Hi, If you're still seeing the packet loss issue in a production environment, I suggest you to do the following - On the compute node where the packet loss is seen, save the ovs flows in a file - "ovs-ofctl dump-flows br-int > before_recompute.txt" - then run the command - "ovn-appctl -t ovn-controller recompute" - Save the ovs flows again in a file and do a diff between them. - And see if you still see the packet issue.
Running the recompute command in a production cluster is fine. As this command triggers a full recomputation of OF flow generation and installs any missing flows in ovs-vswitchd. Thanks Numan On Fri, Dec 3, 2021 at 12:56 PM Christian Stelter <[email protected]> wrote: > > Hi! > > First: we couldn't reproduce the problem on our stage env yet. We tried a mix > of Phoronix Test Suite, Ciscos TRex traffic simulator and the etcd setup. I'm > not sure how to share the 200 lines flow properly. I will try to send it as > an text file attachment. Hopefully it will not be stripped. > > So here is the default security group in the project with the etcd setup. > > --- cut --- > "rules": [ > { > "id": "047325dc-30a8-4257-a99f-a4829a9ef233", > "tenant_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa", > "security_group_id": "53ddbee9-d1f2-4586-b471-76b4923c4ec0", > "ethertype": "IPv6", > "direction": "egress", > "protocol": null, > "port_range_min": null, > "port_range_max": null, > "remote_ip_prefix": null, > "remote_group_id": null, > "description": null, > "tags": [], > "created_at": "2021-11-23T14:05:41Z", > "updated_at": "2021-11-23T14:05:41Z", > "revision_number": 0, > "project_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa" > }, > { > "id": "05401a2a-8e0c-4a5a-b180-18708b4f013f", > "tenant_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa", > "security_group_id": "53ddbee9-d1f2-4586-b471-76b4923c4ec0", > "ethertype": "IPv4", > "direction": "egress", > "protocol": null, > "port_range_min": null, > "port_range_max": null, > "remote_ip_prefix": null, > "remote_group_id": null, > "description": null, > "tags": [], > "created_at": "2021-11-23T14:05:41Z", > "updated_at": "2021-11-23T14:05:41Z", > "revision_number": 0, > "project_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa" > }, > { > "id": "1d7e67ac-0dfb-40f6-af40-c70964f06d85", > "tenant_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa", > "security_group_id": "53ddbee9-d1f2-4586-b471-76b4923c4ec0", > "ethertype": "IPv4", > "direction": "ingress", > "protocol": "icmp", > "port_range_min": null, > "port_range_max": null, > "remote_ip_prefix": "0.0.0.0/0", > "remote_group_id": null, > "description": "", > "tags": [], > "created_at": "2021-11-23T14:05:58Z", > "updated_at": "2021-11-23T14:05:58Z", > "revision_number": 0, > "project_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa" > }, > { > "id": "35c132bc-5807-47a0-a700-3142897dc184", > "tenant_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa", > "security_group_id": "53ddbee9-d1f2-4586-b471-76b4923c4ec0", > "ethertype": "IPv6", > "direction": "ingress", > "protocol": null, > "port_range_min": null, > "port_range_max": null, > "remote_ip_prefix": null, > "remote_group_id": "53ddbee9-d1f2-4586-b471-76b4923c4ec0", > "description": null, > "tags": [], > "created_at": "2021-11-23T14:05:41Z", > "updated_at": "2021-11-23T14:05:41Z", > "revision_number": 0, > "project_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa" > }, > { > "id": "582d622e-6990-4ea9-a36b-b67c79a55fd3", > "tenant_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa", > "security_group_id": "53ddbee9-d1f2-4586-b471-76b4923c4ec0", > "ethertype": "IPv4", > "direction": "ingress", > "protocol": "tcp", > "port_range_min": 22, > "port_range_max": 22, > "remote_ip_prefix": "0.0.0.0/0", > "remote_group_id": null, > "description": "", > "tags": [], > "created_at": "2021-11-23T14:05:55Z", > "updated_at": "2021-11-23T14:05:55Z", > "revision_number": 0, > "project_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa" > }, > { > "id": "5b8ea15f-d9e5-4f55-a173-b9f6aae791fb", > "tenant_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa", > "security_group_id": "53ddbee9-d1f2-4586-b471-76b4923c4ec0", > "ethertype": "IPv4", > "direction": "ingress", > "protocol": null, > "port_range_min": null, > "port_range_max": null, > "remote_ip_prefix": null, > "remote_group_id": "53ddbee9-d1f2-4586-b471-76b4923c4ec0", > "description": null, > "tags": [], > "created_at": "2021-11-23T14:05:41Z", > "updated_at": "2021-11-23T14:05:41Z", > "revision_number": 0, > "project_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa" > }, > { > "id": "af17a560-4d0f-4341-aa8a-b98797cbd1af", > "tenant_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa", > "security_group_id": "53ddbee9-d1f2-4586-b471-76b4923c4ec0", > "ethertype": "IPv4", > "direction": "egress", > "protocol": "icmp", > "port_range_min": null, > "port_range_max": null, > "remote_ip_prefix": "0.0.0.0/0", > "remote_group_id": null, > "description": "", > "tags": [], > "created_at": "2021-11-23T14:06:01Z", > "updated_at": "2021-11-23T14:06:01Z", > "revision_number": 0, > "project_id": "fc1345e8baaf46aaba4a8c5a8b9f14fa" > } > --- cut --- > > and this is the flow as requested. > > May be I should mention that the etcd cluster is only communicating via tcp > on ports 2379/2380 from node to node within its network. Not to the outside > world. > > I hope this gives a little more insight. I'm new openvswitch and OVN. So if I > did miss any important detail I should add, please let me know. > > Kind regards, > > Christian Stelter > _______________________________________________ > discuss mailing list > [email protected] > https://mail.openvswitch.org/mailman/listinfo/ovs-discuss _______________________________________________ discuss mailing list [email protected] https://mail.openvswitch.org/mailman/listinfo/ovs-discuss
