ml2/ovs with iptables hybrid driver implement stateless security groups. The security groups API has already been enhanced with the new attribute. This RFE is to implement stateless security groups with the ovn mechanism driver.
TM was updated as agreed with PM.
*** Bug 1905118 has been marked as a duplicate of this bug. ***
Dear @Gurpreet, this feature makes OVN skip ct_* actions for stateless ACLs, with no new actions involved. As long as OVS-DPDK is able to work with regular (stateful) ACLs, I don't see a reason for it to not work with stateless. Unless I'm missing something.
If we document neutron API in OSP docs then the API documentation should be updated to mention the new attribute. I believe it's the first driver that gets official support for the API in OSP.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Release of components for Red Hat OpenStack Platform 17.1 (Wallaby)), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2023:4577
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days