Bug 1007158

Summary: OVS flow rules should strip vlan for tunnel data
Product: Red Hat OpenStack Reporter: Bob Kukura <rkukura>
Component: openstack-neutronAssignee: Bob Kukura <rkukura>
Status: CLOSED ERRATA QA Contact: Ofer Blaut <oblaut>
Severity: urgent Docs Contact:
Priority: urgent    
Version: 3.0CC: acathrow, chrisw, dmaley, hateya, lhh, lpeer, pep, rkukura, sputhenp, yeylon
Target Milestone: betaKeywords: ZStream
Target Release: 4.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: openstack-neutron-openvswitch-2013.2-0.3.2.b3 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 1017414 (view as bug list) Environment:
Last Closed: 2013-12-20 00:24:15 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1017414    
Attachments:
Description Flags
GRE traffic between hosts none

Description Bob Kukura 2013-09-12 03:22:44 UTC 
Description of problem:

GRE tunnel payloads in grizzly contain the local VLAN tag used on the sending side's integration bridge. This serves no purpose, wastes bandwidth, exacerbates MTU issues, and slows processing in the kernel. It can easily be addressed by adding a strip_vlan action to the set_tunnel flow rule.

Note that the flow rules have changed substantially in havana, and include the strip_vlan action. Grizzly needs its own fix rather than a back-port from havana.

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1. configure multi-node setup with GRE tenant networks
2. ping one VM from another on a different node
3. use tcpdump to inspect the GRE packets

Actual results:

The GRE payloads contain unneeded 802.1Q headers.


Expected results:

No 802.1Q header in GRE payloads.


Additional info:
Comment 2 Perry Myers 2013-09-12 14:50:25 UTC 
We need to consider this for rhos 3.0.z as well, since current users are hitting these performance issues.  Flagging for 3.0.z
Comment 6 Bob Kukura 2013-11-19 14:56:24 UTC 
The upstream havana openswitch-agent code has significantly reworked the OVS flow rules, and one result is that the VLAN tags are now stripped from tunnel payloads. This can be verified by looking at the rules with ovs-ofctl or looking at the tunnel traffic with tcpdump.
Comment 7 Ofer Blaut 2013-11-24 06:30:46 UTC 
Created attachment 828224 [details]
GRE traffic between hosts
Comment 8 Ofer Blaut 2013-11-24 06:32:52 UTC 
Few weeks ago I have checked  GRE traffic between hosts & router no VLAN have been seen , attached capture
Comment 11 errata-xmlrpc 2013-12-20 00:24:15 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHEA-2013-1859.html