Bug 2168119
| Summary: | mirror doesn't work when remote is ipv6 | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux Fast Datapath | Reporter: | Jianlin Shi <jishi> |
| Component: | ovn22.12 | Assignee: | lorenzo bianconi <lorenzo.bianconi> |
| Status: | CLOSED ERRATA | QA Contact: | Jianlin Shi <jishi> |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | FDP 22.A | CC: | ctrautma, jiji, lorenzo.bianconi |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | ovn22.12-22.12.0-68.el8fdp | Doc Type: | If docs needed, set a value |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2023-07-06 20:05:32 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
ovn23.06 fast-datapath-rhel-8 clone created at https://bugzilla.redhat.com/show_bug.cgi?id=2203016 ovn23.06 fast-datapath-rhel-9 clone created at https://bugzilla.redhat.com/show_bug.cgi?id=2203017 ovn23.03 fast-datapath-rhel-8 clone created at https://bugzilla.redhat.com/show_bug.cgi?id=2203019 ovn23.03 fast-datapath-rhel-9 clone created at https://bugzilla.redhat.com/show_bug.cgi?id=2203020 ovn22.12 fast-datapath-rhel-9 clone created at https://bugzilla.redhat.com/show_bug.cgi?id=2203021 Verified on ovn22.12-22.12.0-68.el8: [root@wsfd-advnetlab16 bz2168119]# rpm -qa | grep -E "openvswitch2.17|ovn22.12" ovn22.12-22.12.0-68.el8fdp.x86_64 openvswitch2.17-2.17.0-98.el8fdp.x86_64 ovn22.12-host-22.12.0-68.el8fdp.x86_64 ovn22.12-central-22.12.0-68.el8fdp.x86_64 [root@wsfd-advnetlab17 ~]# ip addr sh ip6gretap1 10: ip6gretap1@NONE: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1430 qdisc fq_codel state UNKNOWN group d0 link/ether fa:7a:35:4f:7e:0c brd ff:ff:ff:ff:ff:ff inet6 fe80::f87a:35ff:fe4f:7e0c/64 scope link valid_lft forever preferred_lft forever [root@wsfd-advnetlab17 ~]# tcpdump -i ip6gretap1 -nnle -v dropped privs to tcpdump tcpdump: listening on ip6gretap1, link-type EN10MB (Ethernet), snapshot length 262144 bytes 22:12:31.536028 00:00:00:01:01:11 > 33:33:00:00:00:16, ethertype IPv6 (0x86dd), length 110: (hlim 1,] 22:12:31.536029 00:00:00:01:01:11 > 33:33:00:00:00:02, ethertype IPv6 (0x86dd), length 70: (hlim 2556 source link-address option (1), length 8 (1): 00:00:00:01:01:11 22:12:32.239287 00:00:00:01:01:11 > 33:33:00:00:00:16, ethertype IPv6 (0x86dd), length 110: (hlim 1,] 22:12:32.312424 00:00:00:00:00:01 > 00:00:00:01:01:01, ethertype ARP (0x0806), length 42: Ethernet (8 22:12:32.313790 00:00:00:00:00:01 > 00:00:00:01:01:01, ethertype IPv4 (0x0800), length 98: (tos 0x0,) 192.168.2.1 > 192.168.1.1: ICMP echo reply, id 37799, seq 1, length 64 22:12:33.313197 00:00:00:00:00:01 > 00:00:00:01:01:01, ethertype IPv4 (0x0800), length 98: (tos 0x0,) 192.168.2.1 > 192.168.1.1: ICMP echo reply, id 37799, seq 2, length 64 22:12:34.351452 00:00:00:00:00:01 > 00:00:00:01:01:01, ethertype IPv4 (0x0800), length 98: (tos 0x0,) 192.168.2.1 > 192.168.1.1: ICMP echo reply, id 37799, seq 3, length 64 22:12:35.183325 00:00:00:01:01:11 > 33:33:00:00:00:02, ethertype IPv6 (0x86dd), length 70: (hlim 2556 source link-address option (1), length 8 (1): 00:00:00:01:01:11 22:12:35.375430 00:00:00:00:00:01 > 00:00:00:01:01:01, ethertype IPv4 (0x0800), length 98: (tos 0x0,) 192.168.2.1 > 192.168.1.1: ICMP echo reply, id 37799, seq 4, length 64 Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (ovn22.12 bug fix and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2023:3992 |
Description of problem: mirror doesn't work when remote is ipv6 Version-Release number of selected component (if applicable): ovn22.12-22.12.0-20.el8 How reproducible: Always Steps to Reproduce: 1.set ovn systemctl start openvswitch systemctl start ovn-northd ovn-nbctl set-connection ptcp:6641 ovn-sbctl set-connection ptcp:6642 ovs-vsctl set open . external_ids:system-id=hv1 external_ids:ovn-remote=tcp:20.0.204.25:6642 external_ids:ovn-encap-type=geneve external_ids:ovn-encap-ip=20.0.204.25 systemctl restart ovn-controller ovn-nbctl ls-add ls1 ovn-nbctl lsp-add ls1 ls1p1 ovn-nbctl lsp-set-addresses ls1p1 "00:00:00:01:01:01 192.168.1.1 2001::1" ovn-nbctl lsp-add ls1 ls1p2 ovn-nbctl lsp-set-addresses ls1p2 "00:00:00:01:01:02 192.168.1.2 2001::2" ovn-nbctl lsp-add ls1 lp ovn-nbctl lsp-set-type lp localport ovn-nbctl lsp-set-addresses lp "00:00:00:01:01:11 192.168.1.11 2001::11" ovn-nbctl lr-add lr1 ovn-nbctl lrp-add lr1 lr1-ls1 00:00:00:00:00:01 192.168.1.254/24 2001::a/64 ovn-nbctl lsp-add ls1 ls1-lr1 ovn-nbctl lsp-set-addresses ls1-lr1 "00:00:00:00:00:01 192.168.1.254 2001::a" ovn-nbctl lsp-set-type ls1-lr1 router ovn-nbctl lsp-set-options ls1-lr1 router-port=lr1-ls1 ovn-nbctl lrp-add lr1 lr1-ls2 00:00:00:00:00:02 192.168.2.254/24 2002::a/64 ovn-nbctl ls-add ls2 ovn-nbctl lsp-add ls2 ls2-lr1 ovn-nbctl lsp-set-addresses ls2-lr1 "00:00:00:00:00:02 192.168.2.254 2002::a" ovn-nbctl lsp-set-type ls2-lr1 router ovn-nbctl lsp-set-options ls2-lr1 router-port=lr1-ls2 ovn-nbctl lsp-add ls2 ls2p1 ovn-nbctl lsp-set-addresses ls2p1 "00:00:00:01:02:01 192.168.2.1 2002::1" ovn-nbctl lsp-add ls2 ls2p2 ovn-nbctl lsp-set-addresses ls2p2 "00:00:00:01:02:02 192.168.2.2 2002::2" ovs-vsctl add-port br-int ls1p1 -- set interface ls1p1 type=internal external_ids:iface-id=ls1p1 ovs-vsctl add-port br-int lp -- set interface lp type=internal external_ids:iface-id=lp ovs-vsctl add-port br-int ls2p1 -- set interface ls2p1 type=internal external_ids:iface-id=ls2p1 ip netns add ls1p1 ip link set ls1p1 netns ls1p1 ip netns exec ls1p1 ip link set ls1p1 address 00:00:00:01:01:01 ip netns exec ls1p1 ip link set ls1p1 up ip netns exec ls1p1 ip addr add 192.168.1.1/24 dev ls1p1 ip netns exec ls1p1 ip addr add 2001::1/64 dev ls1p1 ip netns exec ls1p1 ip route add default via 192.168.1.254 dev ls1p1 ip netns exec ls1p1 ip -6 route add default via 2001::a dev ls1p1 ip netns add lp ip link set lp netns lp ip netns exec lp ip link set lp address 00:00:00:01:01:11 ip netns exec lp ip link set lp up ip netns exec lp ip addr add 192.168.1.11/24 dev lp ip netns exec lp ip addr add 2001::11/64 dev lp ip netns exec lp ip route add default via 192.168.1.254 dev lp ip netns exec lp ip -6 route add default via 2001::a dev lp ip netns add ls2p1 ip link set ls2p1 netns ls2p1 ip netns exec ls2p1 ip link set ls2p1 address 00:00:00:01:02:01 ip netns exec ls2p1 ip link set ls2p1 up ip netns exec ls2p1 ip addr add 192.168.2.1/24 dev ls2p1 ip netns exec ls2p1 ip addr add 2002::1/64 dev ls2p1 ip netns exec ls2p1 ip route add default via 192.168.2.254 dev ls2p1 ip netns exec ls2p1 ip -6 route add default via 2002::a dev ls2p1 2. create mirror with remote as ipv6 ovn-nbctl mirror-add mirror0 gre 123 to-lport 2000:204::26 ovn-nbctl lsp-attach-mirror ls1p1 mirror0 ovn-nbctl --wait=hv sync 3. create ip6gretap on the other server (2000:204::26) ip link add ip6gretap1 type ip6gretap local 2000:204::26 remote 2000:204::25 key 123 4. send packet on ls1p1 and capture packet on ip6gretap1 Actual results: no packet is capture on ip6gretap1 Expected results: packet should be capture on ip6gretap1 Additional info: [root@wsfd-advnetlab17 mirror]# ip addr sh ens1f0 6: ens1f0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 2000 qdisc mq state UP group default qlen 1000 link/ether 0c:42:a1:08:0a:d2 brd ff:ff:ff:ff:ff:ff inet 20.0.204.25/24 scope global ens1f0 valid_lft forever preferred_lft forever inet6 2000:204::25/64 scope global valid_lft forever preferred_lft forever inet6 fe80::e42:a1ff:fe08:ad2/64 scope link valid_lft forever preferred_lft forever [root@wsfd-advnetlab17 mirror]# rpm -qa | grep -E "openvswitch2.17|ovn22.12" python3-openvswitch2.17-2.17.0-74.el8fdp.x86_64 ovn22.12-central-22.12.0-20.el8fdp.x86_64 ovn22.12-22.12.0-20.el8fdp.x86_64 ovn22.12-host-22.12.0-20.el8fdp.x86_64 openvswitch2.17-2.17.0-74.el8fdp.x86_64 [root@wsfd-advnetlab17 mirror]# tcpdump -i ens1f0 -nnle -v ip6 dropped privs to tcpdump tcpdump: listening on ens1f0, link-type EN10MB (Ethernet), capture size 262144 bytes ^C 0 packets captured 0 packets received by filter 0 packets dropped by kernel <=== no packet is capture on the lower device for ip6gretap1 [root@wsfd-advnetlab17 mirror]# ovs-vsctl show 119ca124-dc28-47ea-bc88-c107dc7c6f44 Bridge br-int fail_mode: secure datapath_type: system Port ls1p1 Interface ls1p1 type: internal Port ovn-mirror0 Interface ovn-mirror0 type: gre options: {key="123", remote_ip="2000:204::26"} Port lp Interface lp type: internal Port ls2p1 Interface ls2p1 type: internal Port br-int Interface br-int type: internal ovs_version: "2.17.6"