Red Hat Bugzilla – Bug 1007158
OVS flow rules should strip vlan for tunnel data
Last modified: 2018-02-08 05:06:20 EST
Description of problem:
GRE tunnel payloads in grizzly contain the local VLAN tag used on the sending side's integration bridge. This serves no purpose, wastes bandwidth, exacerbates MTU issues, and slows processing in the kernel. It can easily be addressed by adding a strip_vlan action to the set_tunnel flow rule.
Note that the flow rules have changed substantially in havana, and include the strip_vlan action. Grizzly needs its own fix rather than a back-port from havana.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. configure multi-node setup with GRE tenant networks
2. ping one VM from another on a different node
3. use tcpdump to inspect the GRE packets
The GRE payloads contain unneeded 802.1Q headers.
No 802.1Q header in GRE payloads.
We need to consider this for rhos 3.0.z as well, since current users are hitting these performance issues. Flagging for 3.0.z
The upstream havana openswitch-agent code has significantly reworked the OVS flow rules, and one result is that the VLAN tags are now stripped from tunnel payloads. This can be verified by looking at the rules with ovs-ofctl or looking at the tunnel traffic with tcpdump.
Created attachment 828224 [details]
GRE traffic between hosts
Few weeks ago I have checked GRE traffic between hosts & router no VLAN have been seen , attached capture
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.