Description of problem:

One of our customers is running RHOSP 16.1 ML2/OVN deployment with DVR and faces communication problems when two VMs from same tenant network are using Floatig IPs to communicate with each other. This case is a bit special for the following reasons:

- one of VMs (client) should have used floating IP attached to its port. But in reality we can see that server sees SNAT source IP from client side instead of VM's FIP
- second VM (server) is using Fixed IP and FIP addresses from detached port to server client's requests
- from VM's perspective we can see that TCP connection is established, client is able to trasfer initial request and get TCP ack from server, server is able to transfer some data in return, but client's TCP acks can't reach the server.

We have collected some tcpdumps to understand this issue better and it looks like this problem is caused by asymmetric traffic and inconsistent processing of affected TCP flow by stateful firewall.

I will provide more information about IP addresses and data we have privately.