How to add additional mangle rules into qrouter ?

2016-10-20 10:35:35

gunph1ld

Hello Folks!

I want to add additional mark rules into my qrouter, like this:

ip netns exec qrouter-4*53-8e37-039e8bab301f iptables -t mangle bla-bla-bla

But my rules are disappearing every time. Where does l3-agent save iptable rules?

2 answers

2016-10-21 03:41:16

gunph1ld

Bernd Bausch is right, the rules are coming from /usr/lib/python2.7/site-packages/neutron/agent/linux/

edit flag offensive delete link more

2016-10-20 11:06:37

In the Neutron database. You could use mysqldump to figure it out, assuming it's a MySQL DB.

edit flag offensive delete link more



# grep -Ei 'mangle|mark' neutron.sql 
  `qos_marking` enum('untrusted','trusted') DEFAULT NULL,
gunph1ld ( 2016-10-20 11:25:24 )

well, perhaps it doesn't save the rules verbatim, but derives them from its configuration. If it is so, you will need to set up your own mechanism to add your rules when the server restarts.

Bernd Bausch ( 2016-10-20 17:20:08 )

Asked: 2016-10-20 10:35:35

Seen: 59 times

Last updated: Oct 21 '16