Bug 2160481

Summary: [RFE] ovn-bgp-agent does not support FIP port forwarding yet
Product: Red Hat OpenStack Reporter: Eduardo Olivares <eolivare>
Component: ovn-bgp-agentAssignee: OSP Team <rhos-maint>
Status: CLOSED MIGRATED QA Contact: Candido Campos <ccamposr>
Severity: high Docs Contact:
Priority: unspecified    
Version: 17.1 (Wallaby)CC: ccamposr, dalvarez, gregraka, jlibosva, lmartins, ltomasbo, pasik, rhos-maint
Target Milestone: z2Keywords: FutureFeature, RFE
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Known Issue
Doc Text:
In RHOSP 17.1 environments that use BGP dynamic routing, there is currently a known issue where floating IP (FIP) port forwarding fails. + When FIP port forwarding is configured, packets sent to a specific destination port with a destination IP that equals the FIP are redirected to an internal IP from a RHOSP Networking service (neutron) port. This occurs regardless of the protocol that is used: TCP, UDP, and so on. + When BGP dynamic routing is configured, the routes to the FIPs used to perform FIP port forwarding are not exposed, and these packets cannot reach their final destinations. + *Workaround:* Currently, there is no workaround.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2024-12-10 20:07:58 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Eduardo Olivares 2023-01-12 14:58:12 UTC 
Description of problem:
https://blueprints.launchpad.net/neutron/+spec/port-forwarding

There are some tests in neutron-tempest-plugin covering the FIP port forwarding feature. They can be found in this link:
https://github.com/openstack/neutron-tempest-plugin/blob/master/neutron_tempest_plugin/scenario/test_port_forwardings.py

Those tests fail when they are executed on an OSP environment with BGP configured because the routes to the FIPs are not exposed by the ovn-bgp-agent. When this feature is used, the FIPs are not directly connected to a tenant port. Instead, the traffic towards these FIPs is forwarded to a certain tenant port IP depending on the list of ports configured to perform the port forwarding.


Version-Release number of selected component (if applicable):
RHOS-17.1-RHEL-9-20221130.n.1
ovn-bgp-agent-0.3.1-1.20221117171123.5388639.el9ost.noarch


How reproducible:
100%

Steps to Reproduce:
run any test from the mentioned neutron-tempest-plugin module

Actual results:
there is no connectivity


Expected results:
there should be connectivity
Comment 13 Red Hat Bugzilla 2025-04-10 04:25:05 UTC 
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days