Re: [pve-devel] openvswitch 2.5 (lts) has been released !

> >>But isn't it impossible to use kernel based connection tracking > >>when you do the whole networking in user space? Or will they > >>re-implement the whole thing in user space? > > They are a discussion about dpdk and ovs firewall conntrack in userspace here > > http://openvswitch.org/pipe

Re: [pve-devel] openvswitch 2.5 (lts) has been released !

h.org/pipermail/discuss/2016-February/020184.html and a not yet finished repo here: https://github.com/ddiproietto/ovs/tree/userconntrack_20151115 - Mail original - De: "dietmar" À: "aderumier" Cc: "pve-devel" Envoyé: Vendredi 4 Mars 2016 16:48:11

Re: [pve-devel] openvswitch 2.5 (lts) has been released !

> > But if dpdk works fine, it's not possible to use iptables. > >>I assume conntrack is also missing with dpdk? > > Yes, It's also planned for a future ovs release. But isn't it impossible to use kernel based connection tracking when you do the whole networking in user space? Or will they re-im

Re: [pve-devel] openvswitch 2.5 (lts) has been released !

ndredi 4 Mars 2016 09:07:44 Objet: Re: [pve-devel] openvswitch 2.5 (lts) has been released ! > But if dpdk works fine, it's not possible to use iptables. I assume conntrack is also missing with dpdk? ___ pve-devel mailing list pve-devel@pve.proxmo

Re: [pve-devel] openvswitch 2.5 (lts) has been released !

> But if dpdk works fine, it's not possible to use iptables. I assume conntrack is also missing with dpdk? ___ pve-devel mailing list pve-devel@pve.proxmox.com http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel

Re: [pve-devel] openvswitch 2.5 (lts) has been released !

redi 4 Mars 2016 07:45:43 Objet: Re: [pve-devel] openvswitch 2.5 (lts) has been released ! > > ovs 2.5 support conntrack and openstack have commited their ovs firewall > > (no > > iptables, no bridge on top of ovs) > > Oh, that is based on openflow - means we would need

Re: [pve-devel] openvswitch 2.5 (lts) has been released !

> > ovs 2.5 support conntrack and openstack have commited their ovs firewall (no > > iptables, no bridge on top of ovs) > > Oh, that is based on openflow - means we would need to > have 2 totally different firewall implementations? And I still wonder it it would be possible to add NF_HOOKS to tu

Re: [pve-devel] openvswitch 2.5 (lts) has been released !

r" À: "aderumier" , "pve-devel" Envoyé: Vendredi 4 Mars 2016 06:32:54 Objet: Re: [pve-devel] openvswitch 2.5 (lts) has been released ! > ovs 2.5 support conntrack and openstack have commited their ovs firewall (no > iptables, no bridge on top of ovs) Oh, th

Re: [pve-devel] openvswitch 2.5 (lts) has been released !

> ovs 2.5 support conntrack and openstack have commited their ovs firewall (no > iptables, no bridge on top of ovs) Oh, that is based on openflow - means we would need to have 2 totally different firewall implementations? ___ pve-devel mailing list pve

Re: [pve-devel] openvswitch 2.5 (lts) has been released !

> ovs 2.5 support conntrack and openstack have commited their ovs firewall (no > iptables, no bridge on top of ovs) Yes, that would be an interesting optimization. I guess we can get rid of the additional bridge? If so, can we do the same for linux bridge? __

Re: [pve-devel] openvswitch 2.5 (lts) has been released !

ot; Envoyé: Jeudi 3 Mars 2016 16:40:10 Objet: [pve-devel] openvswitch 2.5 (lts) has been released ! http://openvswitch.org/releases/NEWS-2.5.0 I'll try to test it soon, I was waiting for it to test DPDK and vhost-user ___ pve-deve

[pve-devel] openvswitch 2.5 (lts) has been released !

http://openvswitch.org/releases/NEWS-2.5.0 I'll try to test it soon, I was waiting for it to test DPDK and vhost-user ___ pve-devel mailing list pve-devel@pve.proxmox.com http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel