On 20 Oct 2023, at 2:40, Fred Licht wrote:
> Eelco,
> So that is the challenge. The VLAN translation alone doesn’t do what I
> am asking. We are trying to do an RSPAN, but take the result of the RSPAN
> and pipe that into this other VLAN ID, rather than a virtual or physical
> interface. Add in that we are trying to do this all with DPDK.
I currently have no system to test this with, but I assume you need something
like this?
ovs-vsctl del-br ovs_pvp_br0
ovs-vsctl add-br ovs_pvp_br0 -- \
set bridge ovs_pvp_br0 datapath_type=netdev
ovs-vsctl add-bond ovs_pvp_br0 bond0 dpdk0 dpdk1 vlan_mode=trunk
trunks=123,1123 -- \
set port bond0 lacp=off -- \
set port bond0 bond_mode=active-backup -- \
set Interface dpdk0 type=dpdk -- \
set Interface dpdk0 options:dpdk-devargs=0000:17:00.0 -- \
set Interface dpdk1 type=dpdk -- \
set Interface dpdk1 options:dpdk-devargs=0000:17:00.1
ovs-vsctl add-port ovs_pvp_br0 vhost0 vlan_mode=native-tagged tag=123 -- \
set Interface vhost0 type=dpdkvhostuserclient -- \
set Interface vhost0 options:vhost-server-path='/tmp/vhost-sock0'
ovs-vsctl -- --id=@m create mirror name=m0 select-all=true select-vlan=123
output-vlan=1123 \
-- set bridge ovs_pvp_br0 mirrors=@m
Maybe you can try this as a starting point and fine-tune if needed?
//Eelco
>> On Oct 18, 2023, at 3:24 AM, Eelco Chaudron <echau...@redhat.com> wrote:
>>
>>
>>
>> On 17 Oct 2023, at 22:39, Fred Licht wrote:
>>
>>> Hey Eelco,
>>> That is partially the answer. I need to ensure the traffic is only
>>> passed to our connect bond with a unque VLAN ID, but not prevent other
>>> ingress/egress traffic on that same bond. The Mirrored VLAN needs to be
>>> ensured not to be echo’ed/passed to any other vNIC/host on the box.
>>
>> Looking at the documentation,
>> https://www.openvswitch.org/support/dist-docs/ovs-vswitchd.conf.db.5.html,
>> you can limit this by setting the correct VLAN assignment:
>>
>> output_vlan: optional integer, in range 1 to 4,095
>> Output VLAN for selected packets, if nonempty.
>>
>> The frames will be sent out all ports that trunk output_vlan, as
>> well as any ports with implicit VLAN output_vlan. When a mir‐
>> rored frame is sent out a trunk port, the frame’s VLAN tag will
>> be set to output_vlan, replacing any existing tag; when it is
>> sent out an implicit VLAN port, the frame will not be tagged.
>> This type of mirroring is sometimes called RSPAN.
>>
>> ...
>>
>>> ** Add in any methods to use DPDK accelerations/offloads.
>>>
>>> -Fred
>>>
>>>> On Oct 17, 2023, at 2:58 AM, Eelco Chaudron <echau...@redhat.com> wrote:
>>>>
>>>>
>>>>
>>>> On 16 Oct 2023, at 17:12, Fred Licht via discuss wrote:
>>>>
>>>>> Hi All,
>>>>> I am looking for suggestions/advice on how to setup a configuration. I
>>>>> have found methods on how to VLAN translate, and how to mirror, adding
>>>>> complication of DPDK but not a combined solution.
>>>>>
>>>>> How to mirror all traffic on a given VLAN, translate the mirrored tagged
>>>>> van to a new VLAN ID, and send it back over the same OVS bridge.
>>>>> Ensuring any of the new mirrored data only traverses over the bonded
>>>>> trunk back to a physical switch.
>>>>>
>>>>> VLAN 123 => SPAN/Mirror => VLAN 1123 => OVS Bond => switch
>>>>
>>>> Hi Fred,
>>>>
>>>> Is this what you are trying to accomplish?
>>>>
>>>> https://github.com/openvswitch/ovs/blob/c29ba54018520f957c48d947325ed50c9442b831/Documentation/faq/configuration.rst?plain=1#L121
>>>>
>>>> //Eelco
>>>>
>>>>> TIA,
>>>>> Fred Licht
>>>>> _______________________________________________
>>>>> discuss mailing list
>>>>> disc...@openvswitch.org
>>>>> https://mail.openvswitch.org/mailman/listinfo/ovs-discuss
>>>>
>>
_______________________________________________
discuss mailing list
disc...@openvswitch.org
https://mail.openvswitch.org/mailman/listinfo/ovs-discuss
