HI all! I use RHEL 7 and Libery. Faced with the following problem - there is no traffic in tunnels and with strange rules:
# ovs-ofctl dump-flows br-tun
NXST_FLOW reply (xid=0x4):
cookie=0x886283bb69f40f1a, duration=2442.899s, table=0, n_packets=27, n_bytes=2154, idle_age=2430, priority=1,in_port=1 actions=resubmit(,2)
cookie=0x886283bb69f40f1a, duration=2442.378s, table=0, n_packets=0, n_bytes=0, idle_age=2442, priority=1,in_port=2 actions=resubmit(,4)
cookie=0x886283bb69f40f1a, duration=2442.261s, table=0, n_packets=0, n_bytes=0, idle_age=2442, priority=1,in_port=5 actions=resubmit(,3)
cookie=0x886283bb69f40f1a, duration=2442.248s, table=0, n_packets=0, n_bytes=0, idle_age=2442, priority=1,in_port=6 actions=resubmit(,3)
cookie=0x886283bb69f40f1a, duration=2442.234s, table=0, n_packets=0, n_bytes=0, idle_age=2442, priority=1,in_port=7 actions=resubmit(,3)
cookie=0x886283bb69f40f1a, duration=2417.158s, table=0, n_packets=0, n_bytes=0, idle_age=2417, priority=1,in_port=3 actions=resubmit(,4)
cookie=0x886283bb69f40f1a, duration=2417.010s, table=0, n_packets=0, n_bytes=0, idle_age=2417, priority=1,in_port=8 actions=resubmit(,3)
cookie=0x886283bb69f40f1a, duration=2397.312s, table=0, n_packets=0, n_bytes=0, idle_age=2397, priority=1,in_port=4 actions=resubmit(,4)
cookie=0x886283bb69f40f1a, duration=2397.162s, table=0, n_packets=0, n_bytes=0, idle_age=2397, priority=1,in_port=9 actions=resubmit(,3)
cookie=0x886283bb69f40f1a, duration=2442.899s, table=0, n_packets=0, n_bytes=0, idle_age=2442, priority=0 actions=drop
cookie=0x886283bb69f40f1a, duration=2442.898s, table=2, n_packets=0, n_bytes=0, idle_age=2442, priority=0,dl_dst=00:00:00:00:00:00/01:00:00:00:00:00 actions=resubmit(,20)
cookie=0x886283bb69f40f1a, duration=2442.898s, table=2, n_packets=27, n_bytes=2154, idle_age=2430, priority=0,dl_dst=01:00:00:00:00:00/01:00:00:00:00:00 actions=resubmit(,22)
cookie=0x886283bb69f40f1a, duration=2442.898s, table=3, n_packets=0, n_bytes=0, idle_age=2442, priority=0 actions=drop
cookie=0x886283bb69f40f1a, duration=2442.898s, table=4, n_packets=0, n_bytes=0, idle_age=2442, priority=0 actions=drop
cookie=0x886283bb69f40f1a, duration=2442.897s, table=6, n_packets=0, n_bytes=0, idle_age=2442, priority=0 actions=drop
cookie=0x886283bb69f40f1a, duration=2442.897s, table=10, n_packets=0, n_bytes=0, idle_age=2442, priority=1 actions=learn(table=20,hard_timeout=300,priority=1,cookie=0x886283bb69f40f1a,NXM_OF_VLAN_TCI[0..11],NXM_OF_ETH_DST[]=NXM_OF_ETH_SRC[],load:0->NXM_OF_VLAN_TCI[],load:NXM_NX_TUN_ID[]->NXM_NX_TUN_ID[],output:NXM_OF_IN_PORT[]),output:1
cookie=0x886283bb69f40f1a, duration=2442.897s, table=20, n_packets=0, n_bytes=0, idle_age=2442, priority=0 actions=resubmit(,22)
cookie=0x886283bb69f40f1a, duration=2442.798s, table=22, n_packets=27, n_bytes=2154, idle_age=2430, priority=0 actions=drop
All tunnels up:
# ovs-vsctl show
706cd420-35a9-46fc-aa0e-6d02e18e1301
Bridge br-tun
fail_mode: secure
Port "gre-0a000a04"
Interface "gre-0a000a04"
type: gre
options: {df_default="true", in_key=flow, local_ip="10.0.10.5", out_key=flow, remote_ip="10.0.10.4"}
Port "gre-0a001403"
Interface "gre-0a001403"
type: gre
options: {df_default="true", in_key=flow, local_ip="10.0.10.5", out_key=flow, remote_ip="10.0.20.3"}
Port "vxlan-0a001401"
Interface "vxlan-0a001401"
type: vxlan
options: {df_default="true", in_key=flow, local_ip="10.0.10.5", out_key=flow, remote_ip="10.0.20.1"}
Port patch-int
Interface patch-int
type: patch
options: {peer=patch-tun}
Port "vxlan-0a001403"
Interface "vxlan-0a001403"
type: vxlan
options: {df_default="true", in_key=flow, local_ip="10.0.10.5", out_key=flow, remote_ip="10.0.20.3"}
Port "gre-0a001401"
Interface "gre-0a001401"
type: gre
options: {df_default="true", in_key=flow, local_ip="10.0.10.5", out_key=flow, remote_ip="10.0.20.1"}
Port br-tun
Interface br-tun
type: internal
Port "vxlan-0a000a01"
Interface "vxlan-0a000a01"
type: vxlan
options: {df_default="true", in_key=flow, local_ip="10.0.10.5", out_key=flow, remote_ip="10.0.10.1"}
Port "gre-0a000a01"
Interface "gre-0a000a01"
type: gre
options: {df_default="true", in_key=flow, local_ip="10.0.10.5", out_key=flow, remote_ip="10.0.10.1"}
Port "gre-0a000a02"
Interface "gre-0a000a02"
type: gre
options: {df_default="true", in_key=flow, local_ip="10.0.10.5", out_key=flow, remote_ip="10.0.10.2"}
Bridge br-vlan
Port phy-br-vlan
Interface phy-br-vlan
type: patch
options: {peer=int-br-vlan}
Port br-vlan
Interface br-vlan
type: internal
Bridge br-int
fail_mode: secure
Port br-int
Interface br-int
type: internal
Port patch-tun
Interface patch-tun
type: patch
options: {peer=patch-int}
Port "qvo169fe75f-75"
tag: 1
Interface "qvo169fe75f-75"
Port "qvobdd5a603-93"
tag: 1
Interface "qvobdd5a603-93"
Port int-br-vlan
Interface int-br-vlan
type: patch
options: {peer=phy-br-vlan}
ovs_version: "2.4.0"
Config ml2:
# egrep -v ^#\|^$ /etc/neutron/plugin.ini
[ml2]
type_drivers = flat,vlan,gre,vxlan
tenant_network_types = vlan,gre,vxlan
mechanism_drivers = openvswitch
[ml2_type_flat]
flat_networks = external
[ml2_type_vlan]
network_vlan_ranges = physnet1:100:299
[ml2_type_gre]
tunnel_id_ranges = 1:1000
[ml2_type_vxlan]
vni_ranges = 65537:69999
[securitygroup]
enable_security_group = True
enable_ipset = True
firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
[ovs]
local_ip = 10.0.20.1
enable_tunneling = True
bridge_mappings = vlan:br-vlan,external:br-ex
integration_bridge = br-int
tunnel_bridge = br-tun
[agent]
tunnel_types = vxlan,gre
may be who know what is may be?
