[rfe][ovn] Support address group for ovn driver
Bug #1982287 reported by
Liu Xie
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| neutron |
In Progress
|
Wishlist
|
Liu Xie | ||
Bug Description
As the title describes, we can use 'Address_Set' of ovn to support the feature that address group.
OVN is already supporting the feature 'Address_Set' that create a set of address contains IPv4, or IPv6 addresses with optional bitwise or CIDR masks. For details, we can see [0].
For example:
# Create an address set
ovn-nbctl create Address_Set name=as1 addresses=
# Add acl1 uses as1
ovn-nbctl --wait=hv acl-add pg1 to-lport 1001 'outport == "pg1" && ip4 && ip4.src == $as1' allow
So we can implement the feature that translate the neutron address group to a Address_Set entry and put this entry to a match filed of ovn acl.
[0]https:/
| Changed in neutron: | |
| assignee: | nobody → Liu Xie (liushy) |
| summary: |
- [ovn] Support address group for ovn driver + [rfe][ovn] Support address group for ovn driver |
Revision history for this message
| Oleg Bondarev (obondarev) wrote | #1 |
| tags: | added: rfe |
| Changed in neutron: | |
| importance: | Undecided → Wishlist |
| description: | updated |
| Changed in neutron: | |
| status: | New → Triaged |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix proposed to neutron (master) | #3 |
| Changed in neutron: | |
| status: | Triaged → In Progress |
To post a comment you must log in.
The description seems a bit unfinished, please update