On Sun, Jan 21, 2018 at 05:52:50PM +0330, sougol gheissi wrote:
> Hello Jean,
> Can you describe a little how you could implement that?
> How you made netfilter ran on the packets before OVS? I have tried
> netfilter, ebtales in both mode pre-routing and pos-routing, but got
> nothing.
> Thanks in advance.
It work for me because I have a two stage process where
I first do routing, then I do OVS. It goes like :
eth0 -> routing -> br0 -> OVS -> VxLAN -> eth1
Some config :
echo 1 > /proc/sys/net/ipv4/ip_forward
echo 1 > /proc/sys/net/ipv6/conf/all/forwarding
./ovs-vsctl add-br br52
ifconfig br52 10.1.1.2 netmask 255.255.255.0
./ovs-vsctl add-port br52 vx1 -- set interface vx1 type=vxlan
options:remote_ip=10.0.0.2 options:key=flow
./ovs-ofctl add-flow tcp:127.0.0.1:6634
"priority=32771,idle_timeout=0,in_port=local,pkt_mark=2,ip,ip_dst=10.10.10.0/255.255.255.0,action=set_field:0->tun_id,output:1"
ip route add 10.10.10.0/24 via 10.1.1.2
ip -6 route add fd00:10::/64 dev br52 via fd00:1:1::2
iptables -t mangle -A PREROUTING -p tcp -m tcp --tcp-option XX -j MARK
--set-mark 2
ip6tables -t mangle -A PREROUTING -p tcp -m tcp --tcp-option XX -j MARK
--set-mark 2
Good luck...
Jean
_______________________________________________
discuss mailing list
disc...@openvswitch.org
https://mail.openvswitch.org/mailman/listinfo/ovs-discuss
