:5,output:7,output:3,output:2,output:6
> cookie=0x0, duration=2459.122s, table=21, n_packets=0, n_bytes=0,
> idle_age=2459, hard_age=2456, priority=1,dl_vlan=1
> actions=strip_vlan,set_tunnel:0x1,output:11,output:9,output:8,output:10
> cookie=0x0, duration=2465.662s, table=21, n_packets=9, n_bytes=706,
> idle_age=2454, priority=0 actions=drop
>
> ovs-vsctl get Interface "vxlan-192.101.11.102" ofport
> 3
> ovs-vsctl get Interface br-tun ofport
> 65534
> ovs-vsctl get Interface "vxlan-192.101.11.101" ofport
> 2
> ovs-vsctl get Interface "gre-192.101.11.102" ofport
> 9
> ovs-vsctl get Interface patch-int ofport
> 1
> ovs-vsctl get Interface "gre-192.101.11.101" ofport
> 8
>
> ovs-dpctl show
> ystem@ovs-system:
> lookups: hit:2112 missed:5510 lost:0
> flows: 0
> port 0: ovs-system (internal)
> port 1: br-int (internal)
> port 2: br-tun (internal)
> port 3: tap45bfc42b-93
> port 4: vxlan_sys_8472 (vxlan: df_default=false, ttl=0)
> port 6: tap0b4cf11c-29
> port 8: gre_system (gre: df_default=false, ttl=0)
>
>
>
> _______________________________________________
> discuss mailing list
> discuss@openvswitch.org
> http://openvswitch.org/mailman/listinfo/discuss
_______________________________________________
discuss mailing list
discuss@openvswitch.org
http://openvswitch.org/mailman/listinfo/discuss
