faucetsdn/faucet

traffic not passing over ovs geneve tunnel, arp, dhcp, etc..

ACiDGRiM opened this issue · 1 comments

ACiDGRiM commented

I'm not able to ping or receive legacy dhcp requests on a virtual infrastructure I'm migrating from traditional network to SDN. I want to preserve traditional broadcast flooding to prove out the basic policy, and change each vlan to a faucet routed archetecture. is there a way to enable legacy traffic broadcast?

Currently I want to ping from a VM on Host A with IP 10.0.55.52/24 to an internal ovs interface on HOST B with IP on 10.0.55.2/24, which is in a VRF routing table. I also want a VM on host B to broadcast for DHCP from a DHCP relay on Host A.
I need this configuration, because I want to serve docker instances on the host directly while allowing migration between both for legacy VMs

Host A and Host B are connected with a working Geneve tunnel, which is configured as stack interface in faucet.

Using docker faucet:latest
I've confirmed all ports, including geneve ofports, match the defined faucet interfaces

dps:
  sphf2node01:
    dp_id: 0x1
    timeout: 3601
    arp_neighbor_timeout: 1800
    stack:
      priority: 1
    interfaces:
      1:  
        name: cs1-dmz
        native_vlan: dmz
      2:
        name: cs1-domain
        native_vlan: domain
      3:
        name: cs1-admin
        native_vlan: admin
      1000:
        name: vnet1
        native_vlan: admin
      10000:
        name: sphf2node02
        stack:
          dp: sphf2node02
          port: sphf2node01
      10001:
        name: sphf2node03
        stack:
          dp: sphf2node03
          port: sphf2node01

  sphf2node02:
    dp_id: 0x2
    timeout: 3601
    arp_neighbor_timeout: 1800
    stack:
      priority: 2
    interfaces:
      1:
        name: cs1-dmz
        native_vlan: dmz
      2:
        name: cs1-domain
        native_vlan: domain
      3:
        name: cs1-admin
        native_vlan: admin
      1000:
        name: vnet23
        native_vlan: dmz
      1001:
        name: vnet24
        native_vlan: domain
      1002:
        name: vnet25
        native_vlan: resident
      1003:
        name: vnet26
        native_vlan: admin
      1004:
        name: vnet27
        native_vlan: link
      1005:
        name: vnet11
        native_vlan: dmz
      1006:
        name: vnet29
        native_vlan: domain
      1007:
        name: vnet12
        native_vlan: dmz
      1008:
        name: vnet28
        native_vlan: admin
    
      10000:
        name: sphf2node01 
        stack:
          dp: sphf2node01
          port: sphf2node02
      10001:   
        name: sphf2node03  
        stack:
          dp: sphf2node03
          port: sphf2node02

  sphf2node03:
    dp_id: 0x3
    timeout: 3601
    arp_neighbor_timeout: 1800
    stack:
      priority: 3
    interfaces:
      1:
        name: cs1-dmz
        native_vlan: dmz
      2:
        name: cs1-domain
        native_vlan: domain
      3:
        name: cs1-admin
        native_vlan: admin

      10000:
        name: sphf2node01
        stack:
          dp: sphf2node01
          port: sphf2node03
      10001:
        name: sphf2node02
        stack:
          dp: sphf2node02
          port: sphf2node03

vlans:
  admin:
    vid: 2
  devices:
    vid: 3
  resident:
    vid: 10
  guest:
    vid: 11
  dmz:
    vid: 15
  domain:
    vid: 53
  link:
    vid: 1024
ACiDGRiM commented

Firewall on one host was blocking geneve UDP ports, sorry for the distraction