From patchwork Fri Mar 9 22:56:41 2018 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Gurucharan Shetty X-Patchwork-Id: 884053 Return-Path: X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=pass (mailfrom) smtp.mailfrom=openvswitch.org (client-ip=140.211.169.12; helo=mail.linuxfoundation.org; envelope-from=ovs-dev-bounces@openvswitch.org; receiver=) Authentication-Results: ozlabs.org; dmarc=none (p=none dis=none) header.from=ovn.org Received: from mail.linuxfoundation.org (mail.linuxfoundation.org [140.211.169.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 3zyjS31Nqqz9shg for ; Sat, 10 Mar 2018 09:56:50 +1100 (AEDT) Received: from mail.linux-foundation.org (localhost [127.0.0.1]) by mail.linuxfoundation.org (Postfix) with ESMTP id 176051135; Fri, 9 Mar 2018 22:56:48 +0000 (UTC) X-Original-To: dev@openvswitch.org Delivered-To: ovs-dev@mail.linuxfoundation.org Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org [172.17.192.35]) by mail.linuxfoundation.org (Postfix) with ESMTPS id EC2471132 for ; Fri, 9 Mar 2018 22:56:46 +0000 (UTC) X-Greylist: whitelisted by SQLgrey-1.7.6 Received: from mail-pg0-f65.google.com (mail-pg0-f65.google.com [74.125.83.65]) by smtp1.linuxfoundation.org (Postfix) with ESMTPS id 79AB35D4 for ; Fri, 9 Mar 2018 22:56:46 +0000 (UTC) Received: by mail-pg0-f65.google.com with SMTP id e9so4106175pgs.10 for ; Fri, 09 Mar 2018 14:56:46 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id; bh=EAA1xJrdB6BiukQT6+JYqrMNVvKKa9Zyxaz394zpG5U=; b=D2aMTVbqsGMap3H7SXqb6PCCU90eUVO/UYQCBEWVmxQKo9Mngtbhv29afR3Jl89AtX m5qVVE5c8eYOeoNKrxZ5P2MMCicwbpoMxs1v3lvdxXDGeCUvVlbnYmKRQPkumNukespL Zv/BawRLxdNIry19sjknIFHZsR6h8G45lbQ1jzMcPEoFxy9PctUWMhP3V/7HOzw4hpz2 ITWZY/qx/0RfTMeXu3+JaGfBvuWEqDfZJ83cbdabBY8B1eXnLRDFOASkCcH93HP92gfs PleK92AamIbblB3TgYgeFCyDbW0kUAGofEtLmmcJhn++HlX3uIXN0lMpoZ7qOpekjLes liOA== X-Gm-Message-State: AElRT7GIBX1Uvt57TPQ2XDgOrbHFqzqKjpl982JF+mYfUE5HUQWUdLRo PKx2ToKhxUNuBY01eI6u1dJ6NQ== X-Google-Smtp-Source: AG47ELsJa0gAhcNPZwkGfG0ISGbu3FpA1VmUsviV6mY71SYmM4WoxK+da9KA3XK1VfUjM1JIwDr6pw== X-Received: by 10.98.233.3 with SMTP id j3mr143396pfh.38.1520636205839; Fri, 09 Mar 2018 14:56:45 -0800 (PST) Received: from ubuntu.eng.vmware.com ([66.170.99.1]) by smtp.gmail.com with ESMTPSA id m9sm4754909pff.143.2018.03.09.14.56.44 (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Fri, 09 Mar 2018 14:56:44 -0800 (PST) From: Gurucharan Shetty To: dev@openvswitch.org Date: Fri, 9 Mar 2018 14:56:41 -0800 Message-Id: <1520636201-3548-1-git-send-email-guru@ovn.org> X-Mailer: git-send-email 2.7.4 X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM, RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.1 X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on smtp1.linux-foundation.org Subject: [ovs-dev] [PATCH] ovn-northd.8: Move DHCP and DNS flow description to right section. X-BeenThere: ovs-dev@openvswitch.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: ovs-dev-bounces@openvswitch.org Errors-To: ovs-dev-bounces@openvswitch.org The priority 34000 DHCP and DNS flows are added to the S_SWITCH_OUT_ACL table and not S_SWITCH_OUT_STATEFUL table. CC: Numan Siddique Signed-off-by: Gurucharan Shetty Acked-by: Ben Pfaff --- ovn/northd/ovn-northd.8.xml | 38 +++++++++++++++++++------------------- 1 file changed, 19 insertions(+), 19 deletions(-) diff --git a/ovn/northd/ovn-northd.8.xml b/ovn/northd/ovn-northd.8.xml index 6bc2dd6..444be72 100644 --- a/ovn/northd/ovn-northd.8.xml +++ b/ovn/northd/ovn-northd.8.xml @@ -897,6 +897,25 @@ output; to-lport ACLs.

+

+ In addition, the following flows are added. +

+
    +
  • + A priority 34000 logical flow is added for each logical port which + has DHCPv4 options defined to allow the DHCPv4 reply packet and which has + DHCPv6 options defined to allow the DHCPv6 reply packet from the + Ingress Table 13: DHCP responses. +
    • + +
  • + A priority 34000 logical flow is added for each logical switch datapath + configured with DNS records with the match udp.dst = 53 + to allow the DNS reply packet from the + Ingress Table 15:DNS responses. +
    • +
+

Egress Table 5: to-lport QoS marking

@@ -918,25 +937,6 @@ output; there are no rules added for load balancing new connections.

-

- Also the following flows are added. -

-
    -
  • - A priority 34000 logical flow is added for each logical port which - has DHCPv4 options defined to allow the DHCPv4 reply packet and which has - DHCPv6 options defined to allow the DHCPv6 reply packet from the - Ingress Table 13: DHCP responses. -
    • - -
  • - A priority 34000 logical flow is added for each logical switch datapath - configured with DNS records with the match udp.dst = 53 - to allow the DNS reply packet from the - Ingress Table 15:DNS responses. -
    • -
-

Egress Table 8: Egress Port Security - IP