projects / cascardo / ovs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 75cf9d2) | patch
ovn: Introduce l3 gateway router.
authorGurucharan Shetty <guru@ovn.org>
Mon, 9 May 2016 20:44:34 +0000 (13:44 -0700)
committerGurucharan Shetty <guru@ovn.org>
Fri, 3 Jun 2016 02:30:33 +0000 (19:30 -0700)
commitc1645003c8acd3d28e1cef3597a6e931388e3190
tree8d461f8832d8a2acf56772186abbd42bd842d20etree | snapshot
parent75cf9d2b9cf3368b422d86d190ab3aa125ae8ffbcommit | diff
ovn: Introduce l3 gateway router.

Currently OVN has distributed switches and routers. When a packet
exits a container or a VM, the entire lifecycle of the packet
through multiple switches and routers are calculated in source
chassis itself. When the destination endpoint resides on a different
chassis, the packet is sent to the other chassis and it only goes
through the egress pipeline of that chassis once and eventually to
the real destination.

When the packet returns back, the same thing happens. The return
packet leaves the VM/container on the chassis where it resides.
The packet goes through all the switches and routers in the logical
pipleline on that chassis and then sent to the eventual destination
over the tunnel.

The above makes the logical pipeline very flexible and easy. But,
creates a problem for cases where you need to add stateful services
(via conntrack) on switches and routers.

For l3 gateways, we plan to leverage DNAT and SNAT functionality
and we want to apply DNAT and SNAT rules on a router. So we ideally need
the packet to go through that router in both directions in the same
chassis. To achieve this, this commit introduces a new gateway router which is
static and can be connected to your distributed router via a switch.

To make minimal changes in OVN's logical pipeline, this commit
tries to make the switch port connected to a l3 gateway router look like
a container/VM endpoint for every other chassis except the chassis
on which the l3 gateway router resides. On the chassis where the
gateway router resides, the connection looks just like a patch port.

This is achieved by the doing the following:
Introduces a new type of port_binding record called 'gateway'.
On the chassis where the gateway router resides, this port behaves just
like the port of type 'patch'. The ovn-controller on that chassis
populates the "chassis" column for this record as an indication for
other ovn-controllers of its physical location. Other ovn-controllers
treat this port as they would treat a VM/Container port on a different
chassis.

Signed-off-by: Gurucharan Shetty <guru@ovn.org>
Acked-by: Ben Pfaff <blp@ovn.org>
ovn/controller/binding.c diff | blob | history
ovn/controller/ovn-controller.c diff | blob | history
ovn/controller/patch.c diff | blob | history
ovn/controller/patch.h diff | blob | history
ovn/northd/ovn-northd.c diff | blob | history
ovn/ovn-nb.ovsschema diff | blob | history
ovn/ovn-nb.xml diff | blob | history
ovn/ovn-sb.xml diff | blob | history
tests/ovn.at diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.