Re: [ovs-dev] [PATCH ovn v2] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).

2020-09-17 Thread Numan Siddique
On Thu, Sep 17, 2020 at 6:25 PM Dumitru Ceara wrote: > On 9/8/20 8:39 PM, Dumitru Ceara wrote: > > On 9/8/20 3:42 PM, Numan Siddique wrote: > >> On Tue, Sep 8, 2020 at 6:48 PM Dumitru Ceara wrote: > >>> > >>> On 9/8/20 2:06 PM, Numan Siddique wrote: > On Tue, Sep 8, 2020 at 4:54 PM Dumitru

Re: [ovs-dev] [PATCH ovn v2] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).

2020-09-17 Thread Dumitru Ceara
On 9/8/20 8:39 PM, Dumitru Ceara wrote: > On 9/8/20 3:42 PM, Numan Siddique wrote: >> On Tue, Sep 8, 2020 at 6:48 PM Dumitru Ceara wrote: >>> >>> On 9/8/20 2:06 PM, Numan Siddique wrote: On Tue, Sep 8, 2020 at 4:54 PM Dumitru Ceara wrote: > > On 9/8/20 12:58 PM, Numan Siddique wrote:

Re: [ovs-dev] [PATCH ovn v2] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).

2020-09-08 Thread Dumitru Ceara
On 9/8/20 3:42 PM, Numan Siddique wrote: > On Tue, Sep 8, 2020 at 6:48 PM Dumitru Ceara wrote: >> >> On 9/8/20 2:06 PM, Numan Siddique wrote: >>> On Tue, Sep 8, 2020 at 4:54 PM Dumitru Ceara wrote: On 9/8/20 12:58 PM, Numan Siddique wrote: > On Tue, Sep 8, 2020 at 2:13 PM Dumitru Ce

Re: [ovs-dev] [PATCH ovn v2] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).

2020-09-08 Thread Numan Siddique
On Tue, Sep 8, 2020 at 6:48 PM Dumitru Ceara wrote: > > On 9/8/20 2:06 PM, Numan Siddique wrote: > > On Tue, Sep 8, 2020 at 4:54 PM Dumitru Ceara wrote: > >> > >> On 9/8/20 12:58 PM, Numan Siddique wrote: > >>> On Tue, Sep 8, 2020 at 2:13 PM Dumitru Ceara wrote: > > OVN was dropping IP

Re: [ovs-dev] [PATCH ovn v2] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).

2020-09-08 Thread Dumitru Ceara
On 9/8/20 2:06 PM, Numan Siddique wrote: > On Tue, Sep 8, 2020 at 4:54 PM Dumitru Ceara wrote: >> >> On 9/8/20 12:58 PM, Numan Siddique wrote: >>> On Tue, Sep 8, 2020 at 2:13 PM Dumitru Ceara wrote: OVN was dropping IP packets destined to IPs owned by logical routers but only if th

Re: [ovs-dev] [PATCH ovn v2] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).

2020-09-08 Thread Numan Siddique
On Tue, Sep 8, 2020 at 4:54 PM Dumitru Ceara wrote: > > On 9/8/20 12:58 PM, Numan Siddique wrote: > > On Tue, Sep 8, 2020 at 2:13 PM Dumitru Ceara wrote: > >> > >> OVN was dropping IP packets destined to IPs owned by logical routers but > >> only if those IPs are not used for SNAT rules. However,

Re: [ovs-dev] [PATCH ovn v2] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).

2020-09-08 Thread Dumitru Ceara
On 9/8/20 12:58 PM, Numan Siddique wrote: > On Tue, Sep 8, 2020 at 2:13 PM Dumitru Ceara wrote: >> >> OVN was dropping IP packets destined to IPs owned by logical routers but >> only if those IPs are not used for SNAT rules. However, if a packet >> doesn't match an existing NAT session and its des

Re: [ovs-dev] [PATCH ovn v2] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).

2020-09-08 Thread Numan Siddique
On Tue, Sep 8, 2020 at 2:13 PM Dumitru Ceara wrote: > > OVN was dropping IP packets destined to IPs owned by logical routers but > only if those IPs are not used for SNAT rules. However, if a packet > doesn't match an existing NAT session and its destination is still a > router owned IP, it can be

[ovs-dev] [PATCH ovn v2] ovn-northd: Drop IP packets destined to router owned IPs (after NAT).

2020-09-08 Thread Dumitru Ceara
OVN was dropping IP packets destined to IPs owned by logical routers but only if those IPs are not used for SNAT rules. However, if a packet doesn't match an existing NAT session and its destination is still a router owned IP, it can be safely dropped. Otherwise it will trigger an unnecessary packe