Ask Your Question
0

Openvswitch connects directly to tap

asked 2018-01-23 10:44:48 -0600

mike11 gravatar image

updated 2018-01-24 03:01:07 -0600

Eduardo Gonzalez gravatar image

Hi,

Please help me figure this out, I am really lost with the configuration of the OVS. As you may see in the output below of the ovs-vsctl show command there is no bridge in the OVS and when i start the instance it connects it directl to the br-int.

Manager "ptcp:6640:127.0.0.1"
    is_connected: true  
Bridge br-int
    Controller "tcp:127.0.0.1:6633"
        is_connected: true
    fail_mode: secure
    Port "int-br-eth1"
        Interface "int-br-eth1"
            type: patch
            options: {peer="phy-br-eth1"}     
    Port br-int
        Interface br-int
            type: internal
Bridge "br-eth1"
    Controller "tcp:127.0.0.1:6633"
        is_connected: true
    fail_mode: secure
    Port "br-eth1"
        Interface "br-eth1"
            type: internal
    Port "eth1"
        Interface "eth1"
    Port "phy-br-eth1"
        Interface "phy-br-eth1"
            type: patch
            options: {peer="int-br-eth1"}

in the moment that i start the instance i will have a tap created but it will attach to the br-int and if i run the command brctl show there is no bridge at all. the configuration file of openvswitch_agent.ini is pasted below:

[ovs]

bridge_mappings =provider:br-eth1

[securitygroup]

firewall_driver = openvswitch

enable_security_group = false

enable_ipset = false

Thank you

edit retag flag offensive close merge delete
add a comment

2 answers

Sort by » oldest newest most voted
1

answered 2018-01-24 02:50:37 -0600

Bernd Bausch gravatar image

You configured the Native Openvswitch Firewall Driver https://docs.openstack.org/mitaka/net..., which doesn’t use Linuxbridges to implement firewalls around instances.

edit flag offensive delete link more

Comments

Ok Awesome !! Thank you for the answer. The reason that i was concerened was because when i was pinging out from the instance i saw the ARP requests at the br-int but were not going out from int-br-ethx. Do you have any idea about it? I think i will ask this question separately.

Thank you Again!

mike11 gravatar imagemike11 ( 2018-01-25 01:28:48 -0600 )edit
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2018-01-23 10:44:48 -0600

Seen: 106 times

Last updated: Jan 24

Related questions

socket.error: [Errno 111] Connection refused

Devstack installation with Ryu

how to configure Flexible NetFlow(or Sflow) on OVS) on ovs

Removing veth pair between linux bridge and OVS bridge

Liberty: neutron arp can't arrive external network

can we use any mechanism driver without OVS switch?

Why is the br-tun bridge operated in Flow mode?

RDO PIKE: failing north-south connectivity when using VLAN isolation

Instances not reachable from outside

How control plane works for OVS in openstack?