Ask Your Question
0

Openvswitch connects directly to tap

asked 2018-01-23 10:44:48 -0500

mike11 gravatar image

updated 2018-01-24 03:01:07 -0500

Eduardo Gonzalez gravatar image

Hi,

Please help me figure this out, I am really lost with the configuration of the OVS. As you may see in the output below of the ovs-vsctl show command there is no bridge in the OVS and when i start the instance it connects it directl to the br-int.

Manager "ptcp:6640:127.0.0.1"
    is_connected: true  
Bridge br-int
    Controller "tcp:127.0.0.1:6633"
        is_connected: true
    fail_mode: secure
    Port "int-br-eth1"
        Interface "int-br-eth1"
            type: patch
            options: {peer="phy-br-eth1"}     
    Port br-int
        Interface br-int
            type: internal
Bridge "br-eth1"
    Controller "tcp:127.0.0.1:6633"
        is_connected: true
    fail_mode: secure
    Port "br-eth1"
        Interface "br-eth1"
            type: internal
    Port "eth1"
        Interface "eth1"
    Port "phy-br-eth1"
        Interface "phy-br-eth1"
            type: patch
            options: {peer="int-br-eth1"}

in the moment that i start the instance i will have a tap created but it will attach to the br-int and if i run the command brctl show there is no bridge at all. the configuration file of openvswitch_agent.ini is pasted below:

[ovs]

bridge_mappings =provider:br-eth1

[securitygroup]

firewall_driver = openvswitch

enable_security_group = false

enable_ipset = false

Thank you

edit retag flag offensive close merge delete
add a comment

2 answers

Sort by » oldest newest most voted
1

answered 2018-01-24 02:50:37 -0500

Bernd Bausch gravatar image

You configured the Native Openvswitch Firewall Driver https://docs.openstack.org/mitaka/net..., which doesn’t use Linuxbridges to implement firewalls around instances.

edit flag offensive delete link more

Comments

Ok Awesome !! Thank you for the answer. The reason that i was concerened was because when i was pinging out from the instance i saw the ARP requests at the br-int but were not going out from int-br-ethx. Do you have any idea about it? I think i will ask this question separately.

Thank you Again!

mike11 gravatar imagemike11 ( 2018-01-25 01:28:48 -0500 )edit
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2018-01-23 10:44:48 -0500

Seen: 261 times

Last updated: Jan 24 '18

Related questions

Devstack installation with Ryu

OVS bridge br-ex to Ethernet loses network connectivity

How control plane works for OVS in openstack?

can't ping instance from any ip

External network fails after creating OVS bridge

Missing qvb and qvo Veth pairs on compute node

how to configure Flexible NetFlow(or Sflow) on OVS) on ovs

RDO PIKE: failing north-south connectivity when using VLAN isolation

Kilo: Network Node External Network unreachable?

Instances not reachable from outside