2160481 – [RFE] ovn-bgp-agent does not support FIP port forwarding yet

Bug 2160481 - [RFE] ovn-bgp-agent does not support FIP port forwarding yet [NEEDINFO]

Summary: [RFE] ovn-bgp-agent does not support FIP port forwarding yet

Keywords:
Status:	NEW
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	ovn-bgp-agent
Sub Component:
Version:	17.1 (Wallaby)
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	high
Target Milestone:	z2
Target Release:	---
Assignee:	OSP Team
QA Contact:	Candido Campos
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2023-01-12 14:58 UTC by Eduardo Olivares
Modified:	2024-02-19 21:57 UTC (History)
CC List:	7 users (show)
Fixed In Version:
Doc Type:	Known Issue
Doc Text:	In RHOSP 17.1 environments that use BGP dynamic routing, there is currently a known issue where floating IP (FIP) port forwarding fails. + When FIP port forwarding is configured, packets sent to a specific destination port with a destination IP that equals the FIP are redirected to an internal IP from a RHOSP Networking service (neutron) port. This occurs regardless of the protocol that is used: TCP, UDP, and so on. + When BGP dynamic routing is configured, the routes to the FIPs used to perform FIP port forwarding are not exposed, and these packets cannot reach their final destinations. + Workaround: Currently, there is no workaround.
Clone Of:
Environment:
Last Closed:
Target Upstream Version:
Embargoed:
Flags:	ifrangs: needinfo? (rhos-maint)

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	OSP-21358	0	None	None	None	2023-01-12 15:00:53 UTC

Description Eduardo Olivares 2023-01-12 14:58:12 UTC

Description of problem:
https://blueprints.launchpad.net/neutron/+spec/port-forwarding

There are some tests in neutron-tempest-plugin covering the FIP port forwarding feature. They can be found in this link:
https://github.com/openstack/neutron-tempest-plugin/blob/master/neutron_tempest_plugin/scenario/test_port_forwardings.py

Those tests fail when they are executed on an OSP environment with BGP configured because the routes to the FIPs are not exposed by the ovn-bgp-agent. When this feature is used, the FIPs are not directly connected to a tenant port. Instead, the traffic towards these FIPs is forwarded to a certain tenant port IP depending on the list of ports configured to perform the port forwarding.


Version-Release number of selected component (if applicable):
RHOS-17.1-RHEL-9-20221130.n.1
ovn-bgp-agent-0.3.1-1.20221117171123.5388639.el9ost.noarch


How reproducible:
100%

Steps to Reproduce:
run any test from the mentioned neutron-tempest-plugin module

Actual results:
there is no connectivity


Expected results:
there should be connectivity

Note You need to log in before you can comment on or make changes to this bug.