Bug 1042372

Summary: [RFE][nova]: Make hairpin behavior for a VIF configurable
Product: Red Hat OpenStack Reporter: RHOS Integration <rhos-integ>
Component: RFEsAssignee: RHOS Maint <rhos-maint>
Status: CLOSED UPSTREAM QA Contact: Ami Jeain <ajeain>
Severity: unspecified Docs Contact:
Priority: low    
Version: unspecifiedCC: markmc, ndipanov, sgordon, yeylon
Target Milestone: ---Keywords: FutureFeature, Triaged
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
URL: https://blueprints.launchpad.net/nova/+spec/nova-hairpin-vif-attribute
Whiteboard: upstream_milestone_none upstream_status_blocked upstream_definition_obsolete
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-03-19 17:17:22 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 1042638    

Description RHOS Integration 2013-12-12 21:55:53 UTC 
Cloned from launchpad blueprint https://blueprints.launchpad.net/nova/+spec/nova-hairpin-vif-attribute.

Description:

Nova's libvirt driver currently enables hairpinning, which breaks IPv6. Nova's firewall drivers create rules to prevent IPv6 traffic from hairpinning, but when using Neutron for firewalling/security groups the packets return to the instance and break IPv6. Neutron should pass in an attribute for the VIF when hairpinning needs to be enabled for an interface. This means that when Neutron is being used, Libvirt should not enable hairpinning by default.

This blueprint is the result of a discussion that disables hairpinning in Nova's libvirt driver.

https://review.openstack.org/#/c/56381/

A blueprint has been registered on the Neutron side to return a VIF attribute that Nova will use.

https://blueprints.launchpad.net/neutron/+spec/vif-attribute-for-hairpinning

Specification URL (additional information):

None