| Message ID | BN6PR13MB1202629B22D0676432213F29ED659@BN6PR13MB1202.namprd13.prod.outlook.com |
|---|---|
| State | Not Applicable |
| Headers | show
Return-Path: <ovs-dev-bounces@openvswitch.org> X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@bilbo.ozlabs.org Authentication-Results: bilbo.ozlabs.org; dkim=fail reason="signature verification failed" (1024-bit key; unprotected) header.d=corigine.onmicrosoft.com header.i=@corigine.onmicrosoft.com header.a=rsa-sha256 header.s=selector2-corigine-onmicrosoft-com header.b=XhJAcW2s; dkim-atps=neutral Authentication-Results: ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=openvswitch.org (client-ip=2605:bc80:3010::136; helo=smtp3.osuosl.org; envelope-from=ovs-dev-bounces@openvswitch.org; receiver=<UNKNOWN>) Received: from smtp3.osuosl.org (smtp3.osuosl.org [IPv6:2605:bc80:3010::136]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by bilbo.ozlabs.org (Postfix) with ESMTPS id 4M2jhw66FMz9sFs for <incoming@patchwork.ozlabs.org>; Wed, 10 Aug 2022 18:26:56 +1000 (AEST) Received: from localhost (localhost [127.0.0.1]) by smtp3.osuosl.org (Postfix) with ESMTP id AA2406103A; Wed, 10 Aug 2022 08:26:54 +0000 (UTC) DKIM-Filter: OpenDKIM Filter v2.11.0 smtp3.osuosl.org AA2406103A Authentication-Results: smtp3.osuosl.org; dkim=fail reason="signature verification failed" (1024-bit key) header.d=corigine.onmicrosoft.com header.i=@corigine.onmicrosoft.com header.a=rsa-sha256 header.s=selector2-corigine-onmicrosoft-com header.b=XhJAcW2s X-Virus-Scanned: amavisd-new at osuosl.org Received: from smtp3.osuosl.org ([127.0.0.1]) by localhost (smtp3.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ldGb66VHoa2s; Wed, 10 Aug 2022 08:26:53 +0000 (UTC) Received: from lists.linuxfoundation.org (lf-lists.osuosl.org [140.211.9.56]) by smtp3.osuosl.org (Postfix) with ESMTPS id 9680060E49; Wed, 10 Aug 2022 08:26:52 +0000 (UTC) DKIM-Filter: OpenDKIM Filter v2.11.0 smtp3.osuosl.org 9680060E49 Received: from lf-lists.osuosl.org (localhost [127.0.0.1]) by lists.linuxfoundation.org (Postfix) with ESMTP id 6C41AC0032; Wed, 10 Aug 2022 08:26:52 +0000 (UTC) X-Original-To: dev@openvswitch.org Delivered-To: ovs-dev@lists.linuxfoundation.org Received: from smtp3.osuosl.org (smtp3.osuosl.org [140.211.166.136]) by lists.linuxfoundation.org (Postfix) with ESMTP id 0355CC002D for <dev@openvswitch.org>; Wed, 10 Aug 2022 08:26:51 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by smtp3.osuosl.org (Postfix) with ESMTP id D77EE60E49 for <dev@openvswitch.org>; Wed, 10 Aug 2022 08:26:50 +0000 (UTC) DKIM-Filter: OpenDKIM Filter v2.11.0 smtp3.osuosl.org D77EE60E49 X-Virus-Scanned: amavisd-new at osuosl.org Received: from smtp3.osuosl.org ([127.0.0.1]) by localhost (smtp3.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GNOj43x97sgL for <dev@openvswitch.org>; Wed, 10 Aug 2022 08:26:49 +0000 (UTC) X-Greylist: whitelisted by SQLgrey-1.8.0 DKIM-Filter: OpenDKIM Filter v2.11.0 smtp3.osuosl.org 3443E60E32 Received: from NAM11-CO1-obe.outbound.protection.outlook.com (mail-co1nam11on2108.outbound.protection.outlook.com [40.107.220.108]) by smtp3.osuosl.org (Postfix) with ESMTPS id 3443E60E32 for <dev@openvswitch.org>; Wed, 10 Aug 2022 08:26:49 +0000 (UTC) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ircM2QIYAulh8k86jXCBZHv1LeO3+u1a/0wb4F+F6f7HekvD5QIxvLh2SsIdd83GT1u4ZkqDyN/JB8TznTczwY+yuSUpyvjunS6fbfB9oyGXi7JFOrhySsqtpGxWpwzXGlrZZtn63nzAet3GEnBH01FIShoZTqKVieCY7yFHS7VMHsAGyTr8h1doNd+Ya74kJ8/3OJ4xRo0Y9T0H59ThSAiLNGFgkw3JTZ3DTTzOWb+2AnRJopw+aHQ0XrRc9kc86OIEZZgsolHUk8geEQxpISHrhj923DnywPyWxxHFznQaTiWRYB382OD8/Sm8qoEQ2BpwmFaW78Rf4x7PMsIDGw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Uz+4xivoV3HuOzNQEL1DX/i8Ao8U2+PvPCn6XRPZT30=; b=PWr5PKRXJ1ey/Dl0u5EgbwNYLZdvXqRm/cC4asDo9/G0wQ8FFvkFleA9mRA+ahelraDtuPfLqjVmRYyNNkaxncRzxtidNrsM4BeFjYgYIdgr5uQEtdqJrV6kmUhMNRZYNaI7U+BynQ1eAcAdBWKEsCf45T9ylWyPnsVGLrX+a2Fjvfwt0DLIvGwWdFa55X0W2yax0xcSX29KuU7bmJZtTrNIuz0WlDQeACzzDFsWTtGJ/CXhMlZgCyi4X1uLYxGqqYXAYVe6aj/kH0lZtybZph56DiheY0BfS7OH/v/3W21G+H6PXUf+8w1gkVOLcjL2FMqP48X2NOQyNHn7VyfTqw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=corigine.com; dmarc=pass action=none header.from=corigine.com; dkim=pass header.d=corigine.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=corigine.onmicrosoft.com; s=selector2-corigine-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Uz+4xivoV3HuOzNQEL1DX/i8Ao8U2+PvPCn6XRPZT30=; b=XhJAcW2s72HzoUVawpJ+c46C7YMI7sFBTO0Z4Z8iPDDjEe8nTvZjt/z6m7pDk5AjcYGInB7YKNPHRotvy1VEBDVq7elpSmwm3NMRpku1sU+hW/nZN0b6tl8xNna0nvOFbIsoI34FZiQa5da1oJ2zKHqRQfwMu9B4eRmPpqVf8MY= Received: from BN6PR13MB1202.namprd13.prod.outlook.com (2603:10b6:404:17::23) by PH0PR13MB4969.namprd13.prod.outlook.com (2603:10b6:510:92::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5525.7; Wed, 10 Aug 2022 08:26:46 +0000 Received: from BN6PR13MB1202.namprd13.prod.outlook.com ([fe80::5831:3db6:3b3:26e7]) by BN6PR13MB1202.namprd13.prod.outlook.com ([fe80::5831:3db6:3b3:26e7%4]) with mapi id 15.20.5525.010; Wed, 10 Aug 2022 08:26:45 +0000 From: Wentao Jia <wentao.jia@corigine.com> To: Ales Musil <amusil@redhat.com> Thread-Topic: [ovs-dev] [OVN PATCH] northd: add unsnat/undnat lflow for established connections Thread-Index: AdimNdaxUhr9RVQ4QEuJsKKL168n5wFr61sAACsiRnA= Date: Wed, 10 Aug 2022 08:26:45 +0000 Message-ID: <BN6PR13MB1202629B22D0676432213F29ED659@BN6PR13MB1202.namprd13.prod.outlook.com> References: <BN6PR13MB120270F798BE46CFA0D421A1ED9D9@BN6PR13MB1202.namprd13.prod.outlook.com> <CALVEqe4ADzQVFiy-JYREcrQsVfocAVZ162pCnLioLgFDpiDmsg@mail.gmail.com> In-Reply-To: <CALVEqe4ADzQVFiy-JYREcrQsVfocAVZ162pCnLioLgFDpiDmsg@mail.gmail.com> Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=corigine.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 32dbbc54-5e4a-4aca-c808-08da7aaa0fbc x-ms-traffictypediagnostic: PH0PR13MB4969:EE_ x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN6PR13MB1202.namprd13.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(6019001)(4636009)(396003)(366004)(376002)(39840400004)(346002)(136003)(269900001)(33656002)(38070700005)(4326008)(83380400001)(166002)(8936002)(52536014)(44832011)(64756008)(5660300002)(66556008)(66476007)(2906002)(224303003)(76116006)(66946007)(66446008)(6916009)(316002)(41300700001)(9686003)(55016003)(26005)(186003)(6506007)(53546011)(66574015)(86362001)(38100700002)(7696005)(966005)(71200400001)(122000001)(478600001); DIR:OUT; SFP:1102; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?q?DqIjW38MoOLOgxgN3bD3/D2HCMSs?= =?utf-8?q?l5w6DkJpFbwcZpkPcQ9Sw+npFDt/CapLH86jxwp6yssAvsq4SQtKC8ESKM0gYfrGQ?= =?utf-8?q?gFGxpfWrKcaSxezoRp8UFCOjXyh2U2FVJEnpXUlPn2aJN7js+WP5Mck88Yq0u8Ila?= =?utf-8?q?0iJq5c8Z5QZg2Gf7PXLiLBmKMpsgAc7u6TvZZ5iog0Drr3txV7T2ukJUWivrXvbeK?= =?utf-8?q?0UCHX3rOz41HSDt5VNxRFXjwH5Via9Gd8SIr9CmKXMxewuBm+k1pXipTi8T5MmnmO?= =?utf-8?q?D3jBrE5H4nVgsEdN8G0ERfvEPWDYpSjddp3uUUuVfeVDgrUcaz/eWymDrYkQytMCI?= =?utf-8?q?fzgDOE6yY+uFXFbMwIXDgZGPaXorjpjp8wVOL/rPKkPp2DU2Wx8HGabFmNxGjpQZV?= =?utf-8?q?FtvnM8UBmya0Fjqhw6hU4RefjYk6chKRrq02zsNsxBYmtvM9Al7P6Fff86/qPrR31?= =?utf-8?q?JQlm7uhepfIef91UfKOE+9KpihrN7vmo4/Du566p0vMVt+h+guml/UmQKzOyR5aDi?= =?utf-8?q?gVeLlOQHLmj5a/ugqgVuVhFjSvHynNqitJf11D/+8QEOYFEbmJmLsrQwfQXAA2HLL?= =?utf-8?q?uwnWXsv7Rq93LW+WnmAB2F2YqpMq8n3I4/54GLGBlFAsVpVTS0zXwqG7Xb0kgCgSj?= =?utf-8?q?hdmm/fldeAMQjs01iNyCgQpOOwoFEIApJfYyJljsnDyJed5+0kSY3rccj4OWdFd1z?= =?utf-8?q?FUX0nSfgTGkd7NlRK/K8k8qQgHGdj46IvjHlsTl1ck9QYSjwG+U6bsjBTNNJLKC7E?= =?utf-8?q?wYyZOCm/GDMmsMd8ETtYQ8GMBqifRjqTK2qHxGgeS0U3t8T98VRgMle+QZbPQzrdd?= =?utf-8?q?V3/JJ8JyxDjPaBG8gDXXDh0g5qStbGCOUGKlURVSAKwpVat0KenMRin+/C16FqESs?= =?utf-8?q?RzpRGZIOSh0xRzraBzq1T0my84Mc3yyXa8SNaM4b1d9rcH9ECSBmVYGDZBiriehey?= =?utf-8?q?NGSRRkr8V0upmhToXxRP3008KMbHJOad3jPxHSoFulkeEfjjDfM5w3F7XBHdIQha0?= =?utf-8?q?WH8b7O/i0uUJbRD0n58Oa5xK1ocrUd2n/zu1VSnWSexq3KIM3nTF9aQrxpv3mP1M/?= =?utf-8?q?z96ox80uaNgWhPx58fYaXVBlrJCT20NH05Zf5DnjS/u4idALPGIslQkUkgWFi14A9?= =?utf-8?q?61+P6klHtjFDXXQ5c1mpCroy3IIwOVnOf6U++0f1Idg+whsizhpZmaL8WcLZPgQOL?= =?utf-8?q?zgrayG6SIH0nDE1hoXDyck3n6kwwOthvHoYPxGyfSRqGLHRvDW2wRdokutoo2WpAK?= =?utf-8?q?kOfx4tXBn6cOU/FTZEjOVty9ESABm2Kmo+79zJmN+k0vadJ3jOSS4JL/vl8guZM/j?= =?utf-8?q?mWseDX4Mq9ImkFY6vipVAmuO6nt21e901HiidcgcR77c3b7SO4cFo1cAvIQ7WnPt1?= =?utf-8?q?8ZBosSz2eMrqun8lCEwcajgWDKNxa3rFSQqbMcxy1sJDTINmI7+bfTXDRr9MMV6Ce?= =?utf-8?q?ZHKKXPewp6Khs60wUe4dP9RuOxsewjr8Qm97SerkL6866EFYFi6a06+jxbvvBzp5+?= =?utf-8?q?Gv5PiJndIuCX?= MIME-Version: 1.0 X-OriginatorOrg: corigine.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BN6PR13MB1202.namprd13.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 32dbbc54-5e4a-4aca-c808-08da7aaa0fbc X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Aug 2022 08:26:45.3093 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: fe128f2c-073b-4c20-818e-7246a585940c X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: 7fs7NjcZqLqku1+yKh3dHabNm9b57BhIH+XAxJEPkTBN2F1vWhsm6jofqyp72Zb9bZfe39GKAv+vIKfwPBXKBg== X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH0PR13MB4969 X-Content-Filtered-By: Mailman/MimeDel 2.1.15 Cc: "dev@openvswitch.org" <dev@openvswitch.org> Subject: [ovs-dev] =?utf-8?q?=E5=9B=9E=E5=A4=8D=3A__=5BOVN_PATCH=5D_northd?= =?utf-8?q?=3A_add_unsnat/undnat_lflow_for_established_connections?= X-BeenThere: ovs-dev@openvswitch.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: <ovs-dev.openvswitch.org> List-Unsubscribe: <https://mail.openvswitch.org/mailman/options/ovs-dev>, <mailto:ovs-dev-request@openvswitch.org?subject=unsubscribe> List-Archive: <http://mail.openvswitch.org/pipermail/ovs-dev/> List-Post: <mailto:ovs-dev@openvswitch.org> List-Help: <mailto:ovs-dev-request@openvswitch.org?subject=help> List-Subscribe: <https://mail.openvswitch.org/mailman/listinfo/ovs-dev>, <mailto:ovs-dev-request@openvswitch.org?subject=subscribe> Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: ovs-dev-bounces@openvswitch.org Sender: "dev" <ovs-dev-bounces@openvswitch.org> |
| Series |
[ovs-dev] 回复: [OVN PATCH] northd: add unsnat/undnat lflow for established connections
|
expand
|
| Context | Check | Description |
|---|---|---|
| ovsrobot/apply-robot | warning | apply and check: warning |
diff --git a/northd/northd.c b/northd/northd.c index d31cb1688..1e7406a72 100644 --- a/northd/northd.c +++ b/northd/northd.c @@ -12867,11 +12867,8 @@ build_lrouter_in_unsnat_flow(struct hmap *lflows, struct ovn_datapath *od, * Undoing SNAT has to happen before DNAT processing. This is * because when the packet was DNATed in ingress pipeline, it did * not know about the possibility of eventual additional SNAT in - * egress pipeline. */ - if (strcmp(nat->type, "snat") && strcmp(nat->type, "dnat_and_snat")) { - return; - } - + * egress pipeline. + */ bool stateless = lrouter_nat_is_stateless(nat); if (od->is_gw_router) { ds_clear(match); @@ -13036,8 +13033,7 @@ build_lrouter_out_undnat_flow(struct hmap *lflows, struct ovn_datapath *od, * * Note that this only applies for NAT on a distributed router. */ - if (!od->n_l3dgw_ports || - (strcmp(nat->type, "dnat") && strcmp(nat->type, "dnat_and_snat"))) { + if (!od->n_l3dgw_ports) { return; }
Hi, Ales Thanks for your reply Firstly, think about this issue, the type of nat rule is dnat_and_snat (dnat_and_snat rule), there are unsnat and undnat logical flows, but the type of nat rule is snat(snat rule), there is no undnat logical flow, why snat rules no undnat logical flow, is it correct? In the implementation of ovs conntrack, when the first packect arrive, commit the connection to the kernel connection tracking module if necessary, subsequent packets no need commit again. snat/dnat rules in ovn, connections commit to kernel module again and again on all packets Another reason is tc offload only support established connection, ct commit action is considered to be un established connection and cannot be offloaded B R Wentao 发件人: Ales Musil <amusil@redhat.com> 发送时间: 2022年8月9日 19:45 收件人: Wentao Jia <wentao.jia@corigine.com> 抄送: dev@openvswitch.org 主题: Re: [ovs-dev] [OVN PATCH] northd: add unsnat/undnat lflow for established connections On Tue, Aug 2, 2022 at 9:05 PM Wentao Jia <wentao.jia@corigine.com<mailto:wentao.jia@corigine.com>> wrote: snat/dnat rules of logical router, no logical flows for established connection, all natted packets deliver to kernel conntrack module by ct commit, this is low performance and difficult to offload. add another logical flows without ct commit forestablished on pipeline stage of unsnat/undnat for logical router before patched, datapath flows for nat with ct commit ufid:db1fbd1b-8f16-4681-81b0-3796d60332a8, skb_priority(0/0),skb_mark(0/0),ct_state(0/0),ct_zone(0/0),ct_mark(0/0),ct_label(0/0),recirc_id(0),dp_hash(0/0),in_port(rep0_0),packet_type(ns=0/0,id=0/0),eth(src=fa:16:3e:a1:50:79,dst=fa:16:3e:39:69:0a),eth_type(0x0800),ipv4(src=192.168.200.128/255.255.255.192,dst=1.1.1.254,proto=6,tos=0/0,ttl=64,frag=no<http://192.168.200.128/255.255.255.192,dst=1.1.1.254,proto=6,tos=0/0,ttl=64,frag=no>),tcp(src=0/0,dst=0/0), packets:2969075, bytes:4071176800, used:0.000s, dp:tc, actions:set(eth(src=fa:16:3e:ae:b5:e5,dst=8c:1f:64:30:61:43)),set(ipv4(ttl=63)),ct(commit,zone=22,nat(src=1.1.1.124)),recirc(0x14b) ufid:e9c5df95-02df-4629-b399-ddeb5581e997, skb_priority(0/0),skb_mark(0/0),ct_state(0/0),ct_zone(0/0),ct_mark(0/0),ct_label(0/0),recirc_id(0x14b),dp_hash(0/0),in_port(rep0_0),packet_type(ns=0/0,id=0/0),eth(src=fa:16:3e:ae:b5:e5,dst=8c:1f:64:30:61:43),eth_type(0x0800),ipv4(src=0.0.0.0/0.0.0.0,dst=1.1.1.240/255.255.255.240,proto=0/0,tos=0/0,ttl=0/0,frag=no<http://0.0.0.0/0.0.0.0,dst=1.1.1.240/255.255.255.240,proto=0/0,tos=0/0,ttl=0/0,frag=no>), packets:2969075, bytes:4071176800, used:0.001s, offloaded:yes, dp:tc, actions:ct_clear,enp1s0np1 after patched, there is two flows for nat, the flow with ct commit will be timeout and deleted after connection established. another flow without ct commit for established connection ufid:f6a591d6-de32-49cc-bf03-7a00a7601ad0, skb_priority(0/0),skb_mark(0/0),ct_state(0/0),ct_zone(0/0),ct_mark(0/0),ct_label(0/0),recirc_id(0),dp_hash(0/0),in_port(rep0_0),packet_type(ns=0/0,id=0/0),eth(src=fa:16:3e:a1:50:79,dst=fa:16:3e:39:69:0a),eth_type(0x0800),ipv4(src=192.168.200.165,dst=1.1.1.254,proto=6,tos=0/0,ttl=64,frag=no),tcp(src=0/0,dst=0/0), packets:5518542, bytes:7924612730, used:0.040s, offloaded:yes, dp:tc, actions:set(eth(src=fa:16:3e:ae:b5:e5,dst=8c:1f:64:30:61:43)),set(ipv4(ttl=63)),ct(zone=22,nat),recirc(0x14d) ufid:6af5a3ed-5920-4f5b-923e-7e2cb5fc3d6c, skb_priority(0/0),skb_mark(0/0),ct_state(0/0),ct_zone(0/0),ct_mark(0/0),ct_label(0/0),recirc_id(0x14d),dp_hash(0/0),in_port(rep0_0),packet_type(ns=0/0,id=0/0),eth(src=00:00:00:00:00:00/00:00:00:00:00:00,dst=00:00:00:00:00:00/00:00:00:00:00:00),eth_type(0x0800),ipv4(src=192.168.200.165,dst=0.0.0.0/0.0.0.0,proto=0/0,tos=0/0,ttl=0/0,frag=no<http://0.0.0.0/0.0.0.0,proto=0/0,tos=0/0,ttl=0/0,frag=no>), packets:1, bytes:60, used:6.530s, dp:tc, actions:ct(commit,zone=22,nat(src=1.1.1.166)),recirc(0x14e) ufid:b3505ba7-9367-4533-a5df-f1f897376c54, skb_priority(0/0),skb_mark(0/0),ct_state(0/0),ct_zone(0/0),ct_mark(0/0),ct_label(0/0),recirc_id(0x14d),dp_hash(0/0),in_port(rep0_0),packet_type(ns=0/0,id=0/0),eth(src=fa:16:3e:ae:b5:e5,dst=8c:1f:64:30:61:43),eth_type(0x0800),ipv4(src=0.0.0.0/128.0.0.0,dst=1.1.1.240/255.255.255.240,proto=0/0,tos=0/0,ttl=0/0,frag=no<http://0.0.0.0/128.0.0.0,dst=1.1.1.240/255.255.255.240,proto=0/0,tos=0/0,ttl=0/0,frag=no>), packets:5518539, bytes:7924612529, used:0.040s, offloaded:yes, dp:tc, actions:ct_clear,enp1s0np1 ufid:ac4c188c-5320-4376-a53e-b1561e5ca209, skb_priority(0/0),skb_mark(0/0),ct_state(0/0),ct_zone(0/0),ct_mark(0/0),ct_label(0/0),recirc_id(0x14e),dp_hash(0/0),in_port(rep0_0),packet_type(ns=0/0,id=0/0),eth(src=fa:16:3e:ae:b5:e5,dst=8c:1f:64:30:61:43),eth_type(0x0800),ipv4(src=0.0.0.0/0.0.0.0,dst=1.1.1.240/255.255.255.240,proto=0/0,tos=0/0,ttl=0/0,frag=no<http://0.0.0.0/0.0.0.0,dst=1.1.1.240/255.255.255.240,proto=0/0,tos=0/0,ttl=0/0,frag=no>), packets:1, bytes:60, used:6.531s, offloaded:yes, dp:tc, actions:ct_clear,enp1s0np1 Signed-off-by: Wentao Jia <wentao.jia@corigine.com<mailto:wentao.jia@corigine.com>> --- northd/northd.c | 10 +++------- 1 file changed, 3 insertions(+), 7 deletions(-) -- 2.31.1