Uploaded image for project: 'netvirt'
  1. netvirt
  2. NETVIRT-1181

AAP Mac address is not added for L2 Broadcast in ACL flows during port update

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Highest Highest
    • Oxygen-SR1, Fluorine
    • Oxygen
    • General
    • None
    • High

      AAP : Allowed address pair

      ACL: Access control List, aka Security Group (SG)

      There are 2 related issues:

      1. AAP Mac address is not added for L2 Broadcast in ACL via port update.
      2. If Port created with AAP Mac, this mac will be added to L2 Broadcast. But not deleted post removal of AAP.

      Issue 1:

      • Create Port P1, without AAP
      • Boot vm VM1 to the port P1
      • Now update port with AAP IP address IP2 and Mac Address MAC2.

      observe flows in 210, the L2 Broadcast rule is not added for the newly updated Mac- MAC2.

      Issue 2:

      • Create port P1 with AAP IP2, Mac MAC2.
      • Boot vm VM1 with port P1.

      Observe flows in 210, the L2 Broadcast rule for AAP MAC2, is visible.

      • Now update port P1, to remove AAP.

      observe flows in 210, the L2 Broadcast rule for AAP MAC2, is not removed.

            kiranvasudeva Kiran Vasudeva
            kiranvasudeva Kiran Vasudeva
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved:

                Estimated:
                Original Estimate - 2 weeks
                2w
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 2 weeks
                2w