| *** kmasterson` is now known as kmasterson | 07:11 | |
| *** tbachman_ is now known as tbachman | 07:31 | |
| opendevreview | Takashi Kajinami proposed openstack/neutron master: ml2 ovs: Deprecate unused [agent] veth_mtu https://review.opendev.org/c/openstack/neutron/+/824446 | 07:57 |
|---|---|---|
| opendevreview | Slawek Kaplonski proposed openstack/neutron master: Register cleanup hooks for the object change handlers only when needed https://review.opendev.org/c/openstack/neutron/+/824508 | 08:08 |
| slaweq | ralonsoh: hi, ^^ it seems that this helped for those FT in stable/train (we talked about it yesterday) | 08:10 |
| slaweq | so I proposed such change in master, I don't think it can really break anything in the production code :) | 08:11 |
| slaweq | lajoskatona: if You will have some time, please take a look at it too :) | 08:11 |
| slaweq | thx in advance | 08:11 |
| lajoskatona | slaweq: sure, I will check | 08:25 |
| opendevreview | Takashi Kajinami proposed openstack/neutron master: ml2 ovs: Deprecate unused [agent] veth_mtu https://review.opendev.org/c/openstack/neutron/+/824446 | 08:30 |
| ralonsoh | slaweq, sure, let me check | 08:31 |
| *** mnasiadka_ is now known as mnasiadka | 08:43 | |
| opendevreview | Lajos Katona proposed openstack/neutron-tempest-plugin master: QoS min pps API tests https://review.opendev.org/c/openstack/neutron-tempest-plugin/+/806689 | 08:56 |
| opendevreview | Takashi Kajinami proposed openstack/neutron master: ml2 ovs: Deprecate unused [agent] veth_mtu https://review.opendev.org/c/openstack/neutron/+/824446 | 08:59 |
| opendevreview | Takashi Kajinami proposed openstack/neutron master: ml2 ovs: Deprecate unused [agent] veth_mtu https://review.opendev.org/c/openstack/neutron/+/824446 | 09:00 |
| *** ykarel is now known as ykarel|away | 09:47 | |
| mnasiadka | Hi there - I'd like to discuss a bug related to ML2/OVN and Magnum's usage of allowed_address_pairs. Bug: https://bugs.launchpad.net/neutron/+bug/1908382 description of the situation: https://paste.openstack.org/show/812087/ | 10:14 |
| mnasiadka | TL;DR - Magnum is spawning instances and sets allowed_address_pairs to /16 CIDR - although it works for ML2/OVS - it doesn't for ML2/OVN | 10:15 |
| ralonsoh | core OVN does not allow to use CIDR in the NAT "dnat_and_snat" registers | 10:15 |
| ralonsoh | you can use /32 IP addresses | 10:15 |
| ralonsoh | https://bugzilla.redhat.com/show_bug.cgi?id=1986337 | 10:15 |
| ralonsoh | there you have (now public) the description of the issue | 10:15 |
| mnasiadka | While I was able to work it around, by adding security group rules on the instance ports to accept the additional CIDR network traffic - I don't think it's a good permanent solution ;-) | 10:17 |
| ralonsoh | that could work for internal IP addresses, but the allowed address are added to the FIP address | 10:18 |
| ralonsoh | at least for FIP VIPs | 10:19 |
| mnasiadka | Right, so even if the traffic is internal (between instances in OpenStack) - the mentioned issue in bugzilla is applicable, because the primary IP addresses on that port have a FIP configured? | 10:20 |
| ralonsoh | what I mean is that the SG rules apply to the internal port IP, not the FIP | 10:21 |
| ralonsoh | the SG rules won't affect the FIP traffic | 10:21 |
| ralonsoh | in other words, those SG rules won't filter/allow any traffic for the FIP | 10:22 |
| mnasiadka | Sure, but this traffic (the 10.100.0.0/16 CIDR) is only for internal traffic between Kubernetes nodes. | 10:22 |
| mnasiadka | the port has two addresses (the one allocated by Nova + 10.100.0.0/16 CIDR used by the Kubernetes used overlay - Calico or Flannel) | 10:23 |
| ralonsoh | I don't see (I should check it) how the SG rules create the corresponding NAT registers in OVN that allow this traffic | 10:25 |
| ralonsoh | in any case, this is a workaround, as you commented | 10:25 |
| mnasiadka | Yes, what is interesting - ICMP traffic between addresses in 10.100.0.0/16 works without the additional SG rules - but TCP/UDP doesn't. | 10:28 |
| mnasiadka | https://review.opendev.org/c/openstack/magnum/+/773923/3/magnum/drivers/k8s_fedora_coreos_v1/templates/kubecluster.yaml - here is the patch to Magnum | 10:28 |
| mnasiadka | Question if this would affect anything for ML2/OVS deployments. | 10:31 |
| opendevreview | Lajos Katona proposed openstack/networking-odl master: Fix some requirements https://review.opendev.org/c/openstack/networking-odl/+/823428 | 10:31 |
| opendevreview | Lajos Katona proposed openstack/networking-odl master: Fix some requirements https://review.opendev.org/c/openstack/networking-odl/+/823428 | 10:51 |
| *** dasm|off is now known as dasm | 12:08 | |
| opendevreview | Merged openstack/neutron master: ml2 ovs: Deprecate unused [agent] veth_mtu https://review.opendev.org/c/openstack/neutron/+/824446 | 12:11 |
| holtgrew1 | Hello. I have setup double-homed OpenStack hosts based on VLANs. They are on one physical port. The default VLAN is "671" and goes into bridge brbond0 that contains the bond bond0. The other VLAN is 678 and brpublic contains brbond0.678 (Rocky/CentOS interface naming). I'm seeing ICMPv6 traffic from VLAN 678 in bond0. How can I find out whether that data is traveling through neutron or is | 12:42 |
| holtgrew1 | somehow forwarded on the host? | 12:42 |
| opendevreview | Lajos Katona proposed openstack/neutron-vpnaas master: Change BUILD_OVS_FROM_SOURCE to Q_BUILD_OVS_FROM_GIT https://review.opendev.org/c/openstack/neutron-vpnaas/+/824560 | 12:49 |
| frickler | holtgrew1: if I understand your setup correctly, that would be the expected behavior, you also see the tagged traffic on the base interface. "tcpdump -e" should show you the vlan headers to verify | 12:54 |
| opendevreview | Merged openstack/neutron master: [Functional] Add extra logs to the L3 HA router transitions https://review.opendev.org/c/openstack/neutron/+/824098 | 12:54 |
| opendevreview | Krzysztof Tomaszewski proposed openstack/neutron master: Exclude router gw subnet ports from port list while port delete. https://review.opendev.org/c/openstack/neutron/+/824008 | 12:55 |
| lajoskatona | slaweq, ralonsoh: if you have time please check https://review.opendev.org/c/openstack/os-ken/+/824476 , neutron-tempest-plugin-dynamic-routing job fails due to my mistake (https://review.opendev.org/c/openstack/os-ken/+/824215 ) | 13:29 |
| ralonsoh | sure | 13:29 |
| lajoskatona | slaweq, ralonsoh: in 824476 I added neutron-tempest-plugin-dynamic-routing job to os-ken, as there is no unit test coverage for bgp (and many other things) in os-ken | 13:30 |
| lajoskatona | Perhaps worth to keep it for check queue at least | 13:30 |
| ralonsoh | I though this call has always password in kwargs | 13:30 |
| lajoskatona | ralonsoh: this is why dicts are a way to hell :-) objects to everywhere (it was a joke only).... | 13:31 |
| lajoskatona | I thought the same and in my old local devstack with n-d-r I had it. | 13:32 |
| lajoskatona | all: tomorrow I will have a whole day workshop, so I will be less active (I will join the drivers meeting, and will send out the mail about the agenda this afternoon as usual) | 13:36 |
| slaweq | lajoskatona: done | 13:48 |
| opendevreview | Merged openstack/neutron master: Remove "PortBindingMixin" class and related DB table https://review.opendev.org/c/openstack/neutron/+/824009 | 14:11 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/xena: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824546 | 14:58 |
| opendevreview | Merged openstack/os-ken master: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824476 | 15:04 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/wallaby: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824547 | 15:11 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/victoria: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824548 | 15:11 |
| opendevreview | Mamatisa Nurmatov proposed openstack/neutron-tempest-plugin master: Add Local IP API tests https://review.opendev.org/c/openstack/neutron-tempest-plugin/+/814742 | 15:21 |
| opendevreview | Mamatisa Nurmatov proposed openstack/neutron-tempest-plugin master: Add local ip scenario tests https://review.opendev.org/c/openstack/neutron-tempest-plugin/+/823007 | 15:21 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/victoria: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824548 | 15:21 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/ussuri: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824549 | 15:22 |
| opendevreview | Merged openstack/neutron master: Add Local IP policy rules https://review.opendev.org/c/openstack/neutron/+/816435 | 15:22 |
| opendevreview | Merged openstack/neutron stable/xena: [OVN] Allow only one physical network per bridge https://review.opendev.org/c/openstack/neutron/+/824344 | 15:22 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/train: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824610 | 15:23 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/xena: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824546 | 15:26 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/xena: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824546 | 15:36 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/wallaby: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824547 | 15:37 |
| opendevreview | Merged openstack/neutron master: [OVN] Check if OVN NB supports stateless NAT rules https://review.opendev.org/c/openstack/neutron/+/816376 | 15:38 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/victoria: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824548 | 15:39 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/ussuri: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824549 | 15:40 |
| opendevreview | Lajos Katona proposed openstack/os-ken stable/train: Avoid missing key 'password' for neighbor_add https://review.opendev.org/c/openstack/os-ken/+/824610 | 15:40 |
| opendevreview | Rodolfo Alonso proposed openstack/neutron master: [OVN] Check if OVN SB supports virtual ports https://review.opendev.org/c/openstack/neutron/+/816383 | 16:04 |
| ralonsoh | slaweq, ^^ that was just a rebase, if you don't mind | 16:05 |
| slaweq | ralonsoh: done | 16:05 |
| ralonsoh | thanks! | 16:06 |
| ralonsoh | slaweq, I'm going to push https://review.opendev.org/c/openstack/neutron/+/824508 on top of https://review.opendev.org/c/openstack/neutron/+/822522 | 16:11 |
| ralonsoh | in Train | 16:11 |
| ralonsoh | just to check the CI | 16:11 |
| slaweq | ralonsoh: I did something like that yesterday https://review.opendev.org/c/openstack/neutron/+/824450/1 | 16:12 |
| ralonsoh | ahh ok | 16:12 |
| slaweq | it wasn't exactly the same as e.g. name of function was different | 16:12 |
| slaweq | but in general it was that patch done for stable/train to test it there | 16:12 |
| ralonsoh | so that's what I was looking for | 16:12 |
| slaweq | and it helped for functional tests, both py36 and py27 | 16:12 |
| ralonsoh | this is passing now | 16:12 |
| ralonsoh | so my +2 for this patch | 16:12 |
| ralonsoh | because this is actually solving Train, where you found the error | 16:13 |
| ralonsoh | solving/fixing | 16:13 |
| slaweq | thx a lot | 16:15 |
| opendevreview | Balazs Gibizer proposed openstack/neutron master: DNM: trigger tempest https://review.opendev.org/c/openstack/neutron/+/824605 | 16:39 |
| lajoskatona | ralonsoh: could you please check this doc change when you have few minutes: https://review.opendev.org/c/openstack/neutron/+/809579 , it is just changing when updating QoS Policy with min_bw is available (not Victoria but Wallaby) | 16:49 |
| ralonsoh | lajoskatona, sure | 16:49 |
| opendevreview | Rodolfo Alonso proposed openstack/neutron master: Create an index for "agents.host" column https://review.opendev.org/c/openstack/neutron/+/823822 | 17:11 |
| lajoskatona | ralonsoh: thanks | 17:15 |
| opendevreview | Merged openstack/neutron master: doc: Change availability of QoS policy change https://review.opendev.org/c/openstack/neutron/+/809579 | 17:44 |
| *** marlinc is now known as Guest491 | 18:00 | |
| *** beagles_ is now known as eagles | 18:48 | |
| opendevreview | Slawek Kaplonski proposed openstack/neutron master: Add upgrade check for extra DHCP options https://review.opendev.org/c/openstack/neutron/+/824641 | 19:40 |
| *** dasm is now known as dasm|off | 21:45 | |
Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!