#
# arp_responder = False
+# (BoolOpt) Set or un-set the don't fragment (DF) bit on outgoing IP packet
+# carrying GRE/VXLAN tunnel. The default value is True.
+#
+# dont_fragment = True
+
[securitygroup]
# Firewall driver for realizing neutron security group function.
# firewall_driver = neutron.agent.firewall.NoopFirewallDriver
def add_tunnel_port(self, port_name, remote_ip, local_ip,
tunnel_type=p_const.TYPE_GRE,
- vxlan_udp_port=constants.VXLAN_UDP_PORT):
+ vxlan_udp_port=constants.VXLAN_UDP_PORT,
+ dont_fragment=True):
vsctl_command = ["--", "--may-exist", "add-port", self.br_name,
port_name]
vsctl_command.extend(["--", "set", "Interface", port_name,
# Only set the VXLAN UDP port if it's not the default
if vxlan_udp_port != constants.VXLAN_UDP_PORT:
vsctl_command.append("options:dst_port=%s" % vxlan_udp_port)
+ vsctl_command.append(("options:df_default=%s" %
+ bool(dont_fragment)).lower())
vsctl_command.extend(["options:remote_ip=%s" % remote_ip,
"options:local_ip=%s" % local_ip,
"options:in_key=flow",
self.local_ip = local_ip
self.tunnel_count = 0
self.vxlan_udp_port = cfg.CONF.AGENT.vxlan_udp_port
+ self.dont_fragment = cfg.CONF.AGENT.dont_fragment
if self.enable_tunneling:
self.setup_tunnel_br(tun_br)
# Collect additional bridges to monitor
remote_ip,
self.local_ip,
tunnel_type,
- self.vxlan_udp_port)
+ self.vxlan_udp_port,
+ self.dont_fragment)
ofport_int = -1
try:
ofport_int = int(ofport)
self.local_ip = local_ip
self.tunnel_count = 0
self.vxlan_udp_port = cfg.CONF.AGENT.vxlan_udp_port
+ self.dont_fragment = cfg.CONF.AGENT.dont_fragment
self.tun_br = None
if self.enable_tunneling:
self.setup_tunnel_br(tun_br)
remote_ip,
self.local_ip,
tunnel_type,
- self.vxlan_udp_port)
+ self.vxlan_udp_port,
+ self.dont_fragment)
ofport_int = -1
try:
ofport_int = int(ofport)
"remote mac and IPs and improve tunnel scalability")),
cfg.BoolOpt('arp_responder', default=False,
help=_("Enable local ARP responder if it is supported")),
+ cfg.BoolOpt('dont_fragment', default=True,
+ help=_("Set or un-set the don't fragment (DF) bit on "
+ "outgoing IP packet carrying GRE/VXLAN tunnel")),
]
from neutron.common import exceptions
from neutron.openstack.common import jsonutils
from neutron.openstack.common import uuidutils
+from neutron.plugins.common import constants as p_const
from neutron.plugins.openvswitch.common import constants as const
from neutron.tests import base
from neutron.tests import tools
command = ["ovs-vsctl", self.TO, '--', "--may-exist", "add-port",
self.BR_NAME, pname]
command.extend(["--", "set", "Interface", pname])
- command.extend(["type=gre", "options:remote_ip=" + remote_ip,
+ command.extend(["type=gre", "options:df_default=true",
+ "options:remote_ip=" + remote_ip,
"options:local_ip=" + local_ip,
"options:in_key=flow",
"options:out_key=flow"])
tools.verify_mock_calls(self.execute, expected_calls_and_values)
+ def test_add_vxlan_fragmented_tunnel_port(self):
+ pname = "tap99"
+ local_ip = "1.1.1.1"
+ remote_ip = "9.9.9.9"
+ ofport = "6"
+ vxlan_udp_port = "9999"
+ dont_fragment = False
+ command = ["ovs-vsctl", self.TO, '--', "--may-exist", "add-port",
+ self.BR_NAME, pname]
+ command.extend(["--", "set", "Interface", pname])
+ command.extend(["type=" + p_const.TYPE_VXLAN,
+ "options:dst_port=" + vxlan_udp_port,
+ "options:df_default=false",
+ "options:remote_ip=" + remote_ip,
+ "options:local_ip=" + local_ip,
+ "options:in_key=flow",
+ "options:out_key=flow"])
+ # Each element is a tuple of (expected mock call, return_value)
+ expected_calls_and_values = [
+ (mock.call(command, root_helper=self.root_helper), None),
+ (mock.call(["ovs-vsctl", self.TO, "get",
+ "Interface", pname, "ofport"],
+ root_helper=self.root_helper),
+ ofport),
+ ]
+ tools.setup_mock_calls(self.execute, expected_calls_and_values)
+
+ self.assertEqual(
+ self.br.add_tunnel_port(pname, remote_ip, local_ip,
+ p_const.TYPE_VXLAN, vxlan_udp_port,
+ dont_fragment),
+ ofport)
+
+ tools.verify_mock_calls(self.execute, expected_calls_and_values)
+
def test_add_patch_port(self):
pname = "tap99"
peer = "bar10"
'gre-1', 'remote_ip', p_const.TYPE_GRE)
add_tunnel_port_fn.assert_called_once_with(
'gre-1', 'remote_ip', self.agent.local_ip, p_const.TYPE_GRE,
- self.agent.vxlan_udp_port)
+ self.agent.vxlan_udp_port, self.agent.dont_fragment)
log_error_fn.assert_called_once_with(
_("Failed to set-up %(type)s tunnel port to %(ip)s"),
{'type': p_const.TYPE_GRE, 'ip': 'remote_ip'})
'gre-1', 'remote_ip', p_const.TYPE_GRE)
add_tunnel_port_fn.assert_called_once_with(
'gre-1', 'remote_ip', self.agent.local_ip, p_const.TYPE_GRE,
- self.agent.vxlan_udp_port)
+ self.agent.vxlan_udp_port, self.agent.dont_fragment)
log_exc_fn.assert_called_once_with(
_("ofport should have a value that can be "
"interpreted as an integer"))
'gre-1', 'remote_ip', p_const.TYPE_GRE)
add_tunnel_port_fn.assert_called_once_with(
'gre-1', 'remote_ip', self.agent.local_ip, p_const.TYPE_GRE,
- self.agent.vxlan_udp_port)
+ self.agent.vxlan_udp_port, self.agent.dont_fragment)
log_error_fn.assert_called_once_with(
_("Failed to set-up %(type)s tunnel port to %(ip)s"),
{'type': p_const.TYPE_GRE, 'ip': 'remote_ip'})
'gre-1', 'remote_ip', p_const.TYPE_GRE)
add_tunnel_port_fn.assert_called_once_with(
'gre-1', 'remote_ip', self.agent.local_ip, p_const.TYPE_GRE,
- self.agent.vxlan_udp_port)
+ self.agent.vxlan_udp_port, self.agent.dont_fragment)
log_exc_fn.assert_called_once_with(
_("ofport should have a value that can be "
"interpreted as an integer"))
{'type': p_const.TYPE_GRE, 'ip': 'remote_ip'})
self.assertEqual(ofport, 0)
+ def test_setup_tunnel_port_error_negative_df_disabled(self):
+ with contextlib.nested(
+ mock.patch.object(self.agent.tun_br, 'add_tunnel_port',
+ return_value='-1'),
+ mock.patch.object(ovs_neutron_agent.LOG, 'error')
+ ) as (add_tunnel_port_fn, log_error_fn):
+ self.agent.dont_fragment = False
+ ofport = self.agent.setup_tunnel_port(
+ 'gre-1', 'remote_ip', p_const.TYPE_GRE)
+ add_tunnel_port_fn.assert_called_once_with(
+ 'gre-1', 'remote_ip', self.agent.local_ip, p_const.TYPE_GRE,
+ self.agent.vxlan_udp_port, self.agent.dont_fragment)
+ log_error_fn.assert_called_once_with(
+ _("Failed to set-up %(type)s tunnel port to %(ip)s"),
+ {'type': p_const.TYPE_GRE, 'ip': 'remote_ip'})
+ self.assertEqual(ofport, 0)
+
def test_tunnel_sync_with_ovs_plugin(self):
fake_tunnel_details = {'tunnels': [{'id': '42',
'ip_address': '100.101.102.103'}]}
self.mock_tun_bridge.add_tunnel_port.return_value = tunnel_port
self.mock_tun_bridge_expected += [
mock.call.add_tunnel_port('gre-1', '10.0.10.1', '10.0.0.1',
- 'gre', 4789),
+ 'gre', 4789, True),
mock.call.add_flow(priority=1, in_port=tunnel_port,
actions='resubmit(,2)')
]
Code Review / openstack-build / neutron-build.git / commitdiff