发起问题

asadxflow 的档案 - activity

2019-04-08 04:10:33 -0500 获得奖牌  热门的问题 (source)
2017-02-16 13:46:24 -0500 获得奖牌  著名问题 (source)
2016-06-13 07:51:24 -0500 获得奖牌  受欢迎的问题 (source)
2016-06-13 07:51:24 -0500 获得奖牌  热门的问题 (source)
2015-06-03 18:07:14 -0500 获得奖牌  受欢迎的问题 (source)
2013-09-26 12:22:49 -0500 回答问题 How to edit the SNAT rules of the L3 agent?

I have further looked into it and found that the neutron L3 agent which performs the SNAT (from qg-XXXX to qr-XXXX interface), drops the packets which are not in the private network and only forwards those packet (onto qr-XXXXX) which are in the private network.

Is it possible to edit the SNAT rules of the L3 agent so that it forwards packets of specific source/dest IPs to a certain VM?

2013-09-26 10:04:28 -0500 问了问题 How to edit the SNAT rules of the L3 agent?

I just wanted to ask if it is possible to forward all packets that are received at the physical interface (eth0 which is added to br-ex) to the VM? I mean forwarding packets which don't have VM's IP as their destination IP.

I am using a single node openstack+neutron (openvswitch) environment with floating IPs assigned to the VM. The VM is able to receive packets from outside world which have its floating IP as destination IP address.

But I want to forward all traffic on the physical interface to this VM or even some packets that have different destination IP address.

I have tried adding rules into the br-ex bridge but the packets are not forwarded to VM.

2013-09-26 08:11:11 -0500 回答问题 How to write ovs rules into neutron bridges?

Problem Solved (br-ex is the bridge to write rules on using simple ovs-ofctl):

Even though br-ex does not show the ping traffic, I can still write rules on it and they will be effective. For example:

In my scenario I was sending a ping from source=192.168.1.1 to VM (floating IP)=192.168.1.99. br-ex does not show this traffic but if I write a rule:

ovs-ofctl add-flow br-ex "dl_type=0x0800,nw_src=192.168.1.1,nw_dst=192.168.1.99,actions=drop"

Then the packets are dropped and the flow's packet count also increases.

2013-09-25 15:56:08 -0500 问了问题 How to write ovs rules into neutron bridges?

Hey guys, I have successfully installed openstack + openvswitch plugin (using devstack) in a single node (compute+network) setup. I am able to ping my VMs from outside world and vice versa.

Now I want to write flows (rules using ovs-ofctl) on the openvswitch bridges i.e., br-ex (or br-int). So that I can drop ping destined for VM1 and allow packets destined for VM2 but the problem is that I don't see these ping on my br-ex bridge (using wireshark although ping is successful).

I have added my physical interface into the br-ex bridge (as a port) and I can see the ping packets on the physical interface but I don't see the same packets on my br-ex interface (which is weird!).

PS: The br-ex interface does show other traffic such as rip,ARP,SSH etc packets but just not the ping I send.

I'll appreciate any kind of help

Cheers :)